The National Privacy Commission (NPC) is verifying claims by e-wallet provider GCash that no personal data has leaked or has been breached from a recent incident that led to the loss of funds of some of its account holders.
In a statement on Wednesday, NPC said it will conduct an independent investigation on the GCash incident in line with its mandate to administer and implement the Data Privacy Act of 2012 (DPA).
NPC said on Nov. 11, 2024 at 12:35 p.m., it received an email from Gcash claiming there was no leakage or personal data breach during the unauthorized fund transfers of account holders last weekend.
“Although GCash has stated that there was no compromise of customer credentials or data in the incident, the NPC will still conduct an independent investigation…. This investigation will verify the absence of a personal data breach, ensuring transparency and accountability in the protection of GCash users’ personal information,” NPC said.
NPC urged individuals who may have been affected by this incident to reach out to the NPC but clarified that its authority is focused on the protection of personal data, as defined under the DPA.
It said users may direct their queries to the Bangko Sentral ng Pilipinas for concerns related to the monetary aspect of these transactions.
The Cybercrime Investigation and Coordinating Center is conducting its own investigation on the GCash incident.