Skip to main content
  1. Home
  2. Mobile
  3. News

Uber was just hit with a massive $320 million fine. Here’s why

By
The new carbon emissions feature on Uber's app.
The new carbon emissions feature on Uber's app. Uber

Uber is staring down a 290 million euro fine (about $320 million USD) for violating data protection laws in the EU.

That’s the basic story, but to understand the details behind it, you first need to know what the GDPR is. This is the General Data Protection Regulation, a policy implemented in the EU in May 2018. While we’re used to playing fast and loose with consumer privacy in the U.S., the EU has a different approach — and one that, so far, has worked well.

Recommended Videos

The GDPR outlines specific provisions that companies must follow regarding user data, as well as what rights individual people have to their data on the internet.

Please enable Javascript to view this content

The Dutch Data Protection Authority (DPA) alleges that Uber collected sensitive information — including location data, photos, payment details, and even criminal and medical data — of its drivers and stored it on U.S. servers.

The GDPR mandates a series of rules that companies must follow when transferring data outside the European Economic Area, and the DPA says Uber failed to follow these standards over two years. Because of this oversight, the DPA claims that personal data protection was insufficient.

An Uber cab
Viktor Avdeev on Unsplash / Uber

The trouble started when more than 170 French Uber drivers complained to a human rights interest group called Ligue des droits de l’Homme, which then took the complaints to the French DPA. As Uber’s European headquarters is based in the Netherlands, the Dutch DPA took over the case.

It’s also worth noting that this is the third time the Dutch DPA has leveled fines against Uber. The first time was a fine of 600,000 Euro in 2018, followed by another 10 million Euro fine in 2023.

Data transfers must be met with an appropriate level of data protection. The European Commission can make an adequacy decision based on an entire country, appropriate safeguards, and/or specific exceptions. In the case of Uber, the Dutch DPA says these safeguards were not met, and the drivers’ personal information was too vulnerable to bad actors.

The fine isn’t an arbitrary number. All data protection agencies in Europe calculate the amount of a fine in the same way, asking for up to a maximum of 4% of a business’s global annual turnover.

Uber has since ceased transferring data in this way and has changed its methods to become compliant with GDPR rules. The company has stated it intends to appeal the fine, calling it “completely unjustified” in a statement an Uber spokesperson gave to The Verge.

So, what does this mean for Uber? The company will have to argue its case, but regardless of the outcome, Uber isn’t going anywhere. It’s still the main rideshare service in the world with 25% of the market, but perhaps this case will lead to better data protection practices in the U.S.

Editors’ Recommendations

Topics
Patrick Hearn
Patrick Hearn
Mobile Writer
Patrick Hearn writes about smart home technology like Amazon Alexa, Google Assistant, smart light bulbs, and more. If it's a…
EU iPhone users are getting another exclusive perk with iOS 18.4
Installing iOS 18.3 update on an iPhone 16 Pro.

The iOS 18.4 update is in beta right now, and it introduces a new option for users in the EU to set a default navigation app. This means no more pesky links opening in Apple Maps when you only use Google Maps -- but it won't be available for people in the U.S.

The EU's Digital Markets Act is forcing Apple to make various changes to its services, but unfortunately not all of these perks make it over to the U.S. Apple has made it clear that it doesn't agree with a lot of the rules the EU is setting, so a lot of the time, it only makes the changes when and where it absolutely has to.

Read more
Don’t factory reset your Chromecast if it’s down, Google warns
The Chromecast with Google TV (left) and the Chromecast Ultra.

This has been a frustrating week for many Google Chromecast users, who have found that an outage has rendered their devices temporarily useless. Google has now shared an update that it has identified the problem and is working on a fix, but has also warned users not to try to fix the issue themselves by performing a factory reset on their device.

Reports of the outage began last weekend, and only second-generation Chromecasts are affected. Those with first or third generation Chromecasts seem to be unaffected by these problems. Google said at the time that it was working on a fix, but now the company has shared more information via its Google Nest support forums:

Read more
Apple and Google under more scrutiny, this time for mobile browser dominance
A person using the Chrome browser on the OnePlus 13.

A report from a UK antitrust body, the Competition and Markets Authority (CMA), has found that Apple and Google have such dominance over the mobile browser market that it is harming users who could be missing out on new features. With 88% of Apple users running Safari and 77% of Android users running Chrome, the situation is "not working well for consumers and businesses" and is "holding back innovation," the CMA says, and it singles out Apple's mobile browser policies for particular criticism.

Apple has previously been criticized for its restrictive policies around mobile browsers, as users can install browsers other than Apple's Safari on their devices -- but those browsers can only use Apple's WebKit engine. That makes them essentially overlays for Apple's own browser, limiting the features that can be supported on a mobile browser.

Read more