G Data Breach (2015)

A company specializing in developing medical fees settlement programs used by hospitals and the Korea Pharmaceutical Information Center _ which distributed free pharmacy management software to nearly half of the country's pharmacies _ were caught having sold a vast amount of data to a multinational firm, IMS Health Korea, whose U.S. headquarters, in turn, processed the big data and sold information on pharmaceuticals usage to companies in Korea. The 2011 law on personal information protection law forbids the usage of personal information and medical information without consent. The Korea Pharmaceutical Information Center, in fact, is currently being tried for illegally collecting and distributing medical information in 2013. IMS Health raised a 7 billion won profit by selling its report, created using illegally collected data, to Korean pharmaceutical companies. A joint team of prosecutors and government officials said 24 people from a medical program development firm, only identified by the initial "G," and a statistics company, known only by the initial "I," were indicted for allegedly handling patients' records of doctor visits and prescribed medication, pocketing some 10 billion won (US$8.59 million). After receiving the data, the multinational statistics company sold the information to pharmaceutical companies after reprocessing the information based on patients' personal information such as sex, age, disease and region. South Korea's largest telecommunication company SK Telecom Co. was also charged with gathering patients' information without their consent through its health care business. SK Telecom Co. denied the accusation. "We were just electronically handing over patients' prescriptions from hospitals to pharmacies," a company spokesman said.