Uber hit with $324 million EU fine for improper data transfer

A Dutch privacy regulator said Monday it fined Uber Technologies 290 million euros ($324 million) for allegedly sending data on drivers to the U.S. without providing appropriate safeguards.

The Dutch Data Protection Authority, or DPA, said Uber broke a European law known as the General Data Protection Regulation by sending sensitive information of drivers from Europe and retaining it on servers in the U.S.

Uber sent account details and taxi licenses, but also location data, photos, payment details, identity documents - and in some cases even criminal and medical data of drivers, the DPA said. The regulator said the violations, which have now stopped, were because Uber did not use "transfer tools."

Uber intends to appeal the decision, the regulator added.

"Uber's cross-border data transfer process was compliant with GDPR during a 3-year period of immense uncertainty between the EU and US," an Uber spokesperson said.

"This flawed decision and extraordinary fine are completely unjustified," the statement added.While data transfers to the US are allowed under EU law, there is significant uncertainty around when they can occur without the need for further authorisation.

Read more -here-

• Microsoft kills off Skype credits and phone numbers in favor of subscriptions
• FCC opens full 6GHz band to very low-power devices
• Instagram, Facebook and WhatsApp hit by massive outage
• GM ends support for Cruise robotaxis
• Nvidia facing antitrust investigation from China
• T-Mobile has completely revamped its 5G home internet plans