3rd Circuit overturns FDCPA ruling in plaintiff’s favor
On July 6, the U.S. Court of Appeals for the Third Circuit overturned a district court’s decision, holding that a debt collector that sent an envelope with a quick reference (QR) code that when scanned, revealed an Internal Reference Number (IRN) with the first 10 characters of the plaintiff’s street address violated the FDCPA’s prohibition in 15 U.S.C. § 1692f(8) on “[u]sing any language or symbol, other than the debt collector’s address, on any envelope.” The district court, relying on the 3rd Circuit’s 2019 decision in DiNaples v. MRS BPO, dismissed the case, holding the plaintiff lacked standing under the FDCPA because the barcode on the envelope did not reveal enough protected information to rise to the level of a concrete injury, since numerous individuals could have an identical IRN.
The 3rd Circuit reversed and remanded, explaining that the plaintiff had standing to bring a claim because the envelope’s QR code made protected information available to the public. The court rejected the defendant’s arguments that the envelope did not violate the FDCPA because it did not reveal the account number, the plaintiff did not know how to use the bar code to unlock the private information, and that there was no material risk of harm. The appellate court explained that “[a]ccount numbers are but one type of protected information” and that the plaintiff “did not need to know how to use IRNs to access accounts” nor “did he need to show an increased risk of harm.”