Uber failures led to 2014 hack exposing 100k drivers' details — FTC

Uber Accepts 20 Years Of Audits Over FTC's Privacy Charges

That November, Uber issued a public statement pledging it had a "strict policy prohibiting all employees at every level from accessing a rider or driver's data", the FTC recounted in its complaint. Uber also failed to incorporate an encryption security for personal user information. In January, Uber agreed to pay $20 million to the FTC to settle separate claims that it misled drivers about both potential earnings and the cost of leasing cars from the company. A former forensic investigator at the company alleged employees were using the app's "God view" tool to snoop on the ride histories of ex-lovers, acquaintances, and high-profile celebrities and politicians. But the system was active for less than a year, and for nine months after it was discontinued, employees once again had unfettered access to data. "It is further ordered that, in connection with its compliance with the Provision of this Order titled Mandated Privacy Program, Respondent must obtain initial and biennial assessments", the FTC document said in addition to ordering privacy assessments by a third party. However, according to the FTC, Uber stopped using that system within a year.

The FTC also investigated a massive data breach in May 2014 in which more than 100,000 names and license numbers of Uber drivers were stolen.

"We have significantly strengthened our privacy and data security practices since then and will continue to invest heavily in these programmes", an Uber representative said.

"This settlement provides an opportunity to work with the FTC to further verify that our programs protect user privacy and personal information", he said.

Uber agreed to institute a comprehensive privacy policy and undergo privacy audits to settle the allegations.

"We are pleased to bring the FTC's investigation to a close", a spokesperson for Uber said. It's another in a long string of missteps for the San Francisco-based company, which faces a separate federal investigation for allegedly using a phony app to block city inspectors from monitoring its service.

Under the new agreement with the FTC, Uber has to do some very simple things: stop "misrepresenting how it monitors internal access to consumers' personal information" and "misrepresenting how it protects and secures that data".

As part of its settlement, Uber is barred from misrepresenting how it monitors its riders' and drivers' data, as well as the ways it secures that information.

Melissa Krasnow, privacy partner at VLP Law Group LLP in Minneapolis, told Bloomberg BNA Aug. 15 that the FTC's "enforcement action makes clear that geolocation information is sensitive information for which reasonable security must be provided".

"Our order requires a culture of privacy sensitivity for Uber", Ohlhausen said on a call with reporters.

Related News:



Most liked

Serena Williams: 'If anything, this pregnancy has given me a new power'
I told Alexis it has to be a girl because there I was playing in 100-degree weather, and that baby never gave me any trouble. Well now, in a tell-all interview to Vogue , Serena has finally opened up about the entire episode and it is a must read.

Oil slide stops at $48 as US stocks drop again
OPEC member Angola released a loading plan showing October exports were planned at a 13-month high. Aside from supply and demand, investors also closely followed developments in the U.S.

Benchmark explains why they're suing Uber's Travis Kalanick
Other Uber shareholders led by Shervin Pishevar of Sherpa Capital have vehemently opposed Benchmark's lawsuit . Nevertheless, he doesn't think Uber's recent board troubles will be the company's downfall.

Will N. Korea's Kim Pull the Trigger? Possible Signs to Watch
And he warned that 'if they fire at the United States, it could escalate into war very quickly'. China, North Korea's only major ally, has urged restraint.

Air Berlin files for insolvency but flights continue
The loan cash is expected to last for three months, the government said, after which the airline's future is uncertain. It added that two members of the board of directors, who joined after being nominated by Etihad, had resigned.

Justin Bieber Gets Shot Down After Trying To Ask Gym Employee Out
She added that she was a fan of Bieber when she was young but hasn't been following her for four years now. That's enough to get us excited, but Bieber wasn't done dropping hints.

Pentagon denies civilians killed in Afghanistan airstrike
The previous attack targeted a prayer ceremony, and the US similarly claimed that the praying civilians were "ISIS members". Officials added that because the vehicles were in the middle of nowhere "there was zero chance of civilian casualties".

Man held over jogging push on Putney Bridge eliminated as suspect
The victim attempted to speak to him but he did not acknowledge her and continued running, the Met said. The private-equity specialist was out of the country when the assault occurred, his lawyer said.

Sri Lanka and Pakistan to play day/night Test in Dubai
Not only their batsmen, bowlers like R Ashwin and Ravindra Jadeja have run through the opponents batting line-up. People sometimes end up doing too much at practice, and then, maybe, you don't recover for a game.

36 killed, dozens injured as trains collide in Alexandria, Egypt
Dr Abu Homs, head of the city's ambulance services, said he fears the death toll and number of injured could rise further. The statement did not say what caused the accident, saying only that the authority's experts would be investigating.

Spelunky and Downwell creators team up for 50-game collection UFO 50
Putting that into context, it also says that "Completing the entire collection could easily take over a hundred hours". These games were all created in the 1980s by this fictional, obscure, and "ahead of its time" company.

PAN Card Validity Check
In that case, you will have to additionally provide your father's name and other identification details. The mobile number that you enter on this page needs to be the same one that you had for your PAN card.

Trump savages Richard Blumenthal on Twitter
Blumenthal is now serving his second term as a USA senator from CT , first elected in 2010 and then re-elected in 2016. After The New York Times exposed the mistruths in 2010, he apologized at a press conference flanked by veterans.

Mbete says secret ballot is in best interest of SA
She told journalists that she had a duty to act responsibly when exercising her constitutional powers. The main opposition Democratic Alliance party urged ANC lawmakers to vote Zuma out.

Former Bear Jay Cutler will play football again
It also questions Cutler's $10 million base salary that could have gone toward extending contracts of players now on the roster. Cutler and journeyman backup Matt Moore will battle it out for the starting snaps as long as Tannehill's unavailable.