To keep customers’ valuable information safe and secure, Coupang has acquired and maintained
the following domestic and international information security and privacy certifications.

Information Security and Privacy Management System Certification (ISMS-P)
Information Security Management System Certification (ISMS)
ISMS-P certifies that measures and activities that meet the certification criteria have been taken to ensure information protection and privacy Certification Scope
Certification Scope
- [Coupang Corp.] ISMS-P : Coupang services
- [Coupang Pay, Ltd.] ISMS : Coupang Pay’s electronic financial service operations (prepaid electronic payments, electronic payment gateways, payment depository) – excluding unexamined physical infrastructure
- [Coupang Corp.] ISMS-P : 2024-03-03 – 2027-03-02
- [Coupang Pay, Ltd.] ISMS : 2025-06-27 – 2028-06-26

ISO/IEC 27001
ISO/IEC 27001 is a global information security management system certification that meets information security requirements established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
- Certification Scope: [Coupang Corp., Coupang Taiwan Co., Ltd.] Coupang Services
- Effective Period: [Coupang Corp., Coupang Taiwan Co., Ltd.] 2025-04-26 ~ 2028-04-25

ISO/IEC 27701
ISO/IEC 27701 is a global privacy management system certification that meets data protection requirements, established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
- Certification Scope: [Coupang Corp., Coupang Taiwan Co., Ltd.] Coupang Services
- Effective Period: [Coupang Corp., Coupang Taiwan Co., Ltd.] 2025-04-26 ~ 2028-04-25

ISO/IEC 27017
ISO/IEC 27017 is a global certification for information security management for cloud services, established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
- Certification Scope: [Coupang Corp., Coupang Taiwan Co., Ltd.] Coupang Services
- Effective Period: [Coupang Corp., Coupang Taiwan Co., Ltd.] 2025-04-26 ~ 2028-04-25
APEC / Global CBPR
The Cross-Border Privacy Rules (CBPR) certifies that we process personal information securely while meeting the cross-border transmission standards in accordance with international standards.
- Certification Scope: [Coupang Corp.] Personal information processed in 10 different services, including Coupang shopping, Play, Eats, Live, Marketplace, Partners, Wing and others.
- Effective Period: [Coupang Corp.] 2024-08-05 ~ 2025-08-04

PCI DSS
Payment Card Industry Data Security Standard certification is an international data security standard developed to enhance and promote the security of credit card data.
Certification Scope
- [Coupang Pay, Ltd.] Coupang Pay Global Payment Gateway Service
- [Coupang Taiwan Co., Ltd.] Taiwan E-Commerce
- [Coupang Pay, Ltd.] Coupang Pay Global Payment Gateway Service : 2025-06-30 ~ 2026-06-29
- [Coupang Taiwan Co., Ltd.] Coupang Taiwan E-Commerce : 2025-06-30 ~ 2026-06-29

ePRIVACY
ePRIVACY certification certifies a website's compliance with privacy laws and safe processing of personal information.
- Certification Scope: [Coupang Corp.] Coupang (https://www.coupang.com)
- Effective Period: [Coupang Corp.] 2025-07-01 ~ 2026-06-30