Back to Frameworks

Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)

Romania
v2018 (GDPR implementation)
8 domains
8 controls

Romania's Law No. 190/2018 on measures for implementing EU Regulation 2016/679 (GDPR) supplements the GDPR with national provisions. The National Supervisory Authority for Personal Data Processing (ANSPDCP - Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal) oversees enforcement. The law includes provisions for the age of digital consent (16 years), processing of national identification numbers (CNP), genetic and biometric data, research derogations, and sector-specific rules for health and employment data.

Verified

Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.

Framework Domains (8)

Accountability

1 controls
Controls in the Accountability domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-4DPIA, Privacy by Design, Accountability

Breach and Enforcement

1 controls
Controls in the Breach and Enforcement domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-8Breach Notification, Enforcement

Cross-Border

1 controls
Controls in the Cross-Border domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-6International Transfer

Governance

1 controls
Controls in the Governance domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-7DPO, ANSPDCP Cooperation, Training

High-Risk Processing

1 controls
Controls in the High-Risk Processing domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-3Special Categories, Children, Employee Monitoring

Individual Rights

1 controls
Controls in the Individual Rights domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-2Data Subject Rights

Scope and Lawful Basis

1 controls
Controls in the Scope and Lawful Basis domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-1GDPR Implementation, Scope, Lawful Basis (Romania)

Security and Processor

1 controls
Controls in the Security and Processor domain of Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)1 controls
CodeTitle
ROMANIA-5Security of Processing and Processor Agreements

Frequently Asked Questions

What is Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation)?

Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) is a compliance framework from Romania with 8 domains and 8 controls. Romania's Law No. 190/2018 on measures for implementing EU Regulation 2016/679 (GDPR) supplements the GDPR with national provisions. The National Supervisory Authority for Personal Data Processing (ANSPDCP - Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal) oversees enforcement. The law includes provisions for the age of digital consent (16 years), processing of national identification numbers (CNP), genetic and biometric data, research derogations, and sector-specific rules for health and employment data. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.

How many controls does Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) have?

Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) has 8 controls organised across 8 domains. The largest domains are Accountability (1 controls), Breach and Enforcement (1 controls), Cross-Border (1 controls). Each control defines specific requirements that organisations must implement to achieve compliance.

What frameworks does Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) map to?

Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) does not currently have cross-framework mappings in our system. Check back as we continuously expand our mapping database.

How do I get started with Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) compliance?

Start your Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Romania Law No. 190/2018 on Data Protection Measures (GDPR Implementation) requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 8 controls and track your progress.

Start Your Compliance Journey

Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 723 frameworks.

Get Started Free →

Free forever — no credit card required