The U.S. Federal Trade Commission has given final approval to its settlement with Uber for its alleged deception over its privacy practices. The FTC alleged Uber did not properly monitor employee access to consumer data, which eventually resulted in a pair of data breaches. The agency revised its initial settlement with the ride-hailing company after its second breach. Uber could be subject to civil penalties if it does not notify the FTC of future data breaches. The company is prohibited from any misrepresentation of its data protection efforts, must implement a comprehensive privacy program, and is required to obtain independent third-party assessments every two years for 20 years.
If you want to comment on this post, you need to login.