ReturnReturn to Article

Recommend Uber Lawsuit Highlights Data Breach Disclosure Requirements (Email)

This action will generate an email recommending this article to the recipient of your choice. Note that your email address and your recipient's email address are not logged by this system.

EmailEmail Article Link

The email sent will contain a link to this article, the article title, and an article excerpt (if available). For security reasons, your IP address will also be included in the sent email.

Article Excerpt:
The Washington attorney general’s lawsuit against Uber highlights an organization’s disclosure obligations in Washington State in the event of a data breach.

The Nov. 28 suit, filed in King County Superior Court, is thought to be the first time Washington’s data disclosure statute has been pressed in court. It alleges that Uber Technologies, Inc., violated RCW 19.255 by keeping the fact of its data breach by a hacker secret for about a year. The suit alleges the breach affected more than 10,000 Washington residents.

RCW 19.255.010, enacted in 2015, applies to any person or business that conducts business in Washington that owns or licenses data that includes “personal information.” The statute defines “personal information” as a person’s first and last name, in conjunction with his or her social security number, driver’s license number, or account or credit card number, with security code or password that would permit access to the person’s account.


Article Link:
Your Name:
Your Email:
Recipient Email:
Message: