Data Privacy & Protection for Hospitality and Travel Industries

In this new economic environment, four industries in the business of serving people: hospitality, travel, tourism, and fitness are under extreme pressure. In addition to experiencing unprecedented declines in business and resulting revenue caused by the COVID-19 crisis, these industries are under mounting data privacy and protection regulatory pressures from regulators and customers.

Hotels, airlines, cruise lines, and gyms are often global in nature meaning they must comply with multiple international privacy laws like the GDPR, CCPA, PDPA, etc. Adding further uncertainty, many were relying on the now invalidated Privacy Shield, or alternatively, the now legally questionable Standard Contractual Clauses or Binding Corporate Rules to conduct cross-border data transfers of personally identifiable information (“PII”).

Despite suffering massive declines in revenue, these businesses are experiencing exponential demands from their customers exercising their privacy rights like information access, do-not-sell, and erasure requests. Moreover, these financial and customer pressures are magnified by increasing regulatory scrutiny by data protection authorities and high-profile data breaches.

These industries depend on the collection and processing of large quantities of PII to attract guests and members and to provide them with a uniquely personalized experience. Therefore, a strong and effective data privacy and protection operation is critical.

Because of the above, ADVISORI and SECURITI.ai are bringing data privacy and protection leaders in these at-risk industries together to discuss their strategies and actions they have taken to meet their privacy regulatory responsibilities, while working with decreased budgets and staff. We have planned a series of three interactive workshops focusing on the following:

• Data Subject Access Request Management
• Cross-border Data Transfers, Data Mapping, and Risk Analysis
• Privacy Office Staff Management