The UK’s data privacy regulator has expressed ‘huge concerns’ about Uber Technologies Inc’s data policies and ethics as it opens an investigation into the concealment of a large-scale hack of the company’s user data.
Under British law, failure to warn users and regulators of data breaches currently carries a fine of around 560,000 euros.
In a blog post, the ride-hailing firm’s CEO, Dara Khosrowshahi, refused to make excuses for the cover-up and subsequent 85,000-euro pay-off to hackers to keep the massive breach a secret.
‘None of this should have happened, and I will not make excuses for it. While I can’t erase the past, I can commit on behalf of every Uber employee that we will learn from our mistakes. We are changing the way we do business, putting integrity at the core of every decision we make and working hard to earn the trust of our customers”, he wrote.
Personal data was exposed from some 57 million accounts.
Two employees deemed responsible for the response to the hack have since been fired.