Overview of the Litigation
Multinational data privacy litigation is increasing as global digital platforms manage vast amounts of personal information across jurisdictions. The lawsuit filed by SJKP LLP alleges that Coupang failed to adequately safeguard consumer data, resulting in the exposure of sensitive personal information. The litigation proceeds alongside regulatory inquiries in South Korea and related proceedings in the United States.
Keywords: Coupang data breach lawsuit, Coupang class action, Coupang privacy litigation, data breach attorneys, consumer data exposure.
What Happened?
Case Summary
In late 2025, Coupang disclosed a significant cybersecurity incident involving unauthorized access to customer information.
Public reporting and regulatory inquiries suggest the breach may have involved improper access controls, including access retained by a former employee.
Reported data exposed may include:
- name
- phone number
- email address
- delivery address
- order and purchase history
- sensitive payment details (credit card, debit, etc..)
Financial account numbers and payment card data have not been publicly reported as exposed.
Investigations remain ongoing.
Who Is Affected?
The breach is reported to affect tens of millions of users worldwide.
You may be affected if you:
- created a Coupang account
- placed orders on Coupang
- stored delivery or contact information
- used Coupang services during the relevant time period
Potential Secondary Damages
Exposure of personal data may increase the risk of:
- phishing or scam communications
- social engineering attempts
- identity-related fraud
- misuse of personal information
What This Lawsuit Seeks?
The lawsuit seeks relief on behalf of affected consumers, including:
Accountability & Compensation
damages for losses and harms resulting from the breach
compensation for time and expenses related to risk mitigation
Improved Consumer Protection
strengthened data security safeguards
independent cybersecurity review and monitoring
enhanced transparency regarding data protection practices
Preventative Safeguards
improved access control and employee offboarding procedures
enhanced incident detection and response systems
strengthened consumer notification protocols
Current Status of Litigation
| Filed | Jurisdiction | Status | Next Steps |
|---|---|---|---|
February 2026 | U.S. District Court | ACTIVE LITIGATION Certification |
|
| Late 2025 |
• Coupang discloses data security incident• Government and regulatory inquiries begin |
| January 2026 |
| • South Korean authorities continue investigation |
| February 2026 |
| • Consumer class action filed in U.S. Federal court You Are Here |
Faq
This lawsuit concerns the exposure of customer data following a cybersecurity incident affecting Coupang’s platform.
Reported data may include contact information and order history. Payment card data has not been publicly reported as compromised.
If you had a Coupang account or used the platform during the relevant period, your information may have been involved.
Consider:
- monitoring financial accounts
- reviewing credit reports
- being cautious of unexpected communications
- enabling multi-factor authentication where available
Yes. Regulatory inquiries and litigation proceedings remain ongoing.
A class action allows individuals with similar claims to pursue relief collectively in one legal proceeding.
Compensation, if any, depends on the outcome of the court decisions.
Data breach cases may take months or years depending on court decision and settlement processes.
11 Feb, 2026
