KVKK passed the announcement: “Uber user data may have been leaked”

The Personal Data Protection Authority (KVKK) made another important announcement today. Accordingly, Uber data may have been leaked.

The new data breach notification issued by the Personal Data Protection Authority for Uber is as follows: It happened: “As is known, Article 12, paragraph (5) of the Law No. 6698 on the Protection of Personal Data titled “Obligations regarding data security” stipulates that “In the event that the processed personal data is obtained by others through illegal means, the data controller shall notify the relevant person and the Board of this situation as soon as possible. If necessary, the Board may announce this situation on its own website or by another method it deems appropriate.” In the data breach notification submitted to the Board by Uber Technologies Inc., which has the title of data controller, it is summarized as follows;

YOU MAY BE INTERESTED IN

• -The data controller will process personal data that may originate from Uber on July 2, 2024. received an email from a person indicating their intention to make it public,
• -When the data breach occurred andThe source of the breach has not yet been determined.research continues,
• -Uber for violation users (passengers and/or food orderers) and/or drivers and/or delivery people are affected,
• -Regarding the data affected by the breach;
• It is anticipated that the screenshots will include name, e-mail address, phone number, profile photo, registration date and score information,
• The screenshots include data from documents such as driver’s license, insurance, identity card, vehicle registration and checks within the scope of duty of care, but the exact personal data affected is not known at the moment,
  –It has been stated that the number of people affected by the breach has not yet been determined.. Although the investigation regarding the issue is ongoing, it has been decided by the Personal Data Protection Board, with its decision dated 10.07.2024 and numbered 2024/1161, that the data breach notification in question will be announced on the Institution’s website. Respectfully announced to the public.