search.noResults

search.searching

dataCollection.invalidEmail
note.createNoteMessage

search.noResults

search.searching

orderForm.title

orderForm.productCode
orderForm.description
orderForm.quantity
orderForm.itemPrice
orderForm.price
orderForm.totalPrice
orderForm.deliveryDetails.billingAddress
orderForm.deliveryDetails.deliveryAddress
orderForm.noItems
CyberSecurity travel firms hit by fines for data breaches


Cybersecurity poses multiple challenges and no little risk. Breaches no longer threaten just sensitive data but brand reputations and hefty fines. British Airways and Marriott


International may have been unfortunate to be first in the line of fire when the UK Information Commissioner’s Office (ICO) issued notice of its first major fines for data breaches in July 2019 since Europe’s General Data Protection Regulation (GDPR) came into force in May 2018. BA was notified it faces a fine of


e bPLOOLRQ DIWHU KDFNHUV DFFHVVHG WKH data of half a million or more customers in 2018. Marriott learnt of the ICO’s intention to fine it £99 million for the breach of its Starwood subsidiary, also in 2018, before Marriott acquired it. Those fines contrasted somewhat with a €50 million fine imposed on Google by the French data protection agency in January for breaching GDPR rules on transparency. Peter Gooch, Deloitte cyber and


privacy partner, said: “We’ve seen regulators flex their muscles with some sizeable notices of intent to fine. The regulatory pressure is very real now. We ە GLG QRW KDYH D EHQFKPDUN EHIRUH +H VDLG “7KH ,&2 QRWLFHV VHQW VKRFN


waves, showing the ICO is willing to impose large fines. There was an expectation of significant fines, but


COMPANIES suffering cyber


breaches report loss of revenue and loss of trust as the biggest impacts (Figure 66)


FIGURE 66: MOST-RECENT CYBER BREACH All sectors


%


In past year


9%


2-plus years ago:


43%


years ago:


48% 1-2


10 15 20 25


0 5


21% 21% 16% 17% 14% 12%


The threat of hefty fines for cyber breaches has propelled cybersecurity up boardroom agendas


the size caught people by surprise. Historically, there have been bigger breaches. “It caused a lot of clients to revisit


WKLV DQG DVN ‘+DYH ZH WDNHQ WKH *'35 VHULRXVO\" 'R ZH UHDOO\ NQRZ ZKHUH WKH GDWD LV" 'R ZH NQRZ KRZ SURWHFWHG WKH data is? Do we need to invest more?’ 6RPH KDG WDNHQ VXSHUILFLDO VWHSV 7KHUH LV a realisation now that there is a lot more WR GR , NQRZ RUJDQLVDWLRQV ZKLFK KDG cyber budgets turned down previously ە ZKLFK QRZ KDYH EXGJHWV VLJQHG RII The fact that the two headline


breaches involved travel and hospitality ەHFQHGLFQLRF“ FRPSDQLHV *RRFK VHHV DV But he noted “the relative immaturity of DV D IDFWRU VD\LQJ “7UDYHO DQG ەURWFHV WKH hospitality is probably less well-protected than some sectors. The financial sector, pharmaceuticals, defence and aerospace ە WHQG WR EH PRUH VHFXUH He added: “Travel and hospitality is


less regulated from a cyber perspective and has not invested so much. Awareness is heightened now. There has been an XSWLFN >LQ LQWHUHVW@ LQ WKH ODVW VL[ PRQWKV %RDUGV DUH DVNLQJ ‘+RZ ZRXOG ZH %XW KH QRWHG “7KH ەۑ"KFDHUE UHVSRQG WR D ە LQGXVWU\ VWLOO KDV ORZ PDUJLQV At the same time, Gooch said: “The


threat of operational disruption from GHQLDO RI VHUYLFH DWWDFNV LV VWLOO WKHUH 2UJDQLVDWLRQV UHPDLQ IHDUIXO RI DQ DWWDFN ە WKDW FRXOG WDNH RXW WKHLU RSHUDWLRQV


Biggest impact of breach


FRAMEWORK APPROACH When advising organisations on cybersecurity, Gooch said: “It’s a lot DERXW SURYLGLQJ D IUDPHZRUN – EHLQJ DEOH WR EUHDN LW GRZQ DQG PDNH LW PDQDJHDEOH “There are half a dozen common


Revenue loss


Loss of customer trust


Reputation loss


Leadership change


Regulatory fine


Share price fall


Figures rounded, not 100%. Base: 500 executives with cyber responsibility, annual revenue $500m-plus. Source: Deloitte 2019


IUDPHZRUNV :H KDYH D K\EULG IUDPHZRUN which helps to understand where the threats are coming from and what an organisation is most vulnerable to. We SLFN D V\VWHP RU QHWZRUN FRQQHFWHG WR WKH internet and carry out threat and impact ە DVVHVVPHQWV WR SULRULWLVH DUHDV WR ORRN DW The process can be open-ended, he


40 Travel Weekly Insight Report 2019-20


Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32  |  Page 33  |  Page 34  |  Page 35  |  Page 36  |  Page 37  |  Page 38  |  Page 39  |  Page 40  |  Page 41  |  Page 42  |  Page 43  |  Page 44  |  Page 45  |  Page 46  |  Page 47  |  Page 48  |  Page 49  |  Page 50  |  Page 51  |  Page 52