The FTC's recent settlement order mandates Marriott to delete personal data upon customer request and restore lost loyalty points due to prior data breaches.
Marriott's cybersecurity failures included inadequate password controls and outdated software, resulting in severe breaches that compromised the data of over 344 million customers.
The FTC noted that Marriott misled customers by claiming to have appropriate security measures, despite multiple lapses allowing hackers to access sensitive information.
Between 2014 and 2020, three significant data breaches at Marriott exposed sensitive customer information, dismissing the company's assertion of reasonable security measures.
[
Collection
]
[
|
...
]