Skip to content

menu

Proskauer Rose LLP logo
HomeAboutOur TeamContactSubscribe All Topics
Search
Close

New Media and Technology Law Blog

LinkedIn Files Petition to the Supreme Court in hiQ Web Scraping Case

By Jeffrey Neuburger on March 11, 2020

This past week, LinkedIn filed a petition for a writ of certiorari asking the Supreme Court to overturn the Ninth Circuit’s blockbuster ruling in hiQ Labs, Inc. v. LinkedIn Corp., 938 F.3d 985 (9th Cir. 2019).  The case concerned the scope of Computer Fraud and Abuse Act (CFAA) liability associated with web scraping of publicly available social media profile data. In the appellate court ruling, the appeals court affirmed the lower court’s order granting a preliminary injunction barring LinkedIn from blocking hiQ from accessing and scraping publicly available LinkedIn member profiles. Mostly notably, the Ninth Circuit held that hiQ had shown a likelihood of success on the merits in its claim that when a computer network generally permits public access to its data, a user’s accessing that publicly available data will not constitute access “without authorization” under the CFAA.  LinkedIn feels otherwise, and posed, as the question presented:

“Whether a company that deploys anonymous computer ‘bots’ to circumvent technical barriers and harvest millions of individuals’ personal data from computer servers that host public-facing websites—even after the computer servers’ owner has expressly denied permission to access the data—‘intentionally accesses a computer without authorization’ in violation of the Computer Fraud and Abuse Act.”

Even with the Ninth Circuit’s opinion, the law surrounding data scraping still remains unsettled.  LinkedIn advanced several arguments as to why the Court should grant its petition and provide guidance in this area.  In essence, LinkedIn declares that the hiQ decision was “unprecedented” and “denied operators of public-facing websites a critical means of protecting user data from unauthorized third-party scrapers.” Its arguments include:

  • A Circuit Split: LinkedIn argues that there is a circuit split regarding the interpretation of the CFAA’s “unauthorized access” provision (18 U.S.C. §1030 (a)(2)) with respect to scraping.  On the one hand, the Ninth Circuit has held that there is likely no CFAA violation when an outside entity scrapes data on a publicly available website, while the First Circuit in the 2003 EF Cultural Travel case suggested that a web scraper may act without “authorization” under the CFAA when it crawls a public website in contravention of posted terms of use containing prohibitions of scraping activities. Moreover, LinkedIn posits that a number of district courts have ruled that the CFAA applies to the unauthorized scraping of data from public-facing websites (See e.g., here and here).

“The Ninth Circuit’s decision upsets that stable understanding and prevents websites from setting and enforcing transparent standards that allow their users to understand how their data will (and will not) be used and made available to third parties.”

Given that the internet recognizes no borders, LinkedIn contends that different interpretations of the CFAA in different areas of the country is untenable.

  • The Law Was Misapplied: LinkedIn argues that the Ninth Circuit avoided a “commonsense interpretation” of the CFAA and stressed that when it placed technical barriers to scraping its site and subsequently sent hiQ a cease and desist letter revoking permission to access the site, its further access was “without authorization.” It also contends that the Ninth Circuit’s distinction between password-protected and publicly-accessible websites is “inconsistent with the structure of the CFAA” and that if Congress had intended to limit the reach of the CFAA to non-public information it could have expressly done so.
  • The Importance of the CFAA Issue: Because data is crucial to the digital economy, access and control are of paramount importance. Given the state of the law surrounding liability under the CFAA for unwanted scraping, LinkedIn believes that the Court could offer needed clarity.

“The issue whether public-facing websites can invoke Section 1030(a)(2) is a recurring one that is likely to arise with increasing frequency because of the critical importance of protecting the privacy of user data to citizens and website operators alike. And there is a particularly pressing need for a uniform national rule.”

LinkedIn also presents the CFAA issue as one of data privacy, stressing that when users share information on a site, it might be displayed publicly according to individual settings, but they “expect that limitations on viewing and exploiting their information will be respected” and do not envision or authorize third parties using their data without their knowledge.

“The decision below casts aside the interests of LinkedIn members in controlling who has access to their data, the privacy of that data, and the desire to protect personal information from abuse by third parties, and it has done so in the service of hiQ’s narrow business interests. […] Whereas LinkedIn’s privacy policy creates obligations for LinkedIn to its members and their privacy rights, third parties like hiQ can do whatever they want with member data under the Ninth Circuit’s ruling.”

Interestingly, LinkedIn doubles down on the potential privacy implications of the Ninth Circuit’s decision in invoking what is coming in the future (or what has already arrived) in terms of the potential for data misuse when scraping is combined with powerful technologies such as AI and facial recognition.

“If the Ninth Circuit’s decision is left in place, technology companies in that Circuit will have no recourse under the CFAA against, for instance, a third-party-scraper employing artificial intelligence to compile a massive database that could allow for instant facial recognition (and possible surveillance) of billions of people, while companies litigating in other circuits will be able to combat such activity.”

While open internet advocates heralded the Ninth Circuit’s decision, LinkedIn argues that allowing the Ninth Circuit’s ruling to stand may actually incentivize sites to put their networks behind a paywall or password scheme, and thus lead to the internet being less open.

“The decision below wrongly requires websites to choose between allowing free riders to abuse their users’ data and slamming the door on the benefits to their users of the Internet’s open forum.”

It is important to note that regardless of what happens on this issue, it appears that this litigation will continue as hiQ recently filed an amended complaint to, among other things, add a number of antitrust claims.  Thus, the last word on all of the issues in this controversy has not yet arrived. It appears, however, that the CFAA issue might be closer to resolution.  An opinion by the Supreme Court on the relationship between web scraping and the CFAA could be of enormous import.  Still, if the Supreme Court declines to hear the appeal, at least in this case, on this set of facts, and in this circuit, the CFAA issue will be finally resolved.

Stay tuned!

Posted in Computer Fraud and Abuse Act, Internet, Online Content, Screen Scraping, Social Media
Tags: CFAA, data scraping, hiQ case, PUBLIC SOCIAL MEDIA DATA, publicly available website data, Supreme Court petition, unauthrorized access
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Jeffrey Neuburger Jeffrey Neuburger

Jeffrey Neuburger is co-head of Proskauer’s Technology, Media & Telecommunications Group, head of the Firm’s Blockchain Group and a member of the Firm’s Privacy & Cybersecurity Group.

Jeff’s practice focuses on technology, media and intellectual property-related transactions, counseling and dispute resolution. That expertise…

Jeffrey Neuburger is co-head of Proskauer’s Technology, Media & Telecommunications Group, head of the Firm’s Blockchain Group and a member of the Firm’s Privacy & Cybersecurity Group.

Jeff’s practice focuses on technology, media and intellectual property-related transactions, counseling and dispute resolution. That expertise, combined with his professional experience at General Electric and academic experience in computer science, makes him a leader in the field.

As one of the architects of the technology law discipline, Jeff continues to lead on a range of business-critical transactions involving the use of emerging technology and distribution methods. For example, Jeff has become one of the foremost private practice lawyers in the country for the implementation of blockchain-based technology solutions, helping clients in a wide variety of industries capture the business opportunities presented by the rapid evolution of blockchain. He is a member of the New York State Bar Association’s Task Force on Emerging Digital Finance and Currency.

Jeff counsels on a variety of e-commerce, social media and advertising matters; represents many organizations in large infrastructure-related projects, such as outsourcing, technology acquisitions, cloud computing initiatives and related services agreements; advises on the implementation of biometric technology; and represents clients on a wide range of data aggregation, privacy and data security matters. In addition, Jeff assists clients on a wide range of issues related to intellectual property and publishing matters in the context of both technology-based applications and traditional media.

Read more about Jeffrey Neuburger
Show more Show less
Related Posts
California Court Issues Another Noteworthy Decision Dismissing Breach of Contract and Tort Claims in Web Scraping Dispute
May 14, 2024
Web Publisher Seeks Injunctive Relief to Address Web Scraper’s Domain Name Maneuvers Intended to Avoid Court Order
February 5, 2024
hiQ and LinkedIn Reach Settlement in Landmark Scraping Case
December 8, 2022
Subscribe to the New Media and Technology Law Blog
Subscribe to this Blog
The Proskauer Blog Network
View All Proskauer Blogs

New Media and Technology Law Blog

Proskauer Rose LLP logo
Follow on Twitter View LinkedIn Profile Subscribe to this blog via RSS
Privacy Policy

About Proskauer Rose LLP

We are 800+ lawyers serving clients from offices located in the leading financial and business centers in the Americas, Europe and Asia. The world’s leading organizations, companies and corporations choose us to be their representatives in their most critical situations. Moreover, they consider Proskauer a strategic partner to drive their business forward. We work with asset managers, private equity and venture capital firms, Fortune 500 companies, major sports leagues, entertainment industry legends and other industry-redefining companies.

Visit Proskauer.com

Topics

Archives

Copyright ©2025, Proskauer Rose LLP. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo

Proskauer and our platform provider LexBlog each use cookies to personalize content and ads, to provide social media features and to analyze traffic. Each of us also share information about your use of our site with our social media, advertising and analytics partners. If you are happy for us to store these cookies on your device please click ‘Accept Cookies.' For more information, please see here and here.

OK