On 9 October 2024, the Federal Trade Commission (FTC) announced its action against Marriott International and its subsidiary, Starwood Hotels & Resorts Worldwide, for misleading consumers about their data security practices. The proposed settlement prohibits them from misrepresenting their data handling and requires data minimisation, a comprehensive security program with independent assessments, methods for reviewing unauthorised loyalty account activity, and links for customers to request deletion of personal information.
Original source