South Korea imposes record fine on Coupang over data breach and unauthorized data collection
South Korea fined Coupang 624.68 billion won (approximately $409 million) for a data breach that exposed the personal information of more than 30 million customers and for collecting user data without authorization. The fine is the largest penalty ever imposed under South Korea’s data protection laws, according to Financialexpress.com.
South Korea imposed a record fine of 624.68 billion won (approximately $409 million) on Coupang for a data breach that exposed the personal information of more than 30 million customers and for collecting user data without authorization. Coupang failed to implement adequate security systems to protect customer information. The fine is the largest penalty ever imposed on a company under South Korea’s data protection laws, according to Financialexpress.com. The Personal Information Protection Commission (PIPC) enforced the penalty. Some reports cite the fine as 624.7 billion won, while others state 625 billion won. One report cites a fine of $408 million, while others report $409 million. According to Financialexpress.com, Coupang did not detect the breach within the 72-hour period required by law. The fine amounts to about 1.4% of Coupang’s 2025 revenue of 45 trillion won, according to Financialexpress.com. The data breach exposed personal information of nearly two-thirds of South Korea’s population, according to Bluesky. Allegations of a massive data leak first surfaced in November, according to SCMP. Coupang is incorporated in the United States, according to SCMP. The data breach became a source of friction between Seoul and Washington, according to SCMP.
This account was written only from facts that survived Augur's
corroboration pass — 5 corroborated across opposed news blocs,
2 contested (attributed to both sides), 8
single-source (attributed). Nothing was added; no significance was inferred.
Model Qwen3-Next-80B-A3B-Instruct.
See the evidence & the verbatim quotes →