In late November 2017, Uber disclosed that hackers accessed the personal information of 57 million riders and drivers in 2016.
Instead of promptly alerting authorities, Uber paid the hackers $100,000 to destroy the data. Whether the data was actually destroyed is impossible.
Such a cover-up may be in violation of several criminal and civil laws. For instance, 48 states have security breach notification laws requiring companies to disclose when hackers access private information. Further, the Federal Trade Commission issued a statement that it is “closely evaluating the serious issues raised.”
Several lawsuits have been filed throughout the United States alleging Uber negligently handled users’ personal information and failed to disclose the breach in a timely manner.
For more information contact our lawyers today.