Philippine privacy regulators summon Uber local executives over alleged data breach

Source:Xinhua Published: 2017/11/23 20:28:34

The Philippine National Privacy Commission (NCP) summoned top businessmen of Uber Philippines on Thursday to explain whether any information from their local users was compromised in a massive breach the company experienced in October last year.

NPC commissioner Raymund Liboro has yet to report on the results of the Thursday meeting between the NPC and Uber executives.

Liboro said the meeting was called "to shed more light on the incident and to comply with the formal breach notification procedure" as required by the Data Privacy Act of 2012.

He said the NPC is concerned about possible impact of the breach on Philippine Uber users and has ordered the Uber Philippines to provide "the commission with detailed information on the nature of the breach, the personal data of Filipinos possibly involved, and the measures taken by Uber to address the breach."

"By virtue of its operations and processing of Filipino end-user data, Uber is considered a personal information controller and must comply with Philippine data privacy and protection laws," Liboro said.

Uber chief executive officer Dara Khosrowshahi acknowledged in a blog post on the company's official website on Tuesday that a year ago two hackers broke into a third-party cloud-based system that contained the private information of its customers.

Khosrowshahi admitted that sensitive information had been illegally downloaded, including names, email addresses and mobile phone numbers of 57 million Uber users around the world, and the names and license numbers of 600,000 drivers in the United States.

Uber, the ride-hailing giant, has around 66,000 active units in the Philippines.

Posted in: ASIA-PACIFIC

blog comments powered by Disqus