Thursday, October 22, 2015
23andme just issued a report that indicates that it has received 4 requests for customer information from law enforcement agencies and the FBI. The company was able to fend off those requests. Given that the company has over a million customers, that's not a large number, but the implications are chilling. As Jeremy Telman and I argue in a forthcoming article, the personal data collected by private companies may be used by the government in ways that may surprise us (and, in some cases, deprive of us basic constitutional rights....) 23andme extracts its customers consent by including the following in its TOS:
"Further, you acknowledge and agree that 23andMe is free to preserve and disclose any and all Personal Information to law enforcement agencies or others if required to do so by law or in the good faith belief that such preservation or disclosure is reasonably necessary to: (a) comply with legal process (such as a judicial proceeding, court order, or government inquiry) or obligations that 23andMe may owe pursuant to ethical and other professional rules, laws, and regulations; (b) enforce the 23andMe TOS; (c) respond to claims that any content violates the rights of third parties; or (d) protect the rights, property, or personal safety of 23andMe, its employees, its users, its clients, and the public. In such event we will notify you through the contact information you have provided to us in advance, unless doing so would violate the law or a court order."
Nevermind that this provision is not one that most customers would have bothered to read, hidden as it is behind a hyperlink and buried in the text. You can read more about the potential use of DNA test kits by law enforcement agencies here and here.
But wait - there's more! As I was scrolling through 23andme's terms, I found another provision that potentially affects even more customers:
"Genetic Information you share with others could be used against your interests. You should be careful about sharing your Genetic Information with others. Currently, very few businesses or insurance companies request genetic information, but this could change in the future. While the Genetic Information Nondiscrimination Act was signed into law in the United States in 2008, its protection against discrimination by employers and health insurance companies for employment and coverage issues has not been clearly established. In addition, GINA does not cover life or disability insurance providers. Some, but not all, states and other jurisdictions have laws that protect individuals with regard to their Genetic Information. You may want to consult a lawyer to understand the extent of legal protection of your Genetic Information before you share it with anybody.
Furthermore, Genetic Information that you choose to share with your physician or other health care provider may become part of your medical record and through that route be accessible to other health care providers and/or insurance companies in the future. Genetic Information that you share with family, friends or employers may be used against your interests. Even if you share Genetic Information that has no or limited meaning today, that information could have greater meaning in the future as new discoveries are made. If you are asked by an insurance company whether you have learned Genetic Information about health conditions and you do not disclose this to them, this may be considered to be fraud."
This is information that might be very useful to a potential customer. So why is this buried way down in the TOS? Maybe because it might make potential customers think twice about purchasing the kit? (Ya think?) Back in the good old days, companies posted potential dangers relating to the use of their products and services where you could see them. We used to call them notices and they had to be conspicuous. Now they bury them in the fine print and call them "contracts."
Wednesday, October 21, 2015
Amazon is suing approximately 1,000 individuals who are allegedly in breach of contract with the Seattle online retailer for violating its terms of service. Amazon is also alleging breach of Washington consumer protection laws.
In April, Amazon sued middlemen websites offering to produce positive reviews, but this time, Amazon is targeting the actual freelance writers of the reviews, who often merely offer to post various product sellers’ own “reviews” for as little as $5. (You now ask yourself “$5? Really? That’s nothing!” That’s right… to most people, but remember that some people don’t make that much money, so every little bit helps, and numerous of the freelancers are thought to be located outside the United States.) The product sellers and freelancers are alleged to have found each other on www.fiverr.com, a marketplace for odd jobs and “gigs” of various types.
There are powerful incentives to plant fraudulent reviews online. About 45 percent of consumers consider product reviews when weighing an online purchase. Two-thirds of shoppers trust consumer opinions online. For small businesses, it can be more economical to pay for positive reviews than to buy advertising. For example, a half-star increase in a restaurant's online rating can increase the likelihood of securing, say, a 7 p.m. booking by 15 to 20 percent. “A restaurateur might be tempted to pay $250 for 50 positive reviews online in the hopes of raising that rating.”
As law professors, we are not beyond online reviews and thus potential abuses ourselves. See, for example, www.ratemyprofessor.com. There, anyone can claim that they have taken your course and rank you on your “Helpfulness,” “Clarity,” and “Easiness,” give you an overall grade as well as an indication of whether you are hot or not (clearly a crucial aspect of being a law professor…) To stay anonymous, people simply have to create a random anonymous sounding email address. Not even a user screen name appears to be required. Hopefully, that website does not have nearly as much credibility as, for example, Yelp or TripAdvisor, but the potential for abuse of online reviews is clear both within as well as beyond our own circles.
As shown, though, some companies are taking action. TripAdvisor claims that it has a team of 300 people using fraud detection techniques to weed out fake reviews. But fraudulent reviews aren't thought to be going away anytime soon. One source estimates that as many as 10-15% of online reviews are fake (to me, that seems a low estimate, but I may just be a bit too cynical when it comes to online reviews).
So, next time you are reading reviews of a restaurant online, I suppose the learning is that you should take the reviews with a grain of salt.
Monday, October 12, 2015
Some shoppers on Sears.com thought it was their lucky day when they saw expensive play sets and fancy toys available for the low price of $11.95. Consumerist has the story here. If you saw a storybook cottage that typically costs hundreds of dollars listed for sale at the low, low price of $11.95, what would you think? That's right. Unless it was advertised as a huge blowout sale, you would probably guess it was a mistake. Apparently, Sears lists items sold by third parties and gets a cut - and this time, a third party had made a pricing error on its items. Of course, some Sears sellers were upset - even though Sears refunded their money and gave them a $5 gift card. So, for all those upset sellers, let's run through the mistake scenario to see whether the law would be on your side:
Was this a mistake of a basic assumption? - Yes, it was a pricing error and pricing errors are generally considered basic assumption mistakes.
Was the mistake made by one or both parties (was it a mutual or unilateral mistake?) - Here, Sears mistakenly believed that the prices listed on its website were accurate (not all $11.95) while the customers saw what the prices were - $11.95 - so it was a unilateral mistake made by Sears.
Did it have a material effect? Yes, there's a big difference between $11.95 and hundreds of dollars so Sears would make less money on the transaction.
Did the non-mistaken party (the Sears customers) know or should they have known of the mistake? - Yes, because they should know that expensive playsets are typically not sold for such a low price unless it is part of a promotion or clearance sale.
Did the mistaken party bear the risk of the mistake? You might think Sears would, since it is their website. But based upon existing case law (i.e. Donovan v. RRL Corp), since there's no lack of good faith here and Sears presumably acted reasonably in managing its website - it does not constitute "neglect of a legal duty" and Sears likely doesn't bear the risk of the mistake.
So - there you have it. Sorry kids - guess you'll just have to go outside and build your own play castles with branches and old bed sheets...
Tuesday, October 6, 2015
In California (where else?), a state court judge has, for now, refused to dismiss a fraud claim against Mark Zuckerberg of Facebook fame. A breach of contract claim is also still under consideration.
What is the latter all about? As we wrote here earlier, one of Zuckerberg's former neighbors alleges that he promised to sell property adjoining Zuckerberg's at a discount in return for Zuckerberg's promise to provide the neighbor with "personal referrals and business promotion activities." The property changed hands, but Zuckerberg allegedly failed to make good on his promises.
Is he contractually bound to do so? I don't see why not. The promise is not illusory, and although it is not directly monetary in nature, it does seem to constitute true consideration (Zuckerberg would give up time and effort to get the discount and run the risk of inconveniencing his connections).
Of course, promises such as these are probably very hard to enforce via court action. What would a court realistically do? Force Zuckerberg to help the former neighbor hobnob now that the parties undoubtedly dislike each other intensely? Require him to host a certain number of cocktail parties and invite the ex-neigbor? Such relief is unrealistic, just as it would likely be next to impossible to monetize the alleged loss here.
The temptation to contract in part in return for return benefits from the rich and famous is continually present now as it has been for decades, if not centuries. But numerous cases show how such deals are next to impossible to enforce, contracts law principles or not. A higher sales price would undoubtedly have been smarter here.
Making the case even weirder, the neighbor's attorney has petitioned the court to withdraw from the case for ethical reasons.
Saturday, October 3, 2015
They’re still doing it: companies not wanting negative online reviews of their products or services attempt to contractually prohibit unsatisfied customers from posting such feedback. Not only that, but some companies also seek to take legal and other retaliatory action against their customers if they defy such attempted clauses.
For example, the FTC recently instigated suit against weight-loss company Roca Labs for threatening legal action against customers writing negative comments about the company’s allegedly ineffective weight loss powder. (H/t to my colleagues on the AALS Contracts listserv for mentioning this story). When one of Roca Lab’s customers posted a comment on the Better Business Bureau website, the company cited to their contract with the client that stated, “You will not disparage RL and/or any of its employees, products or services... If you breach this agreement... we retain all legal rights and remedies against the breaching customer..." The company also asked the customer for information about her contacts on Twitter and Facebook (she luckily declined…).
There is no federal law prohibiting companies from trying to suppress negative reviews, but the FTC alleged unfair practices, among other things because the clause in question was buried in fine print. The issue may also be a First Amendment problem, according to an attorney for www.pissedconsumer.com, a third-party website that, as the name indicates, allows negative reviews of companies. http://www.cbsnews.com/news/ftc-lawsuit-roca-labs-weight-loss-powder-gag-clause-customers-sued/
I could not agree more that the voice of customers who have been disappointed for good reason should be heard. It is, frankly, ridiculous what some companies can get away with in this country in this day and age, in my opinion. (In the EU, for example, much more consumer-friendly regulations exist. In the USA, the legislative balancing of consumers v. companies often, in my opinion, is more of a slant favoring businesses, but that’s a thought for another day). But here’s the thing: what about the true risk of disgruntled customers posting reviews that don’t quite reflect what really happened, that exaggerate the situation, or that simply make things seem worse than what they really were? Even with emoticons, things can seem very harsh once written down even if they were not necessarily meant to be.
Take, for example, popular hosting website Airbnb. My husband and I own a historically registered house that requires a lot of upkeep and fixing after 90 years of neglect, so we signed up as hosts to try it out and, of course, to make a little extra money. We love it! We meet the most interesting people that truly enjoy our house. But as one’s success on that and other websites is, in reality, often tied closely to having a large amount of very good reviews, we also live with the constant worry that one day, somebody could post a negative review about something that most people would probably consider seemingly minor (our house is almost 100 years old, and there are necessarily small kinks with a house like that). See also Nancy Kim’s recent blog on our apparently increasing need to judge each other negatively. At least Airbnb allows its users to post comments to reviews, but not all websites follow such practice.
My point is simply this: it is, of course, to go overboard to require one’s paying customers to not post negative reviews via contractual clauses or other methods. But how do we balance the need for true and honest, productive reviews with the risk of disgruntled and perhaps even dishonest customers? Comment below!
Thursday, October 1, 2015
Because we're all not insecure enough, there's a new app out there that let's people rate other people on a scale of 1-5. There's no need to take their class,(Rate Your Professor) or eat at their restaurant (Yelp) or ride in their car (Uber)- now you can rate someone just for breathing, and if you don't like the way they breathe, you can tell the whole world about it on the Peeple App.
They may be truly naive or they may be disingenuous (we've seen greed and self-serving rhetoric masquerading as idealism from other companies), but the two founders claim that the purpose of the app is about uplifting people --to borrow from The Princess Bride, I don't think that word means what they think it means. As with all things digital, there are terms and conditions that the founders say will allow them to prevent bullying on the site. But I'm not so sure - Twitter and Facebook have no-bullying policies (or their equivalent) and that hasn't really stopped the bullying....
It's unclear whether the app will survive regulators' scrutiny as it requires the poster to submit the subject's phone number in order to create the subject's profile.
Tuesday, September 22, 2015
Lyft's TOS Can't Save It From the TCPA (or Why Contract Law's Version of Consent Needs to Get With the Program)
The FCC recently issued a Citation and Order to Lyft which alleges that its terms of service violate the Telephone Consumer Protection Act (TCPA). Under the TCPA, a company that wants to inflict autodialed phone messages or text messages for marketing purposes must first obtain the express prior written consent of the recipient. Furthermore, FCC regulations forbid requiring such consent as a condition of purchasing any goods, services or property. Significant penalties result from failure to comply with the TCPA and the accompanying rules. Lyft has already updated its TOS in response to the FCC's action.
Lyft's terms of service required its customers to consent to autodialed calls and texts. Prospective customers are required to check a box stating "I agree with the Terms of Service." The sign-up page includes a link to the Lyft TOS. Section 6 of the Lyft TOS stated:
"By becoming a User, you expressly consent and agree to accept and receive communications from us, including via e-mail, text message, calls, and push notifications to the cellular telephone number you provided to us. By consenting to being contacted by Lyft, you understand and agree that you may receive communications generated by automatic telephone dialing systems and/or which will deliver prerecorded messages sent by or on behalf of Lyft, its affiliated companies and/or Drivers, including but not limited to: operational communications concerning your User account or use of the Lyft Platform or Services, updates concerning new and existing features on the Lyft Platform, communications concerning promotions run by us or our third party partners, and news concerning Lyft and industry developments. IF YOU WISH TO OPT-OUT OF PROMOTIONAL EMAILS, TEXT MESSAGES, OR OTHER COMMUNICATIONS, YOU MAY OPT-OUT BY FOLLOWING THE UNSUBSCRIBE OPTIONS PROVIDED TO YOU.Standard text messaging charges applied by your cell phone carrier will apply to text messages we send. You acknowledge that you are not required to consent to receive promotional messages as a condition of using the Lyft Platform or the Services. However, you acknowledge that opting out of receiving text messages or other communications may impact your use of the Lyft Platform or the Services."
The terms stated that consumers may opt out by using "unsubscribe options," but the FCC investigation discovered that such an option didn't really exist. There was no easy way to find the unsubscribe option and consumers had to navigate Lyft's website to find the opt-out page. Even if they did manage to find it, if they opted out, they couldn't use the service.
This is another instance where contract law's easy assent rules don't actually help businesses and cause too much confusion. While a consumer may have "consented" to the autodialing and the texts under contract law, the FCC rules require something that is more like what most people consider to be consent - express written consent and a real choice not to agree. A default opt-in unless you opt-out (and even that's illusory), well - that just doesn't cut it under the TCPA and the FCC rules. Sadly, in contract law, too often it does.
Contract law should get with the program and follow the commonsense version of consent adopted by the FCC.
Friday, September 18, 2015
Nancy Kim is, as you probably know, one of the nation’s, if not the world’s, leading experts on internet contracting. She is a contributor to this blog as well. Among other issues, Professor Kim rightfully questions whether consumers are put on sufficient notice of various contractual terms and conditions when they purchase goods or services via the Internet.
The Second Circuit has just held that emails sufficiently direct a purchaser’s attention to a service provider’s terms and conditions including a forum selection clause when a hyperlink is provided along with language “advising” the purchaser to click on the hyperlink. (The case is Starkey v. G Adventures, Inc., 796 F.3d 193 (Second Cir. 2015). Said the court, “This method serves the same function as the method of cross-referencing language in a printed copy promotional brochure and sufficed to direct [the purchaser’s] attention to the Booking Terms and Conditions. Both methods may be used to reasonably communicate a forum selection clause.”
The background is this: A customer purchased a ticket for a vacation tour of the Galápagos Islands operated by a tour operator. Shortly thereafter, the tour operator sent the customer three emails: a booking information email, a confirmation invoice, and a service voucher. The booking information email contained the statement, “TERMS AND CONDITIONS: ... All Gap Adventures passengers must read, understand and agree to the following terms and conditions.” This statement was followed by a hyperlink with an underlined URL. The confirmation invoice and service voucher each also contained hyperlinks, which were preceded immediately by the following text: “Confirmation of your reservation means that you have already read, agreed to and understood the terms and conditions, however, you can access them through the below link if you need to refer to them for any reason.” The hyperlinks in all three emails linked to a document entitled “…. Booking Terms and Conditions.” The second paragraph of that document stated that “[b]y booking a trip, you agree to be bound by these Terms and Conditions.... These Terms and Conditions affect your rights and designate the ... forum for the resolution of any and all disputes.” The customer did not dispute that she received the relevant emails. Instead, she alleged, as often happens, that she never read the Booking Terms and Conditions because she never clicked on the hyperlinks.
The customer alleged that she was sexually assaulted on the tour by one of the tour operator’s employees. Instead of being able to pursue her negligence claim in a New York court, she must now pursue her claim in Ontario, Canada. The court also held that it was not unreasonable and unjust to enforce the forum selection clause, stating that such clauses will only be set aside if (1) its incorporation was the result of fraud or overreaching; (2) the law to be applied in the selected forum is fundamentally unfair; (3) enforcement contravenes a strong public policy of the forum in which suit is brought; or (4) trial in the selected forum will be so difficult and inconvenient that the plaintiff effectively will be deprived of his day in court. The plaintiff failed to meet any of those requirements.
This case shows how some courts still ignore the fact that, as Professor Kim has pointed out and as the case obviously shows, even though the attention of purchasers (online or otherwise) is directed towards certain crucial contractual clauses, they in fact do not read these. Such is reality in a society such as ours with numerous and often lengthy and complicated legal notices and disclaimers. Are purchasers then truly given sufficient notice in such modern cases? But from a contrary viewpoint, what else can sellers and service providers possibly do to make purchasers aware of key terms? For more on this, read Professor Kim’s scholarship or book.
Monday, September 14, 2015
Catching up on my podcast listening, I just heard last week's episode of Reply All, a show about the Internet. The focus of this episode is a prank telephone call that seemed to come from Comcast. The prankster represented herself as a Comcast representative and threatened the Comcast customer that Comcast would fine him or disconnect his service if he did not remove some hostile tweets he had posted expressing dissatisfaction with that service. The prank worked; he removed a hostile tweet, but when the prankster upped the ante and tried to get him to remove more tweets, he hung up.
1. Adults make prank calls, and they are very sophisticated. They can fool your caller i.d., and as a result they can fool you. This is just sad and obnoxious, but the bigger concern is that the same techniques can be used to steal your identity. Probably best at this point in our relationship with technology to never answer your phone.
2. The prank worked because, as we have reported about repeatedly, companies now do try to prevent customers from posting negative reviews on social media, and it is completely credible that a large media company like Comcast would empower itself to discipline customers in this way. For the record, as Reply All showed, Comcast does not do so.
But they could.
But they don't.
But they could, or at least they could try to do so and thus chill people into keeping mum about how much they hate Comcast or TimeWarner or AT&T or Verizon or Sprint or T-Mobile or . . . .
Sunday, September 6, 2015
The recent massive hack into married-but-dating website Ashley Madison’s files may not only have breached the customer’s reasonable contractual expectations, but is now also said to lead to serious counter-intelligence concerns.
Both China and Russia are collecting personal and sensitive information about people who may be involved in American national security operations. What better leverage to have against operatives than information about their most secret, erotic desires. The temptation to resist such information being shared with even more people may persuade some operatives to render otherwise secret information about United States national security issues. Recall that quite a few affair seekers used their official government addresses to arrange their attempted or successful trysts. In combination with another recent OPM hack, countries that are seen as adversaries have apparently also been able to obtain information about who has sought security clearances and can use this information for counter-intelligence purposes.
That seems to provide a good public policy argument for why courts should find against Ashley Madison if it came to a contractual lawsuit regarding the breach of “100% secrecy” and “full deletes” promised, but not delivered, by Ashley Madison.
Friday, September 4, 2015
Yesterday, we blogged here about important considerations regarding whether an employee will be seen as an employee or a contractor.
In O'Connor v. Uber Technologies, U.S. District Judge Edward Chen just ruled that Uber's drivers may pursue their arguments that they were employees in the form of a class-action suit. One of the reasons was that Uber admitted that they treated a large amount of its drivers "the same."
Of course, millions of dollars may be at stake in this context. Profit margins are much higher for companies such as Uber, Lyft, Airbnb and other so-called "on demand" or "sharing economy" companies. That is because the companies do not have to pay contractors for health insurance benefits, work-related expenses, certain taxes, and the like. But seen from the driver/employee's point of view, getting such benefits if they are truly employees is equally important in a country such as the United States where great disparities exist between the wealthy (such as the owners of these start-up companies) and the not-so-wealthy, everyday workers.
Plaintiffs are represented by renowned employee-side attorney Shannon "Sledgehammer" Liss-Riordan who represented and won a major suit by skycaps against American Airlines some years ago, so sparks undoubtedly will fly in the substantive hearings on this issue.
Tuesday, September 1, 2015
Uber. It just seems to always be in the news for one more lawsuit, doesn’t it. In late August, the district attorneys for San Francisco and Los Angeles filed a civil complaint against the company alleging that it is making misrepresentations about its safety procedures. The complaint, i.a., reads that Uber’s “false and misleading statements are so woven into the fabric of Uber’s safety narrative that they render Uber’s entire safety message misleading.”
On its website, Uber promises that “from the moment you request a ride to the moment you arrive, the Uber experience has been designed from the ground up with your safety in mind” and that “Ridesharing and livery drivers in the U.S. are screened through a process that includes county, federal, and multi-state criminal background checks. Uber also reviews drivers’ motor vehicle records throughout their time driving with Uber.”
However, Uber does not use fingerprint identication technology, which means that the company cannot search state and federal databases, only commercial ones.
The result? People with highly questionable backgrounds end up being on Uber’s payroll. For example, one “Uber driver was convicted of second-degree murder in 1982. He spent 26 years in prison, was released in 2008 and applied to Uber. A background report turned up no records relating to his murder conviction. He gave rides to over 1,100 Uber customers.” Yikes. Another “Another driver was convicted on felony charges for lewd acts with children. He gave over 5,600 rides to Uber customers.”
Add this to the ongoing lawsuit about whether Uber’s drivers should be legally classified as “employees” or “contractors,” and Uber is in a mound of legal trouble.
Certainly, a misrepresentation seems to have been made if the company deliberately touts its safety and its “industry-leading background check process” yet only uses a commercial database that does not even necessarily ensure that its drivers are who they say they are.
Still, Uber remains one of the most valuable start-ups in the world. It and similar “sharing economy” companies such as Airbnb have gained a good foothold on a market with a clear demand for new types of services. So far, so good. But initial success should not and does not equate with a “free-for all” situation just because these new companies are highly successful, at least initially. It seems that they are learning that lesson. Lyft, for example, already settled with prosecutors in regards to its safety. Perhaps Uber will follow suit.
Monday, August 24, 2015
Hugely successful auto-maker Tesla is making very good money not only on its electric cars, but also on its contracts selling zero emission credits to rivaling automakers. New environmental standards in eleven states require that by 2025, 15% of a car company’s sold fleet must be so-called “zero emission” vehicles. If a company cannot meet existing standards, they can purchase zero emissions credits from other companies that can. Tesla is one of those.
This year, Tesla has sold approximately $68 million worth of credits to competing automakers, which represents 12% of its overall revenue. Overall, Tesla is doing very well: its net profit for the first quarter of this year was more than $11 million and its shares have been reported to be up more than 165% so far this year.
This raises the question that I also raised here on this blog in another post earlier this summer: is the emissions trading scheme a good idea, or does it simply allow for glorified “contracts to pollute”? As with many other things in the law, both could be seen to be the case. See this report that casts doubt on whether carbon credits help or hurt the agenda. Some call them "hot air,"perhaps for good reason. But at least Tesla is, hopefully, challenging other automakers to innovate to pollute less.
Another question, though, is the use of the euphemism “zero emissions.” Electric vehicles are arguably better seen from an environmental point of view than traditional cars, but they are not “zero” emissions. They could, instead, be called “emissions elsewhere” vehicles. That, of course, does not sound nearly as good. However, the electricity used for electric cars is produced somewhere. The true question is: by what means? If the electricity stems from dirty coal-fired power plants, the solution is not as good as it sounds, although concentrating the pollution in one large plant may be better than having many individual cars produce power on the road. That is a question for another forum. Suffice it to say that choice is good, and if car buyers could also in all locales could always decide exactly how to source their electricity (from, for instance, solar power), the matter would be different. That is not (yet) the case. So for now, “zero emission” vehicles are actually not so.
A recent case out of the Eastern District of California, Handy v. LogMeIn, found that there was notice good enough to defeat a consumer's claims under California's Unfair Competition and False Advertising Laws -- even if that notice might not be sufficient for contract formation.
Darren Hardy obtained LogMeInFree which was provided free of charge and allowed users to remotely access a desktop computer from another computer. Some time later, he purchased Ignition for $29.99 which allowed him to access a computer using a tablet or smart phone. Four years later, the defendant, LogMeIn, discontinued the free LogMeIn product although it offered LogMeInPro for $49/year for two computers. Handy claimed that LogMeIn, when marketing Ignition, should have informed consumers that LogMeInFree could be discontinued in the future.
LogMeIn's "Terms and Conditions of Use" stated that users accepted
"BY COMPLETING THE ELECTRONIC ACCEPTANCE PROCESS, CLICKING THE "SUBMIT" OR "ACCEPT" BUTTONS, SIGNING, USING ANY OF THE PRODUCTS OR OTHERWISE INDICATING YOUR ACCEPTANCE OF THESE TERMS . ."
The Terms allowed the company to "to modify or discontinue any Product for any reason or no reason with or without notice to You or the Contracting Party. LMI shall not be liable to You or the Contracting Party or any third party should LMI exercise its right to revise these Terms or modify or discontinue a Product." It also allowed the company to "in its sole discretion immediately terminate these Terms and this subscription, license and right to use any Product if . . . LMI decides, in its sole discretion, to discontinue offering the Product. LMI shall not be liable to You, the Contracting Party or any third party for termination of the Service or use of the Products . . ."
The plaintiff argued that he didn't remember being prompted to review the Terms and Conditions prior to buying Ignition or during his use of it. He also stated that if he had known that LogMeInFree would be discontinued, he would not have purchased Ignition.
California's False Advertising Law (Cal. Bus. & Prof. Code section 17500) states that it is unlawful for any company to make any untrue or misleading statement in advertising. California Unfair Competition Law (Cal. Bus. & Prof. Code section 17200) prohibits "unlawful, unfair, or fraudulent" business practices. Because the plaintiff's claims under both Laws relied upon claims that the defendant engaged in knowing deception, the plaintiff was subject to the heightened pleading standards of Rule 9(b) of the FRCP.
The Court granted the defendant's motion to dismiss because the plaintiff failed to meet the heightened pleading standard for fraud. It found that the plaintiff failed to provide sufficient factual detail to state his claims for several reasons although I'll only discuss the contract-related one. The court found that LogMeIn provided notice that LogMeInFree could be terminated in its Terms and Conditions of Use. While Handy argued that the Terms were not binding as they were a "browsewrap," the court stated that missed the point:
"Whether the Terms and Conditions constituted an enforceable contract is irrelevant to whether the Terms and Conditions related to LogMeInFree provided notice to prospective purchasers of the Ignition app that LogMeInFree could be discontinued....the fact that Defendant posted on its website information that told users that LogMeInFree could be terminated undermines Plaintiff's claims. Though this information was not forced on Plaintiff through a clickwrap, the evidence makes clear that Defendant did publish the fact that it reserved the right to terminate the free app, LogMeInFree."
In other words, the court found that terms on a website could provide sufficient notice to defeat a claim based upon deception even if the notice wasn't sufficient to meet the standards for contractual assent.
Friday, August 21, 2015
Earlier this summer, I blogged on cheating website Ashley Madison promising to provide "100% discreet service" and a group of hackers threatening to reveal the website's customers if the website was not removed. Well, it was not, and this past week, the group made good on its promise or threat, depending on how one views the issue, to make the stolen database easily available to the general public.
In spite of Ashley Madison's promise to be "100% discreet" (whatever that means), the fine print used in its contracts also states, "We cannot ensure the security or privacy of information you provide through the Internet." No contractual promises seen to have been breached if that had been the only promise made. But as Steve Hedley wrote in his comment (see below), some of those inconvenienced by the hack include a number who paid a fee of $19 specifically for a "full delete". Does US contract law really allow Ashley Madison to take their money and then rely on fine print to justify a complete failure? That is a very good point and indeed does not seem to be the case. It could, of course, be that those who paid for a full delete got it and were _not_ among the ones in the publicized batch, but judging solely from media reports on this account, complaints have been made that the promised "full deletes" were not undertaken, so it seems that at least some that paid _additional_ money to become deleted from the website did not get what they paid for. That's a breach. Thanks, Steve Hedley, for that comment.
But the matter is more serious and sad than that: the website was/is apparently also used for finding homosexual partners, which is illegal and carries the death penalty in countries such as Iran, Saudi Arabia, and the United Arab Emirates, where two users were listed.
Not surprisingly, this story again shows the importance of internet data security. One would think that after the recent HomeDepot, Target and other database breach episodes, people would have learned, but apparently, this is not the case.
Sunday, August 2, 2015
Remember Aereo, the company trying to provide select TV programs and movies using alternatives to traditional cable TV programming? That company went bankrupt after a U.S. Supreme Court ruling last year.
A federal court in Los Angeles just ruled that online TV provider FilmOn X should be allowed to transmit the programs of the nation’s large broadcasters such as ABC, CBS and Fox online, albeit not on TV screens. See Fox Television Stations, Inc. v. FilmOn X, LLC, in the U.S. District Court for the Central District of California, No. 12-cv-6921. Of course, the traditional broadcasters have been aggressively opposing such services and the litigation so far. Recognizing the huge commercial consequences of his ruling, Judge Wu certified the case for an immediate appeal to the Ninth Circuit Court of Appeals.
Said FilmOn’s lawyer in an interview: “The broadcasters have been trying to keep their foot on the throat of innovation. The court’s decision … is a win for technology and the American public.”
The ultimate outcome will, of course, to a very large extent or perhaps exclusively depend on an interpretation of the Copyright Act and not so much contracts law as such, but the case is still a promising step in the direction of allowing consumers to enter into contracts for only what they actually need or want and not, at bottom, what giant companies want to charge consumers to protect income streams obtained through yesteryear’s business methods. Currently, many companies still “bundle” TV packages instead of allowing customers to select individual stations. In an increasingly busy world, this does not seem to make sense anymore. Time will tell what happens in this area after the appeal to the Ninth Circuit and other developments. Personally, I have no doubt that traditional broadcasting companies will have to give in to new purchasing trends or lose their positions on the market.
Monday, July 27, 2015
As Fortune Magazine reported here, Lifelock has sued a bitcoin digital wallet company called Xapo. Xapo's founder and CEO, Wences Casares, formerly owned a company that was purchased by Lifelock, and he became a Lifelock employee at that point. Lifelock alleges that he used a product from his old company to create Xapo. Casares responds that Lifelock had no interest in the product. Casares moved to dismiss the suit in California Superior Court, and that motion was denied. Fortune provides more complete background on the case here. For some reason, Fortune describes the suit as sounding in fraud, but it sounds more like a breach of contract/IP issue to me. Other websites (e.g., Bitcoin News Service here and Bitcoin Magazine here) describe the suit as sounding in breach of contract.
This is not exactly news, but the Daily Telegraph is reporting on sex contracts at U.S. colleges and universities as though it were news. While the report features some discouraging information about the frequency of sexual assault at UK and U.S. universities, it adopts a snide tone regarding sex contracts and concludes that they are "overly simplistic and potentially harmful." Although the report acknowledges that the contracts are "conversation starters" and are not intended to be binding contracts, it proceeds to treat them as contracts and to point out the obvious -- like that people are entitled to change their minds about sex. Ugh. It's not as if this is not something that has occurred to the designers of sex contracts. The models of such contracts that we have discussed here include language requiring consent on an on-going basis to each new sex act. This approach is easy to mock, but, as we've seen before, those who denigrate serious approaches to the problem of sexual assault on college campuses fail to provide alternatives. The Telegraph cites to an organization called the "Good Lad Workshop" that encourages college students to be good guys. It is clear that the spokesman for the organization knows nothing about how actual sex contracts work.
Monday, July 20, 2015
In 2014, the Court of Justice of the European Union famously held that “[i]ndividuals have the right - under certain conditions - to ask search engines to remove links with personal information about them. This applies where “the information is inaccurate, inadequate, irrelevant or excessive” for the purpose of otherwise legitimate data collection. “A case-by-case assessment is needed considering the type of information in question, its sensitivity for the individual’s private life and the interest of the public in having access to that information.”
A few days ago, infamous adultery-enabling website Ashley Madison and “sister” site (no pun intended) EstablishedMen.com, which “connects ambitious and attractive young women with successful and generous benefactors to fulfill their lifestyle needs,” was hacked into by “The Impact Team,” a group of apparently offended hackers who threatened to release “all customer records, including profiles with all the customers’ secret sexual fantasies and matching credit card transactions, real names and addresses, and employee documents and emails” unless the owner of the sites, Avid Life Media, removes the controversial websites from the Internet permanently.
Notwithstanding legal issues regarding, perhaps, prostitution, do customers have a right to be forgotten? Not in general in the USA so far. Even if a provision similar to the EU law applied here, it would only govern search engines. Ashley Madison had, however, contractually promised its paying users a “full delete” in return for a fee of $19. The problem? Apparently that the site(s) still kept purchase details with names. Further, of course, that the company promised and still promises “100% discreet service.” Both seemingly clear contractual promises.
Although the above example may, for perhaps good reason, simply cause you to think that the so-called “clients” above have only gotten what they asked for, the underlying bigger issues remain: why in the world, after first Target, then HomeDepot and others, can companies not find out how to securely protect their customers’ data “100%”? And why should we, in the United States, not have a general right to be deleted not only from companies’ records, but from search engines, if we want to? I admittedly live a very boring life. I don’t have anything to hide. But if I once in a blue moon sign up for something as simple as Meetup.com to go hiking with others, my name and/or image is almost certain to appear within a few days online. I find that annoying. I don’t want my students, for example, to know where I occasionally may meet friends for happy hour. But unless I invest relatively large amount of time in figuring out how to use and not use new technology (which I see that I have to, given the popularity of LinkedIn and the like), I may end up online anyway. That’s not what I signed up for.
As for Ashley Madison, the company has apparently been adding users so rapidly that it has been considering an initial public offering. You can truly get everything on the Internet these days, perhaps apart from data security.
Tuesday, June 23, 2015
Last week, the Federal Communications Commission acted to approve a number of proposals that update the TCPA (Telephone Consumer Protection Act), popularly known as the "Do Not Call" law that prohibits companies from interrupting consumers' dinner time conversations with pesky telemarketing calls. They closed a number of existing loopholes and clarified that phone companies can now block robocalls and robotexts to cell phones. The ruling also makes it easier for consumers who have previously consented to withdraw consent.
So what does this have to do with contracts? We all know how easy it is to consent to online terms. PayPal does, too. PayPal recently informed its customers that it was unilaterally amending its User Agreement. As anyone reading this blog knows, there are serious problems with unilateral modification clauses, especially in the context of wrap contracts that nobody reads. Yet, some courts have found that these clauses are enforceable (others have found they are not because they lack consideration and/or notice/assent). PayPal's recent announced modifications caught the attention of the Federal Communications Commission. The FCC Chief expressed concern that PayPal's prospective agreement may run afoul of federal law. The TCPA requires express written consent before any company can make annoying prerecorded telemarketing calls to consumers. The written consent, however, isn't the ridiculous version of consent that suffices as contractual consent in some courtrooms. There are certain requirements including that the agreement be "clear and conspicuous" and that the person is "not required to sign the agreement...as a condition of purchasing the property, goods, or services." In other words, it can't be a "take it or leave it" situation. Pay Pal's amended User Agreement, however, appears to contain "take-it-or-leave-it" language as it doesn't indicate how customers may refuse to consent to receive calls without having their account shut down. Furthermore, unlike contract law where blanket assent is okay, blanket consent is not okay under the FCC rules. (This blog post provides a nice overview of the issues and also notes that eBay (PayPal's soon-to-be former parent) encountered similar problems with the New York Attorney General).
PayPal's agreement is not the only reason the FCC acted last week, but as Bob Sullivan points out in this post here, it may have been the reason it acted so quickly. Expect to see an updated version of PayPal's agreement in the near future.
Thursday, June 18, 2015
We used to count on Britney Spears as the leading source for blog fodder. Move aside Britney. Uber just passed you by. We have two new Uber stories just in California alone.
First, last week the District Court for the Northern District of California issued its opinion in Mohamed v. Uber Technologies. Paul Mollica of the Employment Law Blog called that decision a "blockbuster," because it ruled Uber's arbitration agreement with its drivers unconscionable and therefore unenforceable. The opinion is very long, so we will simply bullet point the highlights. With respect to contracts entered into in 2013, the court found:
- Valid contracts were formed between plaintiffs and Uber, notwithstanding plaintiffs' claims that they never read the agreements and that doing so was "somewhat onerous";
- While Uber sought to delegate questions of enforceability to the arbiter, the court found that its attempt to do so was not "clear and unmistakable" as the contract included a provision that "any disputes, actions, claims or causes of action arising out of or in connection with this Agreement or the Uber Service or Software shall be subject to the exclusive jurisdiction of the state and federal courts located in the City and County of San Francisco, California";
- In the alternative, the agreement was unconscionable and therefore unenforceable;
- The procedural unconscionability standard of "oppression," generally assumed in form contracting, was not overcome in this instance by an opt-out clause; the opt-out was inconspicuous and perhaps illusory;
- The procedural unconscionability standard of "surprise" was also met because the arbitration provision was "hidden in [Uber's] prolix form" contract; and
- Uber's arbitration provisions are substantively unconscionable because the arbitration fees create for some plaintiffs an insuperable bar to the prosecution of their claims.
The court acknowledged that the unconscionability question was a closer question with respect of the 2014 contracts but still found them both procedurally and substantively unconscionable.
There is much more to the opinion, but that is the basic gist.
In other news, as reported in The New York Times here, the California Labor Commissioner's Office issued a ruling earlier this month in which it found that Uber drivers are employees, not independent contractors as the company claims. The (mercifully short!) ruling can be found here through the good offices of Santa Clara Law Prof, Eric Goldman (pictured).
The issue arose in the context of a driver seeking reimbursement for unpaid wages and expenses. The facts of the case are bizarre and don't seem all that crucial to the key finding of the hearing officer. Although plaintiff''s claim was dismissed on the merits, Uber has appealed, as it cannot let the finding that its drivers are employees stand.
But the finding is a real blockbuster, especially as Uber claims that similar proceedings in other states have resulted in a finding that Uber drivers are independent contractors. Here's the key language from the ruling:
Defendants hold themselves out to as nothing more than a neutral technological platform, designed simply to enable drivers and passengers to transact the business of transportation. The reality, however, is that Defendants are involved in every aspect of the operation. Defendants vet prospective drivers . . . Drivers cannot use Defendants' application unless they pass Defendants' background and DMV checks
Defendants control the tools the drivers use . . . Defendants monitor the Transportation Drivers' approval ratings and terminate their access to the application if the rating falls below a specific level (4.6 stars).
As the Times points out, few people would choose to be independent contractors if they had the option to be employees. Our former co-blogger Meredith Miller has written about similar issues involving freelancers, and we blogged about it here. So far, it appears that five states have declared that Uber drivers are independent contractors, while Florida has joined California in finding them to be employees. For more on the implications of this ruling, you can check out this story in Forbes, featuring insights from friend of the blog, Miriam Cherry.