`
`IN THE UNITED STATES DISTRICT COURT
`FOR THE SOUTHERN DISTRICT OF FLORIDA
`FORT LAUDERDALE DIVISION
`
`
`
`
`RANDY DOTY, individually and on behalf
`of all others similarly situated,
`
`
`Plaintiff,
`
`
`
`v.
`
`
`ADT, LLC d/b/a ADT SECURITY
`SERVICES, a Delaware limited liability
`company, and TELESFORO AVILES, an
`individual,
`
`
`Defendants.
`
`
`
`
`
`
`
`
`CLASS ACTION COMPLAINT AND DEMAND FOR JURY TRIAL
`
`Plaintiff Randy Doty (“Plaintiff”) brings this Class Action Complaint and Demand for Jury
`
`Trial against Defendant ADT, LLC d/b/a ADT Security Services (“ADT”), based on its intentional
`
`and negligent tortious acts in providing security services to its customers with remote-viewing
`
`capabilities, and Defendant Telesforo Aviles (“Aviles”), for using those services to spy on Plaintiff
`
`and others who resided in homes with ADT security systems. Plaintiff alleges as follows upon
`
`personal knowledge as to himself and his own acts and experiences, and, as to all other matters,
`
`upon information and belief.
`
`NATURE OF THE ACTION
`
`1.
`
`In April of 2020, Randy Doty’s wife received a terrifying phone call from ADT:
`
`the technician who had installed their indoor security camera system, Telesforo Aviles, had granted
`
`himself remote access, and had used that access an unknown amount of times to spy on Randy
`
`Doty, his wife, and their minor son in their most private and intimate moments.
`
`
`
`1
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 2 of 28
`
`
`
`2.
`
`And Mr. Doty was not the only one. He soon found out that hundreds of households
`
`had experienced the same staggering invasion of privacy over at least a seven-year period. At fault
`
`for this breach of trust: ADT’s unsecure and unmonitored “security” services.
`
`3.
`
`While ADT boasts that it has been protecting people for over 145 years and holds
`
`itself out as the “#1 in smart home security” it failed to even secure its own systems from massive
`
`and ongoing intrusions into its customers’ private lives.
`
`4.
`
`ADT failed to provide the security services its customers paid for by leaving large
`
`vulnerabilities in the ADT Pulse application and, as a result, compromised the safety and security
`
`of its customers’ homes and family members.
`
`5.
`
`The ADT vulnerability allowed any one of its technicians to grant themselves (or
`
`for them to grant anyone else, for that matter) access to a customer’s ADT Pulse application and
`
`control every aspect of the customer’s home security system, including surreptitiously opening
`
`locks, disarming their system, and viewing and downloading security camera footage.
`
`6.
`
`This vulnerability allowed Aviles—as he admitted in a later guilty plea—to watch
`
`people in their homes through the cameras for his own sexual gratification. He would watch
`
`customers naked and engaging in sexual activity, which he did hundreds and hundreds of times
`
`over, for years, without detection. See Factual Resume, United States v. Aviles, No. 20-cr-00506,
`
`dkt. 6 (N.D. Tex. Oct. 19, 2020), attached hereto as Exhibit A.)
`
`7.
`
`Remarkably, just three months before ADT revealed this vulnerability, ADT
`
`conducted a survey recognizing the “strong consumer expectations” of security that consumers
`
`had in their smart home products: “With many data privacy and security issues in the news, it’s no
`
`surprise that 92 percent of respondents feel smart home security companies need to take measures
`
`
`
`2
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 3 of 28
`
`
`
`to protect customers’ personal data and information.”1 ADT bragged that it was leading the
`
`industry in establishing “best practices” for the protection of consumer privacy, one of which was
`
`strict standards for access to data, promising that “[s]ecurity providers will only share audio or
`
`video with first responders with their customers’ prior consent, or as required by law, and will not
`
`otherwise access a customer’s audio or video without the customer’s knowledge.”2
`
`8.
`
`In a frantic effort to mitigate and hide the fact that the vulnerability in its supposedly
`
`industry-leading smart home security systems permitted an employee to spy on people in their
`
`homes, ADT began a campaign to call all affected account holders and secure a release and
`
`confidentially agreement in exchange for a monetary payment representing a fraction of the value
`
`of their claims. This effort, directed by lawyers but carried out by customer service representatives,
`
`failed to determine whether individuals were represented by counsel, and attempted to mislead
`
`them into believing that the release would cover account holders and non-account holders in the
`
`household alike.
`
`9.
`
`Beyond Aviles, potentially countless other unknown individuals have been
`
`accessing customers’ ADT Pulse accounts and surreptitiously viewing their camera footage, for
`
`years, all around the country.
`
`10.
`
`The mental and emotional impact this revelation has had on every person receiving
`
`these calls from ADT is immeasurable. Moments once believed to be private and inside the sanctity
`
`of the home are now voyeuristic entertainment for a third party. And worse, those moments could
`
`
`ADT Survey Reveals Strong Consumer Expectations for Smart Home Privacy Protections, ADT
`1
`(Jan. 27, 2020), https://investor.adt.com/press-releases/press-release-details/2020/ADT-Survey-
`Reveals-Strong-Consumer-Expectations-for-Smart-Home-Privacy-Protections/default.aspx
`(permanent link available at https://cite.law/RNP5-BT3U).
`Id.
`2
`
`
`
`3
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 4 of 28
`
`
`
`have been captured, shared with others, or even posted to the Internet. ADT’s failure to protect its
`
`customers irreparably destroyed their sense of security, safety, intimacy, and well-being.
`
`PARTIES
`
`11.
`
`12.
`
`Plaintiff Randy Doty is a natural person and a citizen of the State of Texas.
`
`Defendant ADT, LLC is a limited liability company organized and existing under
`
`the laws of Delaware with its principal place of business located at 1501 Yamato Road, Boca
`
`Raton, Florida 33431.
`
`13.
`
`Defendant Telesforo Aviles is a natural person and a citizen of the State of Texas.
`
`JURISDICTION AND VENUE
`
`14.
`
`This Court has jurisdiction over this action pursuant to 28 U.S.C. § 1332(d)(2),
`
`because (i) at least one member of the Class is a citizen of a different state than Defendant ADT,
`
`(ii) the amount in controversy exceeds $5,000,000, exclusive of interests and costs, and (iii) none
`
`of the exceptions under that subsection apply in this action.
`
`15.
`
`This Court has personal jurisdiction over Defendant ADT because Defendant ADT
`
`conducts business in Florida and has its headquarters in this District. This Court has personal
`
`jurisdiction over Defendant Aviles because Defendant Aviles conducts business in Florida through
`
`his employment with Defendant ADT.
`
`16.
`
`Venue is proper pursuant to 28 U.S.C. § 1391(b) because Defendant ADT maintains
`
`its headquarters and conducts significant business in this District.
`
`COMMON FACTUAL ALLEGATIONS
`
`I.
`
`ADT Promises Safety and Security to Consumers.
`
`17.
`
`ADT is a home security company that touts its longstanding expertise in security
`
`and claims to have been providing security services since the 19th century. According to ADT, it
`
`
`
`4
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 5 of 28
`
`
`
`is “America’s #1 smart home security provider.” ADT provides residential security systems and
`
`monitoring plans that purportedly provide “immediate detection” to “help protect you from
`
`intrusion”. In short, ADT promises that it is “committed to your security.”3
`
`18.
`
`ADT markets and sells a comprehensive security system package that includes the
`
`hardware necessary to operate a home security system, the monitoring services that detect home
`
`intrusions and alert the police, and the security system installation.
`
`19.
`
`ADT offers various tiers of its home security systems at different price points. The
`
`basic tier, for example, features security monitoring equipment with 24/7 alarm monitoring while
`
`the highest tier home security package includes various convenience and home automation
`
`features.
`
`20.
`
`One of the highest tier home security packages is ADT Pulse. ADT Pulse allows
`
`consumers to “check on your home - even if you’re away” by giving them remote access to
`
`control their home security system from a mobile application or a web browser portal.
`
`Specifically, consumers can arm and disarm their home security systems, remotely lock and
`
`unlock doors, view live camera footage, and control various smart home devices like a
`
`thermostat and lights. See Figure 1, showing a screenshot of ADT’s marketing materials for ADT
`
`Pulse.4
`
`
`
`
`
`
`
`
`ADT Services | Free In-Home Consultation, Expert Installation and Repairs, Personal
`3
`Customer Support, https://www.adt.com/services (last visited Apr. 1, 2021).
`4
`ADT Pulse® | Official ADT Smart Home Automation System,
`https://www.adt.com/pulse (last visited Apr. 1, 2021).
`
`
`
`5
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 6 of 28
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 7 of 28
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 8 of 28
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 9 of 28
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 10 of 28
`
`
`
`security providers “manage consumer data and protect their privacy.” Those principles included
`
`“Privacy by Design,” promising to “embed[]” privacy “in all areas of the security industry,” which
`
`“begins with the design of the products used to help protect and connect customers.” They also
`
`included, specifically, “Handling of Audio and Video,” claiming that security providers would
`
`share audio or video only with prior consent and would otherwise never “access a customer’s audio
`
`or video without the customer’s knowledge.”13
`
`II.
`
`
`
`ADT Failed to Detect a Seven-Year-Long Breach of its Systems That, at the Very Least,
`Resulted in an ADT Employee Improperly Accessing Customers’ Accounts.
`
`30.
`
`Unfortunately for all of ADT’s Pulse customers and those living in homes with
`
`ADT Pulse security systems, a vulnerability in the Pulse system completely obliterates all of
`
`ADT’s promises of security and protection.
`
`31.
`
`On or around April 23, 2020, ADT began to contact some of its customers to inform
`
`them that a vulnerability in the ADT Pulse system had allowed unauthorized users to access
`
`customers’ ADT Pulse accounts as if they were a regular user. In other words, an unauthorized
`
`user could remotely arm and disarm security systems, access smart home devices, and view and
`
`download security camera footage, including footage from indoor cameras designed to, among
`
`other things, protect their children.
`
`32.
`
`In fact, ADT’s investigation revealed that at least one ADT employee in the Dallas-
`
`Fort Worth, Texas area, named Telesforo Aviles, had access to more than 200 different customers’
`
`ADT Pulse accounts for the last seven years. According to an ADT spokesperson, Aviles was able
`
`to add—and, in fact, did add—his own personal email address to customers’ accounts, allowing
`
`him to remotely login to a customer’s account using his own unauthorized credentials.
`
`13
`
`Id.
`
`
`
`
`
`10
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 11 of 28
`
`
`
`33.
`
`Aviles was ultimately charged by the United States with one count of fraud and
`
`related activity in connection with computers, in violation of 18. U.S.C. § 1030(a)(2)(C) and
`
`(c)(2)(B)(ii), due to his accessing of ADT Pulse customer accounts. See Information, United States
`
`v. Aviles, 20-cr-00506, dkt. 1 (N.D. Tex. Oct. 19, 2020), attached hereto as Exhibit B.
`
`34.
`
`Subsequently, Aviles plead guilty to this charge on October 19, 2020. Plea
`
`Agreement, United States v. Aviles, 20-cr-00506, dkt. 4 (N.D. Tex. Oct. 19, 2020), attached hereto
`
`as Exhibit C. In support of his guilty plea, Aviles agreed and stipulated to multiple facts
`
`surrounding his access of ADT Pulse customer accounts. See Factual Resume, Ex. A.
`
`35.
`
`Aviles admitted that when ADT technicians installed the ADT Pulse system in
`
`customer homes, ADT permitted them to add their ADT employee email to the application for
`
`access to the security system. Through this process, Aviles would add his personal email to a given
`
`customer’s ADT Pulse system during installation. See Factual Resume, Ex. A, ¶¶ 3–4.
`
`36.
`
`Over the course of at least five years, Telesforo Aviles accessed customer’s ADT
`
`Pulse systems and viewed their interior and exterior security footage for the purposes of sexual
`
`gratification. This included watching videos captured on the ADT Pulse system that depicted
`
`naked women and couples engaging in sexual activity inside of their homes, without the
`
`customer’s consent. See id., ¶¶ 5–6.
`
`37.
`
`This type of access admitted to by Aviles could only occur because ADT failed to
`
`implement adequate procedures to ensure that technicians removed their access to customer’s ADT
`
`Pulse systems after installation. Further, ADT failed to implement procedures that would prevent
`
`non-household members from adding non-household email addresses.
`
`38.
`
`Similarly, ADT failed to monitor consumers’ accounts and promptly alert them any
`
`time a new email was added to their accounts. Countless checks could have been in place to prevent
`
`
`
`11
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 12 of 28
`
`
`
`or at least stop this conduct. Instead, this breach came to light only by luck and happenstance: a
`
`customer, reporting a technical issue, inadvertently revealed the unwanted third-party access. But
`
`for that event, ADT would be unaware of this invasive conduct and it would continue unabated to
`
`this day (and likely expanding to new households).
`
`39.
`
`As such, countless other ADT technicians and/or employees could have taken
`
`advantage of ADT’s lax security and granted themselves unfettered access to other customer
`
`accounts—entirely unbeknownst to both the customer and to ADT.
`
`40.
`
`Although ADT claims it has implemented procedures to prevent similar incidents
`
`in the future, it is already too late for an unknown number of households whose accounts and
`
`security camera footage have already been accessed and potentially exploited.
`
`FACTS SPECIFIC TO PLAINTIFF DOTY
`
`41. Mr. Doty’s household has been a long-time ADT security customer. In
`
`approximately 2014, Mr. Doty’s wife upgraded her account to the ADT Pulse system which
`
`included installing security cameras inside her home. ADT represented to Mr. Doty’s wife that
`
`this upgrade would enhance her household’s security.
`
`42.
`
`Shortly thereafter, Aviles installed the ADT Pulse system, including an indoor
`
`security camera with a wide-angle view that provided a visual of a bathroom, entryway, family
`
`room and dining space, stairs, and into the master bedroom.
`
`43.
`
`On April 23, 2020, a phone call from ADT destroyed whatever security and safety
`
`its security system promised. An ADT “Concierge Specialist” called Mr. Doty’s wife to explain
`
`that one of its technicians (who they did not name) had gained access to her account and therefore
`
`had access to her household’s camera, potentially viewing Mr. Doty, his wife, and their minor son,
`
`
`
`12
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 13 of 28
`
`
`
`for an unknown amount of time. ADT claimed it was unknown how many times this technician
`
`accessed their camera.
`
`44.
`
`In an email later that day, ADT Concierge Representative Wayne Walker described
`
`it as “a difficult message to hear.” Difficult is, of course, woefully inadequate to truly describe
`
`Plaintiff’s loss of security, loss of safety, humiliation, and anger.
`
`45.
`
`Based upon the cameras’ wide-angle lens and placement, ADT’s employee had an
`
`opportunity to watch at least the following events:
`
`a. Mr. Doty, his wife, and his minor son nude;
`
`b. Mr. Doty, his wife, and his minor son in various states of undress;
`
`c. Mr. Doty, his wife, and his minor son getting ready for bed; and
`
`d. Moments of physical intimacy.
`
`46.
`
`Immediately after the call, Mr. Doty’s wife disabled the ADT camera in their home.
`
`Mr. Doty’s wife expended significant time addressing the current and future consequences of the
`
`exposure enabled by ADT, including, but not limited to, removing ADT security hardware, and
`
`researching additional surveillance and security devices and services.
`
`47.
`
`Prior to April 23, 2020, Mr. Doty and his wife never received any call, text, email,
`
`or notification of any kind informing them that another user was added to the ADT Pulse account
`
`or that a third-party user accessed the ADT Pulse account.
`
`CLASS ALLEGATIONS
`
`48.
`
`Class Definition: Plaintiff Randy Doty brings this action on behalf of himself and
`
`a class of similarly situated individuals, as well as a sub-class of those individuals, defined as
`
`follows:
`
`Class: All individuals in the United States who (1) reside in a household with an ADT
`Pulse security system but are not the account holder; and (2) where that security system
`
`
`
`13
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 14 of 28
`
`
`
`
`
`was remotely accessed by an employee or agent of Defendant ADT without authorization
`from the account holder.
`
`Sub-Class: All individuals in the United States who (1) reside in a household with an ADT
`Pulse security system but are not the account holder; and (2) where that security system
`was remotely accessed by Telesforo Aviles without authorization from the customer.
`
`
`The following people are excluded from the Class: (1) any Judge or Magistrate presiding over this
`
`action and the members of their family; (2) Defendants, Defendants’ subsidiaries, parents,
`
`successors, predecessors, and any entity in which the Defendants or their parents have a controlling
`
`interest and their current or former employees, officers, and directors; (3) persons who properly
`
`execute and file a timely request for exclusion from the Class; (4) persons whose claims in this
`
`matter have been finally adjudicated by a court of law on the merits; (5) Plaintiff’s counsel and
`
`Defendants’ counsel; and (6) the legal representatives, successors, and assigns of any such
`
`excluded persons.
`
`49.
`
`Numerosity: The exact number of members of the Class is unknown and is not
`
`available to Plaintiff at this time, but individual joinder in this case is impracticable. The Class
`
`likely consist of over 40 individuals. Members of the Class can be easily identified through
`
`Defendant ADT’s records. While the exact number of members of the Sub-Class is unknown, there
`
`are over 200 households affected by Aviles’ conduct that have been identified by Defendant ADT,
`
`and the exact membership of the Class can be identified through Defendant ADT’s records.
`
`50.
`
`Commonality: There are many questions of law and fact common to the claims of
`
`Plaintiff and the other members of the Class, and those questions predominate over any questions
`
`that may affect individual members of the Class. Common questions for the Class include but are
`
`not limited to the following:
`
`a. Whether Defendant ADT’s conduct constitutes negligence;
`
`b. Whether Defendant ADT’s conduct constitutes gross negligence;
`
`
`
`14
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 15 of 28
`
`
`
`c. Whether Defendant ADT’s conduct constitutes an intrusion upon seclusion;
`
`d. Whether Defendant ADT’s conduct constitutes intentional infliction of emotional
`distress;
`
`
`
`e. Whether Defendant ADT’s conduct entitles the Class to privacy monitoring; and
`
`f. Whether Defendant ADT’s conduct constitutes negligent hiring, supervision, and
`retention.
`
`There are many questions of law and fact common to the claims of Plaintiff and the other
`
`members of the Sub-Class, and those questions predominate over any questions that may affect
`
`individual members of the Class. Common questions for the Class include but are not limited to
`
`the following:
`
`a. Whether Defendant Aviles’s conduct constitutes intrusion upon seclusion; and
`
`b. Whether Defendant Aviles’s conduct constitutes intentional infliction of
`emotional distress.
`
`Typicality: Plaintiff’s claims are typical of other members of the Class and Sub-
`
`51.
`
`Class, in that Plaintiff and the members of the Class and Sub-Class sustained damages arising out
`
`of Defendants’ uniform wrongful conduct.
`
`52.
`
`Adequate Representation: Plaintiff will fairly and adequately represent and
`
`protect the interests of the Class and Sub-Class and has retained counsel competent and
`
`experienced in complex class actions. Plaintiff has no interest antagonistic to those of the Class or
`
`Sub-Class, and Defendants have no defenses unique to Plaintiff.
`
`53.
`
`Predominance and Superiority: This case is also appropriate for class
`
`certification because Class proceedings are superior to all other available methods for the fair and
`
`efficient adjudication of this controversy because joinder of all parties is impracticable. The
`
`damages suffered by the individual members of the Class and Sub-Class will likely be relatively
`
`small, especially given the burden and expense of individual prosecution of the complex litigation
`
`
`
`15
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 16 of 28
`
`
`
`necessitated by Defendants’ actions. Thus, it would be virtually impossible for the individual
`
`members of the Class and Sub-Class to obtain effective relief from Defendants’ misconduct. Even
`
`if members of the Class and Sub-Class could sustain such individual litigation, it would still not
`
`be preferable to a class action because individual litigation would increase the delay and expense
`
`to all parties due to the complex legal and factual controversies presented in this Complaint. By
`
`contrast, a class action presents far fewer management difficulties and provides the benefits of
`
`single adjudication, economies of scale, and comprehensive supervision by a single Court.
`
`Economies of time, effort, and expense will be fostered, and uniformity of decisions ensured.
`
`FIRST CAUSE OF ACTION
`Negligence
`(On Behalf of Plaintiff Doty and the Class against Defendant ADT)
`
`Plaintiff incorporates paragraphs 1–53 as if fully set forth herein.
`
`Defendant ADT had full knowledge of the purpose for which its security cameras
`
`54.
`
`55.
`
`were being used and the sensitivity of the people and things the cameras were designed to secure
`
`and protect—that which “matters most” to their clients. ADT also knew the types of harm that
`
`Plaintiff and the members of the Class could and would suffer if the integrity of the security system
`
`was compromised.
`
`56.
`
`ADT had a duty to exercise reasonable care in ensuring that all ADT security
`
`systems were secure, safe to use, and inviolable by unauthorized parties. This duty includes, among
`
`other things, ensuring that reasonable and proper protocols and safeguards are in place so that
`
`consumers’ security cameras are not easily compromised by unauthorized users.
`
`57.
`
`Defendant ADT, by and through its agents, employees, and independent
`
`contractors, was negligent in its acts and/or omissions by, among other things, allowing technicians
`
`to create authorized user accounts, and by failing to discover that its employees could make and
`
`
`
`16
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 17 of 28
`
`
`
`did make themselves authorized users gaining unauthorized access to the ADT Pulse account
`
`connected to their home, thereby allowing surreptitious videos and images to be viewed and taken
`
`of Plaintiff in his home.
`
`58.
`
`Plaintiff and the members of the Class were the foreseeable and probable victims
`
`of any inadequate security practices and procedures. ADT knew of or should have known of the
`
`inherent risks of allowing ADT cameras to be set up and used without adequate security protocols
`
`and safeguards.
`
`59.
`
`Defendant ADT further knew or should have known that: (1) the surreptitious
`
`recordings of Plaintiff contained private and confidential information about Plaintiff; (2) Plaintiff
`
`had a reasonable expectation of privacy in being partially and fully naked, engaging in consensual
`
`intimate activity, and having private conversations in a private home; (3) the recordings were taken
`
`without Plaintiff’s knowledge or consent; (4) the surreptitious recordings would reveal private and
`
`personal things about Plaintiff which ADT and Aviles had no right or authorization to view, use,
`
`disseminate, or disclose; and (5) the viewing of these private acts and occasions constitutes a
`
`substantial violation of Plaintiff’s right of privacy.
`
`60.
`
`Beyond ordinary negligence, Defendant ADT was grossly negligent because the
`
`acts and omissions of Defendant ADT and its employee and agents were more than momentary
`
`thoughtlessness or inadvertence. Rather the conduct, when viewed objectively from the standpoint
`
`of Defendant ADT at the time of these events, involved an extreme degree of risk, considering the
`
`probability and magnitude of the potential harm to Plaintiff. Moreover, Defendant ADT had
`
`subjective knowledge of the risk of employees gaining unauthorized access to clients’ cameras but
`
`failed to disclose to Plaintiff the vulnerability of their monitoring systems and the ability of ADT
`
`
`
`17
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 18 of 28
`
`
`
`employees to monitor and observe their home without their consent, and acted with conscious
`
`indifference to the rights, safety, and welfare of their clients.
`
`61.
`
`ADT’s own actions and inactions created a foreseeable risk of harm to Plaintiff and
`
`the members of the Class. ADT’s misconduct included, but was not limited to, its failure to sell
`
`security systems with sufficiently robust security protocols to prevent unauthorized users from
`
`gaining access to the cameras and failing to inform Plaintiff and the members of the Class when
`
`unknown individuals added their email addresses to customer accounts.
`
`62.
`
`ADT was in a position to protect against the harm suffered by Plaintiff and the
`
`members of the Class and had a duty to reasonably protect Plaintiff and the Class from invasions
`
`of privacy through unauthorized access of the ADT Pulse system.
`
`63.
`
`ADT, through its actions, unlawfully breached its duty to Plaintiff and the members
`
`of the Class by failing to ensure their cameras and set up procedures were sufficiently robust to
`
`protect against unauthorized use.
`
`64.
`
`As a result of ADT’s negligence, Plaintiff and the members of the Class have
`
`suffered and will continue to suffer damages and injury including, but not limited to: mental
`
`anguish and suffering in the form of anxiety, stress, loss of security, fear, loss of safety,
`
`humiliation, and anger; the time spent monitoring and addressing the current and future
`
`consequences of the exposure enabled by ADT; and the necessity to engage legal counsel and incur
`
`attorneys’ fees, costs, and expenses.
`
`65.
`
`Further, because ADT’s acts and omissions resulted from gross negligence,
`
`exemplary damages should be awarded against ADT in an amount to be determined by the jury in
`
`this case. Moreover, exemplary damages should be awarded without limitation, as set forth in Tex.
`
`Civ. Prac. & Rem. Code § 41.008(c).
`
`
`
`18
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 19 of 28
`
`
`
`SECOND CAUSE OF ACTION
`Intrusion Upon Seclusion
`(On Behalf of Plaintiff Doty and the Class against Defendant ADT)
`
`Plaintiff incorporates the foregoing paragraphs 1–53 as if fully set forth herein.
`
`ADT intentionally intruded upon Plaintiff’s and each of the Class members’
`
`66.
`
`67.
`
`seclusion by creating the means and opportunity for its employees to spy on Plaintiff and the Class
`
`in one of their most private spaces—their homes—and providing Aviles and potentially others
`
`with round-the-clock access to their most intimate moments. Specifically, ADT’s policy of
`
`allowing technicians to add their emails to customer’s ADT Pulse accounts created this
`
`opportunity. Indeed, ADT had an affirmative duty not to let unauthorized third parties gain access
`
`to these spaces.
`
`68.
`
`ADT’s creation of this opportunity and failure to stop such access is highly
`
`offensive to a reasonable person as it reveals intimate private details about Plaintiff and each of
`
`the Class members and the activities they participate in inside the privacy of their own homes.
`
`69.
`
`ADT is also liable for the actions of its agents who accessed the security systems
`
`in Plaintiff’s and the Class’s homes, which was done in the normal and routine course and scope
`
`of their employment.
`
`70.
`
`ADT’s intrusion upon the Plaintiff’s and the Class members’ seclusion caused
`
`Plaintiff and the Class members mental anguish and suffering in the form of anxiety, loss of
`
`security, loss of safety, humiliation, and anger.
`
`THIRD CAUSE OF ACTION
`Negligent Hiring, Supervision and Retention
`(On Behalf of Plaintiff Doty and the Class against Defendant ADT)
`
`Plaintiff incorporates the foregoing paragraphs 1–53 as if fully set forth herein.
`
`At all relevant times, Telesforo Aviles was ADT’s employee and/or agent.
`
`71.
`
`72.
`
`
`
`19
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 20 of 28
`
`
`
`73. Whenever in this Complaint it is alleged that ADT did any act or thing, it is meant
`
`that each of ADT’s officers, agents, servants, employees, or representatives did such act and/or
`
`that at the time such act or thing was done, it was done with the full authorization or ratification
`
`of ADT or was done in the normal and routine course and scope of employment of each of ADT’s
`
`officers, agents, servants, employees, or representatives.
`
`74.
`
`ADT had the opportunity and duty to screen its employees, including Aviles, to
`
`ensure they were fit to perform the duties asked of them.
`
`75.
`
`ADT knew or should have known Aviles was incompetent or unfit. Nonetheless,
`
`ADT made the reckless decision to hire and retain Aviles as a technician.
`
`76.
`
`ADT and its agents, servants, and employees, who were at all times acting in the
`
`course and scope of their employment, were guilty of negligence toward Plaintiff. Defendant ADT
`
`is further liable for the negligent acts of their agents, servants, or employees, including Aviles,
`
`under the legal doctrine of respondeat superior. At all relevant times, Aviles was an agent apparent
`
`or ostensible agent of Defendant ADT.
`
`77.
`
`ADT’s negligence was a proximate cause of Plaintiff’s and Class members’ injuries
`
`and damages, including, but not limited to, ADT’s negligence in:
`
`a. Failing to perform due diligence in contacting Aviles’s prior employers;
`
`b. Failing to adequately evaluate Aviles’s mental state prior to hiring;
`
`c. Any and all actions and omissions as may be proven at trial;
`
`d. Negligently hiring Aviles in a position allowing him to have access to sensitive
`
`client information;
`
`e. Negligently allowing Aviles to access sensitive client information when Defendant
`
`ADT knew, or in the exercise of ordinary care should have known, that Aviles was
`
`
`
`20
`
`
`
`Case 9:21-cv-80645-AMC Document 1 Entered on FLSD Docket 04/02/2021 Page 21 of 28
`
`
`
`unfit;
`
`f. Negligently retaining Aviles in its employ in a position that provided him with
`
`access to sensitive client information;
`
`g. Negligently and inadequately supervising its employees;
`
`h. Failing to create and/or enforce safety rules, polices, and procedures governing
`
`employee conduct regarding access to clients’ cameras and other sensitive
`
`information;
`
`i. Failing to warn Plaintiff of the inappropriate and substandard hiring and retention,
`
`training, and supervision of their employees; and
`
`j. Negligently allowing Aviles to accomplish the tort upon Plaintiff by the existence
`
`of his agency relationship with Defendant ADT.
`
`78.
`
`These actions and omissions of ADT singularly, or in combination with others,
`
`proximately ca