In 2025, the Ministry of Internal Affairs carried out almost 33 million accesses to personal data, the IRB more than half a million
The National Center for Personal Data Protection analyzed the dynamics of the number of references to information systems made in 2025 by public institutions with relevant powers in the field of public order, prevention and suppression of illegal actions, as well as in the field of tax and customs administration. The relevant report was submitted to the specialized parliamentary commission.
According to the data received, the number of accesses to state information systems in 2025 compared to 2024 for the majority of institutions has increased.
The total number of references by year for key institutions amounted to:
Ministry of Interior – 27,947,783 in 2024 and 32,929,236 in 2025
Information and Security Service – 140,192 in 2024 and 529,806 in 2025
National Anti-Corruption Center – 51,971 in 2024 and 71,700 in 2025
Prosecutor General’s Office – 15.738 in 2024 and 17.135 in 2025
Customs Service – 243,131 in 2024 and 613,464 in 2025
Ministry of Defense – 288.574 in 2024 and 318.048 in 2025
National Integrity Authority – 21.857 in 2024 and 20.463 in 2025
State Tax Service – 21,498,742 in 2024 and 94,634 in 2025
Appeals were made through Acces-Web (Automated Information System – SIA) or through Common Object Interface (COI), as well as through E-Cadastru and MConnect interagency interaction platform.
The information systems accessed by the state structures include such state registers as registers of population (RSP), real estate (RSI), transportation (RST), drivers (RSCV), legal units (RSUD).
The problem is not quantity, but reliability
According to MP Lilian Karp, chairman of the Commission on National Security, Defense and Public Order, access to information is not the problem – it is their protection that matters:
“Here there should be no restrictions for those who work with the public sphere. What concerns, for example, property, income, assets – this refers to information with public access. But there are other areas – for example, private life, health – where everyone’s right to privacy must be respected.”
According to the Center, public authorities and control bodies continue to access personal data through the Common Object Interface – COI technology, which actually does not meet the requirements for ensuring the security of personal data during their processing in automated information systems and does not provide individual identification of users who perform data access operations, although they are obliged to justify the purpose and legal basis of such operations.
