Alleged GCash Unauthorized Transactions

The National Privacy Commission (NPC) received an email from GCash on November 11, 2024, at 12:35 PM, stating that there was no data leakage or personal data breach associated with the recent incident involving alleged unauthorized transactions that led to lost funds in some GCash user accounts.

While GCash has asserted that customer credentials and data were not compromised, the NPC will conduct an independent investigation in accordance with its mandate under the Data Privacy Act of 2012 (DPA). This investigation aims to verify the absence of a personal data breach and ensure transparency and accountability in safeguarding the personal information of GCash users.

The NPC reiterates that its authority is focused on the protection of personal data, as defined under the DPA. For concerns related to the financial or monetary aspects of these transactions, affected users are advised to contact the appropriate financial regulatory agency.

The NPC encourages individuals who may have been affected by this incident to reach out via [email protected] and provide relevant details to assist in the investigation.

Note to the Public: The NPC remains committed to upholding data privacy rights and ensuring that personal information is protected in compliance with the law.