Philippine privacy regulators say Uber fails to explain on data breach

Source: Xinhua| 2017-11-24 17:57:15|Editor: ZD
Video PlayerClose

MANILA, Nov. 24 (Xinhua) -- The Philippine National Privacy Commission (NCP) said on Friday that Uber failed to provide vital information as to whether the data of Filipino Uber users were compromised in a massive breach the company experienced in October last year.

The commission summoned on Thursday top businessmen of Uber Philippines to shed light on the breach that affected its clients around the world.

"Unfortunately, Uber failed to provide the commission with vital information at the (Thursday) meeting, especially on whether Filipino data are involved, citing limited information from the office (in the United States)," Privacy Commissioner Raymund Liboro said in a statement.

He said the commission "cannot rule out at this time that any Filipino data was compromised."

Liboro sad Uber "committed to responding in detail to the commission's queries about the nature of the breach, what data was involved, and what measures were applied to address the breach, as soon as confirmed data becomes available."

"The commission has set a 48-hour deadline for Uber to provide vital information about the breach," Liboro said.

Liboro said that the commission made it clear to Uber that concealment of a data breach that involves sensitive personal information is a criminal offense in the Philippines.

Uber chief executive officer Dara Khosrowshahi acknowledged in a blog post on the company's official website on Tuesday that a year ago two hackers broke into a third-party cloud-based system that contained the private information of Uber's customers.

Khosrowshahi admitted that sensitive information had been illegally downloaded, including names, email addresses and mobile phone numbers of 57 million Uber users around the world, and the names and license numbers of 600,000 drivers in the United States.

Uber, the ride-hailing giant, has around 66,000 active units in the Philippines.