There is a split among circuit courts over whether a company faced with a privacy breach is subject to liability where a consumer suffers no discernible harm. The Supreme Court will hear a case this fall, Spokeo, Inc. v. Robins, that will settle this important issue. The Court’s decision in Spokeo, expected in 2016, will likely have far-reaching implications for consumer privacy and data breach lawsuits filed under a number of federal statutes.
Plaintiff Thomas Robins filed a putative class action against Spokeo in federal court in California under the Fair Credit Reporting Act (FCRA), claiming that Spokeo willfully violated the FCRA by disseminating inaccurate information about him on its website. The district court dismissed Robins’s complaint for lack of standing, reasoning that Robins failed to allege any actual harm that was traceable to Spokeo’s alleged statutory violations.