The U.K. Information Commissioner’s Office issued a notice of its intention to fine Marriott International 99 million GBP for violations of the EU General Data Protection Regulation related to its November 2018 data breach. The ICO released the statement today in response to a filing Marriott made with the U.S. Securities and Exchange Commission. An ICO investigation found Marriott did not take the proper precautions when it acquired the Starwood hotels group, whose systems were compromised in 2014, when Marriott acquired the group in 2016. Marriott will have a chance to make representations to the ICO over its findings. The announcement comes shortly after the ICO issued a similar notice to British Airways for GDPR infractions.
If you want to comment on this post, you need to login.