Information Security & Data Privacy

Given recent high profile events in both the private and public sector, information security and privacy has never been higher on the board agenda. Reputation, trust and brand value can all be seriously affected by information loss and theft. Incidents have often erroneously been attributed to technology issues, and while technology is one of the key components to better information and cyber security, equal attention needs to be paid to people, organisation, culture and processes.

Global Digital Trust Insights Survey 2026

Cybersecurity is entering uncharted waters. A rapidly shifting world order and threat environment ― powered by recent, exponential leaps in technology ― is putting cyber strategies to the test.

PwC’s 2026 Global Digital Trust Insights survey of 3,887 business and tech executives across 72 countries reveals how leaders are handling this era of uncertainty, where they’re falling short, and what they might do differently to better meet the challenge.

Companies can no longer manage security on an ad-hoc project basis. To reduce the risk of business disruptions, meet regulatory compliance objectives and adequately respond to complex security breaches, organizations must integrate security infrastructures as well as constantly monitor standards, policies and controls to stay in line with established parameters. By gaining complete visibility into the security infrastructure, organizations are also able to remediate security gaps quickly.

We provide our clients confidence around the security of their data, employees, organization, etc. through:

Where are you on the GDPR journey?

Your organization may be just getting started—or may already have a GDPR program in place. Here’s what happens on the way to compliance.

Conduct a readiness assessment

Gather information to assess your organization’s current GDPR compliance maturity, and to help understand your critical legacy risks.

Find remediation gaps

Identify existing privacy capabilities and the work that needs to be done to bring your organization into GDPR compliance.

Establish oversight

Put your organization’s ongoing GDPR governance structure and model into place to coordinate and implement your remediation activities.

Implement your program

Get your GDPR program off the ground: remediating gaps and establishing a privacy program.

Conduct operation & monitoring

Once GDPR is in effect and your program is in place, conduct ongoing compliance to drive continued accountability.

Contact us

Mircea Bozga

Partner, Risk Assurance, PwC Romania

© 2015 - 2025 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

Information Security & Data Privacy

Global Digital Trust Insights Survey 2026

We provide our clients confidence around the security of their data, employees, organization, etc. through:

IT Security strategy and governance reviews and optimization

Cyber risk assessments and governance

Third party risk management and cloud security assistance

Implementation and operation of security solutions (IAM, security analytics, DLP, network security, etc.)

Threat and vulnerability reviews, penetration testing and detailed technology security assessments

Incident readiness and response

General Data Protection Regulation (GDPR) design, governance and transformation

IT Security awareness design and training

IT frameworks and standards implementation (COBIT, NIST, ISO etc)