Last updated 1 week ago
South Korea's Personal Information Protection Commission has fined luxury fashion brands Louis Vuitton, Christian Dior Couture, and Tiffany a total of $25 million for data protection violations. The companies failed to implement adequate security measures, which led to unauthorized access and exposure of data belonging to more than 5.5 million customers. The regulatory action highlights significant deficiencies in the companies' data protection practices and their failure to meet South Korea's stringent data security requirements.
Failure to implement adequate security measures which facilitated unauthorized access
Security controls failed in implementing adequate data protection measures and compliance with regulatory requirements. Recommendations include implementing robust security frameworks, regular security audits, employee training on data protection, and ensuring compliance with local data protection laws through dedicated compliance programs.
Company
Industry
Location
Records Affected
Attack Vector