Dutch privacy watchdog fines Booking.com €475K – POLITICO
Dutch privacy watchdog fines Booking.com €475K
Criminals stole the personal data of more than 4,000 customers.
Booking.com Kicks Off Its “Book the U.S.” List With Priyanka Chopra
The website received the penalty for missing a 72-hour deadline to report the breach to the regulator | Noam Galai/Getty Images
BY VINCENT MANANCOURT
March 31, 2021 12:56 pm
Share on Facebook
Share on Twitter
Share on Linkedin
Mail
Print
Hotel booking site Booking.com got hit with a €475,000 fine for being late to report a data breach, the company's lead EU privacy regulator announced Wednesday.
The fine, imposed by the Dutch data protection authority because the company is legally established in Amsterdam, came after criminals stole the personal data of more than 4,000 Booking.com customers — obtaining the credit card details of nearly 300 victims.
The website received the penalty for missing a 72-hour deadline to report the breach to the regulator, which it did on February 4, 2019 — almost a month after it suffered the breach.
"This is a serious violation," said Monique Verdier, the Dutch regulator's vice president in a statement announcing the fine. "A data breach can unfortunately happen anywhere, even if you have taken good precautions. But to prevent damage to your customers and the recurrence of such a data breach, you have to report this in time."
The fine is the Dutch regulator's eighth under the EU's 2018 data protection code, the General Data Protection Regulation, though it has suffered setbacks in court.
A Booking.com spokesperson said: “The Dutch DPA [data protection authority] fine relates specifically to late notification to them of this incident and is not connected to Booking.com’s security practices, nor to the overall handling of the incident in question.”
Criminals stole the personal data of more than 4,000 customers.
Booking.com Kicks Off Its “Book the U.S.” List With Priyanka Chopra
The website received the penalty for missing a 72-hour deadline to report the breach to the regulator | Noam Galai/Getty Images
BY VINCENT MANANCOURT
March 31, 2021 12:56 pm
Share on Facebook
Share on Twitter
Share on Linkedin
Hotel booking site Booking.com got hit with a €475,000 fine for being late to report a data breach, the company's lead EU privacy regulator announced Wednesday.
The fine, imposed by the Dutch data protection authority because the company is legally established in Amsterdam, came after criminals stole the personal data of more than 4,000 Booking.com customers — obtaining the credit card details of nearly 300 victims.
The website received the penalty for missing a 72-hour deadline to report the breach to the regulator, which it did on February 4, 2019 — almost a month after it suffered the breach.
"This is a serious violation," said Monique Verdier, the Dutch regulator's vice president in a statement announcing the fine. "A data breach can unfortunately happen anywhere, even if you have taken good precautions. But to prevent damage to your customers and the recurrence of such a data breach, you have to report this in time."
The fine is the Dutch regulator's eighth under the EU's 2018 data protection code, the General Data Protection Regulation, though it has suffered setbacks in court.
A Booking.com spokesperson said: “The Dutch DPA [data protection authority] fine relates specifically to late notification to them of this incident and is not connected to Booking.com’s security practices, nor to the overall handling of the incident in question.”
