Personal information of 380,000 riders and drivers of ride-sharing app Uber in Singapore – including names, e-mail addresses, and mobile phone numbers – were exposed in the app’s data breach in 2016, making it the largest reported breach here to date.
Singapore’s privacy watchdog, the Personal Data Protection Commission (PDPC), said it is investigating if the company had breached any laws.
“Uber’s breach has affected a significant number of users in Singapore. The PDPC takes a serious view of data breaches and is investigating whether Uber has breached the data protection provisions of the PDPA (Personal Data Protection Act),” said a PDPC spokesman.
“We expect Uber’s full cooperation in the course of the investigation.”
The Land Transport Authority (LTA) similarly said in a statement that it “expects Uber to be fully transparent and cooperate with local regulators to disclose the extent of those (drivers and customers) that have been affected in Singapore”.