E-commerce giant Coupang has announced a 1.68 trillion won compensation plan for 33.7 million users affected by a recent data breach. The package includes 50,000 won in vouchers per person, with distributions starting next month. This follows founder Kim Bom-suk's first public apology over the incident.
Coupang Inc., South Korea's leading e-commerce firm, revealed a compensation plan worth more than 1.68 trillion won ($1.17 billion) on December 29, 2025, in response to a massive personal data breach. The initiative targets 33.7 million affected customers with 50,000 won in four types of vouchers: 5,000 won for the e-commerce platform, 5,000 won for Coupang Eats food delivery, 20,000 won for travel products, and 20,000 won for R.LUX luxury beauty and fashion items. Distributions will begin gradually from January 15, 2026, and even former users who closed accounts will receive them via text message.
The breach was first reported to authorities on November 20, 2025, affecting 4,500 accounts, but expanded to 33.7 million by November 29—nearly the entire user base of 24.7 million active users in the third quarter and about two-thirds of South Korea's population. Compromised data included names, phone numbers, email addresses, and delivery addresses.
Coupang identified a former employee as responsible through forensic evidence, recovered the hacking equipment, and obtained a confession. The company claims only data from about 3,000 accounts was saved and later deleted, with no external leak. However, the government dismissed these findings as a "unilateral claim," as a joint public-private investigation has yet to conclude.
The day before, on December 28, founder and board chairman Kim Bom-suk issued his first apology, stating, "I have caused huge frustration and disappointment by failing to communicate clearly since the onset of the incident." He admitted the delayed response was a "wrong judgment" and again declined to attend a parliamentary hearing citing a prearranged schedule, drawing criticism from lawmakers.
Interim CEO Harold Rogers said, "Taking this incident as a turning point, Coupang will wholeheartedly embrace customer-centric principles and fulfill its responsibilities to the very end." The breach has intensified debates on data security in South Korea, with ongoing probes likely to follow.
