The Office of the Australian Information Commissioner released a report on its investigation of Uber's 2016 data breach that affected 57 million individuals, BankInfoSecurity reports. The OAIC found Uber violated the Privacy Act of 1988, alleging noncompliance on required data protection measures, data retention practices and more. The OAIC will not issue a fine because the 1.2 million Australians affected did not file complaints. However, Uber will be required to create and maintain an information security program and appoint a coordinator to lead the initiative.
27 July 2021
OAIC alleges privacy law violations from Uber's 2016 breach
RELATED STORIES
A view from DC: The growing reckoning over location data
Notes from the IAPP Canada: CRA breach a 'cautionary tale'
Notes from the IAPP Europe: October wrap-up
Council of Europe's Framework Convention on AI and its global implications
Notes from the Asia-Pacific region: Amid festive backdrop, Singapore unveils secure AI guidelines
