The nation's information privacy watchdog said a maximum fine in the range of one trillion won, or roughly 680 million U.S. dollars, could be levied on e-commerce giant Coupang following its recent data breach.

At a session of the parliamentary Science, ICT, Broadcasting and Communications Committee on Tuesday, Personal Information Protection Commission Vice Chairperson Lee Jeong-ryeol said Coupang could face such a penalty because the case involves a data leak.

He told lawmakers that a partial exemption could be granted if Coupang proves that it took all safety measures to prevent a breach, but that the burden of proof lies with the company.

The official said the commission will make its decision based on a comprehensive review of not only the company's sales volume, but also the severity of its violation.

The Personal Information Protection Act stipulates that an administrative penalty of up to 3 percent of total sales may be imposed when personal information is compromised, though sales unrelated to the leak may be excluded.

Coupang brought in 41 trillion won in revenue in 2024, meaning a 3 percent fine would exceed one-point-two trillion won.