Hotel chain Marriott International Inc (NASDAQ:MAR) said the personal details of more than 500 million guests have been compromised in a data breach of its Starwood guest reservation database.
The company said guests who have made bookings since 2014 could have had their information – including credit card details, passport numbers, email addresses, phone numbers and postal addresses – accessed in the cyber-attack.
Marriott’s president and chief executive, Arne Sorenson, apologised to guests for the incident and said the company is taking steps to avoid another attack.
“We fell short of what our guests deserve and what we expect of ourselves. We are doing everything we can to support our guests, and using lessons learned to be better moving forward," he said.
Sorenson said affected customers will be able to use a dedicated website and call centre to ask questions.
The group will also devote resources to improve security measures, he added.
Marriott became the world’s biggest hotel group after buying Starwood Hotels & Resorts Worldwide for US$13bn in 2016.
The deal brought together the Marriott, Courtyard and Ritz Carlton brands with Starwood's Sheraton, Westin, W and St. Regis properties.