Skip to main content Required by EU law for organizations with 50+ employees

Whistleblower law in Moldova #

Moldova regulates whistleblowing through Legea nr. 165/2023 privind avertizorii de integritate (Law 165/2023 on integrity whistleblowers), in force since 26 October 2023. Moldova is not an EU member state — it is an accession candidate, and Law 165/2023 is partially aligned with Directive (EU) 2019/1937 rather than a transposition of it.

Applicable law #

EU accession alignment #

As a non-member, Moldova has no obligation to transpose Directive (EU) 2019/1937. Law 165/2023 was adopted as a partial alignment with the Directive ahead of accession, and a draft law for full alignment is under legislative consultation , consolidating the protection mechanism for integrity disclosures. Organizations operating in Moldova should expect the framework to converge on the Directive’s standards as the accession process advances.

Who must establish an internal channel #

Disclosures are recorded in a register of disclosures (Registrul dezvăluirilor privind încălcările legii), and records must be retained for 5 years.

Penalties and liability #

Law 165/2023 establishes liability categories rather than a published fine schedule:

An honest assessment. The current law does not attach specific fine amounts to these categories, so any Moldova compliance pitch built on penalty figures is not grounded in the statute as it stands. The 2025 full-alignment consultation materials propose more detailed contravention fines; until those are adopted, the operational exposure is a disclosure reaching the external authorities with no internal channel in place.

External reporting authority #

The competent external authority is the Centrul Național Anticorupție (CNA) — the National Anticorruption Center, which receives external disclosures.

Whistleblower protection authority #

Whistleblower protection is handled through the Avocatul Poporului (Ombudsman) , which examines protection requests from integrity whistleblowers facing retaliation.

Data protection authority #

For complaints about the handling of personal data in reporting systems, the competent authority is the Centrul Național pentru Protecția Datelor cu Caracter Personal (CNPDCP) .

Key compliance points #

Official sources #

Primary law and authorities

Alignment work


Deploy your reporting channel →

Last updated: