Data Privacy Is Not an IT Problem. Coupang Just Proved It.

On June 11, 2026, South Korea's PIPC imposed a record ₩624.7 billion fine on Coupang over a data breach affecting 37.5 million users. The breach was enabled by an unrevoked signing key left behind by a former employee — but the fine tells a larger story: regulators found governance failures spanning HR offboarding, CPO authority, product decisions, and crisis response. For organizations across APAC, this case sets a new benchmark for what enforcement with real teeth looks like.