All payment card and expiry date data was stored in encrypted form in our system and it has not been confirmed whether the data was decrypted in the course of the incident.
If there is a possibility that your credit card information was involved in this incident, “payment card number and expiry date” will be highlighted in the notice you received. If you have received the email, letter or SMS from us relating to this incident, we encourage you to follow its security recommendations.
We are highlighting this to you in an abundance of caution. It is always advisable to closely review your payment card statements for any unauthorised charges.
If you believe you have been a victim of financial fraud, as always, you should contact your bank or your credit card company.
If you have received a notice from us relating to this incident, we encourage you to follow the recommendations in the notice.
As a precautionary measure, we recommend our guests to always be vigilant against phishing or other attempted scams and alert to any suspicious activity. We also recommend that our guests monitor their payment card statements for any unauthorised activity.
We know that the incident involved some of the hotels’ accommodation reservation databases, and the affected data will be the data of guests who stayed in those hotels. Guests whose reservation data may have been accessed or obtained as part of this incident are being notified as appropriate.
If you are among this group, you will receive either an email from email@example.com, a letter by post or an SMS which contains details of the situation, the information involved and security recommendations you may wish to follow.