Cyber attacks do not cease. The popular hotel chain faces serious accusations.

Cyber attacks do not cease. The popular hotel chain faces serious accusations.

Fines for GDPR violations are not low at all. The last offense was committed by the MARRIOTT hotel chain, which received a considerable surprise following an investigation by the UK Privacy Office. A fine of £ 99 million.

Protection penetrated

Let's analyze it gradually. It is the responsibility of anyone coming into contact with GDPR to report any potential violations in this regard. This is how the above-mentioned Marriott company proceeded, reporting to the British authorities its company, which has been the target of a cyber attack. The attack has threatened and violated client rights for up to 30 million customers in 31 countries.

However, an investigation by the British authority revealed that in 2016, when Marriott bought the "Starwood" network, they knew it was under-protected against cyber attack. Thus, the investigators considered that the security they were supposed to ensure was not sufficient and therefore allowed the third party to download their clients' data.

Official statement from the British office:

„Personal data has a real value so organisations have a legal duty to ensure its security, just like they would do with any other asset. If that doesn’t happen, we will not hesitate to take strong action when necessary to protect the rights of the public.“

What is the lesson to learn?

In this case too, we can easily see how it is necessary to follow all necessary measures. Always try to explore all possible threats so that a similar situation does not happen to you.