ePrivacy Directive Compliance in Romania
The ePrivacy Directive governs electronic communications privacy, covering cookies, email marketing, and confidentiality of communications. Its replacement (ePrivacy Regulation) is pending but the Directive remains law.
How does ePrivacy apply in Romania?
ePrivacy applies in Romania under EU law with the same obligations as across the bloc — maximum fine Per member state (GDPR rates of €20M/4% apply where violation also breaches GDPR). The national supervisory authority is the ANSPDCP (Autoritatea Națională de Supraveghere), which handles enforcement, complaints, and notifications. Deadline: In force — update expected 2025-2026.
- Supervisory authority: ANSPDCP (Autoritatea Națională de Supraveghere)
- Maximum fine: Per member state (GDPR rates of €20M/4% apply where violation also breaches GDPR)
- Key deadline: In force — update expected 2025-2026
| Supervisory authority | ANSPDCP (Autoritatea Națională de Supraveghere) |
| Maximum fine | Per member state (GDPR rates of €20M/4% apply where violation also breaches GDPR) |
| Key deadline | In force — update expected 2025-2026 |
| Sectors affected | Telecommunications, Digital Services |
In force — update expected 2025-2026
Per member state (GDPR rates of €20M/4% apply where violation also breaches GDPR)
Telecommunications, Digital Services, E-commerce
What are my ePrivacy obligations in Romania?
- Obtain consent for cookies and tracking
- Honour opt-out for direct marketing
- Protect confidentiality of communications
- Notify breaches to authorities
- Implement privacy by default
Does ePrivacy apply to your Romania business?
Find out in 2 minutes with our free regulation checker.
Check now — freeePrivacy compliance in other EU countries
Check Your Compliance Obligations
Find out which ePrivacy obligations apply to your Romania organisation in under 2 minutes.
Explore ePrivacy Compliance
For informational purposes only. This is not legal advice — consult qualified legal counsel.