Google Maps ditches misleading walking calorie counter

Google is ditching a planned feature for Maps following criticism on social media. The update was tied to directions and displayed how many calories you'd burn if you were to walk to your destination. By clicking on the walking option, you'd even be…
Engadget RSS Feed

The U.S. government has penalized Uber for misleading customers on its privacy practices

In a settlement, Uber will have to submit to 20 years of privacy checkups.

The U.S. government on Tuesday issued sweeping new penalties against Uber for its privacy and security practices, alleging the company “deceived consumers” by allowing its employees to access riders’ most personal information, including the details of their trips.

The lapses at Uber date back to 2014, including the so-called “God view” mishap and the later theft of its drivers’ data by hackers. In a resulting settlement with the Federal Trade Commission — an investigation first reported by Recode in June — Uber must now submit to 20 years of privacy checkups by outside auditors.

Future mistakes in the way Uber handles its riders and drivers’ sensitive personal details could then result in steep fines.

In the eyes of the FTC, Uber erred beginning in 2014, when reports first surfaced that the ride-hailing company’s workers had taken advantage of an internal tool, known as “God View,” which had allowed some at the company to spy on the whereabouts of politicians, celebrities and others using its services. The news came at a time when one of Uber’s top executives — since-departed Emil Michael — suggested hiring “opposition researchers” to track journalists critical of the tech giant.

That November, Uber issued a public statement pledging it had a “strict policy prohibiting all employees at every level from accessing a rider or driver’s data,” the FTC recounted in its complaint. Months later, it decommissioned the tool entirely.

But the FTC contends in its settlement that Uber actually “has not always closely monitored and audited its employees’ access to Rider and Driver accounts.” That included a period between August 2015 until May 2016, the FTC said, when Uber “did not timely follow up on automated alerts concerning the potential misuse of consumer personal information.”

And for six months during that time, Uber “only monitored access to account information belonging to a set of internal high-profile users, such as Uber executives,” the agency found.

The FTC also took issue with Uber’s claims about its security practices, years after a major data breach allowed hackers to abscond with information about the company’s drivers.

For years, Uber stressed it had taken great steps to protect its driver and rider data — all stored using Amazon’s cloud service. Until 2015, however, some of that information was saved as “clear, readable text, including in database back-ups and database prune files, rather than encrypting the information,” the FTC said.

As part of its settlement, Uber is barred from misrepresenting how its monitors its riders and drivers’ data, as well as the ways it secures that information. It also has to implement a comprehensive privacy policy. Failure to do so could incur steep, new penalties from the FTC.

But it’s the 20 years of privacy checkups — completed by a third party, then submitted by the watchdog agency — that could prove most onerous for the company. In recent years, the FTC has brokered similar settlements with the likes of Facebook, Google and Twitter, including for mishaps related to mishandling users’ data.

“Uber failed consumers in two key ways: First by misrepresenting the extent to which it monitored its employees’ access to personal information about users and drivers, and second by misrepresenting that it took reasonable steps to secure that data,” said Maureen Ohlhausen, the acting chairwoman of the FTC, in a statement.

“This case shows that, even if you’re a fast growing company, you can’t leave consumers behind: you must honor your privacy and security promises,” she said.


Recode – All

Trump used misleading job stats to justify pulling out of Paris climate agreement

President Trump announced his plans to pull out of the Paris climate agreement today in a jazz-accompanied spectacle at the Rose Garden. He justified the decision by arguing that the terms of the accord “could cost Americans as much as 2.7 million lost jobs by 2025.” Of those, he claimed 440,000 would be manufacturing jobs. “Believe me,” the President said. “This is not what we need.”

But experts say that there are some problems with the way Trump presented those numbers. “It’s not something you can cite in a presidential speech with a straight face,” says Yale economist Kenneth Gillingham. “It’s being used as a talking point taken out of context.”

The…

Continue reading…

The Verge – All Posts

EU levels $122M fine against Facebook for misleading info during WhatsApp takeover

Article Image

The European Union has fined Facebook 110 million euros — about $ 122 million — for providing "misleading information" during a 2014 review of its WhatsApp acquisition, which raised concerns about data sharing between the two services.
AppleInsider – Frontpage News