Uber may share your personal data with law enforcement, government authorities, or in response to legal process without notifying you, particularly where prohibited by law or where notification could impede an investigation.
Drivers may not know when Uber has shared their personal data — including location history, communication records, and trip data — with law enforcement or government agencies, limiting their ability to protect their legal rights.
REGULATORY FRAMEWORK: Electronic Communications Privacy Act (ECPA, 18 U.S.C. §§2701-2712) governs government access to stored electronic communications. The Stored Communications Act (SCA, 18 U.S.C. §2703) establishes the legal process required for law enforcement to compel disclosure of subscriber records and communications content. GDPR Article 23 permits restrictions on data subject rights for law enforcement purposes but requires these derogations to be proportionate and legally prescribed. Enforcement: DOJ, federal courts, EU DPAs.
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.
Uber collects highly sensitive data from drivers and delivery people including continuous GPS location (even in background), facial images, government ID documents, vehicle telematics, and financial account details, and shares this data with insurers, background check providers, law enforcement, and research partners. Drivers have limited ability to restrict data collection tied to core platform functionality, meaning much of this data collection is a condition of using the platform. You can submit a data access, deletion, or portability request through the Privacy Settings section of the Uber Driver app or at Uber's dedicated privacy portal.