This week, a North Carolina federal judge denied Filters Fast LLC’s motion to dismiss a proposed data breach class action, ruling that the plaintiffs demonstrated adequate harm to satisfy Article III standing.

The class action stems from a data breach that occurred between July 2019 and July 2020 through Filters Fast’s shopping website. Plaintiffs claim that the breach occurred as a result of Filters Fast’s negligence.

Filters Fast moved to dismiss the proposed class action, arguing that the customers could not establish standing to sue in federal court because they did not assert any concrete harm. However, the court agreed with the plaintiffs who had alleged misuse of their payment cards as a result of the breach. While the plaintiffs did not allege an economic injury as a result of this breach, the plaintiffs did show misuse of their personal data, the court said in its decision.

The court wrote, “These allegations of actual misuse bring the ‘actual and threatened harm’ alleged by Plaintiffs ‘out of the realm of speculation and into the realm of sufficiently imminent and particularized harm.’” This is a lower standard than some other data breach class action cases currently being litigated so we will watch to see how the case proceeds.

In addition to facing this proposed class action, Filters Fast entered into a $200,000 settlement agreement with the New York Attorney General as a result of an investigation by the state related to the same breach.

Photo of Kathryn Rattigan Kathryn Rattigan

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security…

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security compliance. Kathryn helps clients review, revise and implement necessary policies and procedures under the Health Insurance Portability and Accountability Act (HIPAA). She also provides clients with the information needed to effectively and efficiently handle potential and confirmed data breaches while providing insight into federal regulations and requirements for notification and an assessment under state breach notification laws. Prior to joining the firm, Kathryn was an associate at Nixon Peabody. She earned her J.D., cum laude, from Roger Williams University School of Law and her B.A., magna cum laude, from Stonehill College. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.