South Korea Fines Luxury Brands $24.9 Million Over Data Breaches
South Korea’s privacy regulator has levied fines totaling 36 billion won ($24.9 million) against the Korean subsidiaries of Louis Vuitton, Dior, and Tiffany following separate data breaches that exposed millions of customers’ personal information. The penalties stem from investigations confirming unauthorized access to sensitive customer data, though specific details on the breaches’ scope and timing remain undisclosed.
The fines highlight growing regulatory scrutiny over data protection in South Korea, where authorities are enforcing stricter compliance with privacy laws. The incident underscores the financial and reputational risks for global brands handling large-scale consumer data.
In related cybersecurity developments, Japan Airlines reported that up to 28,000 customers were affected by unauthorized access to its baggage service system, while Volvo Group disclosed that 16,991 employees were impacted as part of a broader Conduent data breach, which has now exposed 25 million individuals. These incidents reflect the escalating threat landscape for both corporate and personal data security.
Japan Airlines TPRM report: https://www.rankiteo.com/company/japan-airlines
Tiffany TPRM report: https://www.rankiteo.com/company/tiffany-and-co
Dior TPRM report: https://www.rankiteo.com/company/parfums-christian-dior
Volvo Group TPRM report: https://www.rankiteo.com/company/volvocars
Louis Vuitton TPRM report: https://www.rankiteo.com/company/louis-vuitton
"id": "louparvoltifjap1770908674",
"linkid": "louis-vuitton, parfums-christian-dior, volvocars, tiffany-and-co, japan-airlines",
"type": "Breach",
"date": "1/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Millions',
'industry': 'Luxury Retail',
'location': 'South Korea',
'name': 'Louis Vuitton Korea',
'type': 'Subsidiary'},
{'customers_affected': 'Millions',
'industry': 'Luxury Retail',
'location': 'South Korea',
'name': 'Dior Korea',
'type': 'Subsidiary'},
{'customers_affected': 'Millions',
'industry': 'Luxury Retail',
'location': 'South Korea',
'name': 'Tiffany Korea',
'type': 'Subsidiary'},
{'customers_affected': '28,000',
'industry': 'Aviation',
'location': 'Japan',
'name': 'Japan Airlines',
'type': 'Corporation'},
{'customers_affected': '16,991 employees',
'industry': 'Automotive',
'name': 'Volvo Group',
'type': 'Corporation'},
{'customers_affected': '25 million individuals',
'industry': 'Business Process Services',
'name': 'Conduent',
'type': 'Corporation'}],
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personal information'},
'description': 'South Korea’s privacy regulator has levied fines totaling 36 '
'billion won ($24.9 million) against the Korean subsidiaries '
'of Louis Vuitton, Dior, and Tiffany following separate data '
'breaches that exposed millions of customers’ personal '
'information.',
'impact': {'brand_reputation_impact': 'Reputational risks for global brands',
'data_compromised': 'Personal information of millions of customers',
'financial_loss': '36 billion won ($24.9 million) in fines'},
'lessons_learned': 'Growing regulatory scrutiny over data protection in South '
'Korea and stricter compliance enforcement.',
'references': [{'source': 'Cyber Incident Description'}],
'regulatory_compliance': {'fines_imposed': '36 billion won ($24.9 million)',
'regulations_violated': 'South Korea privacy laws'},
'title': 'South Korea Fines Luxury Brands Over Data Breaches',
'type': 'Data Breach'}