OpenAI has been newly included in the list of companies required to disclose information security practices due to a surge in domestic users. Platforms such as AliExpress, Musinsa, Tving, and CJ Olive Young, which have rapidly expanded their user bases in South Korea, are also on the list.
On May 8, the Ministry of Science and ICT announced the 693 companies that are obligated to disclose their information security practices for 2026.
This requirement, established under the Information Protection Industry Promotion Act, aims to encourage corporate investment in information security and enhance user protection by mandating disclosures regarding security investments, dedicated personnel, and related activities.
Companies are selected annually based on criteria such as business sector, revenue, and user numbers. This year, the number of obligated companies increased by 27 compared to the previous year, totaling 693. Notably, 13 companies were added based on revenue criteria, and 10 companies met the requirement of having over one million users.
The new additions include OpenAI, AliExpress, Musinsa, Tving, and CJ Olive Young. The inclusion of OpenAI is attributed to the rapid increase in domestic users of its generative AI services.
According to Mobile Index, the number of ChatGPT users in South Korea surged by 341% from January to December last year, with active devices totaling 19.49 million. ChatGPT was also the most installed app on smartphones in South Korea last year, with 16.57 million installations.
Companies required to disclose their information security practices must submit their security status to the comprehensive disclosure portal by June 30.
Lim Jeong-kyu, Director of Information Security Network Policy at the Ministry of Science and ICT, stated, "The information security disclosure system is an important framework that allows the public to verify companies' information security status through transparent disclosures. We will continue to promote the right to know for the public and encourage voluntary investments in information security by companies, striving to enhance the overall level of information security in the country."
* This article has been translated by AI.
Copyright ⓒ Aju Press All rights reserved.