Personal information leaks from Dior and Tiffany, investigated by Personal Information Commission in South Korea

The Korea Personal Information Commission has announced that it will investigate Christian Dior (hereinafter referred to as Dior) and Tiffany & Co., a brand under the French luxury brand Moet Hennessy Louis Vuitton (LVMH), for allegedly violating privacy laws.
Dior announced that it has begun an investigation into the leak of personal information by Fanny. On May 13, Dior announced on its website that "an unauthorized third party has accessed some of the customer data of our fashion and accessories products."
"Data included names, phone numbers, email addresses, addresses and purchasing data," the company said in a statement.
In addition, DeFany announced to some customers in late May that it would "disclose personal information of Koreans on May 9th"
"Some of our personal information was leaked. The leaked information includes names, addresses, phone numbers, email addresses, internal customer numbers, and sales data."
According to the committee, Dior responded to the January leak on May 10 and Tifa
Ni reported the April leak on May 22. As a result, the government plans to take disciplinary action against both companies if they violate the law.
Both are customer management services for SaaS (software provided via cloud services).
The personal information of employees was leaked through the account of an employee using the service, and the committee will therefore also be investigating the SaaS in question.