securitySecurity/COMPLIANCE/INFO

Ninth Circuit Expands Personal Jurisdiction Over Foreign Tech Platforms in Data Breach Cases

sourceDLA Piper Privacy Matters

calendar_todayMarch 4, 2026

schedule2 min read

lightbulb

EXECUTIVE SUMMARY

Ninth Circuit Expands Jurisdiction Over Foreign Tech in Data Breach Cases

Summary

On March 2, 2026, the U.S. Court of Appeals for the Ninth Circuit made a pivotal decision in the case of Freeman v. 3Commas Technologies OÜ. This ruling reversed a previous dismissal of a class action lawsuit against the Estonian company, expanding personal jurisdiction over foreign tech platforms in data breach cases.

Key Points

The decision was issued by the Ninth Circuit Court of Appeals on March 2, 2026.
The case involved Freeman v. 3Commas Technologies OÜ, an Estonian software company.
The court reversed a district court's dismissal for lack of personal jurisdiction.
This ruling provides guidance on jurisdictional reach over foreign tech companies in the U.S.
The case is significant for foreign companies operating in the U.S. market.

Analysis

The Ninth Circuit's decision marks a significant shift in how foreign technology companies may be held accountable in U.S. courts, particularly in data breach cases. This expansion of personal jurisdiction could lead to increased litigation risks for foreign entities operating in the U.S., emphasizing the need for robust compliance and data protection measures.

Conclusion

IT professionals should closely monitor this development as it may influence compliance strategies and legal risks for foreign tech companies operating in the U.S. Ensuring adherence to U.S. data protection standards is increasingly critical.