Tag Archives: Protection

Hospitality Industry Management Update: “Hotel Housekeepers Are at Great Risk for Sexual Assault From Guests”

“Women described men who insisted they close the door while cleaning, grabbed their hands as they handed over change and asked where they could “find a girl.”housekeeper-387x580 Kensbock and her colleagues identified a few factors that put women in the hotel industry at a heightened risk for sexual harassment, including the “gendered” nature of their work as housekeepers and their lack of power relative to the guests…Most of the women in Kensbock’s study coped with harassment using passive strategies, like humor or deflection. Though the hotel management had protocols they could follow to report inappropriate behavior, women—fearing guests would retaliate by leaving negative surveys—rarely complained.”

When Dominique Strauss-Kahn was accused of assaulting Nafissatou Diallo, the maid who was sent to clean his hotel room, hospitality workers thought the story seemed all-too-plausible. In a New York Times op-ed, Jacob Tomsky, a veteran of the hotel industry, wrote that housekeepers are assaulted by guests “more often than you’d think,” and that their employers don’t offer much protection. In a recent account on xoJane, an anonymous woman describes a decade’s worth of sexual harassment in different parts of the hotel industry—from working the front desk to cleaning rooms. It’s so systemic, she says, that the women developed coordinated strategies to cope with it—like enlisting other housekeepers to stay with them when they’re assigned to clean the room of a “known pervert.”

For more: http://bit.ly/124uEO7

Comments Off on Hospitality Industry Management Update: “Hotel Housekeepers Are at Great Risk for Sexual Assault From Guests”

Filed under Crime, Guest Issues, Hotel Employees, Hotel Industry, Management And Ownership, Risk Management

Hospitality Industry Conference Update: “15th Annual California Tourism Safety & Security Conference”

Last years conference was a huge success and we could not be more excited to be back! Come see Petra’s own Director of Risk Management, Todd Seiders, along with other members of the Petra P3 team. We hope to see you there!

10450931_685578321526648_5378416591685210950_n

For more information on our P3 team: http://bit.ly/WUWpWi

Comments Off on Hospitality Industry Conference Update: “15th Annual California Tourism Safety & Security Conference”

Filed under Conferences, Hotel Industry, Management And Ownership, Risk Management, Training

Hospitality Industry Risk Update: “Carbon Monoxide: Protecting Your Guests, Safeguarding Your Property”

Equipment options run from simple alarms to more complex system-style detection, said Byron Briese, SVP of Rolf Jensen & Associates.Carbon-Monoxide-620x330 The simplest arrangement is single- or multiple-station alarms, which include battery-operated, plug-in, and hardwired with battery backup, or combination smoke alarm/CO, which have become a lot more popular in the last few years.

While carbon monoxide poisoning at hotels is extremely rare, hotel owners and operators should practice regular maintenance and checks on equipment and systems to ensure the highest standards of guest and employee safety. During the AH&LA webinar “Carbon Monoxide: Protecting Your Guests, Safeguarding Your Property” last Thursday, experts discussed new code requirements that impact hotels, as well as tips for installing CO alarms and detectors and implementing a response plan.

For more: http://bit.ly/1waR5ux

Comments Off on Hospitality Industry Risk Update: “Carbon Monoxide: Protecting Your Guests, Safeguarding Your Property”

Filed under Claims, Guest Issues, Health, Hotel Industry, Injuries, Liability, Management And Ownership, Pool And Spa, Risk Management

Hospitality Industry Risk: Cybercrime Is Targeting Smaller Companies Who Need To Employ Security Packages

“We are in an arms race with sophisticated, high tech enemies who are now concentrating on smaller business bank accounts in addition to their continued efforts to steal from large corporations.” To combat the risk, Conner suggests that small businesses employ a “triple threat” security package that would include

• Authentication 

• Fraud detection  

• “Out-of-band transaction verification and signing for high-risk transactions”

(From a USAToday.com article)    Authentication and fraud detection intuitively make sense – these sorts of products look at your transaction, and transaction history, and check for suspicious activity. Conner explained that while Entrust already offers the first two types of protection, to better serve its customers, it is adding that third, necessary layer, of protection with a new product being launched this week.

 “IdentityGuard Mobile” is an app for your smartphone. When a potentially suspicious activity begins to hit your account, this product sends you a text of the transaction details and asks you to authenticate and approve it before the bank can approve it.

 With the challenges to small business coming from all sides – decreased lending, tighter budgets, wary consumers – the last thing we need is to take a financial hit due to cybercrime, so we must be vigilant. Keep your security patches up to date. Make sure you have a robust antivirus suite. Change your pass codes frequently. Use the triple threat.

  http://www.usatoday.com/money/smallbusiness/columnist/strauss/2010-04-18-cyber-threats_N.htm

Comments Off on Hospitality Industry Risk: Cybercrime Is Targeting Smaller Companies Who Need To Employ Security Packages

Filed under Crime, Liability, Theft, Training

Hospitality Industry Risk: “PCI Security Standards” Should Be Implemented By Hotels And Restaurants To Protect Customer Data

The PCI Security Standards Council will enhance the PCI DSS as needed to ensure that the standard includes any new or modified requirements necessary to mitigate emerging payment security risks, while continuing to foster wide-scale adoption.

(From a PCIsecuritystandards.org posting)   The PCI DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. Inc. International, to help facilitate the broad adoption of consistent data security measures on a global basis.

The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organizations proactively protect customer account data.

The PCI Security Standards Council will enhance the PCI DSS as needed to ensure that the standard includes any new or modified requirements necessary to mitigate emerging payment security risks, while continuing to foster wide-scale adoption.

Ongoing development of the standard will provide for feedback from the Advisory Board and other participating organizations. All key stakeholders are encouraged to provide input, during the creation and review of proposed additions or modifications to the PCI DSS.

The core of the PCI DSS is a group of principles and accompanying requirements, around which the specific elements of the DSS are organized:

Build and Maintain a Secure Network

Requirement 1: Install and maintain a firewall configuration to protect cardholder data
Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters

Protect Cardholder Data

Requirement 3: Protect stored cardholder data
Requirement 4: Encrypt transmission of cardholder data across open, public networks

Maintain a Vulnerability Management Program

Requirement 5: Use and regularly update anti-virus software
Requirement 6: Develop and maintain secure systems and applications

Implement Strong Access Control Measures

Requirement 7: Restrict access to cardholder data by business need-to-know
Requirement 8: Assign a unique ID to each person with computer access
Requirement 9: Restrict physical access to cardholder data

Regularly Monitor and Test Networks

Requirement 10: Track and monitor all access to network resources and cardholder data
Requirement 11: Regularly test security systems and processes

Maintain an Information Security Policy

Requirement 12: Maintain a policy that addresses information security

To further the adoption of the PCI DSS, the PCI Security Standards Council defines credentials and qualifications for QSAs and ASVs. The PCI Security Standards Council also manages a global training and certification program for QSAs and ASVs, and will publish a directory of certified providers on this Web site.

https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml

4 Comments

Filed under Crime, Liability, Theft, Training