Marriott recently revealed a data breach of the Starwood guest reservation database, potentially affecting up to 500 million guests. On 8th September, there was an unauthorised attempt to access their systems, which led to further investigations with leading security experts. It was determined that over the past 4 years, an unauthorised party had been able to access and copy encrypted information, which could include name, email address, mailing address, passport number, amongst other things. One of the real grey areas is around whether card details were at risk, despite the advanced standard of security on financial data. Marriott has not been able to guarantee whether these components were taken in the breach.
We would like to reassure you that, for any bookings made through Business Travel Direct, the only information we would pass on is the traveller’s name. The data that could potentially be at risk is any information requested by the hotel at check-in.
We are following developments closely (and will provide an update when we can) but, in the meantime, you may wish to view Marriott’s dedicated website where there is more information relating to the incident, including frequently asked questions and recommended steps.