On April 10th I received a mailing from the Wyndham Carmel Valley Ranch in California. It was a copy of a bill for recent two-night stay. However, I did not stay at this hotel. The bill was for a guest with the same name as I have. The person’s credit card number (not mine!) was printed on the bill in its entirety.
I emailed Wyndham through their website and received a call back from the hotel a few hours later. A nervous staffer said that someone with the same name as me stayed at the hotel and didn’t give them an address because the booking was done through a travel agent.
Since they never got the person’s address, they found a Wyndham ByRequest number matching the name and used the address in my profile to send the bill. They never thought that it would be another person with the same name.
They didn’t seem overly concerned that Wyndham had given me the American Express number of another person with my name. Naturally, I shredded the bill.
The nervous staffer hung up the phone abruptly, and I let the incident go until I received an email from Wyndham today asking me to take a survey about my recent stay — at the Carmel Valley Ranch Wyndham.
One data point isn’t enough for a diagnosis, but Wyndham may need to do something about their internal systems and privacy. I wonder if giving out credit card numbers and divulging stay information for their guests happens often.
But if, as the email I received today suggests, they still think I stayed at the hotel I darn well expect to get the frequent flyer points!