The DPA found that between August 2021 and November 2023, Uber transferred sensitive driver data to US servers without the required GDPR protections, risking privacy rights.
DPA chairman Aleid Wolfsen stated that GDPR safeguards fundamental rights in Europe, emphasizing the responsibility of companies to handle personal data with care, which Uber failed to do.
The investigation, prompted by a complaint from over 170 French drivers, highlighted Uber's neglect in processing data responsibly, leading to a staggering €290mn penalty by the DPA.
This fine marks the third time the Dutch DPA has penalized Uber, indicating ongoing compliance issues and the necessity for stricter adherence to GDPR regulations by multinational firms.
Collection
[
|
...
]