The People's Party has alerted members to be cautious of fraudulent transactions after detecting hackers attempting to access party membership data. The party has escalated network security measures to fully protect against such threats.
On 12 Mar 2026, the People's Party's official page issued a notice warning members about unauthorized attempts by outsiders to access the party's database. The party explained that upon first learning of the incident on 23 Feb 2026, it immediately fixed and secured the party's data systems by
(1) blocking intrusion points to prevent unauthorized access to the system,
(2) enhancing the overall network security system, and
(3) reporting the incident to the Personal Data Protection Committee (PDPC) in accordance with legal procedures.
After receiving additional information on 10 Mar 2026 about the nature and details of the data breach, which could affect the rights and freedoms of the data owners, the party took further actions
(1) notifying affected party members and implementing remedial measures as required by law,
(2) providing updated reports to the Personal Data Protection Committee (PDPC).
Impact limited to membership application process
A detailed investigation by the People's Party found that the impact of the incident was confined solely to data related to the party membership application process, potentially affecting some members' personal information ( such as full name, national ID number, address, date of birth, phone number, email, and in some cases, scanned images of documents submitted during membership registration). No other party systems were affected, including passwords, complaint handling, feedback systems, or donation systems covering financial data, payments, tax information, or any transaction data.
Advice for members to stay vigilant
To date, the party has not identified any clear damages. However, the People's Party is conducting a thorough investigation to confirm the scope of the affected data and assess risks to other party systems. This will guide enhanced protection measures against potential threats. The party recommends members, as data owners, to take the following precautions:
- Watch for impersonation: Be cautious of unsolicited contact from individuals claiming to represent government agencies or the People's Party seeking additional information or transactions you did not initiate.
- Regularly check credit and transaction histories: Monitor bank account activity and financial transactions frequently.
- Change passwords: If you use passwords related to the compromised documents, change them immediately. If members or the public have questions or concerns, they can contact the party's data protection officers through the following channels:
ㆍ Address: People's Party Headquarters, 167, 4th Floor, Soi Ramkhamhaeng 42, Hua Mak Subdistrict, Bang Kapi District,
Bangkok 10240,
ㆍ Email: pdpa@peoplespartythailand.org
Assurance of full protection efforts
The People's Party sincerely apologizes for the incident and acknowledges members' concerns. The party understands that protecting members' personal data rights is crucial, and members' trust is paramount. The People's Party assures members and the public that it has made every effort to resolve and prevent further damage from this incident and will continue to strictly enforce data security measures to ensure members' information is fully protected.
