Penalty Amount
$52,000,000
Marriott International, Inc. suffered a data breach exposing 131 million guest records, including personal and payment information. The Texas Attorney General secured a $3.5 million settlement as part of a $52 million multistate agreement, requiring Marriott to enhance its data security practices with zero-trust principles and regular reporting to the CEO.
Marriott must pay $52 million to the states, including $3.5 million to Texas, and implement comprehensive data security improvements such as zero-trust architecture, regular CEO-level security reporting, and enhanced employee training on data handling.
Entity
Marriott International, Inc.
Also known as: Marriott
Industry
Other$52.0M
A multistate settlement with Marriott International for a data breach affecting 131.5 million guest records. Marriott failed to secure the Starwood network from 2014 to 2018, exposing personal information. The settlement includes a $52 million payment and requires Marriott to implement enhanced cybersecurity measures and consumer protections.
$52.0M
A multistate coalition of 50 attorneys general, including New Jersey, reached a $52 million settlement with Marriott International, Inc. for two data breaches that exposed personal information of over 131 million consumers. The breaches resulted from inadequate cybersecurity practices at Starwood and Marriott networks. The settlement mandates comprehensive security improvements and monetary penalties.
$52.0M
Marriott International agreed to a $52 million multistate settlement after a data breach exposed 131.5 million customers' personal information due to undetected intruders in Starwood's system from 2014 to 2018. The settlement mandates significant cybersecurity improvements, including third-party assessments, data minimization, and enhanced training.
Texas Attorney General Ken Paxton reached an agreement with Samsung Electronics America, Inc. to stop collecting Automated Content Recognition (ACR) data from smart TVs without consumers' express consent. Samsung must update its smart TVs to provide clear and conspicuous disclosures and obtain consent before any data collection, ensuring Texans are informed and in control of their viewing data.
Texas Attorney General Ken Paxton filed a lawsuit against Shein US Services LLC for selling toxic products and exposing consumers' personal data to the Chinese Communist Party. The lawsuit seeks monetary penalties under the Texas Deceptive Trade Practices Act. This action is part of a broader effort to protect Texans from health risks and CCP influence.
Texas Attorney General Ken Paxton filed a lawsuit against Temu (PDD Holdings, Inc. and WhaleCo Inc.) for deceptive marketing practices and illegally harvesting Texans' personal data, which was then exposed to the Chinese Communist Party. The suit seeks monetary damages under the Texas Deceptive Trade Practices Act, with potential penalties of up to $10,000 per violation and higher for seniors. This is part of a broader effort to hold CCP-aligned companies accountable.