Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.


Status message

Start your free, no obligation 10-day trial to continue exploring with full access.

Your data security headache has only just begun

Bill Coffin | March 5, 2018

There will come a point where Uber won’t make the news over some kind of compliance failure, but today is not that day. The latest is a lawsuit filed by the state of Pennsylvania over Uber’s 2016 data breach. Specifically, the Keystone State is alleging that Uber violated its data breach notification law. Uber, for those who might have forgotten, suffered a mammoth data breach that affected personally identifiable data on its drivers. Not only did the ride-hailing firm—which has had no small number of other compliance-related issues in its relatively short history—fail to alert its customers in a timely fashion to the breach, it essentially concealed the fact that the breach even occurred.

Pennsylvania’s lawsuit contends that since some 13,500 Uber drivers were affected by the breach, the state... To get the full story, subscribe now.