Senior Communications Manager
Kirk Nahra Comments on FTC Settlement With Uber Over Data Security Practices
Kirk J. Nahra, chair of Wiley Rein’s Privacy & Cybersecurity Practice, was quoted in an August 18 Law360 article about a ruling by the Federal Trade Commission (FTC) that Uber failed to fulfill data security promises the ride-sharing company made to its users. The FTC found that contrary to Uber’s public claims, the company did not adequately monitor its employees’ access to rider and driver data, and failed to provide reasonable security for consumers’ personal information. Under a settlement with the FTC, Uber will be subjected to third-party audits for 20 years and must establish a more robust data security program.
The settlement “is an important reminder that what a company says actually matters – and not just the words but the message that is being conveyed,” Mr. Nahra said. “We have seen companies across a broad range of industries have issues with employees acting inappropriately, and this settlement, and many others, are reminders of both these risks and the need to have an effective monitoring plan in place.”