Princess Cruises & Holland America Data Breach Investigation

Migliaccio & Rathod LLP is currently investigating Princess Cruises & Holland America for failure to safeguard customer data, resulting in a data breach. Carnival Corp. – the parent company of Princess Cruises and Holland America – announced the breach in early March, right around the explosion of COVID-19 news coverage. For this reason, the news eluded major attention. The cruise lines both report that an “unsanctioned third party” gained access to access to personal information pertaining to guests, crew, and employees. The breach occurred between April 11th and July 23rd, 2019.

Potentially exposed information includes:

  • Name
  • Address
  • Social Security Number
  • Government ID Information (e.g. passport or driver’s license number)
  • Credit card number and other financial information
  • Health-related information

Breach Clarity, an assessment tool for identity fraud risk resulting from data breaches, scored the Princess Cruises and Holland America breaches at an exceptionally high “seven” out of ten. It is unclear why Carnival, which discovered the vulnerability in May 2019, waited almost a full year to disclose the breach to the public. Both cruise lines recently halted global operations due to the COVID-19 pandemic – two Princess Cruises ships and one Holland America ship have been struck by on-board outbreaks.

Are you a Princess Cruises or Holland America customer who believes their personal information may have been compromised by a data breach?

If so, we would like to hear from you. Please complete the contact form on this page, send us an email at [email protected], or give us a call at (202) 470-3520.

Committed to Consumer Protection

The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving data breaches. More information about our current cases and investigations is available on our blog.