Another stupid person in government, no surprise.
This is a post from another thread by sgtfox.
Re: RFID Braclets possible security risk
Bingo. They've indicated that guest info and details, including your credit card info, will be stored locally on their servers, not on the RFID bracelet. The RFID bracelet will simply be a guest ID# that they then use to identify you as the person in their system.
Now, technically, someone could read and spoof that ID#, thereby allowing them to make purchases, etc in the same manner that you could. But of course, that would only work during the time your ID is active, such as during your vacation. They couldn't actually get your credit card number or anything.
And as it's been tested if somone makes a purchase they are required to sign for it, and are only legally responsible for the purchases they signed for and can dispute the rest. Also there is a dollar limit to how much can be spent.