Violation Tracker Individual Record
: Carnival Corp. et al.
Current Parent Company
: Carnival Corp.
Parent at the Time of the Penalty AnnouncementPenalty
to see this data field
: June 24, 2022
: consumer-protection-related offenses
: privacy violation
: Carnival Corporation d/b/a Carnival Cruise Line, Princess Cruise Lines, Holland America Line, Seabourn Cruise Line, and Costa Cruise Lines agreed to pay a $5 million penalty settling allegations it failed to adequately protect customers' personal information from a data breach. There was a separate multistate settlement over data breaches, the New York allegations stemmed from the companies status as licensed insurance producers in the state.
Level of Government
: agency action
: New York Department of Financial Services
Civil or Criminal Case
: New York
HQ Country of Current Parent
HQ State of Current Parent
Ownership Structure of Current Parent
: publicly traded
Major Industry of Current Parent
Specific Industry of Current Parent
: cruise lines
Source of Data
: (click here)
: If an online information source is not working, check the Violation Tracker Data Sources page
for an updated link.
Current parent company note
: Parent-subsidiary relationship is current as of the most recent revision listed in the Update Log