|
|
|
|
|
|
by potatolicious
4224 days ago
|
|
|
Agree. In contrast, when I worked at Amazon, customer privacy was pretty religiously protected. To access detailed customer information required getting a one-time-use key, which is generated from a request that references other documentation (bug reports, customer support requests, etc) as well as a justification. This key would only work against a single customer, and expires after some time. The requests themselves are regularly audited internally to prevent abuse. This is the level of internal privacy guarantees a company like Uber needs. No employee should have unmonitored, carte blanche access to customer data. |
|
|
The fact that the CEO can access data at whim should be very troubling. That means they don't have even the most basic infosec guidelines in place.