While most businesses imagine shadowy hackers as their biggest security risk, in reality insiders with the ability to access records inappropriately can also pose a significant threat. To minimize this threat, adopt clear rules and technical approaches to prevent inappropriate access, thoroughly train individuals who handle user information in your privacy and security practices, and log and audit data access.
Uber was hammered with negative press, a #DeleteUber movement, and Congressional inquiries after
Uber was hammered with negative press, a #DeleteUber movement, and Congressional inquiries after stories emerged that some Uber employees had "God View,” allowing them to access ride history and other information about any Uber user. Public outrage over the company’s “troubling disregard for customers’ privacy” forced Uber to conduct an evaluation of its data privacy program, and in January 2015 it promised to improve its privacy practices based on the firm’s recommendations.