Danyaal Farooq (Student)

In 2016 Uber was subjected to a cyber-attack. The attackers obtained access to records of around 35 million users. They also obtained access to details of around 3.7 million drivers. Uber failed to advise the users about their data being hacked. Nearly 3 million users from the UK were affected by this. The records included the users full name, phone number, email address and even the location where they had signed up.

The company was fined £385,000 for data breach.

As the breach was dealt with under the old Data Protection Act 1998, this meant the maximum penalty was £500,000. Now under the new DPA 2018 act, the potential fine would be up to 4% of Ubers global revenue.

The Data Protection Act 2018 regulates how people deal with the publics data. This is known as GDPR. Everyone using or collecting personal details of the public must follow strict rules known as the data protection principles. They must ensure the details are used fairly, lawfully and transparently. You have the right to know what information the companies store about you. This includes the right to be informed about how your data is being used, access personal data and have incorrect data updated or amended.

Staffordshire University Legal Advice Clinic (SULAC) offers free legal advice to the general public. SULAC ensures that your data is kept safe. Students participating in SULAC are fully trained on GDPR and are fully aware of the importance of data protection. SULAC uses a bespoke case management system which allows us to operate a paperless service. At SULAC we can advise you on matters, including employment, along with a range of other matters from family to consumer protection. We currently have a few outreach locations: Dudson Centre, Sign Posts Stafford. We also provide clinics to staff members of Shrewsbury Hospital and HMP Stafford. If you would like an appointment, please call 01782 294800