Business Insider/Google
ZDNet first reported that Uber trip information was appearing in Google search results after a user posted about it on Twitter.
A search of the site "Trip.uber.com" returns dozens of trips on the ride-hailing app. Each link pulls up a map of the trip along with the passenger's name. The driver's photo, name, license plate, and car model is also easily identifiable.
In the source code of the page, Uber's trip information contains private data, including exact addresses (though credit card information was not included).
Each trip link logs the exact address for pick up and drop off, along with the times, in the source code. While most of the driver's information is public facing already, the source code also identifies the driver's rating - although not the passenger's.
The only way for these to have turned up in a Google search is for the rider to have deliberately shared it on social media, according to an Uber spokesperson.
"This is not a data leak. We have found that all these links have been deliberately shared publicly by riders. Protection of user data is critically important to us and we are always looking for ways to make it even more secure," an Uber spokesperson said.
The ride-hailing company added the "Share your ETA" feature in 2013, to help passengers let an acquaintance stay abreast of their travel progress.
Searching for stuff on https://t.co/HXxwZnnWAW gets you information like this. pic.twitter.com/lfQlbN806W
- Mikko Hypponen (@mikko) September 2, 2015
Still, riders may not be aware how much information they are sharing.
While the pins show up on a map along with the ETA and driver's information, there's no indication that the passenger's exact address of origin is also included in the source code. Even someone who you text the link to can look in the source code and see the exact address inputted, so only share your ETA with people who you trust having that information anyway.