Although Marriott is based in the US, some guests were citizens of the European Union, so the breach falls under European Union General Data Protection Regulation.
Marriott International could face a multimillion-pound fine in Europe, following news that the data of approximately 500 million guests had been compromised, writes Katherine Price.
It is also understood that two American law firms have filed a class action lawsuit against the US-based hotel chain.
Meanwhile, US senator Charles Schumer has called on the hotel group to reimburse those affected to allow them to purchase new passports.
Get the full story at Travel Weekly
Read also "Marriott Inherits a Mess of Historical Proportions"