From Casetext: Smarter Legal Research

Krottner v. Starbucks Corp.

United States Court of Appeals, Ninth Circuit
Dec 14, 2010
406 F. App'x 129 (9th Cir. 2010)

Summary

holding that plaintiffs faced a "credible threat of harm" where a laptop was stolen containing their encrypted data and one plaintiff had a fraudulent bank account opened in his name

Summary of this case from In re Mednax Servs., Inc., Customer Data Sec. Breach Litig.

Opinion

Nos. 09-35823, 09-35824.

Argued and Submitted October 6, 2010.

Filed December 14, 2010.

Mila F. Bartos, Eugene J. Benick, Karen Jennifer Marcus, Finkelstein Thompson LLP, Washington, DC, Gretchen Freeman-Cappio, Mark Adam Griffin, Lynn Lincoln Sarko, Keller Rohrback LLP, Seattle, WA, Ben Barnow, Esquire, Barnow and Associates, P.C., Chicago, IL, for Plaintiffs-Appellants.

Merkys Gomez, Karl Justin Quackenbush, Esquire, Gavin W. Skok, Esquire, Riddell Williams, PS, Seattle, WA, for Defendant-Appellee.

Appeal from the United States District Court for the Western District of Washington, Richard A. Jones, District Judge, Presiding. D.C. Nos. 2:09-cv-00216-RAJ, 2:09-cv-00389-RAJ.

Before: KOZINSKI, Chief Judge, and THOMAS and M. SMITH, Circuit Judges.


MEMORANDUM

This disposition is not appropriate for publication and is not precedent except as provided by Ninth Cir. R. 36-3.

Because the parties are familiar with the factual and procedural history of this case, we do not recount additional facts except as necessary to explain the decision. We have jurisdiction under 28 U.S.C. § 1291. In a separate opinion, we hold that Plaintiffs-Appellants have standing to bring this suit under Article III of the Constitution. Here, we hold that plaintiffs-Appellants did not adequately allege the elements of their state-law claims, and that certification is unnecessary. We affirm.

As an initial matter, our holding that Plaintiffs-Appellants pled an injury-in-fact for purposes of Article III standing does not establish that they adequately pled damages for purposes of their state-law claims. See Doe v. Chao, 540 U.S. 614, 624425, 124 S.Ct. 1204, 15'7 L.Ed.2d 1122 (2004) (explaining that an individual may suffer Article III injury and yet fail to plead a proper cause of action). Rather, Plaintiffs-Appellants must allege "enough facts to state a claim to relief that is plausible on its face." Bell Atl. Corp. v. Twombly, 550 U.S. 544, 570, 127 S.Ct. 1955, 167 L.Ed.2d 929 (2007). They have not done so here.

First, Plaintiffs-Appellants have not established a cognizable injury for purposes of their negligence claim. Under Washington law, "[a]ctual loss or damage is an essential element in the formulation of the traditional elements necessary for a cause of action in negligence. . . . The mere danger of future harm, unaccompanied by present damage, will not support a negligence action." Gazija v. Nicholas Jerns Co., 86 Wash.2d 215, 543 P.2d 338, 341 (1975). The alleged injuries here stem from the danger of future harm. Even Shamasa, the only plaintiff who claims his personal information has been misused, alleges no loss related to the attempt to open a bank account in his name. And Plaintiffs-Appellants have waived any argument that Lalli's alleged anxiety constitutes an actionable injury, as they did not properly raise it in their opening brief before us. See Rattlesnake Coal. v. EPA, 509 F.3d 1095, 1100 (9th Cir. 2007). We therefore affirm the dismissal of their negligence claim.

Second, Plaintiffs-Appellants have not adequately alleged the existence of an implied contract under Washington law. "Before a court can find the existence of an implied contract in fact, there must be an offer; there must be an acceptance; the acceptance must be in the terms of the offer; it must be communicated to the offeror; there must be a mutual intention to contract; [and] there must be a meeting of the minds of the parties." Milone Tucci, Inc. v. Bona Fide Builders, Znc., 49 Wash.2d 363, 301 P.2d 759, 762 (1956) (citation omitted). Plaintiffs-Appellants point to three documents they claim formed an implied contract, but they do not allege that they read or even saw the documents, or that they understood them as an offer. Nor do they allege that they accepted the purported offer on its terms. To the contrary, Plaintiffs-Appellants assert that they accepted a specific offer to encrypt and otherwise safeguard their personal data even though the documents include no such terms and only generally discuss access to confidential information. Plaintiffs-Appellants therefore have not adequately pled the existence of an implied contract under Washington law.

The district court dismissed this claim for failure to adequately allege a cognizable injury. However, "[w]e may affirm on any basis supported by the record, whether or not relied upon by the district court." Hall v. M. Am. Van Lines, Inc., 476 F.3d 683, 686 (9th Cir. 2007).

Because the elements of negligence and breach of contract claims are sufficiently clear under Washington law, there is no need to certify a question to the Washington Supreme Court. See City of Houston, Tex. v. Hill, 482 U.S. 451, 471, 107 S.Ct. 2502, 96 L.Ed.2d 398 (1987) ("It would be manifestly inappropriate to certify a question in a case where, as here, there is no uncertain question of state law whose resolution might affect the pending federal claim."). Because we hold that Plaintiffs-Appellants failed sufficiently to allege the elements of their claims, we need not address whether credit monitoring is an available remedy or whether the economic-loss rule bars economic damages for purposes of the negligence claims.

AFFIRMED.


Summaries of

Krottner v. Starbucks Corp.

United States Court of Appeals, Ninth Circuit
Dec 14, 2010
406 F. App'x 129 (9th Cir. 2010)

holding that plaintiffs faced a "credible threat of harm" where a laptop was stolen containing their encrypted data and one plaintiff had a fraudulent bank account opened in his name

Summary of this case from In re Mednax Servs., Inc., Customer Data Sec. Breach Litig.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Myers v. Cal. Corr. Healthcare Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Atlas v. Fox

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Stephen v. Montejo

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Biggins v. Kernan

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Pavageau v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Driskell v. Matolon

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Baker v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Atkins v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Higgins v. Cal. Corr. Health Care Serv.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Sharp v. Kelso

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Lucas v. Brown

holding that "generalized anxiety and stress" was sufficient to confer standing

Summary of this case from Bartl v. Enhanced Recovery Co.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Ross v. Cal. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Valdez v. Matolon

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Cassells v. McNeal

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Perryman v. C.C.H.C.S.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Hoffman v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Moore v. Horch

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Venson v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Gachett v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Gonzalez v. Matolon

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Turner v. Matolon

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Miles v. Cal. Corr. Health Care Servs.

holding that threat of potential identity theft created by theft of a laptop known to contain plaintiffs' unencrypted names, addresses, and social security numbers was sufficient to confer standing, but that "more conjectural or hypothetical" allegations would make threat "far less credible"

Summary of this case from Chubbuck v. Cal. Corr. Health Care Servs.
Case details for

Krottner v. Starbucks Corp.

Case Details

Full title:Laura KROTTNER; Ishaya Shamasa, individually and on behalf of all others…

Court:United States Court of Appeals, Ninth Circuit

Date published: Dec 14, 2010

Citations

406 F. App'x 129 (9th Cir. 2010)
628 F.3d 1139

Citing Cases

Holmes v. Countrywide Fin. Corp.

The actions arise when these businesses misplace or lose large amounts of sensitive information through…

Stasi v. Inmediata Health Grp.

(Id. at 13.) Plaintiffs respond by arguing that under Krottner v. Starbucks Corp., 628 F.3d 1139 (9th Cir.…