South Korean Internet companies are now forbidden to collect and use people’s passport information, phone numbers and address details. Starting Monday, all South Korean Internet stores, Internet game operators, news portals, and music and software catalogues do not have the right to ask registered users for information related to official personal details.
According to the decision announced by the regulating bodies, companies have half a year to bring their sites and databases into conformity with the new norms. Until now Korean Internet companies often used passport and address information, as well as ID numbers as mandatory details to make a payment using bank cards over the internet.
The South Korean Communications Commission says that the new rules aim to provide a tougher system of protection of personal information, especially when users work with personal information over public networks and mobile devices.
Korean officials say that they intend to create a central depository of private information with higher safety measures. Leading Internet companies will have to ask users only for their iPIN (internet personal identification number) to carry out financial transactions and then transfer the information to the repository for authentication.
The new law also requires the company operating the information to delete all information older than three years.
Experts note that the new law is the authorities’ reaction to a series of loud information leaks that took place over the last year.