de en
Update – Status: 25.02.2026
This page is the central source of information regarding the data protection incident. New relevant findings will be published exclusively here.

Key Information for End Customers Regarding the Data Protection Incident

Update on the Data Protection Incident – Completion of the External Security Analysis

An independent cybersecurity firm was commissioned to investigate the incident. The analysis has now been completed.
The investigation confirmed that an unauthorized third party gained access to customer data, which was subsequently misused for targeted phishing attempts.

Important to know:

  • There is no evidence that data was altered or deleted.
  • The systems continue to operate securely.
  • The unauthorized access has been stopped.
  • Additional security measures have been implemented.

What does this mean for you?

The attacker may have attempted to contact you via messages (e.g., WhatsApp or email) while impersonating a hotel or booking platform.
These messages may contain links to fraudulent websites designed to steal payment information.
You will never be asked to provide payment details via WhatsApp or SMS.

What you should do

Please note the following:

  • Do not click on suspicious links.
  • Do not enter payment details on unknown websites.
  • If in doubt, contact your hotel directly.
  • If you have already entered your details, please contact your bank immediately.

Our Measures

The incident has been thoroughly investigated and additional security measures have been implemented to further protect the systems.
Swoppen continues to work with external security experts to continuously improve security standards.

Update – Status: 02.02.2026 12:05 Uhr

What happened?

As part of a current investigation, it was determined that unauthorized access to personal data occurred in connection with bookings or reservations that were processed via a booking/management software in use.

The responsible authorities have been informed, and the incident is currently being thoroughly investigated together with independent external IT security companies.

Information & Updates

How will new information be communicated?

All new findings relevant to the data protection incident will be continuously published centrally on this page. Individual notifications to specific persons regarding interim statuses or detailed information will not be provided.

Which data may be affected?

According to current knowledge, the following data may be affected, among others:

  • First and last name
  • Email address
  • Telephone number
  • Postal address
  • Booking or stay details (e.g. arrival and departure dates)

Depending on how the system was used by the respective customer, payment data may also be affected if corresponding functions were used.
Credit card information – if stored – is processed exclusively in encrypted form. According to current knowledge, there are no indications of decryption or misuse of this data.

Why am I receiving suspicious messages?

As a result of the incident, targeted phishing attacks are currently taking place, including via email or WhatsApp. Some of these messages appear very authentic and refer to actual bookings or stays.

The aim of these messages is to induce recipients to enter payment or access credentials.

Important Security Notices

Please note:

  • Do not click on any links in unexpected or suspicious messages.
  • Do not enter any payment or credit card details.
  • Do not share any access credentials.

Reputable providers do not request booking confirmations or payments via WhatsApp or external websites.

What should you do now?

We recommend that you:

  • Do not respond to suspicious messages
  • Delete or document the messages (e.g. screenshot)
  • Change passwords as a precaution, especially if they are also used elsewhere
  • If in doubt, contact the company you booked with directly

Which measures have been taken?

  • Notification of the incident to the competent data protection supervisory authority
  • Filing of a criminal complaint
  • Engagement of independent external IT security companies
  • Implementation of additional technical and organizational security measures

Who can I contact?

This central information page is available for general information about this incident.
For booking-specific questions, please contact the company with which you made your booking directly.

🔐 Data Protection Notice

The protection of personal data is a top priority. We sincerely regret the inconvenience caused and provide transparent information about new findings.

❓ Frequently Asked Questions (FAQ) about the Data Protection Incident

What happened?

In connection with a booking/management software in use, unauthorized access to personal data occurred. The incident is currently being thoroughly investigated and has been reported to the competent authorities.

According to current knowledge, the following data may be affected, among others:

  • First and last name
  • Email address
  • Telephone number
  • Postal address
  • Booking or stay details (e.g. arrival and departure dates)

No passwords or payment data are known to have been obtained from the system.

Why am I receiving phishing messages via email or WhatsApp?

The messages currently being sent are not directly related to your provider, but are part of a targeted phishing attack. The senders attempt to build trust by referencing real bookings in order to obtain payment or access credentials.

Are the messages genuine?

No.
The messages do not originate from your provider or the software manufacturer.
In particular, payment or verification requests via WhatsApp, SMS, or external websites are fraudulent.

What should I do if I have received such a message?

Please note:
❌ Do not click on any links
❌ Do not enter any payment or access details
❌ Do not reply to the message

It is recommended to:

  • delete or document the message (e.g. screenshot)
  • if in doubt, contact the company you booked with directly

Should I change my passwords?

Yes, as a precaution we recommend:

  • changing passwords, especially if they are also used elsewhere
  • using different passwords for different services
  • activating two-factor authentication where possible

Have authorities been informed?

Yes.
The incident was:

  • reported to the competent data protection supervisory authority
  • reported to law enforcement
  • additionally investigated by independent external IT security companies

What actions are currently being taken?

  • Forensic analysis of the incident
  • Implementation of additional technical and organizational security measures
  • Close cooperation with external security firms and authorities
  • Ongoing updates on new findings

Who can I contact if I have questions?

  • General questions about the incident:
    Please use this central information page.
  • Questions about your specific booking:
    Please contact the company you booked with directly.

Is there a risk for me?

There is an increased risk of phishing and fraud attempts.
If you do not click on suspicious links and do not share any data, you can significantly reduce the risk.

Will there be further information?

Yes.
This page will be continuously updated as new information becomes available.

How will I know if there are new findings?

All relevant updates regarding the data protection incident will be published centrally on this page. Please check back regularly for updates.

Will I receive a personal notification when new information becomes available?

No. For reasons of consistent and transparent communication, updates will be provided exclusively via this central information page.

Why is information not sent individually by email?

The central publication ensures that all affected parties can access the same up-to-date information at any time and prevents contradictory individual communications.