UK's ICO fines Marriott 18.4 mln pounds for failing to secure customer data

Oct 30 (Reuters) - Britain’s data watchdog said on Friday it has fined Marriott International 18.4 million pounds ($23.98 million) for failing to keep customers’ personal data secure, after a 2014 cyber attack on Starwood Hotels and Resorts Worldwide affected 339 million guest records.

The Information Commissioner’s Office (ICO) said that the attack was from an unknown source and remained undetected until September 2018, by which time the company had been bought by Marriott. ($1 = 0.7673 pounds) (Reporting by Tanishaa Nadkar in Bengaluru; Editing by Shailesh Kuber)


Reuters Breakingviews is the world's leading source of agenda-setting financial insight. As the Reuters brand for financial commentary, we dissect the big business and economic stories as they break around the world every day. A global team of about 30 correspondents in New York, London, Hong Kong and other major cities provides expert analysis in real time.

Sign up for a free trial of our full service at and follow us on Twitter @Breakingviews and at All opinions expressed are those of the authors.