"It is a worldwide incident and it is unclear at this stage which countries were affected by the hack. What we do know is, based on current information, we have not seen evidence that financial details have been compromised."
Uber reportedly paid off the hackers with a $100,000 (£75,000) ransom, which the firm disguised as a bug bounty program, to ensure that the hackers deleted the stolen data and refrained from divulging Uber's lacking security.
The Information Commissioner's Office reportedly said that Uber's secrecy about the breach "raises huge concerns around its data protection policies and ethics".
"It's always the company's responsibility to identify when UK citizens have been affected as part of a data breach and take steps to reduce any harm to consumers," said deputy commissioner James Dipple-Johnstone, The Guardian reported.
A spokesperson for the National Cyber Security Agency (NCSC), GCHQ's cyber arm, reportedly said that companies must report cyberattacks "immediately".
"We are working closely with other agencies including the NCA and ICO to investigate how this breach has affected people in the UK and advise on appropriate mitigation measures," the NCSC spokesperson said, The Guardian reported.
Given the global nature of the breach, Uber is now facing increased scrutiny from various governments. Australia and Philippines joined the US and the UK in launching investigations into Uber after the firm announced the details of the historic breach.