American Express Bank V Priya Puri Banking Data Trade Secrets.
American Express Bank v. Priya Puri & Other Banking Data/Trade Secret Cases
Banking institutions often hold confidential data, customer information, and proprietary processes. Disputes often arise when employees, ex-employees, or outsiders misuse, leak, or trade this data. These cases are typically framed under:
Breach of contract (confidentiality clauses)
Trade secret misappropriation
Data privacy and fiduciary duty
Civil and criminal remedies under IT and contract law
1. American Express Bank v. Priya Puri
Court / Jurisdiction: India (Delhi High Court, Commercial Division)
Background:
Priya Puri, an ex-employee of American Express Bank, allegedly accessed and transferred confidential client and banking data after her resignation.
The bank claimed that she had violated confidentiality clauses in her employment contract and misappropriated trade secrets, including client lists, credit card analytics, and internal algorithms for risk assessment.
Legal Issues:
Breach of confidentiality under employment contract
Misappropriation of trade secrets under common law principles
Restrictive covenants – non-compete and non-solicitation
Arguments:
Bank: Priya Puri had signed a contract prohibiting disclosure or use of confidential information for personal gain or to benefit another organization.
Priya Puri: Claimed that she did not take “trade secrets” but only used her general skills and experience, which is not illegal.
Judgment:
Court held that client data and internal methodologies of the bank were indeed trade secrets.
Mere skills and knowledge of an employee are not protected, but specific data, formulas, or client lists constitute proprietary information.
Injunction was granted preventing Priya Puri from using or disclosing the data, and she was restrained from joining competitors in a role that could exploit the misappropriated information.
Significance:
Establishes that banking data like client lists, risk models, and internal analytics are trade secrets.
Shows courts differentiate between general knowledge and proprietary data.
2. Morgan Stanley v. Skender (Employee Trade Secrets Case)
Background:
An ex-employee of Morgan Stanley allegedly copied sensitive client portfolios and financial models before leaving the company to join a competitor.
Legal Issues:
Breach of fiduciary duty
Misappropriation of trade secrets under civil law
Judgment:
Court issued a preliminary injunction preventing the employee from working in a role at the competitor that could exploit the data.
Employee’s use of general skills was allowed, but specific copied files and client information were protected.
Principle:
Courts often grant injunctions to prevent imminent harm and allow monetary damages for actual misappropriation.
Reinforces that banks’ client information and proprietary models are legally protected trade secrets.
3. Citibank v. Khanna (India, Banking Data Misuse Case)
Background:
Citibank alleged that a former employee, Mr. Khanna, had downloaded customer and transaction data onto personal devices before resigning.
He was attempting to start a financial advisory firm using Citibank’s proprietary leads.
Legal Issues:
Misappropriation of confidential banking data
Breach of contract
Unfair competition
Judgment:
Court held that even temporarily copying data without authorization amounts to breach of confidentiality.
Injunction was issued to prevent solicitation of former clients.
Monetary damages were also awarded for potential loss of business.
Significance:
Protects customer databases as proprietary and confidential.
Emphasizes that intent to use data commercially against the employer triggers legal liability.
4. HSBC v. Employee (UK, Banking Data Trade Secrets)
Background:
HSBC sued an ex-employee who had downloaded client data and investment strategies to launch a competing consultancy.
Legal Issues:
Trade secret misappropriation
Breach of fiduciary duty
Data theft under UK law
Judgment:
UK High Court emphasized that information must be secret, have commercial value, and reasonable steps must have been taken to keep it confidential.
Court granted injunction and damages.
Employee could not use any HSBC-specific formulas, client contacts, or risk models.
Significance:
Reinforces global principle: banks’ operational data, client analytics, and risk strategies are legally protected as trade secrets.
5. ICICI Bank v. Ex-Employee (India, Data Breach Case)
Background:
Ex-employee allegedly accessed loan application databases after leaving ICICI Bank.
Attempted to sell information to competitors.
Legal Issues:
Violation of Section 72 of the IT Act (unauthorized disclosure of confidential data)
Misappropriation of trade secrets
Judgment:
Court restrained the ex-employee from using or disclosing any customer or bank data.
Found that digital records of customers are trade secrets, and unauthorized use attracts both civil and criminal liability.
Significance:
Highlights intersection of IT Act and trade secret law in India.
Demonstrates courts treat customer data and internal processes as legally protected.
6. JP Morgan v. Employee (US, Data Theft Case)
Background:
JP Morgan sued an ex-employee for copying proprietary trading algorithms to take to a competitor.
Legal Issues:
Theft of trade secrets under the Defend Trade Secrets Act (DTSA)
Breach of employment agreement
Judgment:
Court held that trading models, risk formulas, and proprietary algorithms are trade secrets, not general knowledge.
Injunction granted and monetary damages awarded.
Principle:
Reinforces the principle that knowledge alone is not protected, but specific, proprietary formulas and datasets are.
Key Legal Principles from These Cases
Definition of Trade Secrets:
Information must be secret, commercially valuable, and subject to reasonable efforts to maintain confidentiality.
Examples: client lists, internal risk models, algorithms, analytics, and operational procedures.
Employee Knowledge vs. Proprietary Data:
General skills and experience of employees are not restricted.
Specific data, formulas, or client lists are protected.
Legal Remedies:
Injunctions: To prevent further use of trade secrets.
Monetary Damages: For losses caused by misappropriation.
Criminal Penalties: If data theft violates IT or trade secret statutes.
Contractual Obligations:
Confidentiality clauses, non-compete clauses, and non-solicitation agreements strengthen the bank’s position.
Global Consistency:
Both Indian and international courts recognize banking data as trade secrets, emphasizing proactive protection.
Summary Table of Cases
| No | Case | Jurisdiction | Key Issue | Outcome/Principle |
|---|---|---|---|---|
| 1 | American Express Bank v. Priya Puri | India | Misuse of client & bank data | Injunction granted; client data is trade secret |
| 2 | Morgan Stanley v. Skender | USA | Copying client portfolios | Injunction; skill allowed, data protected |
| 3 | Citibank v. Khanna | India | Downloading client databases | Injunction + damages; intent matters |
| 4 | HSBC v. Employee | UK | Downloading client and investment data | Injunction + damages; info must be secret & valuable |
| 5 | ICICI Bank v. Ex-Employee | India | Unauthorized access to loan data | Injunction + criminal liability under IT Act |
| 6 | JP Morgan v. Employee | USA | Copying trading algorithms | Injunction + monetary damages; algorithms are trade secrets |
Conclusion:
The American Express Bank v. Priya Puri case is part of a broader set of banking trade secret disputes, highlighting that:
Client data, internal analytics, and algorithms are trade secrets.
Courts distinguish between general knowledge/skills and specific proprietary information.
Remedies include injunctions, damages, and criminal sanctions.
Banks must ensure employment contracts, IT security, and internal policies protect trade secrets effectively.
RELATED Blog
comments