Personal Information Protection Commission Chairperson Song Kyung-hee said there appear to be issues with excessive identity verification and personal data collection practices at concert venues justified as preventing ticket scalping, adding that, if necessary, the commission will consider a review of identity verification and personal data collection across the entertainment industry.
On the 14th at the National Policy Committee's parliamentary audit, Democratic Party of Korea lawmaker Yoo Dong-soo said, "Some venues demand the last digits of a resident registration number if the ticket booker and attendee are different, or require displaying Naver or Kakao authentication screens and presenting a check card, which are excessive information requests," to which Song answered accordingly.
Yoo criticized, "This approach helps neither personal data protection nor the eradication of scalping, and only causes consumer harm."
Song also said she will prepare institutional response measures for the transfer of personal data overseas during mergers and acquisitions (M&A) by corporations. She said, "As the economic value of personal data rises, we must closely examine personal data transfer issues when corporations are sold or merged," adding, "We will actively consider introducing systems such as prior review or impact assessments."
This was in response to Democratic Party of Korea lawmaker Min Byung-deok, who pointed out that the business card app "Remember" was sold to a Swedish private equity fund and that an overseas affiliate could use personal data for marketing.
In her opening statement, Song said, "We will ensure that personal data protection is recognized not as an expense but as a strategic investment and a basic duty, and we will clarify the minimum standards for staffing and budgets," adding, "We will strictly investigate data leaks and breaches and strengthen sanctions."
She added, "We will prevent the spread of harm to the public from personal data infringements and promptly prepare remedies for victims of data leaks."
Meanwhile, the Personal Information Protection Commission said it imposed a 134.7 billion won penalty surcharge on SKT, which recently suffered a large-scale data breach, and that it has investigated a total of 1,256 cases and issued dispositions since its launch. In September, it announced the "plan to strengthen the personal data safety management system" to prevent repeated large-scale breaches.