Republic of Korea: Issued PIPC fine against Gmarket for breach of the Personal Information Protection Act

On 8 March 2023, the Korean Personal Information Protection Commission (PIPC) imposed a fine of KRW 1 million on Gmarket Co, an e-commerce platform based in South Korea, for breach of the Personal Information Protection Act (PIPA). In particular, the PIPC found that Gmarket refused requests for data access by customers in violation of the obligation of Article 35 of PIPA, which requires personal information controllers to grant data subjects access to the personal information it has collected on them.