Even where passport is required, I'm not sure it has to be entered into the system and attached to a customer's account. The hotel should photocopy and file it (or whatever they are required to do), and then destroy or delete the electronic image after checkout. I realize it's more work for the hotel staff, but data breaches are inevitable. Information like passport data shouldn't be stored permanently for any hacker to see. A credit card is easy to replace, a passport not so much.