Romania: ANSPDCP fines Viva Credit RON 9,680 for inadequate response to erasure request
The National Supervisory Authority for Personal Data Processing ('ANSPDCP') announced, on 30 July 2020, that it had imposed a RON 9,680 (approx. €2,000) fine on SC Viva Credit IFN SA for failure to adequately respond to a data subject's request for erasure of its data under Article 17 of the General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR'). In particular, the ANSPDCP highlighted that the operator had not provided the applicant with information on the actions taken following the request within one month (or up to three months if a reason for the delay is provided). In addition, the ANSPDCP noted the obligation, under Article 12(3) of the GDPR, to respond to data subject requests without undue delay and at the latest within one month from the receipt of the request. Therefore, the ANSPDCP requested that the company respond to the data subject request.
You can read the announcement, only available in Romanian, here.