For Atwell Suites franchisees, who is responsible for maintaining the security of their own login information?
Atwell_Suites Franchise · 2025 FDDAnswer from 2025 FDD Document
Hotel will ensure all Designated Users comply with industry best practices to implement secure passwords, regularly change such passwords, and protect the security and privacy of their user logins and the PMS Data.
Hotel shall be solely responsible for any and all Claims and Losses (as each such term is defined below) relating to an unauthorized third party access to the PMS Solution and/or PMS Data that results or arises out of breach of the foregoing.
Hotel will comply with any additional security requirements that HotelKey or IHG provides to Hotel in writing, which may be updated from time to time.
Source: Item 23 — Receipts (FDD pages 99–486)
What This Means (2025 FDD)
According to the 2025 Atwell Suites FDD, the franchisee, referred to as the 'Hotel' in this context, is responsible for ensuring that all designated users comply with industry best practices for password security. This includes implementing secure passwords, changing them regularly, and protecting the security and privacy of their user logins and the PMS (Property Management System) Data.
The Atwell Suites franchisee is also solely responsible for any claims and losses resulting from unauthorized third-party access to the PMS solution or PMS data if it arises from a breach of these security practices. Furthermore, the franchisee must comply with any additional security requirements provided by HotelKey or IHG (InterContinental Hotels Group) in writing, which may be updated periodically.
This allocation of responsibility means that Atwell Suites franchisees must actively manage and enforce strong password policies among their staff. They need to stay informed about evolving security threats and implement necessary updates to their security protocols as advised by HotelKey or IHG. The franchisee bears the financial risk associated with security breaches caused by inadequate password management, highlighting the importance of robust training and oversight in this area.