Petition - See Change.org link The GMB Brighton & Hove Taxi Section is calling on Brighton & Hove City Council (UK) to immediately review the Brighton & Hove Uber Operators Licence based on Uber not informing its 57m account holders... of which it has been stated that 2.7m UK account holders have been affected... due to the 2016 breach of data that was not revealed by Uber until over one year later in 2017 having just renewed the licence for only six months.
Uber Brighton & Hove Operators Licence Renewal Application 2017: When Uber applied to be re-licensed by Brighton & Hove City Council on September 20 2017 it would be impossible to think that it did not know that there was a serious underlying issue which was soon be announced on October 22 2017 only one month later.
The Data Breach is one issue that is bad enough although it is accepted that no company is 100% safe from hackers. However the paramount issue is that Uber kept this quiet... and not only did it not inform its 57m account holders to warn them to take appropriate action...but also did not inform the regulatory authorities in every country that it operates in. See ICO statement below:
TfL - Fred Jones Uber Director - Head Of Cities UK - Uber Petition: When Uber London was told that TfL had refused to grant a new licence Mr Fred Jones immediately made a public announcement to get people to sign a petition to “Save Your Uber”. At no time did Mr Jones state in 2016 “Protect You Uber Account.. We Have Been Hacked!”. We ask if Mr Jones was not fully aware of the data breach at that time. It has been widely reported that in 2017 Uber negotiated with criminals and having known their identity reportedly paid $100,000 to ‘delete’ the stolen data. To date it is understood that there is no proof that this data was indeed deleted.
Uber Breach of Data - GMB/Brighton & Hove Council Correspondence: When the issue of the data breach broke the GMB Brighton & Hove Taxi Section wrote to the council calling for the immediate review of the Brighton & Hove Uber licence with the council having only just granted one for a short six month period. Other trade members also contacted the council on this matter.
The trade had previously been informed that the council could review any Operators Licence at anytime if deemed necessary but the response from the council was that it was ‘Waiting to ‘hear the result of the investigation being carried out by the Information Commissioners Office.’
When the council issued Uber the short six months Operators Licence it was based on ‘Waiting to hear the result of the Uber London Operators Licence Appeal following the refusal of TfL to grant the licence.’
So we now have Brighton & Hove Council waiting for others to make decisions before taking its own direct action.
York Council - Uber not ‘Fit and Proper’ to hold Operators Licence: On December 12 2017 York Council refused to re-licence Uber based on the fact of ‘Uber not revealing the Breach of Data’ thus rendering Uber not to be ‘Fit & Proper’ to hold a York Operators Licence.
See the York Council Meeting Uber Operators Licence which was held in Public. https://tinyurl.com/uberyork
Brighton & Hove Council has always.. and even very recently.. held high the ‘Blue Book for Hackney Carriage & Private Hire Drivers, Vehicles and Operators’ as one of the best standards in the UK which is there for the protection of the public.
However it appears that the council still considers Uber to be ‘Fit and Proper’ to hold an Operator’s Licence and consequently not obliged to inform its account holders of the serious breach of data so that individuals could take the appropriate action unlike York Council who have deemed the company not to be ‘Fit & Proper’ to hold an Operator’s Licence.
Therefore the GMB Brighton & Hove Taxi Section petitions the council to immediately call an extraordinary meeting to review the Uber Brighton & Hove Operators Licence to examine as to whether the city Councillors agree with the York Councillors. As a potential user of taxis and private hire company’s in the city you have the right to support and sign this Petition.
Andrew Peters GMB Brighton & Hove Taxi Section firstname.lastname@example.org
Information Commissioner Office
Wednesday 22 November 2017, 10am James Dipple-Johnstone, ICO Deputy Commissioner said: "Uber's announcement about a concealed data breach last October raises huge concerns around its data protection policies and ethics. "It's always the company's responsibility to identify when UK citizens have been affected as part of a data breach and take steps to reduce any harm to consumers. If UK citizens were affected then we should have been notified so that we could assess and verify the impact on people whose data was exposed. "We'll be working with the NCSC plus other relevant authorities in the UK and overseas to determine the scale of the breach, how it has affected people in the UK and what steps need to be taken by the firm to ensure it fully complies with its data protection obligations. "Deliberately concealing breaches from regulators and citizens could attract higher fines for companies."
Wednesday 22 November 2017, 5.35pm James Dipple-Johnstone said: "We can confirm that UK citizens have been affected by the data breach involving Uber last October.
"As UK citizens would expect, the ICO is in direct contact with the company to establish the numbers and what kind of personal data may have been compromised.
"We are working with the NCSC plus other relevant authorities in the UK and overseas to determine the scale of the breach, and what steps need to be taken by the firm to ensure it fully complies with its data protection obligations.
"It's always the company's responsibility to identify when UK citizens have been affected as part of a data breach and take steps to reduce any harm to consumers.
"Deliberately concealing breaches from regulators and citizens could attract higher fines for companies."