Buzz Over Behavioral Advertising – Listen, Do You Want to Know a Secret?

This post was also written by Stacy Marcus.

The buzz over online behavioral advertising in the United States has been building since the 2008 hearings in Congress over deep packet inspection. The first class-action lawsuit targeting behavioral advertising, Valentine v. NebuAd (N.D. Cal., No. 3:08-cv-05113), was filed in November 2008, followed soon thereafter by Simon v. Adzilla (N.D. Cal., No. 3:09-c-00879) in February 2009.

In the first case, NebuAd and six other ISPs were accused of violating the Electronic Communications Privacy Act, the California Computer Crime Law, the California Invasion of Privacy Act, and the Computer Fraud and Abuse Act, by using deep packet inspection technology. Specifically, the NebuAd complaint alleged that customers were unaware their online activity was being monitored for marketing purposes; that either no notice or consent was provided; that any notice that may have been attempted was insufficient or misleading; and that their technology intentionally sought to negate customers’ efforts to remove tracking cookies. For their part, the defendants vigorously deny having violated customers’ privacy rights, noting that they did not collect personally identifiable information, and that the data collected was anonymized to protect the identities of customers.

Since its filing in November 2008, all of the defendants in the NebuAd case have moved to dismiss the action on various grounds, including lack of personal jurisdiction and failure to state a claim. Just a few days ago (Oct. 6, 2009), the court granted the motions in respect of five of the defendants, to dismiss for lack of personal jurisdictions, citing the fact that the ISPs that were not based in California did not provide a sufficient and constitutionally reasonable basis for a California court to assert jurisdiction. However, the ruling leaves NebuAd as the last defendant standing in the action. But wait. There’s more. In May 2009, NebuAd liquidated its assets and went out of business. In fact, on the day the court dismissed the action against the other five defendants, the court also granted NebuAd’s counsel’s motion to withdraw from the case. That said, the court refused the additional request to stay the proceedings against NebuAd until new counsel could be retained. Stay tuned . . . we’ll track this for you!

Now in the second case, Adzilla (whose website is currently “under construction”) and three other defendants were parties to a joint venture that created a technology called the “ZILLAcaster.” According to the press release of Adzilla partner NetLogix, “[t]he ZILLAcaster technology resides within the service provider’s network, the closest point to the subscriber, and utilizes network data in combination with contextual and behavioral targeting to make decisions regarding the delivery of the most relevant ad content for network users. Content can be delivered down to individuals without the use of any desktop, software, or adware.” The plaintiffs claim that this ZILLAcaster oversees, inspects, copies, transmits and actually permits the alteration of the user’s Internet communications – all without any notice to the user. Although there is no allegation that any actual ads were served to Simon (the plaintiff) as a result of this ZILLAcaster, the plaintiffs argue that simply tracking them in this manner violates the Electronic Communications Privacy Act, the California Computer Crime Law, the California Invasion of Privacy Act, and the Computer Fraud and Abuse Act through the use of deep packet inspection. Adzilla has denied plaintiffs’ allegations and asserted numerous defenses.

Less than two months ago (Aug. 18, 2009), Continental Broadband was dismissed from the action, and on Oct. 2, 2009, a filing in the case seeks to voluntarily dismiss Core Communications d/b/a CoreTel as a defendant in the lawsuit. If the filing is granted, only Adzilla and its parent company, Conducive Corporation, will remain as defendants.

So why should you care? Because given the settlement of Facebook’s class action lawsuit over its Beacon technology, these two lawsuits are the only major ones we are aware of that are pending, that concern online behavioral advertising AND that could potentially yield decisions and opinions. Given Congress’ and the FTC’s interest in consumer privacy in general, and online behavioral advertising in particular, a decision in either of these two cases could set the stage for government regulation and policy – confirming with or reactive to these decisions – and may well set precedent for future online behavioral advertising cases in the months and years ahead. While it’s too soon to tell, we will keep you posted as they unfold. As always, you can contact the authors, Stacy Marcus and Joe Rosenbaum, or any Rimon attorney with whom you regularly work, for more information or assistance.

Leave a Reply

Your email address will not be published. Required fields are marked *