Republic of Korea: Personal Information Protection Commission issued a report following security assessment of AWS, Azure, and NCP

Personal Information Protection Commission issued a report following security assessment of AWS, Azure, and NCP

On 11 June 2025, the Personal Information Protection Commission (PIPC) of the Republic of Korea announced the results of its security assessment concerning Amazon Web Services (AWS), Azure, and Naver Cloud Platform (NCP) cloud services. The assessme…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

infrastructure provider: cloud computing, storage and databases

Implementation Level

national

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2025-06-11

under investigation

On 11 June 2025, the Personal Information Protection Commission (PIPC) of the Republic of Korea ann…

2025-12-10

concluded

On 10 December 2025, the Personal Information Protection Commission (PIPC) concluded the review int…

Description

Personal Information Protection Commission issued a report following security assessment of AWS, Azure, and NCP

Scope

Complete timeline of this policy change