After a series of cyber-attacks in 2008 and 2009 which caused customers of Wyndham Worldwide Hotels to have their credit card details and personal information unlawfully obtained and in some cases to then receive ransom demands, complaints were made to the company which delayed in responding to them and ultimately the matter was passed to the Federal Trade Commission (FTC).
The FTC held Wyndham Worldwide liable for failing to implement “reasonable protections”.
Wyndham brought proceedings in the Courts against the FTC claiming that they had no authority to adjudicate on the level of cyber security that Wyndham had or had not in place.
Edith Ramirez, the FTC Chairperson recently stated that the decision of the Federal Court “reaffirms the FTC’s authority to hold companies accountable for failing to safeguard consumer data.”
Data security is now a default and not an option!