Data theft: The greatest liability concern facing hotels today

This is the final part in a series on liability in hotels. Click here for part two: Five tips to address hotel liability concerns.

Some of the greatest liability concerns hotels face today are digital in nature. Cyber attacks, and especially breaches of credit-card information, topped headlines in 2014. 

Nicholas Economidis, underwriter at specialist insurance provider the Beazley Group, said the biggest mistake hotels can make regarding guest credit theft is thinking, “This cannot happen to me.” Hackers, he said, are opportunistic and do not discriminate by segment or location. They are after credit-card information because it is the most commonly stored data from business to business, and they look for any open door to get to it.

FREE DAILY NEWSLETTER

Like this story? Subscribe to Operations & Technology!

Hospitality professionals turn to Operations & Technology as their go-to source for breaking news on guestrooms, food & beverage, hospitality and technology trends, management and more. Sign up today to get news and updates delivered to your inbox daily and read on the go.

Harry Gorstayn, GM of the Radisson Blu Mall of America, in Bloomington, Minn., said his hotel no longer stores credit-card information. Instead, when a card is swiped at the property, he said, it is associated with a code, not a personal identification number. If a breach were to take place, hackers would only obtain codes that were meaningless to them.

Economidis said anything from hackers and electronic intrusion to malware could be the source of a breach. Even employees responding to credit-card provider requests could present an opening to data thieves. 

Once data have been compromised, security experts can easily lock the thieves out, but it is difficult to know when a system has been infiltrated. If a breach occurs, Economidis said, the incoming forensic audits can be managed to avoid paying maximum penalties.
For example, Economidis said if a company reporting a breach determines that 25,000 accounts were compromised and 100,000 may be vulnerable, auditors will treat the situation as if 125,000 accounts were lost. 

“Hotels need to work with auditors to reduce the numbers to a definite,” Economidis said. “You need to be an active participant in the process. Don’t make conservative assumptions; you can help them find better information.”

Suggested Articles

2,500 senior leaders will come together on the 2nd to 4th of March 2020 at the 23rd International Hospitality Investment Forum (IHIF).

A year after closing on the Two Roads Hospitality acquisition, Hyatt reported some ups and downs in its earnings for 2019.

The appointments included new C-suite leaders at IHG, Marriott International and Six Senses Hotels Resorts Spas.