Alphabiz - Samsung Biologics Employees’ Personal Data Leaked, Union Alleges Complete HR Folder Exposure

속초8.1℃
북춘천5.8℃
철원5.2℃
동두천5.1℃
파주4.1℃
대관령1.9℃
춘천3.5℃
백령도8.1℃
북강릉8.4℃
강릉9.8℃
동해8.8℃
서울5.5℃
인천6.3℃
원주3.8℃
울릉도10.1℃
수원6.6℃
영월6.3℃
충주3.7℃
서산7.0℃
울진5.7℃
청주8.3℃
대전6.0℃
추풍령7.0℃
안동6.9℃
상주8.3℃
포항9.4℃
군산7.1℃
대구9.6℃
전주7.0℃
울산9.0℃
창원9.4℃
광주9.3℃
부산9.9℃
통영10.0℃
목포11.7℃
여수10.4℃
흑산도11.8℃
완도10.7℃
고창8.4℃
순천8.7℃
홍성4.1℃
서청주2.7℃
제주14.7℃
고산14.6℃
성산13.2℃
서귀포13.7℃
진주9.8℃
강화6.2℃
양평7.6℃
이천3.5℃
인제6.4℃
홍천3.2℃
태백3.0℃
정선군5.5℃
제천6.0℃
보은4.1℃
천안4.4℃
보령5.3℃
부여2.9℃
금산4.2℃
세종6.9℃
부안6.4℃
임실7.3℃
정읍6.6℃
남원7.0℃
장수5.6℃
고창군7.5℃
영광군9.1℃
김해시8.1℃
순창군8.8℃
북창원10.3℃
양산시11.2℃
보성군10.3℃
강진군10.9℃
장흥10.1℃
해남10.8℃
고흥8.5℃
의령군4.2℃
함양군8.3℃
광양시8.7℃
진도군11.9℃
봉화6.1℃
영주6.8℃
문경7.6℃
청송군7.0℃
영덕6.7℃
의성3.6℃
구미8.4℃
영천8.3℃
경주시9.7℃
거창5.8℃
합천9.4℃
밀양10.1℃
산청8.8℃
거제10.6℃
남해8.8℃
북부산8.4℃

2025.11.10 (월)
모바일버전

Samsung Biologics Employees’ Personal Data Leaked, Union Alleges Complete HR Folder Exposure: Reporter Kim Jisun / approved : 2025-11-10 04:46:55

Photo courtesy of Yonhap News

[Alpha Biz= Kim Jisun] SEOUL, November 9, 2025 — The labor union of the Samsung Group filed a formal accusation on November 9 alleging that personal, highly sensitive data of some 5,000 employees of Samsung Biologics Co., Ltd.—including registration numbers, salaries, performance evaluations, and low-performance lists—were exposed through a shared work folder.

The union claims the company acknowledged the incident but refused to report the breach to the Personal Information Protection Commission (PIPC) or the Korea Internet & Security Agency (KISA), prompting the union to submit a report instead.

According to the union’s statement, the data leak was discovered on November 6 when employees found a publicly accessible folder on an internal server that contained HR data for roughly 5,000 staff, including national ID numbers, salaries, performance histories, and lists of low-performing staff.

The union also alleges that internal documents tracked union executive movements and minor infractions, citing files tagged “NJ (union)” that monitored three union leaders’ café visits and rest-break times.

“The folder contained statements such as ‘Employees with mental-health issues may not remain with the company,’ and other HR policy content that raises serious legal risks,” said Park Jae-sung, branch chief of the Samsung Biologics union.

The union claims that the company tried to forcibly enter the union office and seize union laptops under the guise of “data-protection” actions but failed.
Under South Korea’s Personal Information Protection Act, companies that fail to report a personal-data breach may face administrative fines and criminal penalties of up to 2 years’ imprisonment or fines of up to ₩20 million (≈ US $15,000).

Samsung Biologics has responded that it is “currently reviewing the matter.” No formal public disclosure has yet been made to the PIPC or KISA.
In parallel, the company’s published Data Integrity Reporting Center page invites confidential reports of data-integrity violations, though it remains unclear whether this incident was logged via that channel.

Alphabiz Reporter Kim Jisun(stockmk2020@alphabiz.co.kr)