GDPR - Hotels


Few businesses are more affected by GDPR regulations than the hotel industry. This is due to the fact that hotels are vulnerable when it comes to data security.

They process huge volumes of highly sensitive personal data on a daily basis.

Research shows that hotels are one of the most vulnerable sectors when it comes to data breaches. In 2019, the hotel industry had the second highest number of security breaches.

Why are Hotels so Impacted by GDPR?

Hotels are particularly impacted by the new GDPR regulations for several reasons.

• They collect and process significant amounts of personal data.

• They receive personal data from a wide number of other sources including individuals, companies, third-party booking agents such as travel agents and online booking companies.

• Almost all hotels have closed circuit TV systems.

• Hotels employ a large number of employees at each location and many chains have locations all over the world.

• Hotels have a high turnover of guests, employees, trades people and contract workers.

• Hotels use profiling of personal data of their clients.

Each of the above activities involves personal data processing. Some of the data is sensitive. Breaches in data or misuse of it will be severely penalized under GDPR. Heavy fines and bad publicity are unhealthy for travel industry partners. The losses could be catastrophic.

Don't miss these guides: