Riding in trouble: Privacy Commission to probe Uber after data breach
Philippine authorities will conduct their own investigation into the data breach involving 50 million riders worldwide.
The National Privacy Commission (NPC) has summoned officials of the Philippine unit of Uber Technologies, Inc. following an admission from the global firm’s Chief Executive Officer Dave Khosrowshahi that personal data of 50 million users and 7 million drivers were compromised during a security breach in October 2016.
The NPC wil meet with Uber officials on Thursday, Nov. 23 to explain their side and comply with breach notification procedures as prescribed under the Data Privacy Act of 2012.
It was reported that security officers of Uber hid the security breach, with top executives of the company finding out about the incident about a year later.
“The National Privacy Commission is concerned about the possible impact of the breach on our citizens. By virtue of its operations and processing of Filipino end user data, Uber is considered a Personal Information Controller and must comply with Philippine data privacy and protection laws,” Privacy Commissioner Raymund Enriquez Liboro said in a statement.
Uber will have to share how many Filipino customers were affected by the global security lapse, and could be made liable for the stolen data.