A Blog About Intellectual Property Litigation and the District of Delaware


Entries for tag: CFAA

(Eds. Note - Andrew actually knows how the website works, so he could probably stop me)

AI-Generated, displayed with permission

Today's case is RyanAir DAC v. Booking Holdings Inc., C.A. No. 20-1191-WCB, D.I. 399 (D. Del. Aug. 7, 2024). For those unfamiliar, RyanAir is sort of the Irish version of Spirit airlines, although I believe they represent a significantly less wintry ring of hell (I understand they do not charge extra for a seat that did not previously contain an incontinent cat). Booking is a third-party website for booking airfare and accommodations -- similar to Expedia for our American readers.

Apparently, it was undisputed that Booking paid contractors to scrub RyanAir's website via screengrabs to get prices to post on their site. RyanAir sued, alleging that this amounted to a violation of the Computer Fraud and Abuse Act ("CFAA") because, in collecting the screencaps, Booking and its contractors "intentionally accessed a computer without authorization or exceeded authorized access, and thereby obtained information from any protected computer."

So I mean, its pretty close to IP.

The issue was that RyanAir's website was, unsurprisingly, open to the flying public. They ran various anti-spyware measures to prevent bots from scrubbing their website for prices and blacklisted known bots, but any normal person was free to peruse at their leisure. The dispute thus centered on whether running bots to grab the prices, in contravention of terms of service and in an active attempt to circumvent the security measures, constituted access to the website "without authorization." Judge Bryson found that ...