Jollibee Foods Corporation (JFC) has disclosed a possible data breach that could affect almost 11 million customers.
According to JFC’s report to the Philippines’ National Privacy Commission (NPC), the breach compromised sensitive personal information, including dates of birth and senior citizen identification numbers.
“Approximately 11 million data subjects are affected, the majority of whom are Jollibee customers,” the NPC stated. “Other impacted brands include Mang Inasal, Red Ribbon, Chowking, Greenwich, Burger King” data-wpil-keyword-link=”linked”>Burger King, Yoshinoya, and Panda Express.”
JFC has requested an additional 20 days to finalize its internal investigation.
Under the law, companies handling personal data must notify the NPC and the affected individuals within 72 hours of discovering a breach.
JFC confirmed that its e-commerce platforms and subsidiaries were not affected by the incident and remain operational.
“JFC recognizes the importance of protecting the personal information of its stakeholders,” the company stated.
“The company assures the public of its commitment to safeguarding customer data by continuously strengthening its defenses against future threats,” it adde.