Uber admits data breach in 2016 affected 171,000 Filipino users

The National Privacy Commission (NPC) reported on Friday, December 15, that around 171,000 Filipino citizens consisting of drivers and passengers were affected by the breach at ride-sharing firm Uber in 2016.

Credit: http://manilauberdriver.blogspot.com

Credit: http://manilauberdriver.blogspot.com

“We understand this to be based on the mobile phone numbers included in the registry. We were also informed that the exposure of the affected data subjects was limited to their registered name, e-mail address, and phone number,” NPC chair Raymund Liboro said in a statement.

Liboro said the agency is now looking at the processes and procedures that Uber said they have taken to ensure that the breach is not repeated.

“We are paying particular attention to the steps taken to ensure that in the future, data breaches of this magnitude will not be concealed from regulators and from affected data subjects,” the NPC chief said.

The NPC said it has summoned the local office of Uber to appear before the agency to further explain their data processing operations, particularly the organizational, technical and physical security measures it is implementing to protect Filipino drivers and riders.

“We remind the public that the concealment of data breaches that involve sensitive personal information or data is a criminal offense,” Liboro stressed.

“We have received reports of irregular processing following the report of the breach, but we are still investigating these claims and their link to the 2016 data breach incident. As usual, we expect full cooperation from Uber on these matters,” he added.

Comment on this post