Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.


Status message

Start your free, no obligation 5-day trial to continue exploring with full access.

Uber seriously needs some compliance

Tom Fox | December 5, 2017

I am tempted to write something along the lines of “another month, another scandal at Uber,” but I do not think that would really help any compliance professional or business executive learn from the latest FUBARs announced by Uber. In mid-November, the company announced it had been the victim of a massive data hack, involving personal information of some 57 million customers and personal data from another 600,000 drivers (not employees but independent contractors).

Uber knew it had been hacked back in 2016. So much so that the now former chief information and security officer, who was also the deputy general counsel and the legal director of security and law enforcement were all in on the cover up; which created the scandal. Not only did Uber not notify those who had their data purloined but the company paid $100,000 to the hackers to destroy the information and to sign a confidentiality agreement about their hack. Former Chief Executive Officer Travis Kalanick personally...

Read this single article for $49, or click the subscribe button below to review subscription options.

Enjoy unlimited access to thousands of articles, browse five years of digital magazines, qualify for reduced admission to events, and more.