The National Privacy Commission (NPC) is looking into the cyber attack on grocery chain S&R Membership Shopping.
The privacy watchdog said on Wednesday that S&R has already submitted a breach report about the incident.
“We are evaluating the said report and will require submissions of compliance documents,” NPC said.
NPC received the report last November 15.
In a recent statement, the Lucio Co-owned company announced that it experienced a cyber attack, noting that the contact information of the members may have been compromised.
S&R said their “members’ credit card and other financial information are safe and secured, as these data are protected by encryption measures as required by regulation.”
The grocery chain said it has implemented cybersecurity protocols right away to resume system operations.
“Our business was not affected, and we continue to deliver a convenient and fulfilling member-customers shopping experience,” it said.
“Although there have been numerous reports of cyber-attack in the Philippines, we strongly condemn these criminal acts perpetuated against private companies and we are treating this matter very seriously.”
S&R vowed to continue enhancing the security of its information technology system.
Owned by supermarket chain Puregold Price Club Inc., S&R currently has 22 shopping warehouses and 45 New Your Style QSRs (quick service restaurants).