However Marriott has co-operated with the ICO investigation and has made improvements to its security arrangements since these events came to light.
The regulator added that organizations have a "legal duty" to ensure the security of customers' personal data.
"The biggest moment of the year was the General Data Protection Regulation (GDPR) coming into force".
"The complaint said Marriott refers to these additional mandatory fees ranging from $9 to $95 per day, which aren't advertised as included in the room price on the company's website or other third-party sites such as Expedia and Priceline, as a "resort fee", "amenity fee" or destination fee".
"Mergers and acquisitions are one of the riskiest things an enterprise can undertake, and as organizations are evaluating companies for M&A deals, it is imperative the cybersecurity posture and incident history is evaluated", Kennedy said. "We take the privacy and security of guest information very seriously". Under the "one stop shop" provisions of GDPR, the hotel chain will face only a single European Union fine.Читайте также: Bautista Agut wears down Pella to reach semi-final
Of those affected, around 30 million were residents of 31 countries in the European Economic Area.
Marriott also said that the Starwood guest reservation database that was attacked is no longer used for business operations. The company alerted affected guests.
Starwood hotels, include Trump Turnberry in Ayrshire, London's Park Lane Sheraton Grand, Westbury Mayfair and Le Meridien Piccadilly. On Monday, the agency proposed a $229 million United States fine against British Airways over a data breach that affected 500,000 customers.
The ICO's investigation has found that the breaches exposed personal data for 500,000 BA customers.
In January, the Bethesda, Maryland, company revised that figure to 323 million guests, and said around 25 million passport numbers may also have been compromised.
The Information Commissioner's Office (ICO) fine relates to a data breach at the company believed to have originated in the systems of the Starwood hotels group in 2014. As the ICO's announcement regarding the British Airways' incident demonstrates, the potential consequences of breaching the GDPR can be significant.
But Denham said BA had failed to put proper safeguards in place to protect customer data. This saw people wake up to the potential of their personal data, leading to greater awareness of the role of the regulator when their data rights aren't being respected.При любом использовании материалов сайта и дочерних проектов, гиперссылка на обязательна.
«» 2007 - 2019 Copyright.
Автоматизированное извлечение информации сайта запрещено.
Код для вставки в блог