Author: JOLT Page 7 of 9

By: Megan Haugh

On May 6, 2020, Epic Games announced Fortnite had over 350 million registered players.[1]  Like Minecraft (a video game played monthly by 126 million people),[2] Fortnite is a household name.[3]  Fortnite, similar to Suzanne Collins’s The Hunger Games, is a game of survival.[4]  Fortnite players gather resources, create tools or weapons, and fight to stay alive.[5]  A popular feature in Fortnite—and other mainstream video games—is the “loot box.”[6]  In 2019, the University of York reviewed the most popular video games on Steam (an online video game retailer) and found that seventy-one percent contained these loot boxes.[7]  While today’s popular video games (such as the FIFA franchise, Fortnite, and Overwatch) widely use loot boxes, many people liken the virtual loot box to a Las Vegas slot machine.[8]  Like the gambler who pays to play the slot machine without knowing the outcome, today’s gamer purchases a loot box without knowing the items she will receive.  With many players under the age of eighteen, should the government regulate loot boxes in video games like gambling in casinos?

A loot box is an optional in-game purchase that provides a randomized reward.[9]  The modern loot box is like the old, yellow mystery box in Nintendo’s Super Mario Brothers.[10]  In that video game, a person tapped the mystery box and Mario or Luigi received a randomized special ability (such as shooting fireballs at enemies).[11]  Like the mystery box in Super Mario Brothers, today’s loot box provides a randomized reward, such as a skin (i.e. a new outfit for a player’s avatar) or a catchphrase.[12] The crucial difference between the mystery box in Super Mario Brothers and the loot box in today’s video games is money.  Today, a player must purchase the loot box (with either in-game currency or real currency) to reap the randomized reward.[13]  By 2022, the video game industry anticipates $50 billion in revenue from loot boxes.[14]

As loot box purchases rise, lawmakers are taking notice.[15]  In both Belgium and the Netherlands, lawmakers moved to ban loot boxes.[16]  In Australia, lawmakers suggested that video games with loot boxes receive an “R” rating.[17]  However, people disagree on whether immediate regulatory action is appropriate.[18]  While some advocate for further studies,[19] others (like Republican Senator Josh Hawley) see the correlation between loot boxes and gambling as a justification for immediate regulatory action.[20]  In May of 2019,  Senator Hawley introduced a bill that bans loot box sales to minors.[21]  Conceivably, a minor—lacking impulse control and financial judgement—is more susceptible to the “loot box effect”[22] (i.e. the compulsion to keep playing the odds).  In an NPR interview, Senator Hawley stated “[Video game creators] need to be upfront about what their games are actually doing, and they need to stop practices that intentionally exploit children.”[23]

Compared to traditional gambling, a loot box costs as much as an average lottery ticket.[24]  For example, in Overwatch (a first-person shooter game) a person pays $9.99 for eleven loot boxes.[25]  Unlike a lottery ticket though, a minor can purchase a loot box.  An easily accessible and inexpensive loot box (like the lottery ticket) can trigger addictive behaviors in an individual.[26]  Many players report spending hundreds to thousands of dollars on these in-game purchases.[27]  Some adults even claim that their children used credit cards without their knowledge to purchase loot boxes.[28]  In my opinion, there is no significant difference between the gambler who pays to play the slots and the gamer who purchases a loot box.  In both scenarios, a person is paying to play her odds.  The virtual loot box ought to be regulated.

[1] See @FortniteGame, Twitter (May 6, 2020, 10:01 AM), https://twitter.com/FortniteGame/status/1258079550321446912.

[2] See Tom Warren, Minecraft Still Incredibly Popular as Sales Top 200 Million and 126 Million Play Monthly, The Verge (May 18, 2020, 9:00 AM), https://theverge.com/2020/5/18/21262045/minecraft-sales-monthly-players-statistics-youtube.

[3] See Nick Statt, Fortnite is Now One of the Biggest Games Ever with 350 Million Players, The Verge (May 6, 2020, 1:54 PM), https://theverge.com/2020/5/6/21249497/fortnite-350-million-registered-players-hours-played-april.

[4] See Sarah LeBoeuf, What is ‘Fortnite’?: A Look at the Video Game that has Become a Phenomenon, NBC News (Jun. 30, 2018 8:27 AM), http://nbcnews.com/tech/tech-news/what-fortnite-look-video-game-has-become-phenomenon-n887706.

[5] See id.

[6] See Isobel Asher Hamilton, There’s a Debate Raging in Video Games Over Whether Loot Boxes Should be Classified as Gambling, Business Insider (July 5, 2020, 5:22 AM), https://www.businessinsider.com/classifying-video-game-loot-boxes-as-gambling-2020-7.

[7] See id.

[8] See id.; see also Julie Steinberg, Loot Box Lawsuits Liken Transactions to Slot Machine Gambling, Bloomberg Law(Sept. 1, 2020, 1:57 AM), https://news.bloomberglaw.com/product-liability-and-toxics-law/loot-box-lawsuits-liken-transactions-to-slot-machine-gambling.

[9] See S. 1629, 116th Cong. § 2 (2019).

[10] See Ben Johnson, Loot Boxes are a Lucrative Game of Chance, But are They Gambling, NPR: All Things Considered(Oct. 10, 2019, 5:08 PM), https://www.npr.org/2019/10/10/769044790/loot-boxes-are-a-lucrative-game-of-chance-but-are-they-gambling.

[11] See id.

[12] See id.

[13] See id.

[14] See id.

[15] See id.

[16] See id.

[17] See id.

[18] See Hamilton, supra note 6 (stating “‘We’re really only in the early phases of gathering scientific research evidence about the nature of loot box effects,’ Professor Pete Etchells . . . told Business Insider. ‘What we really need is a clearer and stronger evidence base before legislation is changed.'”)

[19] See id.

[20] See Johnson, supra note 10.

[21] S. 1629, 116th Cong. § 2 (2019).

[22] See Steinberg, supra note 8.

[23] See Johnson, supra note 10.

[24] See id.

[25] See id.

[26] See id.

[27] See id; see also Steinberg, supra note 8.

[28] See Steinberg, supra note 8.

Image Source: https://techcrunch.com/2018/09/17/loot-boxes-face-scrutiny-from-an-international-coalition-of-gambling-authorities/?guccounter=1&guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce_referrer_sig=AQAAAK4VebthFFKiNJaXSq2noSSUje6H0QKvGLVhnBlpzlBGYPVDmKi_7ft0v2Kb1s8H1CZbs3A84vrQgF2vS_HXkJN67tJwZyLSi7wmPpAcUwmITpoa9NToAzpVp3b6HcjfCERhgkt2nC-0NjS6VH17EuQjjZw81SHdauvFpeE20fog

By: Christopher Vinson

As COVID-19 continued to spread in the United States throughout the summer months, the conversation shifted towards how to safely reopen universities in the fall. In response, universities implemented a variety of safety measures from social distancing to mandatory mask-wearing. Universities have also been keen to utilize technology to help avoid outbreaks among their student populations. One of the more interesting tools used by colleges and universities are apps that can be used for COVID-19 symptom screening and contact tracing.

These apps are seen by many universities as the key to an effective reopening. Many colleges across the nation have either developed their own apps or are using apps developed by third parties. Rutgers University has taken the step of creating their own apps.[1] The apps allow for students, faculty, and staff to self-screen for COVID-19 symptoms before traveling to campus and allow for effective contact tracing to take place.[2]

Other universities have used contact tracing apps developed using tools from Google and Apple.[3] Stockton University in New Jersey has piloted an app that uses Bluetooth to sense whether someone came into close proximity for a specific period of time with someone that contracted COVID-19.[4] A similar app is being used at the University of Alabama at Birmingham.[5] Their app utilizes the signal strength between smartphones to determine whether someone was within six feet for at least fifteen minutes of someone else who contracted COVID-19.[6]

While undoubtedly innovative, the proliferation of these apps has led to increased concerns over privacy. Countries such as Norway have suspended the use of COVID-19 tracking apps.[7] The app used in Norway uploaded live GPS coordinates of its users to a central server.[8] Uploading information to a central server increases the risk of that information being stolen or reused in the future. Additionally, providing the government with live data of their locations understandably worried citizens. The fear is that it may lead to unintended consequences of surveillance outside of COVID-19 tracking.

Even more pressing are the data privacy concerns. A recent study found that thirty out of fifty contact tracing apps available on Google devices access invasive data such as call history, the phone microphone, and the phone camera.[9] Out of those thirty, only sixteen took the additional step of making that data anonymous.[10]The failure to take even the most basic steps for privacy raises serious concerns regarding an individual’s civil rights.

Certain schools are attempting to combat privacy concerns through other methods of location data collection. At the University of California, Irvine, a group of researchers wanted to calm those concerns through the development of an app that repurposes data already collected by the school.[11] Their system would rely on tracking devices connected to the campus Wi-Fi to determine if social distancing was being adhered to.[12]Collecting data in this manner avoids the need to share personal information, further protecting users.[13]

As mentioned above, other schools are hoping to use Bluetooth to assist in COVID-19 tracking.[14] This is more privacy friendly since this information is stored as anonymized beacons only on a user’s cellphone.[15]Further, this system operates without noting where the individual device is exactly located.[16] However, other schools have opted for tracking student locations in real time.[17] Regardless, many of these apps are a condition of enrollment and place students in a position where they have no choice but to download the apps.

All these methods beg the question of whether the desire to curb the spread of COVID-19 is infringing on certain privacy rights. Schools risk being seen as prioritizing their finances over the privacy of their student body. The intrusion may be justified for now in the name of public health, but what will happen with all this data in the future? The potential for serious civil rights violations exists and may cause more trouble for these schools in the future than the benefit derived from reopening today.

[1] Hayley Slusser, Rutgers Creates Application for Coronavirus Symptom Screening, Contact Tracing, The Daily Targum (Sep. 28, 2020), https://www.dailytargum.com/article/2020/09/rutgers-creates-applications-for-coronavirus-symptom-screening-contact.

[2] Id.

[3] See Natalie Schwartz, Colleges Look to Apps that Screen for Virus Symptoms and Trace Contacts, The Education Dive (Aug. 12, 2020), https://www.educationdive.com/news/colleges-look-to-apps-that-screen-for-virus-symptoms-and-trace-contacts/583387/.

[4] Molly Bilinksi, Stockton University Among Colleges Piloting COVID-19 Exposure-Tracing App, The Press of Atlantic City, (Sep. 24, 2020), https://pressofatlanticcity.com/news/local/stockton-university-among-colleges-piloting-covid-19-exposure-tracing-app/article_b4bd39c7-c063-559a-9942-ed17ba781593.html.

[5] Schwartz, supra note 3.

[6] Id.

[7] See Thomas Brewster, COVID-19 Tracking Apps ‘A Privacy Trash Fire’ as Norway Nixes its Own, Forbes (Jun. 16, 2020, 6:26 AM),  https://www.forbes.com/sites/thomasbrewster/2020/06/16/covid-19-tracking-apps-a-privacy-trash-fire-as-norway-nixes-its-own/#6e6ec65341b4.

[8] Id.

[9] See Tanusree Sharma & Masooda Bashir, Use of Apps in the COVID-19 Response and the Loss of Privacy Protection, Nature Med. (May 26, 2020) https://www.nature.com/articles/s41591-020-0928-y#citeas.

[10] Id.

[11] See Schwartz, supra note 3.

[12] See id.

[13] See id.

[14] See Bilinski, supra note 4.

[15] Jeremy Hsu, Contact Tracing Apps Struggle to be Both Effective and Private, IEE Spectrum (Sep. 24, 2020, 10:00 AM),https://spectrum.ieee.org/biomedical/devices/contact-tracing-apps-struggle-to-be-both-effective-and-private; Elisa Miebach, War Between Privacy and Efficiency, Bloomberg Businessweek (Sep 8, 2020, 1:01 AM), https://www.bloomberg.com/news/articles/2020-09-08/coronavirus-pandemic-covid-19-apps-grapple-with-privacy-and-efficiency.

[16] Schwartz, supra note 3.

[17] See id.

Image Source: https://economictimes.indiatimes.com/tech/software/covid-19-tracing-apps-face-privacy-concerns/mired-in-controversies/slideshow/77783271.cms

By Joleen Traynor

In the midst of the COVID-19 pandemic, businesses, schools, and other groups have moved to remote learning and work. In the course of this shift, Zoom has been a popular platform for video calls, meetings, and lectures. However, this has introduced a new avenue for hackers and unwelcome parties to hijack these online meetings, a practice known as “Zoom bombing”. This involves hackers joining online meetings throughout the world and sharing disturbing, and even illegal, images and videos with those in the meeting. Zoom bombing “refers to a form of cyber harassment reported by some app users, who have reported that some of their calls have been hijacked by unidentified individuals and trolls who spew hateful language or share graphic images.”[1] “Anyone who has a link to a public meeting can join. Links to public Zooms are traded in Facebook Groups and Discord chats, and are easily discoverable on Twitter and public event pages.”[2] These public meetings are fairly easy to find and access, providing ample opportunities for hijackers to enter meetings. This phenomenon has become so severe so quickly, even the FBI is getting involved. “The FBI has received multiple reports of conferences being disrupted by pornographic and/or hate images and threatening language.”[3]

The sudden explosion in popularity of Zoom is part of the reason this phenomenon exists. “Before the coronavirus pandemic, Zoom had 10 million daily users. By April, it claimed to have 300 million – before backtracking to admit the statistic is really 300 million ‘meeting participants’ per day.”[4] With this increased usage, Zoom has released updated guidelines for safer use of the platform to prevent these Zoom bombing incidents. Zoom recommends taking safety precautions such as creating and using a secure meeting room, creating waiting rooms, and only allowing the host to screen share.[5]

Police departments have also stepped up their game in handling incidents of Zoom bombing. In early September, a nineteen-year-old man was arrested for making threats while interrupting a University of Houston remote class.[6]Another individual was arrested and charged with computer crimes earlier this year in Connecticut.[7] It is important that these threats are taken seriously and swift action is taken against perpetrators.

Finally, users may face an internal threat when using Zoom for meetings. It was recently discovered that Zoom was sharing user information and data with Facebook, “even data on people who are not Facebook users.”[8] Zoom has ceased sharing this information once this was discovered[9], but this just shows that there is still work to be done in order to better secure our online meeting space.

Looking ahead, online meeting and learning spaces will likely be the new normal, at least for the immediate future. In an increasingly digital world, it is more important than ever to secure our online meeting spaces, and to ensure that there are safe, reliable, and secure ways for people to meet and communicate remotely. This is a safety issue that affects us all, and online meetings, on Zoom or otherwise, are likely here to stay.

[1] Dakin Andone, FBI warns video calls are getting hijacked. It’s called ‘Zoombombing’, CNN (Apr. 2, 2020, 5:00 PM), https://www.cnn.com/2020/04/02/us/fbi-warning-zoombombing-trnd/index.html.

[2] Taylor Lorenz, ‘Zoombombing’: When Video Conferences Go Wrong, N.Y. Times (Apr. 7, 2020), https://www.nytimes.com/2020/03/20/style/zoombombing-zoom-trolling.html.

[3] Press Release, FBI, FBI Warns of Teleconferencing and Online Classroom Hijacking During COVID-19 Pandemic (Mar. 30, 2020), https://www.fbi.gov/contact-us/field-offices/boston/news/press-releases/fbi-warns-of-teleconferencing-and-online-classroom-hijacking-during-covid-19-pandemic.

[4] Sebastian Meineck and Paul Schwenn, ‘Zoom Bombers’ Are Still Blasting Private Meetings With Disturbing and Graphic Content, Vice (June 10, 2020, 8:42 AM), https://www.vice.com/en_us/article/m7je5y/zoom-bombers-private-calls-disturbing-content.

[5] Security at Zoom, https://zoom.us/security (last visited Sept. 20, 2020).

[6] Christina Carrega, Texas man arrested for ‘Zoombombing’ a university class lecture with a bomb threat, CNN (Sept. 8, 2020, 5:30 PM), https://www.cnn.com/2020/09/08/us/university-zoombombing-isis-arrest/index.html

[7] Teen Arrested After ‘Zoom Bombing’ High School Classes, NY Post, (April 8, 2020), https://nypost.com/2020/04/08/teen-arrested-after-zoom-bombing-high-school-classes/.

[8] Shannon Bond, A Must For Millions, Zoom Has A Dark Side — And An FBI Warning, NPR (Apr. 3, 2020, 5:00 AM), https://www.npr.org/2020/04/03/826129520/a-must-for-millions-zoom-has-a-dark-side-and-an-fbi-warning.

[9] Id.

Image Source: https://www.theburnin.com/technology/what-is-zoom-bombing-how-to-stop-it-2020-3/

From Lynching to Livestreams: Trauma Porn and the Historic Trivializing of Black Death

By Danielle M. Taylor

The Grio defines Trauma Porn as “any type of media – be it written, photographed or filmed – which exploits traumatic moments of adversity to generate buzz, notoriety or social media attention”.[1] In the age of technology, daily portions of such media are readily available and often presented without warning. This is the very reason that, on May 26, 2020, the morning after his death at the hands of now former Minneapolis police officer, Derek Chauvin, George Floyd became a household name. The nearly nine minute long cellphone video capturing Floyd’s pleas for his life and cries for his mother went viral overnight. Many people, myself included, witnessed a man die before so much as having their morning coffee.

The video of Floyd’s slow death was shown on news stations across the world, the homepage of search engines, and on social media platforms like Facebook, Instagram, and Twitter. For some, the eight minutes and forty-six seconds that George Floyd laid on the ground with Chauvin’s knee pressing into his neck was an awakening to the motivation behind the Black Lives Matter movement. However, for many Black people, these videos are not informative, they are terrorizing. The viral clips are always the same, but with different names and faces – Rodney King in 1992, Eric Garner in 2014, and Tamir Rice four months later, Walter Scott in 2015, Alton Sterling in 2016, and Philando Castile the following day. This year alone includes Ahmaud Arbery, Jacob Blake, and too many others. The American Psychological Association reports that racialized groups battle higher rates of post-traumatic stress disorder, compared to White Americans.[2] According to the National Institute for Mental Health, factors that increase the risk of PTSD include: living through dangerous events and traumas; seeing another person hurt, or seeing a dead body; and feelings of horror, helplessness, or extreme fear.[3] The continual viewing of videos and images of Black bodies being mercilessly assaulted and murdered, coupled with the knowledge that society does not often punish those actions, unquestionably satisfies those risk factors. As the numbers rise and the names increase, the question we must ask is whether the awareness that these videos bring outweighs the trauma that they continually inflict on already suffering communities.

It is necessary to underscore that this country’s obsession with Black pain and death predates the internet.[4] Long before the deaths of Black people were social media click bait, lynchings were arranged as social gatherings.[5] From 1882-1968, 4,743 people were lynched in the United States, and 3,446 (72.7%) of them were Black.[6] An overwhelming majority of these lynchings took place in the South[7] and were treated as celebrations. Weeks before these planned lynchings, the “event” would be advertised in local papers as an invitation for people to come from all over, not just to bear witness to black death, but to eat and socialize while the victim was tortured, and take pictures for postcards after the victim had been killed and the body had been burned.[8] On-lookers were even allowed to take home a souvenir, usually a piece of rope, or a piece of the victim’s flesh or bone.[9] These organized lynchings were designed to “humiliate and inflict pain and suffering on Black bodies”.[10] They were a “method of social and racial control” used to “terrorize Black Americans into submission”[11] and deter them challenging white supremacy[12]. Today, the ease with which the public is served, and allowed to consume, videos depicting “police brutality and vigilante murders [serves as] an extension of that tradition.”[13]

Shortly after George Floyd’s death, another video surfaced – that of a ten-year-old black boy named Eliah. Eliah was shooting hoops in the driveway of his parents’ home in Trumbull, Connecticut when a police car rode down the street behind him. The video depicts Eliah noticing the police car and quickly hiding behind a car parked in the driveway. He can then be seen waiting to ensure that the police were gone before he returns to innocently playing. In opening up about the now viral video, Eliah’s father, Stacey Pierre-Louis, shared that when he asked his son why he did what he did, Eliah responded, “[b]ecause they killed George Floyd”.[14]

There is a popular, and admittedly understandable, argument that posting and sharing videos exposing violence against Black bodies is a “necessary evil”.[15] They are imperative, many argue, not just to create awareness and invoke public outcry, but to hold perpetrators – whether they be police officers, vigilantes, or otherwise – accountable. This is an argument that also predates the internet. In 1955, Mamie Till-Mobley summoned local and national news sources to see the body of her 14 year old son, Emmett, after he had been kidnapped, tortured, mutilated, and drowned by two white men for allegedly whistling at a white woman.[16] 60 years later, Emmett’s accuser admitted that she lied about the encounter.[17] This admission is seemingly forgotten, but what has echoed through time is Mamie Till’s decision to have an open casket at Emmett’s funeral, stating, “I think everybody needed to know what had happened to Emmett Till”.[18]

65 years after the barbaric murder of Emmett Till and the acquittal of his killers, it is clear that the argument for putting Black death on display for the sake of justice is shaky at best. The frequency with which violence still occurs, videos go viral, and victims’ names become popular hashtags, far surpasses the slow, rarely occurring issuance of repercussions. In contrast, the agenda of fear and submission that viral images depicting Black death push back onto the Black community is solid and heavy hitting.

I will not argue that we ought to stop pulling out our phones when we see the police acting unlawfully, or see citizens taking the law into their own hands, rather I make a plea that we offer these videos more reverence. I ask that we consider how the long-standing history of violence against Black bodies allows these images to be shared and consumed with an ease that is incredibly alarming. I ask that we recognize the impact these videos have and do so for the sake of the legacy of the victims and their families, the psychological health and safety of Black America, and for ten-year-old Eliah.

[1] Blue Telusma, Before You Share ‘Trauma Porn’ Videos on Social Media Consider These Critical Things, The Grio (Apr. 4, 2019), https://thegrio.com/2019/04/04/nipsey-hussle-trauma-porn-social-media-blue-telusma/.

[2] See Diana Doung, Videos of Shootings Are a “Sick Sort of Voyeurism,” Can Cause PTSD, Healthing.Ca (June 12, 2020), https://www.healthing.ca/mental-health/somatics-how-watching-trauma-manifests-in-your-body.

[3] National Institute of Mental Health, Post-Traumatic Stress Disorder (last revised May 2019), https://www.nimh.nih.gov/health/topics/post-traumatic-stress-disorder-ptsd/index.shtml#part_145372.

[4] See Ashlee Marie Preston, Sorry, Consuming Trauma Porn Is Not Allyship: Why Aren’t Black victims afforded the same dignity in death as white victims?, Marie Claire (June 9, 2020), https://www.marieclaire.com/politics/a32802688/stop-sharing-trauma-porn-black-deaths/.

[5] See id.

[6] History of Lynchings, NAACP (2020), https://www.naacp.org/history-of-lynchings/.

[7] See id.

[8] See Preston, supra note 2.

[9] See id.

[10] Id.

[11] James Lartey and Sam Morris, How White Americans Used Lynchings to Terrorize and Control Black People, The Guardian (Apr. 26, 2018, 2:00 PM), https://www.theguardian.com/us-news/2018/apr/26/lynchings-memorial-us-south-montgomery-alabama.

[12] See Preston, supra note 2.

[13] Id.

[14] Caught on Camera: Young Black Boy Playing Basketball Hides as Police Drive Past, NBC 12 (July 1, 2020, 6:15 AM), https://www.nbc12.com/2020/07/01/caught-camera-young-black-boy-playing-basketball-hides-police-drive-past/.

[15] Alisha Ebrahimji, Some Say Sharing Videos of Police Brutality Against Black people is Just ‘Trauma Porn‘, CNN (Aug. 25, 2020, 2:00 PM), https://www.cnn.com/2020/08/25/us/police-brutality-videos-trauma-porn-trnd/index.html (quoting Attorney S. Lee Merritt, one of the attorneys representing the family of Ahmaud Arbery).

 

[16] See DeNeen L. Brown, Emmett Till’s Mother Opened His Casket and Sparked the Civil Rights Movement, The Washington Post (July 12, 2018, 3:44 PM), https://www.washingtonpost.com/news/retropolis/wp/2018/07/12/emmett-tills-mother-opened-his-casket-and-sparked-the-civil-rights-movement/.

[17] See id.

[18] Id.

Image Source: Danielle M. Taylor, Jan. 21, 2017, Black Lives Matter, Women’s March in Washington D.C.

By: Rebecca Pinsky

Technology Can Expand Access to Credit

Traditionally, consumers in search of credit have two primary options: obtain credit from a bank or obtain credit from a non-bank direct lender. Typically, usury laws are written to privilege bank lending.[1] Consumer advocates are often wary of non-bank direct lenders, given the proliferation of predatory lenders willing to lend at high-interest rates to subprime borrowers.^[2]

Fortunately for consumers, as the capabilities of the internet have grown, so has the marketplace for financial products. Companies that offer digital financial instruments, an industry segment commonly known as fintech, have drastically broadened availability and convenience for consumers.^[3]

Bank Partnerships: Rent-a-Bank or Rent-a-Fintech?

Online lenders present interest rates on par with those permissible to banks by partnering with banks to offer digital-native credit products.^[4] Bank partnerships are not a recent invention–store-branded credit cards are an example of this model that has existed for years.^[5] Both predatory and consumer digital-native lenders rely on bank partnerships to provide loans to their customers. Through partnering with a bank, these lenders clear the significant hurdles that come with obtaining a bank charter and complying with banking law.

Bank partnerships can benefit every party involved: banks, non-bank partners, and consumers. Non-bank partners enjoy the legal privileges extended to banks.^[6] Consumers gain a more competitive marketplace for lending products. Banks, especially state banks, can boost their national reaches. (The majority of banks in the United States are state-chartered banks.)^[7] In effect, fintech banking partnerships may be thought of as “rent-a-fintech” schemes. A bank saddled with legacy infrastructure, limited reach, and a modest tech stack can invest in innovation by partnering with a fintech to offer credit. The fintech maintains the technology, markets the product, and interfaces with the customer, while the bank originates the loan.^[8]

Consumer advocates have decried bank partnerships precisely because the structure allows the non-bank partners to slide past certain consumer protection laws.^[9] Indeed, some lenders have used bank partnerships as a way to charge otherwise illegally high interest on loans[10]. Courts and consumer advocates have referred to those as a “rent-a-bank” or “rent-a-charter” schemes.^[11]

Valid-When-Made: Federal Preemption of State Usury Laws

Perhaps the most consequential privilege gained by lenders that partner with banks is the right to charge interest at the maximum allowable rate of a state where the bank is located, a practice known as interest rate exportation.^[12] In essence, banks are able to “export” the most favorable interest rate from one state to borrowers in other states. The practice was upheld in Marquette National Bank v. First Omaha Service Corp.^[13] In Marquette, the Supreme Court ruled that a national bank located in Nebraska could apply an interest rate permissible by Nebraska law to its credit card customers in Minnesota when the same rate would violate Minnesota usury law.^[14] Federal preemption through rate exportation has compelled some lenders to shop for banks in states with lax or nonexistent usury limits.

Such a practice flirts with the boundaries of legitimacy, both for bank partnership structures and for preemption law. As a result, it has been addressed by high-profile litigation and recent regulatory rules.^[15] The Madden v. Midland Funding, LLC court ruled that once a loan is sold by a bank to a non-bank, the non-bank does not enjoy preemptive rights over state usury laws.^[16] The decision disregarded the common law “valid-when-made” doctrine, which bases whether current interest rates are permissible on the permissibility of the rates when the loan was originated.^[17] Selling loans is not an unusual banking practice and the Madden decision sent ripples of uncertainty across the financial field. Not long after the decision, the OCC and FDIC responded to Madden with rules that effectively restored “valid-when-made.”^[18]

True Lender: Who Made the Loan?

Madden and the aforementioned regulations address whether a loan is valid when made. Determining which entity in a bank partnership actually made the loan requires a separate analysis, commonly referred to as the True Lender doctrine.^[19] Courts test the doctrine by evaluating which party had the predominant economic interest in light of the totality of the circumstances surrounding the loan.^[20] Identifying the party that finances and bears the risk of the loan is determinative to that analysis.^[21] Courts use this practice to “look to the substance, not the form” of the loan.^[22] Non-banks who have been assigned or sold loans have been found to be the true lender, which may signal the importance of a bank owning and managing loans throughout the credit lifetime.^[23] The True Lender analysis is a holistic one so there may be numerous factors–particularly contractual provisions– unique to each bank partnership that could be decisive in court.^[24]

The True Lender doctrine has not benefitted lenders that form bank partnerships with the intent to evade state usury laws.^[25] A fintech lender that markets credit products needs to be clear that its role is to market and service the product, not to fund it or bear the risk. Teaming with the bank on compliance and operations functions could intimate that the bank is indeed the lender in fact.^[26] For fintech lenders aiming to quickly bring customer-centric credit solutions to market, it may not have to be a bane.

[1] See, e.g., Cal. Const. art. XV, §1 (Capping interest in loans but creating an exception for banks).

^[2]  Will Kenton, Predatory Lending, Investopedia (June 15, 2020), https://www.investopedia.com/terms/p/predatory_lending.asp.

^[3] How Fintech Can Make Banking More Inclusive – and Empowering, Wharton: Knowledge@Wharton (Aug. 27, 2019),  https://knowledge.wharton.upenn.edu/article/fintech-can-make-banking-inclusive-empowering-consumers/ (“Fintech as an industry has made improving and democratizing consumer financial health a key aim.”).

^[4] Mike Whalen, Bank Partnership Or Go It Alone?, Goodwin: Fintech Flash (Aug. 23, 2016),  https://www.goodwinlaw.com/publications/2016/08/08_23_16-bank-partnership-or-go-it-alone.

^[5] See id.

^[6] See 12 U.S.C. 85 (2012).

^[7] See Statement for the Record: “Rent-a-Bank Schemes and New Debt Traps”, CSBS (Feb. 5, 2020), https://www.csbs.org/policy/statements-comments/statement-record-rent-bank-schemes-and-new-debt-traps.

^[8] See CSBS, supra note 5.

^[9] Consumer Fin. Prot. Bureau v. CashCall, Inc., No. CV 15-07522-JFW (RAOx), 2018 U.S. Dist. LEXIS 9057 at 4 (C.D. Cal. 2018).

[10] See id at 6.

^[11] See id. See also Letter from Linda A. Lacewell, Superintendent, N.Y. State Dep’t of Fin. Serv., to Brian P. Brooks, Acting Comp., OCC (Sept. 2, 2020), https://www.dfs.ny.gov/system/files/documents/2020/09/20200901_comment_letter_occ_true_lender_rule.pdf.

^[12] See 12 U.S.C. § 85 (2012). See also 12 U.S.C § 1831(d) (2011).

^[13] See Marquette National Bank v. First Omaha Service Corp., 439 U.S. 299, 313-18 (1978).

^[14] See id at 308-09.

^[15] See Madden v. Midland Funding, LLC, 786 F.3d 246 (2d Cir. 2015). Compare with Permissible Interest on Loans that are Sold, Assigned, or Otherwise Transferred, 85 Fed. Reg. 33,530 (June 2, 2020) (to be codified at 12 C.F.R. pts. 7, 160); Federal Interest Rate Authority, 85 Fed. Reg. 44,146 (July 22, 2020) (to be codified at 12 C.F.R. pt. 331).

^[16] See Madden v. Midland Funding, LLC, 786 F.3d 246 (2d Cir. 2015).

^[17] Rick Fischer, et al., Attorneys General Push Against OCC’s Attempts to Codify “Valid When Made” Rule, Morrison Foerster: Client Alert (Jan. 29 2020), https://www.mofo.com/resources/insights/200129-valid-when-made-rule.html.

^[18]See Permissible Interest on Loans that are Sold, Assigned, or Otherwise Transferred, 85 Fed. Reg. 33,530 (June 2, 2020) (to be codified at 12 C.F.R. pts. 7, 160); Federal Interest Rate Authority, 85 Fed. Reg. 44,146 (July 22, 2020) (to be codified at 12 C.F.R. pt. 331).

^[19] See CSBS, supra note 5.

^[20] See, e.g., Cash Call, Inc. v. Morrisey No. 12-274 2014 W. Va. LEXIS 587, at 41-45 (W. Va. 2014).

^[21] See id.

^[22] Consumer Fin. Prot. Bureau v. CashCall, Inc., No. CV 15-07522-JFW (RAOx), 2018 U.S. Dist. LEXIS 9057 at 16 (C.D. Cal. 2018).

^[23] See id at 19. See also Cash Call, Inc. v. Morrisey No. 12-274 2014 W. Va. LEXIS 587, at 49 (W. Va. 2014).

^[24] See id at 18.

^[25] See CSBS, supra note 5.

^[26] Mike Whalen, Marketplace Lending Bank Partner as True Lender, Goodwin: Fintech Flash (Sept. 6, 2016),  https://www.goodwinlaw.com/publications/2016/09/09_06_16-marketplace-lending-bank-partner#[1].

Image Source: https://search.creativecommons.org/photos/f41058ae-ced8-4be4-a7ab-eb6e2e29a54d