Tony's Finer Foods Enterprises, Inc. v. Certain Underwriters at Lloyd's, London

2024 IL App (1st) 231712
CourtAppellate Court of Illinois
DecidedSeptember 10, 2024
Docket1-23-1712
StatusPublished

This text of 2024 IL App (1st) 231712 (Tony's Finer Foods Enterprises, Inc. v. Certain Underwriters at Lloyd's, London) is published on Counsel Stack Legal Research, covering Appellate Court of Illinois primary law. Counsel Stack provides free access to over 12 million legal documents including statutes, case law, regulations, and constitutions.

Bluebook
Tony's Finer Foods Enterprises, Inc. v. Certain Underwriters at Lloyd's, London, 2024 IL App (1st) 231712 (Ill. Ct. App. 2024).

Opinion

2024 IL App (1st) 231712 No. 1-23-1712 Opinion filed September 10, 2024 Second Division ______________________________________________________________________________

IN THE APPELLATE COURT OF ILLINOIS FIRST DISTRICT ______________________________________________________________________________ TONY’S FINER FOODS ENTERPRISES, INC., ) Appeal from the ) Circuit Court of Plaintiff-Appellee, ) Cook County. ) v. ) No. 22 CH 9420 ) CERTAIN UNDERWRITERS AT LLOYD’S, LONDON, ) Subscribing to Policy Nos. MPL2183838.18 and ) MPL2183838.19, ) Honorable ) Joel Chupack, Defendants-Appellants. ) Judge, presiding.

PRESIDING JUSTICE VAN TINE delivered the judgment of the court, with opinion. Justice D.B. Walker concurred in the judgment and opinion. Justice Reyes dissented, with opinion.

OPINION

¶1 Defendants Certain Underwriters at Lloyd’s, London, subscribing to policy Nos.

MPL2183838.18 and MPL2183838.19 (Lloyd’s), appeal from the circuit court’s grant of summary

judgment in favor of plaintiff Tony’s Finer Foods Enterprises, Inc. (Tony’s). The circuit court

ruled that Lloyd’s has a duty to defend Tony’s in an underlying class action filed against Tony’s

by its employees, which alleges violations of the Biometric Information Privacy Act (Act) (740 No. 1-23-1712

ILCS 14/1 et seq. (West 2018)). On appeal, Lloyd’s argues that it has no duty to defend Tony’s

because (1) the allegations of the underlying Act lawsuit do not even potentially fall within the

coverage of the insurance policy at issue and (2) Tony’s did not timely report the underlying Act

lawsuit to Lloyd’s. For the following reasons, we reverse and remand with directions that the

circuit court enter summary judgment in Lloyd’s favor on the issue of duty to defend.

¶2 I. BACKGROUND

¶3 A. The Underlying Act Lawsuit

¶4 On December 19, 2018, Charlene Figueroa filed a class action lawsuit against Tony’s and

on April 19, 2019, she filed the amended complaint that is relevant to this appeal. 1 Figueroa alleged

that she worked for Tony’s from March 8, 2017, to September 17, 2018. During that time, Tony’s

required employees to scan their fingerprints to clock in and out of work. Employees used

fingerprint recognition software provided by a timekeeping company called Kronos, which also

maintained a database of employees’ fingerprints. Figueroa alleged that Tony’s violated the Act

by failing to (1) publish a schedule for the permanent deletion of employees’ biometric data (id.

§ 15(a)), (2) obtain employees’ consent to the collection of their biometric data and provide a

written disclosure explaining why and for how long Tony’s retained their biometric data (id.

§ 15(b)), and (3) obtain employees’ consent to disclose their biometric data to Kronos and other

unknown third parties (id. § 15(d)(1)). 2 Figueroa served Tony’s in the underlying Act lawsuit on

1 Figueroa’s original and amended complaints are largely the same, but the amended complaint controls because it does not refer to or adopt the original complaint. See Eberhardt v. Village of Tinley Park, 2024 IL App (1st) 230139, ¶ 86 (citing Bowman v. County of Lake, 29 Ill. 2d 268, 272 (1963)). The primary difference between the two pleadings is that the original complaint alleged one count for violation of the Act and one count for negligence whereas the amended complaint alleges three counts for violation of the Act and no negligence count. 2 Figueroa has never named Kronos as a defendant.

-2- No. 1-23-1712

January 8, 2019. Tony’s tendered the Act complaint to Lloyd’s on March 22, 2019, seeking defense

and indemnification in the underlying lawsuit pursuant to two insurance policies that Tony’s

purchased from Lloyd’s.

¶5 B. The Insurance Policies

¶6 Lloyd’s issued two insurance policies to Tony’s, both titled “Cyber, Data Risk, and Media

Insurance.” The first policy ran from March 15, 2018, to March 15, 2019 (2018 policy), and the

second policy ran from March 15, 2019, to March 15, 2020 (2019 policy). The two policies are

essentially identical except for the periods of time they covered, so we will discuss them as a single

policy unless a distinction between the two is necessary.

¶7 Relevant here, the policy provides coverage for “loss incurred by [Tony’s] *** resulting

from a data breach, security failure, or extortion threat that first occurs on or after the retroactive

date and is discovered by [Tony’s] during the policy period.” Loss includes “claim expenses,

damages, and PCI fines and assessments because of a claim made against [Tony’s].” The policy

sets out the following definitions:

“Data breach means the acquisition, access, or disclosure of personally identifiable

information or confidential corporate information by a person or entity, or in a manner, that

is unauthorized by [Tony’s].

***

Extortion threat means a threat from a third-party to commit an intentional attack

against [Tony’s] website or computer systems or publicly disclose confidential corporate

information or personally identifiable information misappropriated from [Tony’s] if

money, securities, or other property of value is not paid.

-3- No. 1-23-1712

Security failure means any failure by [Tony’s] or by others on [Tony’s] behalf

(including [Tony’s] subcontractors, outsourcers, or independent contractors) in securing

[Tony’s] computer system.”

¶8 The policy excludes certain claims from coverage. Relevant here, an exclusion provision

states that:

“This policy does not apply to and [Lloyd’s] will have no obligation to pay any loss,

damages, claim expenses, or other amounts:

1. based upon or arising out of any actual or alleged:

a. collection of information by [Tony’s] (or others on [Tony’s] behalf)

without the knowledge or permission of the persons to whom such information

relates; however, this exclusion will not apply if no board member, trustee, director,

or officers (or equivalent position) of [Tony’s] knew or had reason to know of such

conduct; or

b. use of personally identifiable information by [Tony’s] (or others on

[Tony’s] behalf) in violation of law.”

-4- No. 1-23-1712

¶9 C. This Declaratory Action

¶ 10 Lloyd’s denied coverage on June 6, 2019, based on Tony’s failure to notify Lloyd’s of the

underlying Act lawsuit during the 2018 policy period. According to Lloyd’s, the policy required

such notice to trigger coverage. On September 22, 2022, Tony’s filed this declaratory judgment

action against Lloyd’s, alleging that Lloyd’s had a duty to defend Tony’s in the underlying Act

lawsuit. 3 The parties filed cross-motions for summary judgment. Tony’s motion argued that

Lloyd’s was not permitted to flatly deny coverage; rather, Lloyd’s had to either (1) defend the

underlying Act lawsuit pursuant to a reservation of rights or (2) seek its own declaratory judgment

that it had no duty to defend. Lloyd’s motion contended that Tony’s failed to provide notice of the

underlying Act lawsuit to Lloyd’s during the 2018 policy period. Lloyd’s also argued that the

allegations of the underlying Act lawsuit did not even potentially fall within the coverage

provisions of the insurance policy.

¶ 11 The circuit court granted summary judgment in Tony’s favor. The court found that Lloyd’s

had a duty to defend Tony’s because the allegations of the underlying Act lawsuit potentially fell

within the policy’s coverage. The record is void of any reason for this conclusion. The court also

Free access — add to your briefcase to read the full text and ask questions with AI

Related

Schultz v. Illinois Farmers Insurance
930 N.E.2d 943 (Illinois Supreme Court, 2010)
Pekin Insurance v. Wilson
930 N.E.2d 1011 (Illinois Supreme Court, 2010)
Valley Forge Insurance v. Swiderski Electronics, Inc.
860 N.E.2d 307 (Illinois Supreme Court, 2006)
Employers Insurance v. Ehlco Liquidating Trust
708 N.E.2d 1122 (Illinois Supreme Court, 1999)
State Farm Fire & Casualty Co. v. Martin
710 N.E.2d 1228 (Illinois Supreme Court, 1999)
Bowman v. County of Lake
193 N.E.2d 833 (Illinois Supreme Court, 1963)
Addison Insurance v. Fay
905 N.E.2d 747 (Illinois Supreme Court, 2009)
People v. Givens
934 N.E.2d 470 (Illinois Supreme Court, 2010)
Pekin Insurance Co. v. United Contractor Midwest, Inc.
2013 IL App (3d) 120803 (Appellate Court of Illinois, 2013)
Landmark Insurance Company v. NIP Group
2011 IL App (1st) 101155 (Appellate Court of Illinois, 2011)
Commonwealth Edison Company v. Illinois Commerce Commission
2016 IL 118129 (Illinois Supreme Court, 2016)
Thounsavath v. State Farm Mutual Automobile Insurance Co.
2018 IL 122558 (Illinois Supreme Court, 2018)
West Bend Mutual Insurance Co. v. Krishna Schaumburg Tan, Inc.
2021 IL 125978 (Illinois Supreme Court, 2021)
Galarza v. Direct Auto Insurance Co.
2022 IL App (1st) 211595 (Appellate Court of Illinois, 2022)
Remprex, LLC v. Certain Underwriters at Lloyd's London, Syndicates 2623/623
2023 IL App (1st) 211097 (Appellate Court of Illinois, 2023)
Eberhardt v. Village of Tinley Park
2024 IL App (1st) 230139 (Appellate Court of Illinois, 2024)

Cite This Page — Counsel Stack

Bluebook (online)
2024 IL App (1st) 231712, Counsel Stack Legal Research, https://law.counselstack.com/opinion/tonys-finer-foods-enterprises-inc-v-certain-underwriters-at-lloyds-illappct-2024.