News
SHARE Foundation and organizations for the protection of digital rights warn about the misuse of GDPR in Romania
Journalists of RISE Project from Romania, an investigative media outlet, were threatened with fines in the amount of 20 million EUR if they do not allow the access to personal data, thus 18 organizations for the protection of digital rights and freedoms and SHARE Foundation among them, sent a letter to Andrea Jelinek, the Chair of the European Data Protection Board. The letter was also sent to the president of the National Supervisory Authority for Personal Data Processing of Romania, as well as to the European Commission.
Namely, on Facebook page of the RISE Project, journalists published documents containing personal data of a well-known Romanian politician and persons connected with him, and pointed at a high level of corruption in terms of misuse of the EU funds. Soon afterwards, the Project received a written request of the Romanian Supervisory Body asking for the information on the source of the data and threatening with a fine.
The organizations warned that such request of the Romanian body for personal data protection jeopardizes the secrecy of journalistic sources and reminded that the General Data Protection Regulation (GDPR) a legislative framework for the protection of rights established by the Charter of Fundamental Rights of the EU and the European Convention on Human Rights.
Recitals 4 and 153 and Article 85 of the GDPR make clear that the right to protection of personal data must be considered in relation to its function in society and be reconciled with other fundamental rights, such as the right to freedom of expression and information.
Signatories of the letter asked the Board to consider whether the request of the Supervisory Body of Romania is in line with the GDPR and whether the Romanian Law on Personal Data Protection 190/2018 and its application in this case reconcile the personal data protection and freedom of expression and information in line with Article 85.
The letter in English language is available here.
Related content
Open Letter: Serbian authorities must prosecute illegal hacking of journalists and activists
Today, 19 December, European Digital Rights (EDRi) and 50 organisations urge the European Union’s institutions to take action to stop the Serbian authorities’ illegal use of spyware to target journalists, activists, and members of civil society. On 16 December, Amnesty International released a report exposing widespread abuses by the Serbian police and Security Information Agency (BIA) through the use […]
19. December, 2024.
Spyware’s First Step: A Systematic Analysis of Exploits Used for Mobile Device Compromise
How forensic analysis uncovered manipulation, exploitation, and the hidden risks behind one of digital forensics’ most powerful tools By: Boris Babović A re-examination of data from the analysis of devices seized from Serbian activists — originally conducted last year by the international organization Amnesty International — reveals that the Cellebrite UFED forensic tool has the […]
29. May, 2025.
Strengthening Cybersecurity: MFA v. Phishing
In today’s digital landscape, cybersecurity is of paramount importance to protect sensitive information from unauthorized access. Multi-Factor Authentication (MFA) has emerged as a powerful security measure, adding an extra layer of protection against account breaches. MFA is an authentication approach that strengthens the login process by requiring users to provide multiple elements or “factors” from […]
9. June, 2023.