Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Transportation Privacy Your Rights Online

Uber Defends Privacy Practices After Allegations It Spies On Riders (cnbc.com) 40

Uber is defending the scope of its privacy practices after a wide-ranging report alleged employees were tracking individual riders. From a CNBC report: "We have hundreds of security and privacy experts working around the clock to protect our data," Uber told "Reveal" in a statement. Additionally, Uber told CNBC that it is continuing to increase its security investments. The company pointed to workers that needed data for their roles, such as anti-fraud experts, or employees that validate driver insurance documents or investigate traffic incidents. "It's absolutely untrue that 'all' or 'nearly all' employees have access to customer data, with or without approval," Uber said. "We have built [an] entire system to implement technical and administrative controls to limit access to customer data to employees who require it to perform their jobs. This could include multiple steps of approval -- by managers and the legal team -- to ensure there is a legitimate business case for providing access." According to legal documents filed by ex-employee Ward Spangenberg in October and reported by The Center for Investigative Reporting on Monday, "Uber's lack of security regarding its customer data was resulting in Uber employees being able to track high profile politicians, celebrities, and even personal acquaintances of Uber employees, including ex-boyfriends/girlfriends, and ex-spouses."
This discussion has been archived. No new comments can be posted.

Uber Defends Privacy Practices After Allegations It Spies On Riders

Comments Filter:
  • Big fat SO WHAT? (Score:5, Insightful)

    by Hognoxious ( 631665 ) on Tuesday December 13, 2016 @03:56PM (#53478619) Homepage Journal

    We have built [an] entire system to implement technical and administrative controls to limit access to customer data to employees who require it to perform their jobs.

    I built a shed once. It fell down.

    Key point: building X and building X right are not the same thing.

    This could include multiple steps of approval -- by managers and the legal team -- to ensure there is a legitimate business case for providing access

    I don't place much faith in "could".

  • by fuzzyfuzzyfungus ( 1223518 ) on Tuesday December 13, 2016 @03:58PM (#53478645) Journal
    In a sense, this is almost surprising: not because any sane person would expect Uber management to not be a bunch of shitbags; but because companies that take spying on their customers seriously tend to realize that the data they are gathering has value; and jealously guard it from people who aren't paying them for access.

    It is...immature...of Uber to be wasting their time on stalker-bro antics when they could be using this sort of pervasive location data collection for all sorts of creepy ad-targeting and consumer profiling stuff, like respectable professionals.
  • by BigBuckHunter ( 722855 ) on Tuesday December 13, 2016 @04:01PM (#53478671)
    "hundreds of security and privacy experts"

    Is it me, or does anyone else have difficulty believing that statement. I work for an F500 doing financial transactions and running the backend for home security companies worldwide... And I don't think we have "hundreds of security and privacy experts".
    • by Anonymous Coward

      Before posting the response, they probably had HR change a a few hundred employee job titles...

      I have difficulty believing that statement as well. I work for a company with nearly 20000 employees doing ecommerce transactions and we have under 50 security and privacy experts. I don't know if we're on par with the industry, but "hundreds" seems a bit of a stretch.

    • by geek ( 5680 )

      I too work for a f500 and we have a dedicated team of about 10 plus an offshore SOC and an on shore VSOC which brings numbers to around 30-40 people. However I know intel has around 250 people dedicated to security. My local power company with less than 5000 employees total has about 20 people. It all depends on what you're guarding really. Plus do you count consultants? Its funny numbers.

    • by ark1 ( 873448 )
      Well they do have a bug bounty program. If you count those involved, I'm sure you can hit a couple hundreds and more!
  • by Anonymous Coward

    Uber is one of the scummiest Silicon Valley companies to arise in a long time. Anyone who chooses to use their services gets what they deserve.

  • by anthony_greer ( 2623521 ) on Tuesday December 13, 2016 @04:17PM (#53478791)

    seems to me that this is another one of those business practices that would be totally against the law if it were done in an analog world, if a representative of a car service followed you documenting your every location to "help be sure to give you better service when you want a ride" everyone would call BS and they would be out of business or at least severely hampered. Because they do this "on a computer" its somehow just fine and makes them a darling for the VC/Stock market...sick...

  • This company will face a full audit and investigation when I take office. President-elect of the United States
  • Don't know if there is a connection here but: It states that if I use an app like Uber, the passengers will not be covered during an accident.

"Plastic gun. Ingenious. More coffee, please." -- The Phantom comics

Working...