https://community.isc2.org/t5/Privacy/ICO-continues-power-trip-with-99m-GDPR-fine-for-Marriott/m-p/24899#M810 <P>Fresh from throwing a record-breaking £183m fine in the direction of British Airways, the ICO on Tuesday <A href="https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2019/07/intention-to-fine-marriott-international-inc-more-than-99-million-under-gdpr-for-data-breach/" target="_blank" rel="noopener">announced</A> that it's continuing its power trip and slapping Marriott International with a hefty fine of £99,200,396, to be precise.</P><P>&nbsp;</P><P>The penalty relates to the mega-breach the hotel chain fessed up to in November last year. While, at the time, Marriott said the breach affected 500 million customers, the ICO's probing has revealed that a total of 339 million guest records globally were exposed, of which seven million related to British visitors.</P><P>&nbsp;</P><P>According to a post mortem of the hack, hackers stole:</P><UL><LI>383 million guest records</LI><LI>18.5 million encrypted passport numbers</LI><LI>5.25 million unencrypted passport numbers</LI><LI>9.1 million encrypted payment card numbers</LI><LI>385,000 card numbers that were still valid at the time of the breach</LI></UL> Mon, 09 Oct 2023 09:15:39 GMT leroux 2023-10-09T09:15:39Z https://community.isc2.org/t5/Privacy/ICO-continues-power-trip-with-99m-GDPR-fine-for-Marriott/m-p/24899#M810 <P>Fresh from throwing a record-breaking £183m fine in the direction of British Airways, the ICO on Tuesday <A href="https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2019/07/intention-to-fine-marriott-international-inc-more-than-99-million-under-gdpr-for-data-breach/" target="_blank" rel="noopener">announced</A> that it's continuing its power trip and slapping Marriott International with a hefty fine of £99,200,396, to be precise.</P><P>&nbsp;</P><P>The penalty relates to the mega-breach the hotel chain fessed up to in November last year. While, at the time, Marriott said the breach affected 500 million customers, the ICO's probing has revealed that a total of 339 million guest records globally were exposed, of which seven million related to British visitors.</P><P>&nbsp;</P><P>According to a post mortem of the hack, hackers stole:</P><UL><LI>383 million guest records</LI><LI>18.5 million encrypted passport numbers</LI><LI>5.25 million unencrypted passport numbers</LI><LI>9.1 million encrypted payment card numbers</LI><LI>385,000 card numbers that were still valid at the time of the breach</LI></UL> Mon, 09 Oct 2023 09:15:39 GMT https://community.isc2.org/t5/Privacy/ICO-continues-power-trip-with-99m-GDPR-fine-for-Marriott/m-p/24899#M810 leroux 2023-10-09T09:15:39Z https://community.isc2.org/t5/Privacy/ICO-continues-power-trip-with-99m-GDPR-fine-for-Marriott/m-p/24938#M811 <P>Wonder what the fines will actually be.&nbsp; I know they were guessing that BA would be 183Million pounds.......</P> Tue, 09 Jul 2019 20:05:20 GMT https://community.isc2.org/t5/Privacy/ICO-continues-power-trip-with-99m-GDPR-fine-for-Marriott/m-p/24938#M811 dcontesti 2019-07-09T20:05:20Z