Responding to the financial incident of customers' credit information leakage from major three credit card companies in early 2014, several legislative bills on the revision of the Credit Information Law were submitted to the National Assembly and through discussions, the consolidated version was finalized by the relevant committee of the National Assembly and passed by the National Assembly' meetings. Major amendments seek to reinforce the protection of the credit information, with the strengthening of preemptive prevention actions such as reinforcement of customer's consent procedure and post sanctions such as imposition of punitive fines. In particular, it is noteworthy that such amendments, among others, introduced newly punitive damage compensation scheme as a relief for a damage due to leakage of credit information. However, some issues need to be further discussed for improvements. Such issues include the validity of restrictions on the business of credit bureau, the plan to establish a separate public organization for reorganization of a concentrated credit information management system, the plan to reinforce a customer's rights to decide his/her own information by an owner of credit information in the stage of credit information collection, and the introduction of provisions to estimate damage amounts to effectively guarantee a punitive damage compensation system.