In a severe attack on customer privacy and economic freedom, Commissioner Kionne McGee of the Miami-Dade County Board of Commissioners has introduced legislation that would require meal delivery services (like UberEats, DoorDash, Grubhub, and others) to share private and sensitive consumer data with restaurants.
This misguided market manipulation will have disastrous impacts on the restaurant industry, subject customers to harmful privacy breaches, lead to potentially dangerous stalking incidences, and hurt an emerging industry as it would offer restaurants the opportunity to obtain private customer information without the customer’s, or the restaurant’s knowing approval. For each order, delivery apps will need to provide restaurants with the customer’s name, phone number, email address, delivery address, and the contents of their order.
There are no limits on what the restaurant can do with such information. Unlike delivery apps, which have terms of service providing consumers with privacy rights, restaurants would not offer any of these rights to customers, removing any privacy protections that are promised to customers when they order through a delivery app. As such, this proposal is a stark violation of Florida’s privacy laws which seeks to grant Floridians more rights and protections over their data and offers consumers with rights regarding the collection, processing, and deletion of their personal information.
Compelling third-party delivery platforms to reveal personal details about customer and delivery drivers regardless of whether they have even consented to sharing their information outside of the platform not only breaches Florda’s privacy laws, it does so with potentially devastating consequences. Restaurants can use this data in a variety of ways, ranging from advertising to significant privacy violations – including selling this personal information to whomever they please. Credit firms, banks, and insurance companies are some of the most prolific buyers of private information and use data to raise rates on individuals. Restaurant order data is highly valuable to insurance companies because they can use it to determine healthy or unhealthy eating habits. This has the potential to hurt minorities in Florida disproportionately.
Additionally, employers often seek private information about current or prospective workers. Neighbors, stalkers, and even vindictive ex-partners can purchase private data about individuals, exposing them to safety risks. Delivery apps sharing delivery addresses could result in highly dangerous situations. This proposal increases opportunities for bad actors to prey on unknowing, innocent members of your communities.
Unlike delivery apps, which have thousands of employees and specially trained private information managers, small restaurants do not have stringent security measures to prevent data breaches. Hackers know this, which is why restaurants, along with hotels, are breached more than any other business.
If a struggling restaurant suffers a security breach it could force them to cease operations. They would face legal liability, requiring expensive legal representation and monetary restitution to customers who lost data. Even if a business can afford this, they would undoubtedly lose customers. A study done by Thales Group, a global leader in security technology, found that 64% of consumers are unlikely to do business with a company that has suffered a data breach in the past.
This proposal would also cause serious harm to delivery apps that have helped keep thousands of restaurants afloat throughout the Covid-19 pandemic. Even as revenues soared more than 200%, in the case of DoorDash, not a single delivery service has ever made an annual profit. In 2020 DoorDash lost $461 million, Grubhub lost $156 million, and UberEats suffered losses estimated at $873 million. Many of these losses incurred to keep restaurants open have still not been recouped.
No restaurant has ever been forced into business with a delivery app. Rather, they enter a partnership and pay for a valuable service. Delivery apps handle logistics, payment, and introduce customers to new restaurants. Should delivery apps be forced to turn over valuable data for free, these companies will eventually be forced to stop their operations, at best leaving Miami. This would be incredibly harmful to the restaurant industry, as well as the gig economy. As millions of Americans lost their jobs due to the pandemic-induced economic downturn, the “gig economy” became crucial for unemployed or under-employed Floridians looking to earn extra money to support themselves and their families.
In addition to this,These requirements could make sensitive business information (business revenue and commission rate) readily available to competitors, who could easily gain insights into business by simply placing an order.
It is important to all Miami residents that small restaurants continue to be the lifeblood of the city. This proposal will not accomplish this goal, no matter how well-intentioned it may be. It will only compromise the privacy of Floridians and risk destroying an emerging industry.