Data Misappropriation

The Columbia science and technology law review Pub Date : 2023-01-02 DOI:10.52214/stlr.v24i1.10456

Geoffrey Xiao

{"title":"Data Misappropriation","authors":"Geoffrey Xiao","doi":"10.52214/stlr.v24i1.10456","DOIUrl":null,"url":null,"abstract":"Data scraping (also called web scraping, screen scraping, or web crawling) is a technique that uses “bots” to automate the collection of information from publicly available websites. Fundamentally, data scraping is data copying. Intellectual property (“IP”) law—namely, copyright—typically handles disputes involving copying. However, copyright law largely fails to protect data and databases (i.e., compilations of data). Instead, plaintiff websites assert contract law, Computer Fraud and Abuse Act (“CFAA”), and state unfair competition law (common law misappropriation, unjust enrichment, conversion, and trespass to chattel) claims against data scrapers.\nThis Note proceeds as follows. First, this Note examines how scrapers can be liable under trade secret law for scraping data from publicly accessible websites. Initially, trade secret law seems incongruous with data scraping because the core concept of trade secret law—secrecy—is seemingly at odds with public accessibility. If a website is publicly available, how can a scraper be liable for trade secret misappropriation of the website’s data? This Note explains how a recent Eleventh Circuit case, Compulife Software Inc. v. Newman, laid the groundwork for a trade secret cause of action. This Note reconciles Compulife with existing trade secret jurisprudence, argues that Compulife was rightly decided as a matter of both law and policy, and provides a roadmap for courts to apply trade secret law to data scraping cases.\nSecond, this Note explains why courts and litigators should use trade secret law to adjudicate data scraping disputes. Specifically, this Note argues that, compared to the existing alternatives, trade secret law is best suited to handle the various policy issues surrounding data scraping. This Note explains how contract law and the CFAA have filled the database void left by copyright law: contract law and the CFAA have become “quasi-IP” regimes, granting websites property rights in databases otherwise unprotected by copyright law. In response to the emergence of quasi-IP, this Note argues for reconceptualizing the data scraping problem by reframing data scraping as data copying—reframing data scraping with an intellectual property lens. Trade secret law offers a framework for that reconceptualization. In contrast to contract law and the CFAA (an anti-hacking law premised on criminal trespass principles), trade secret law provides courts and litigators with the appropriate IP-based doctrinal levers to analyze data scraping cases.\nFinally, this Note analyzes how EU law filled the database gap by creating an IP right, the sui generis database right. This Note argues that Compulife’s trade secret theory emulates many aspects of the EU sui generis database right. In this sense, Compulife’s trade secret theory can be seen as the United States’ attempt to fashion its own sui generis database right to fill the database gap left by copyright.","PeriodicalId":87208,"journal":{"name":"The Columbia science and technology law review","volume":"26 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2023-01-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"The Columbia science and technology law review","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.52214/stlr.v24i1.10456","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Data scraping (also called web scraping, screen scraping, or web crawling) is a technique that uses “bots” to automate the collection of information from publicly available websites. Fundamentally, data scraping is data copying. Intellectual property (“IP”) law—namely, copyright—typically handles disputes involving copying. However, copyright law largely fails to protect data and databases (i.e., compilations of data). Instead, plaintiff websites assert contract law, Computer Fraud and Abuse Act (“CFAA”), and state unfair competition law (common law misappropriation, unjust enrichment, conversion, and trespass to chattel) claims against data scrapers. This Note proceeds as follows. First, this Note examines how scrapers can be liable under trade secret law for scraping data from publicly accessible websites. Initially, trade secret law seems incongruous with data scraping because the core concept of trade secret law—secrecy—is seemingly at odds with public accessibility. If a website is publicly available, how can a scraper be liable for trade secret misappropriation of the website’s data? This Note explains how a recent Eleventh Circuit case, Compulife Software Inc. v. Newman, laid the groundwork for a trade secret cause of action. This Note reconciles Compulife with existing trade secret jurisprudence, argues that Compulife was rightly decided as a matter of both law and policy, and provides a roadmap for courts to apply trade secret law to data scraping cases. Second, this Note explains why courts and litigators should use trade secret law to adjudicate data scraping disputes. Specifically, this Note argues that, compared to the existing alternatives, trade secret law is best suited to handle the various policy issues surrounding data scraping. This Note explains how contract law and the CFAA have filled the database void left by copyright law: contract law and the CFAA have become “quasi-IP” regimes, granting websites property rights in databases otherwise unprotected by copyright law. In response to the emergence of quasi-IP, this Note argues for reconceptualizing the data scraping problem by reframing data scraping as data copying—reframing data scraping with an intellectual property lens. Trade secret law offers a framework for that reconceptualization. In contrast to contract law and the CFAA (an anti-hacking law premised on criminal trespass principles), trade secret law provides courts and litigators with the appropriate IP-based doctrinal levers to analyze data scraping cases. Finally, this Note analyzes how EU law filled the database gap by creating an IP right, the sui generis database right. This Note argues that Compulife’s trade secret theory emulates many aspects of the EU sui generis database right. In this sense, Compulife’s trade secret theory can be seen as the United States’ attempt to fashion its own sui generis database right to fill the database gap left by copyright.

查看原文本刊更多论文

数据盗用

数据抓取(也称为网络抓取、屏幕抓取或网络爬行)是一种使用“机器人”从公开网站自动收集信息的技术。从根本上说，数据抓取就是数据复制。知识产权法(即版权)通常处理涉及复制的纠纷。然而，版权法在很大程度上未能保护数据和数据库(即数据汇编)。相反，原告网站主张合同法、计算机欺诈和滥用法(“CFAA”)和州不正当竞争法(普通法挪用、不当得利、转换和动产侵权)对数据抓取提出索赔。本照会的内容如下。首先，本文考察了根据商业秘密法，从可公开访问的网站上抓取数据的抓取者如何承担责任。最初，商业秘密法似乎与数据搜集不协调，因为商业秘密法的核心概念——保密——似乎与公众可获得性不一致。如果一个网站是公开的，刮泥者如何对盗用网站数据的商业秘密负责?本笔记解释了最近的第十一巡回法院案件，Compulife Software Inc.诉Newman，如何为商业秘密诉因奠定了基础。本说明将宝丽保案与现行商业秘密判例进行协调，认为宝丽保案在法律和政策方面的判决是正确的，并为法院将商业秘密法应用于数据收集案件提供了路线图。其次，本文解释了为什么法院和诉讼律师应该使用商业秘密法来裁决数据收集纠纷。具体来说，本文认为，与现有的替代方案相比，商业秘密法最适合处理与数据抓取相关的各种政策问题。本文解释了合同法和CFAA如何填补了版权法留下的数据库空白:合同法和CFAA已成为“准知识产权”制度，授予网站在数据库中的产权，否则不受版权法保护。为了回应准知识产权的出现，本文主张将数据抓取问题重新定义为数据复制——用知识产权的视角重新定义数据抓取。商业秘密法为这种重新概念化提供了一个框架。与合同法和CFAA(以刑事侵权原则为前提的反黑客法)相比，商业秘密法为法院和诉讼律师提供了适当的基于知识产权的理论杠杆来分析数据抓取案件。最后，本文分析了欧盟法律如何通过创建知识产权这一独特的数据库权利来填补数据库空白。本文认为，宏利的商业秘密理论在许多方面模仿了欧盟的数据库权利。从这个意义上说，Compulife的商业秘密理论可以看作是美国试图塑造自己独特的数据库权利，以填补版权留下的数据库空白。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

The Columbia science and technology law review

自引率

0.00%

发文量