Ride-hailing system Uber (UBER) has actually been fined 290 million euros ($ 324 million) in the Netherlands for sending out the individual information of European cab driver to the USA in infraction of EU policies, Dutch information defense guard dog DPA stated on Monday.
Uber has actually quit the method, the DPA included.
” This problematic choice and remarkable penalty are totally unjustified,” Uber representative Caspar Nixon informed Reuters in an e-mail.
” Uber’s cross-border information transfer procedure was certified with GDPR throughout a 3-year duration of tremendous unpredictability in between the EU and United States,” he included, stating the firm would certainly appeal and was positive that “sound judgment will certainly dominate”.
The DPA stated Uber moved individual information to the USA and stopped working to properly secure the information.
” This comprises a severe infraction of the General Information Defense Law (GDPR),” it stated.
Uber can appeal the choice with the DPA and if not successful can after that submit an instance with the Dutch courts. The allures procedure is anticipated to take some 4 years and any kind of penalties are put on hold till all lawful options have actually been worn down, according to the DPA.
The examination was set off after a French civils rights organisation lodged a problem in behalf of greater than 170 cab driver in France with the nation’s information defense authority. Nevertheless, as Uber has its European head office in the Netherlands, it was sent to the DPA.
French nationwide information defense regulatory authority CNIL stated in a different declaration that it had actually accepted the DPA.
In a relevant situation, the DPA fined Uber 10 million euros ($ 11 million) in January for violation of personal privacy laws concerning its motorists’ individual information.
($ 1 = 0.8942 euros)
( Coverage by Stephanie Van Den Berg, Tassilo Hummel; editing and enhancing by Jason Neely, Kirsten Donovan)