The U.S. Federal Trade Commission said last Wednesday it will require Marriott International and its subsidiary Starwood Hotels & Resorts Worldwide to put in place an information security program to settle charges over multiple data breaches from 2014 to 2020.
The three large data breaches, which took place from 2014 to 2020, affected more than 344 million customers worldwide, the FTC said.
“Marriott’s poor security practices led to multiple breaches affecting hundreds of millions of customers,” said Samuel Levine, Director of the FTC’s Bureau of Consumer Protection. “The FTC’s action today, in coordination with our state partners, will ensure that Marriott improves its data security practices in hotels around the globe.”