Uber collects and processes criminal background check results as part of driver onboarding and ongoing screening. This data, obtained from third-party background check providers, is used to determine platform eligibility.
Criminal background data is among the most sensitive personal information and its processing is subject to strict legal requirements under the Fair Credit Reporting Act (FCRA) in the US and GDPR Article 10 in the EU; errors or improper handling can result in wrongful deactivation and significant harm to drivers' livelihoods.
REGULATORY FRAMEWORK: Fair Credit Reporting Act (FCRA, 15 U.S.C. §1681 et seq.) requires pre-adverse action notice, provision of the background check report and summary of rights, and a reasonable opportunity to dispute before deactivation. GDPR Article 10 restricts processing of data relating to criminal convictions and offences to official authority or authorized contexts. CCPA/CPRA exemptions for employment-related data may limit driver rights in California, though CPRA has narrowed this exemption. Enforcement: FTC (FCRA), EU DPAs (Article 10).
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.
Uber collects highly sensitive data from drivers and delivery people including continuous GPS location (even in background), facial images, government ID documents, vehicle telematics, and financial account details, and shares this data with insurers, background check providers, law enforcement, and research partners. Drivers have limited ability to restrict data collection tied to core platform functionality, meaning much of this data collection is a condition of using the platform. You can submit a data access, deletion, or portability request through the Privacy Settings section of the Uber Driver app or at Uber's dedicated privacy portal.