The National Strategy in AI for 2024–2027 (SN-IA)

Even though Romania has not yet adopted specific legislation with respect to AI, as other EU states such as Italy and Germany have done, it did take the important step of adopting a comprehensive strategy in 2024.

For the last few decades, Romania has had one of the highest rates in the EU of higher education graduates in IT and communications. This translates into a large number of highly trained individuals who can learn and adapt to new technologies, AI included.

It is no surprise that the National Strategy for AI (the “National Strategy”) was developed by the Authority for the Digitization of Romania in collaboration with the Technical University of Cluj-Napoca (UTCN), which is one of the most prestigious higher education institutions in the country.

The highly coherent and comprehensive National Strategy starts by placing emphasis on AI literacy in educational institutions and legal entities in the private and public sector. The Strategy underlines six main objectives that Romania will focus on in the near future:

• supporting education and the development of specific AI skills;
• development and efficient use of infrastructure and datasets;
• development of a national research – development – innovation system in the field of AI;
• ensuring technology transfer through partnerships;
• facilitating the adoption of AI across society; and
• developing a system of governance and regulation of AI.

These six objectives are split into several programs and measures aimed to build a strong digital landscape in which AI can play a significant role, not in replacing human intelligence, but in augmenting it.

Digital Omnibus

Although the European Commission’s Digital Omnibus has not yet been adopted, it is important to take it into account when discussing trends in any EU member state, as it will bring some structural changes to the AI framework.

It is obvious that the proposed measures are aimed at ensuring that the EU member states are not left behind in the race for a new AI society, but it is an open question whether these member states will have to sacrifice some fundamental rights in the process.

Aimed at protecting the development of AI-driven innovation through more flexible legal mechanisms, the measures proposed may well be integrated into the National Strategy and prove to be a significant aid in reaching the objectives by productive, rather than coercive, measures.

The Online Full Age Law

This legislation is very close to being adopted, and it introduces some major provisions. Until then, “industry best practices” are still in place.

While the PEGI (Pan European Game Information) system was previously a voluntary industry standard in Romania, the new legislation will formalise its role. Under the proposal for the Online Full Age Law, all digital content providers (including game developers/publishers) are required to label their products according to specific age categories. Developers will have to ensure that their games carry the appropriate PEGI rating (3, 7, 12, 16 or 18) and, more importantly, the content descriptors (eg, “Violence”, “Bad Language” or “In-Game Purchases”). The National Authority for Management and Regulation in Communications (ANCOM) will have the power to fine developers who fail to display these ratings on digital storefronts (eg, Steam, Epic, or Mobile Stores) accessible from Romania.

By the same law, now in the final phases of parliamentary procedures, Romania will introduce a specific legal threshold for digital autonomy that affects how games are designed. Full legal capacity in the online environment will be set at 16 years. For players under 16, developers will need to implement “verifiable parental consent” mechanisms.

This legislative package defines "harmful content" broadly, and developers must ensure their games do not expose minors to prohibited promotions. Games accessible to minors cannot contain embedded advertising or mechanics that promote alcohol, energy drinks, nicotine, or gambling.

According to the draft legislation, minors under the age of 16 may not access or create accounts on online social platforms, including social media, streaming or communication services, without the express and verifiable consent of their parents or legal guardians. The law requires digital platforms to implement concrete and effective age-verification mechanisms and content filters, as well as to label materials suitable for specific age groups. Parents will also have the right to suspend, restrict or even request the deletion of a minor’s account if they consider that the minor is being exposed to harmful content.

The EU Digital ID

The purpose of the EU Digital ID is to offer a standardised digital identity to every EU resident. The new EU Digital ID assures a high level of security with encryption and authentication procedures to safeguard sensitive data and prevent unauthorised access.

The electronic identity card is a natural step in the digital era towards a more efficient and secure approach regarding identity.

At the foundation of the EU Digital ID is the “eIDAS 2.0” Regulation (Regulation (EU) 2024/1183 for the establishment of a European Digital Identity). The regulation introduces the European Digital Identity Wallet, but also expands the list of trust services, introducing new qualified trust services that include electronic archiving services and electronic ledgers, the management of remote electronic signatures, and seal creation devices.

The electronic digital ID contains the following encrypted data:

• identification data (name, surname, personal ID number);
• facial image;
• fingerprint biometrics; and
• digital certificates for authentication and electronic signature.

The new regulation also ensures the protection of fundamental rights, by upgrading the protection of personal data and allowing EU residents to securely manage data related to their identity, aligning with the GDPR.

The Electronic Identity Card in Romania

Romania began issuing its new electronic identity card on 20 March 2025. The issuance of the electronic ID began as a pilot project in Cluj-Napoca County, but the service has expanded to other counties. National authorities have announced a gradual expansion, so that by August 2031, all traditional identity cards will be replaced with electronic digital IDs.

The electronic identity card is currently optional in Romania, and citizens can choose between the old identity card, without stored electronic data, and the new electronic identity card.

The new electronic identity card is available to Romanian citizens aged 14 and above and they are allowed to apply for the new identity card even before their old ID expires.

Beyond its use as a travel document, the digital ID also has a digital signature function for signing digital documents.