Marriott smacked with $33.7m fine over infamous data breach

June 17, 2018 - Vancouver, BC, Canada: Marriott International is an American multinational diversified hospitality company that manages and franchises a broad portfolio of hotels and related lodging facilities

The United Kingdom’s data privacy watchdog has fined Marriott International £18.4 million (around $33.7 million) for a major data breach that may have affected as many as 339 million guests.

The Information Commissioner’s Office (ICO) said the data obtained by hackers could have included names, email addresses, phone numbers, unencrypted passport numbers, arrival or departure information, and guests’ VIP status and loyalty program membership numbers.

The ICO’s investigation found that there were failures by Marriott to put appropriate safeguards in place, as required by the General Data Protection Regulation (GDPR), but acknowledged that the company had improved.

The precise number of people affected is unclear, but Marriott estimates 339 million guest records worldwide were affected following the cyber-attack in 2014 on Starwood Hotels and Resorts Worldwide Inc.

The attack, from an unknown source, remained undetected until September 2018, by which time the company had been acquired by Marriott.

However, the ICO said there may have been multiple records for an individual guest. Seven million guest records related to people in the UK.

“Personal data is precious and businesses have to look after it,” ICO information commissioner Elizabeth Denham said in a statement.

“Millions of people’s data was affected by Marriott’s failure; thousands contacted a helpline and others may have had to take action to protect their personal data because the company they trusted it with had not.

“When a business fails to look after customers’ data, the impact is not just a possible fine. What matters most is the public whose data they had a duty to protect.”

The ICO acknowledged that Marriott acted promptly to contact customers and the ICO. It also acted quickly to mitigate the risk of damage suffered by customers, the ICO said, and has since instigated several measures to improve the security of its systems.

Marriott International said it does not intend to appeal the decision, but made no admission of liability in relation to the decision or the underlying allegations.

The company added that it “deeply regrets” the incident.

“Marriott remains committed to the privacy and security of its guests’ information and continues to make significant investments in security measures for its systems, as the ICO recognises,” the company said in a statement.

“The ICO also recognises the steps taken by Marriott following discovery of the incident to promptly inform and protect the interests of its guests. Marriott wants to reassure guests that the incident and the ICO’s decision involved only Starwood’s separate network, which is no longer in use.”


Featured image source: iStock/volkan.basar

Latest News

  • Hotels

Hotel d’Inghilterra completes its extensive restyling

Hotel d’Inghilterra, the historic and unique accommodation landmark in Rome, has completed its rebirth with the iconic property enhancing its charm event further. Located just a few steps from the iconic Spanish Steps and the Via Condotti, the hotel’s innate elegance has been home of international patrons and Roman nobility since the mid 16th century. […]

  • Cruise

Oceania Cruises unveils its new brand value promise to all guests

Culinary- and destination-focused cruise line, Oceania Cruises, has unveiled its ‘Your World Included’  featuring an updated selection of always included amenities. The new offer cements the brand’s promise of ‘Your World, Your Way’ branding and as part of it, all guests will receive included shipboard gratuities for stateroom attendants, butlers, and dining waitstaff automatically in […]

  • Destinations

Adventure World unveils new Canada MAKE TRAVEL MATTER campaign

Adventure World has unveiled a new Canada campaign going beyond breathtaking landscapes and iconic sights and inviting Aussie travellers to MAKE TRAVEL MATTER by giving back to the destinations they explore. Through the innovative MAKE TRAVEL MATTER program, starting this month, travellers can add meaningful experiences to their Canadian adventures. Imagine participating in a wildlife […]

  • News
  • Tourism

Intrepid Adventures launches new travel show on Channel 10

Intrepid Travel has launched a new six-part travel series, Intrepid Adventures, premiering on Channel 10 this Sunday, 8 September. In partnership with creative production house, Sloane Media and the Moroccan National Tourist Office, the program shifts the spotlight from traditional tourist sights to the local guides and communities that bring each destination to life. The […]

  • Luxury
  • News

Luxury Travel Collection reveals ‘Leaders who Lunch’ series

The Luxury Travel Collection (LTC) launched ‘Leaders Who Lunch’ (LWL) with its first event today, bringing together an intimate group of luxury advisors with global luxury partner, Silversea. This new series of intimate, invitation-only lunches will connect influential global senior leaders from LTC’s luxury partner network, with a hand-selected group of members to nurture elevated […]

  • Cruise
  • Travel Agents

MSC Cruises hosts ’Deep Dive on Japan’ webinar

MSC Cruises has announced an exclusive webinar tailored for travel partners that offers an in-depth look at their Japan 2025 itineraries and more. The 20-minute webinar, followed by a 5-minute interactive Q&A session, is designed to provide travel partners with comprehensive insights into the popular destination of the Far-East and top selling itineraries. Japan and […]

  • News

World-first education initiative introduces “Guardian of the Reef” platform

Tourism Tropical North Queensland has partnered with Expedia in the US, UK and Australia to introduce the “Guardian of the Reef”, a world-first platform. Conservation curious travellers can visit the newly launched website and work through a series of short educational videos, each with a coupon reward system to use with Expedia bookings on the […]

  • Cruise

Explora Journeys announces godmother for EXPLORA II

Explora Journeys, the luxury lifestyle ocean travel brand of the MSC Group, has announced that environmentalist Rosalba Giugni as the godmother of their newest ship, the EXPLORA II. The ship’s official naming ceremony will be on 15 September 2024 in Civitavecchia, Italy and marks the latest addition to the Explora Journey’s fleet. It reflects the […]

  • Aviation

Malaysia Airlines launches direct flight to Paris

Malaysia Airlines has announced direct flights to Charles de Gaulle Airport (CDG) in Paris, marking a key milestone in the airline’s European expansion. This route, which will commence on 22 March 2025, represents Malaysia Airlines’ 68th destination, reinforcing its position as the gateway to Asia and beyond. In celebration of the route’s return after nearly […]

  • Hotels

Oasia Resort Sentosa unveils new room category and junior suites

The Oasia Resort Sentosa has unveiled its latest Courtyard Premier rooms and refreshed Junior Suites as well as a staycation offer for pet owners and their furry friends. Located on level two in the Palawan Wing, the 19 Courtyard Premier rooms each span 63sqm with a spacious alfresco area with bean bags and a dining […]

  • Hotels

Park Regis by Prince Singapore debuts under a new brand name following extensive refurbishments

The debut of the Park Regis by Prince Singapore marks the global expansion of Seibu Prince Hotels & Resorts since launching its new global brand identity in April. Following this rebranding of the property and extensive refurbishment, Park Regis by Prince Singapore is an urban oasis that effortlessly encapsulates the essence of its unique bi-culture […]