Uber Settles With US for $148 Million Over 2016 Rider Data Breach
Ride-sharing giant Uber has settled with all 50 US states after failing to disclose it had a massive data breach.
In November 2017, Uber revealed that it had been hacked and that attackers stole information from 57 million riders and drivers including phone numbers, email addresses and driver’s license numbers. Uber covered up the attack by paying $100,000 to the hackers to destroy and not release the information, an illegal act in all US states.
The states will divide the $148 million settlement — New York will will receive about $5.1 million and California will get $26 million from Uber.
“Our current management team’s decision to disclose the incident was not only the right thing to do, it embodies the principles by which we are running our business today: transparency, integrity, and accountability,” wrote Tony West, Uber’s chief legal officer in a post on Uber’s website. “An important component of living up to those principles means taking responsibility for past mistakes, learning from them, and moving forward.”
As part of the settlement, Uber will have to “develop and implement a corporate integrity program for employees to report unethical behavior,” reports CNN. That’s in addition to implementing a better data breach notification system and hiring an independent organization to analyze Uber’s data security.
West pointed to Uber’s hiring of Ruby Zefo as chief privacy officer and Matt Olsen as chief trust and security officer as signs that the company is committed to safety. Current CEO Dara Khosrowshahi fired two of the company’s top security officials after details of the breach were made public.
“This record settlement should send a clear message: We have zero tolerance for those who skirt the law and leave consumer and employee information vulnerable to exploitation,” New York Attorney General Barbara D. Underwood said in a statement.
H/T: Wall Street Journal
Featured image by Justin Sullivan / Getty Images.
Welcome to The Points Guy!
WELCOME OFFER: 80,000 Points
TPG'S BONUS VALUATION*: $1,650
CARD HIGHLIGHTS: 2X points on all travel and dining, points transferrable to over a dozen travel partners
*Bonus value is an estimated value calculated by TPG and not the card issuer. View our latest valuations here.
- Earn 80,000 bonus points after you spend $4,000 on purchases in the first 3 months from account opening. That's $1,000 when you redeem through Chase Ultimate Rewards®. Plus earn up to $50 in statement credits towards grocery store purchases within your first year of account opening.
- Earn 2X points on dining including eligible delivery services, takeout and dining out and travel. Plus, earn 1 point per dollar spent on all other purchases.
- Get 25% more value when you redeem for airfare, hotels, car rentals and cruises through Chase Ultimate Rewards®. For example, 80,000 points are worth $1,000 toward travel.
- With Pay Yourself Back℠, your points are worth 25% more during the current offer when you redeem them for statement credits against existing purchases in select, rotating categories.
- Get unlimited deliveries with a $0 delivery fee and reduced service fees on eligible orders over $12 for a minimum of one year with DashPass, DoorDash's subscription service. Activate by 12/31/21.
- Count on Trip Cancellation/Interruption Insurance, Auto Rental Collision Damage Waiver, Lost Luggage Insurance and more.
- Get up to $60 back on an eligible Peloton Digital or All-Access Membership through 12/31/2021, and get full access to their workout library through the Peloton app, including cardio, running, strength, yoga, and more. Take classes using a phone, tablet, or TV. No fitness equipment is required.