MANILA - The National Privacy Commission (NPC) gave ride-hailing company Uber PH 48 hours to provide detailed information on its data breach, the commission said in a statement released Friday.
The NPC met Uber PH Data Protection Officer Atty. Yves Gonzales on Thursday to see whether any Filipino was affected by the breach.
“We asked them for certification from their forensic examiner that the data did indeed not involve Filipinos," Atty. Francis Acero, chief of complaints and investigation division NPC told ABS CBN News.
"We are not sure if they didn’t inform our country because we are not on the list of the countries they have to inform if something happens because of lack of familiarity with our laws or there really wasn’t any Filipino affected,” Acero added.
Uber PH cited limited information coming from the US for its failure to provide details about the breach, NPC said in the statement.
Under the law, concealment of data breach leading to cases of identity fraud is considered as a criminal offense punishable under the Data Privacy Act of 2012.