- 1 2 3 4 5 IN THE UNITED STATES DISTRICT COURT 6 FOR THE NORTHERN DISTRICT OF CALIFORNIA 7 8 CHARLES REIDINGER, Case No. 19-cv-06968-CRB 9 Plaintiff, ORDER GRANTING MOTION TO 10 v. DISMISS WITH LEAVE TO AMEND 11 ZENDESK, INC., et al., 12 Defendants. 13 A class of Zendesk, Inc. stock purchasers led by Local 353, I.B.E.W. Pension Fund 14 (the Pension Fund) is suing Zendesk and several of its officers for securities fraud under 15 §§ 10(b) and 20(a) of the Securities Exchange Act of 1934 and Securities and Exchange 16 Commission (SEC) Rule 10b-5. The Pension Fund alleges that Zendesk and its officers 17 made false and misleading statements relating to (1) Zendesk’s performance and sales 18 capabilities in Europe, the Middle East, and Africa (EMEA) and the Asian Pacific 19 (APAC), and (2) Zendesk’s data security. 20 Zendesk has moved to dismiss the Pension Fund’s complaint for failure to state a 21 claim for which relief may be granted. The Court has determined that oral argument is not 22 necessary and vacates the hearing previously scheduled for November 12, 2020. The 23 Court grants Zendesk’s motion to dismiss because the Pension Fund has alleged neither (1) 24 any material misstatement or omission nor (2) scienter under the heightened pleading 25 standards applicable to securities fraud class actions. The Court grants the Pension Fund 26 leave to amend to cure these pleading deficiencies.1 27 I. BACKGROUND 1 On January 24, 2020, the Court consolidated two putative securities class action 2 lawsuits against Zendesk and appointed the Pension Fund as lead plaintiff. See Order 3 Consolidating Cases (dkt. 42). The Pension Fund then filed an Amended Class Action 4 Complaint on behalf of all purchasers of Zendesk common stock between February 6, 5 2019 and October 1, 2019, inclusive (the Class Period). See Amended Compl. (dkt. 51) at 6 1. The Pension Fund alleges that Zendesk and three officers—Chief Executive Officer 7 Mikkel Svane, Chief Financial Officer Elena Gomez, and Senior Vice President of 8 Worldwide Sales Norman Gennaro—committed securities fraud in violation of § 10(b) of 9 the Securities Exchange and SEC Rule 10b-5. See id. ¶¶ 34–36, 124–127. The Pension 10 Fund also alleges that the individual defendants violated § 20(a) of the Securities 11 Exchange Act as control persons liable for any fraud committed by Zendesk and its other 12 employees. See id. ¶¶ 128–131. 13 Because Zendesk has moved to dismiss the Amended Complaint, the Court must 14 accept the Pension Fund’s well-pleaded allegations as true. Usher v. City of Los Angeles, 15 828 F.2d 556, 561 (9th Cir. 1987). The Pension Fund’s general allegations are as follows. 16 Zendesk sells customer service software to companies, including small and medium sized 17 businesses (Zendesk’s “SMB” or “velocity” business) and larger customers (“enterprise” 18 business). Amended Compl. ¶¶ 1, 4–6. In doing so, Zendesk collects, stores, and 19 transmits sensitive customer, agent, and end-user data, including personal identifiable 20 information (PII). Id. ¶ 8. In 2018, Zendesk made 48% of its revenue from clients outside 21 the United States, with 29% of revenue coming from EMEA clients and 11% coming from 22 APAC clients. Id. ¶ 2. Because Zendesk has never been profitable, revenue growth drives 23 the company’s value as reflected in its common stock price. Id. ¶ 3. 24 The Pension Fund’s claims center around two events that allegedly caused 25 Zendesk’s stock price to decline: (1) subpar performance in the EMEA and APAC regions 26 during Q2 2019; and (2) the September 24, 2019 discovery and subsequent disclosure of a 27 data breach that had been ongoing for three years. 1 First, on July 30, 2019, Zendesk announced its Q2 2019 financial results. Id. ¶ 20. 2 Overall revenue growth “had slowed to 37%,” which was “below the 38%–41% range the 3 Company had reported over the prior eight quarters.” Id. Svane stated that EMEA and 4 APAC growth “didn’t quite live up to [Zendesk’s] expectations” as a result of 5 “macroeconomic factors” and the company’s “suboptimal execution.” Id. Zendesk’s 6 stock price dropped from $93.12 per share to $83.65 per share the next day. Id. ¶ 74. 7 “Over the following months,” Zendesk announced “structural changes” to its EMEA and 8 APAC strategies, “including implementing ‘best practices’ from its U.S. Business . . . and 9 hiring high level executives to ensure that its leadership in the regions was adequate.” Id. 10 Second, on September 24, 2019, Zendesk “reportedly identified that it had 11 experienced a data breach nearly three years earlier, prior to November 2016, involving 12 personally identifiable information for approximately 15,000 Support and Chat customer 13 accounts and authentication information for an additional approximately 7,000 customer 14 accounts.” Id. ¶ 23. Zendesk’s stock price dropped 4.7% that day, and dropped again on 15 September 27 and October 2 as Zendesk notified customers and the public about the 16 breach. Id. ¶¶ 24, 82, 87. 17 The Pension Fund has sued Zendesk under § 10(b) of the Securities Exchange Act 18 and Rule 10b-5, alleging that these events revealed that Zendesk had made material 19 misrepresentations to its investors, causing those investors to pay inflated prices for 20 Zendesk stock and to incur financial injury when the stock price dropped after Zendesk 21 disclosed the truth. Id. ¶ 127.2 The Pension Fund also sued Svane, Gomez, and Gennaro 22 under § 20(a) of the Securities Exchange Act, alleging that they “acted as controlling 23 persons of Zendesk” and were thus liable for any underlying securities fraud. Id. ¶ 129. 24 Zendesk has moved to dismiss the Pension Fund’s Amended Complaint. See Mot. 25 to Dismiss (dkt. 54). 26 27 II. LEGAL STANDARD 1 A. Rule 12(b)(6) 2 Under Rule 12(b)(6) of the Federal Rules of Civil Procedure, a complaint may be 3 dismissed for failure to state a claim upon which relief may be granted. Fed. R. Civ. P. 4 12(b)(6). Rule 12(b)(6) applies when a complaint lacks either “a cognizable legal theory” 5 or “sufficient facts alleged” under such a theory. Godecke v. Kinetic Concepts, Inc., 937 6 F.3d 1201, 1208 (9th Cir. 2019). Evaluating a motion to dismiss, the Court “must presume 7 all factual allegations of the complaint to be true and draw all reasonable inferences in 8 favor of the nonmoving party.” Usher, 828 F.2d at 561. “[C]ourts must consider the 9 complaint in its entirety, as well as other sources courts ordinarily examine when ruling on 10 Rule 12(b)(6) motions to dismiss, in particular, documents incorporated into the complaint 11 by reference, and matters of which a court may take judicial notice.” Tellabs, Inc. v. 12 Makor Issues & Rights, Ltd., 551 U.S. 308, 322 (2007).3 13 If a court dismisses a complaint for failure to state a claim, it should “freely give 14 leave” to amend “when justice so requires.” Fed. R. Civ. P. 15(a)(2). A court nevertheless 15 has discretion to deny leave to amend due to, among other things, “repeated failure to cure 16 deficiencies by amendments previously allowed, undue prejudice to the opposing party by 17 virtue of allowance of the amendment, [and] futility of amendment.” Leadsinger, Inc. v. 18 BMG Music Pub., 512 F.3d 522, 532 (9th Cir. 2008) (citing Foman v. Davis, 371 U.S. 19 178, 182 (1962)). 20 B. Claims under Section 10(b) of the Securities Exchange Act and Rule 10b-5 21 Section 10(b) of the Securities Exchange Act of 1934 forbids the “use or employ, in 22 connection with the purchase or sale of any security . . . [of] any manipulative or deceptive 23 device or contrivance in contravention of such rules and regulations as the [SEC] may 24 prescribe as necessary or appropriate in the public interest or for the protection of 25 26 3 The Court grants Zendesk’s Request for Judicial Notice (dkt. 1-1) because the relevant 27 documents are either incorporated by reference in the Amended Complaint or not subject to 1 investors.” 15 U.S.C. § 78j(b). SEC Rule 10b-5 implements § 10(b) and declares it 2 unlawful: 3 (a) To employ any device, scheme, or artifice to defraud, (b) To make any untrue statement of a material fact or to omit to state a 4 material fact necessary in order to make the statements made . . . not 5 misleading, or (c) To engage in any act, practice, or course of business which operates or 6 would operate as a fraud or deceit upon any person, in connection with 7 the purchase or sale of any security. 8 17 C.F.R. § 240.10b-5. 9 The Supreme Court has implied a right of action to stock purchasers or sellers 10 injured by a violation of § 10(b) and Rule 10b-5. See Dura Pharms., Inc. v. Broudo, 544 11 U.S. 336, 341 (2005). To state a claim, plaintiffs must plead “(1) a material 12 misrepresentation (or omission); (2) scienter, i.e., a wrongful state of mind; (3) a 13 connection with the purchase or sale of a security; (4) reliance . . .; (5) economic loss; and 14 (6) ‘loss causation,’ i.e., a causal connection between the material misrepresentation and 15 the loss.” Id. at 341–42 (citation omitted). The first two elements are particularly relevant 16 here. 17 The first element of a Rule 10b-5 claim is a material misstatement or omission. 18 Dura Pharms., Inc., 544 U.S. at 341. Materiality depends on whether “there is a substantial 19 likelihood that a reasonable shareholder would consider” the information to be 20 “important.” Basic Inc. v. Levinson, 485 U.S. 224, 231 (1988) (quoting TSC Indus., Inc. 21 v. Northway, Inc., 426 U.S. 438, 449 (1976)). For an omission, “there must be a 22 substantial likelihood that the disclosure of the omitted fact would have been viewed by 23 the reasonable investor as having significantly altered the ‘total mix’ of information made 24 available.” Id. at 231–32 (quoting TSC Industries, 426 U.S. at 449). This standard is not 25 “too low,” because a “minimal standard might bring an overabundance of information 26 within its reach, and lead management simply to bury shareholders in an avalanche of 27 trivial information.” Id. at 231 (citation omitted). 1 of mind. See Ernst & Ernst v. Hochfelder, 425 U.S. 185, 197–99 (1976). Because § 10(b) 2 covers only “manipulative or deceptive” conduct, and Rule 10b-5 implements (and thus 3 cannot extend more broadly than) § 10(b), a Rule 10b-5 claim must allege conduct 4 involving manipulation or deceit. Santa Fe Indus., Inc. v. Green, 430 U.S. 462, 473–74 5 (1977). Accordingly, a plaintiff must allege that the defendant had the “intent to deceive, 6 manipulate, or defraud.” Ernst & Ernst, 425 U.S. at 188. Knowledge of falsity or 7 deception is enough to satisfy this standard. See Gebhart v. SEC, 595 F.3d 1034, 1041 8 (9th Cir. 2010). And although the Supreme Court has never addressed whether 9 recklessness can give rise to liability under Rule 10b-5, see Tellabs, Inc., 551 U.S. at 319 10 n.3, the Ninth Circuit has held that scienter is established when defendants “were reckless 11 as to the truth or falsity of their statements,” Gebhart, 595 F.3d at 1041. But because 12 Scienter “turns on the defendant’s actual state of mind,” the defendant must have been at 13 least “consciously” reckless. Id. at 1042.4 14 Special pleading requirements apply to the first two elements of a Rule 10b-5 claim. 15 Tellabs, Inc., Ltd., 551 U.S. at 313. The Private Securities Litigation Reform Act of 1995 16 (PSLRA) requires plaintiffs to both (1) “specify each statement alleged to have been 17 misleading [and] the reason or reasons why the statement is misleading,” 15 U.S.C. § 78u– 18 4(b)(1); and (2) “state with particularity facts giving rise to a strong inference that the 19 defendant acted” with the requisite scienter—that is, the intent “to deceive, manipulate, or 20 defraud.” Tellabs, 551 U.S. at 313–314 (quoting 15 U.S.C. § 78u–4(b)(2); Ernst & Ernst, 21 425 U.S. at 194 & n.12.5 22 C. Claims under § 20(a) of the Securities Exchange Act 23 Under § 20(a), “every person who, directly or indirectly, controls any person 24 liable” for a violation of § 10(b) “shall also be liable jointly and severally with and to the 25 26 4 Thus, although extreme departures from an objective standard of care may give rise to an inference that the defendant was consciously reckless, the recklessness inquiry is subjective, not 27 objective. Gebhart, 595 F.3d at 1042. 1 same extent as such controlled person.” 15 U.S.C. § 78t(a). Nonetheless, a control person 2 who “acted in good faith and did not directly or indirectly induce the act or acts 3 constituting the violation” is not liable. Id. 4 III. DISCUSSION 5 Zendesk argues that the Pension Fund has not stated a claim under § 10(b) and Rule 6 10b-5 because (i) the Pension Fund has not alleged any actionable false or misleading 7 statements or omissions relating to Zendesk’s EMEA and APAC performance or the 2016 8 data breach that went undetected for three years, Mot. to Dismiss at 6–18; (ii) the Pension 9 Fund has not pleaded facts establishing a “strong inference” of scienter, id. at 18–23; and 10 (iii) the Pension Fund has not adequately pleaded loss causation, id. at 23–24. Zendesk 11 argues that the Pension Fund has not stated a claim under § 20(a) because the Pension 12 Fund has not plausibly alleged either an underlying § 10(b) violation or that the individual 13 defendants had enough control over Zendesk and its employees to be liable. 14 The Court grants Zendesk’s motion to dismiss with leave to amend. The Pension 15 Fund has not specifically alleged that Zendesk made any false statements or omitted any 16 material facts. Nor do the Pension Fund’s allegations give rise to the strong inference that 17 Zendesk or its officers acted with the intent to deceive, manipulate, or defraud. The 18 Pension Fund has thus failed to state a claim under §§ 10(b) and 20(a). 19 A. Alleged EMEA and APAC Performance Fraud 20 The Pension Fund has failed to state a claim for which relief may be granted 21 relating to Zendesk’s EMEA and APAC performance. The Pension Fund has not 22 identified any false statement made by Zendesk or any material fact that Zendesk 23 misleadingly omitted. And the Pension Fund’s allegations give rise to the inference that 24 Zendesk erred strategically in EMEA and APAC, not the strong inference that Zendesk 25 intended to deceive or manipulate its investors. 26 1. Specific Allegations 27 Zendesk’s relative weakness in the EMEA and APAC regions became apparent on 1 July 30, 2019. Zendesk filed its Form 8-K for Q2 2019, reporting overall “revenue growth 2 of 37%, which was below the 38%-41% range the Company had reported over the prior 3 eight quarters.” Id. ¶ 68. Zendesk reduced its 2019 overall cash flow outlook from $55- 4 $65 million to $35-$45 million and increased its projected losses from $160-$164 million 5 to $175-$178 million. Id. The same day, Svane told investors on a conference call that 6 “growth in EMEA and APAC, although still solid, didn’t quite live up to our own 7 expectations, and is lagging other regions.” Id. ¶ 69. Gomez told investors that Q2 2019 8 revenue growth in EMEA was 33%, down from 38% the previous quarter and 42% during 9 the 2018 fiscal year. Id. Similarly, Q2 2019 revenue growth in APAC was 31%, down 10 from 39% the previous quarter and 47% during the 2018 fiscal year. Id. 11 The Pension Fund alleges that upon learning of these results, investment analysts 12 expressed concern about Zendesk’s slowing revenue growth in EMEA and APAC. Id. 13 ¶ 72–73. Although investors were unsure the extent to which slowing EMEA and APAC 14 growth was due to macroeconomic factors as opposed to business execution, Zendesk’s 15 stock price dropped from $93.12 per share when the market closed on July 30 to $83.56 16 per share when the market closed on July 31. Id. ¶ 74–76. 17 When discussing growth deceleration in EMEA and APAC, Zendesk blamed both 18 “macroeconomic factors” and “suboptimal execution.” Id. ¶ 69. Head of Investor 19 Relations Marc Cabi told investors that “within specific countries . . . [d]eals are taking 20 somewhat longer to close in certain instances. . . . But it’s really difficult to discern the 21 macro fundamentals from execution fundamentals.” Id. In terms of execution, Gomez 22 said “I think it starts with understanding . . . the pipeline in the back half of the year, 23 understanding close rates, understanding the productivity of all the reps in that region. 24 And as well obviously, we’re having success in North America, so we’re doing some 25 comparisons on what’s working here, and are there certain things that we can bring to the 26 region that make sense for that region? Typically, we try to do uniform things, but there 27 are definitely localized practices that just make more sense.” Id. At an investor 1 in the EMEA and APAC regions, but also acknowledged that “ensuring that we also invest 2 in proper leadership, proper coverage around the world, where we have so much of our 3 business, is probably something where we are a little behind where we should be.” Id. 4 ¶ 79. “[S]ome of these smaller regions have the same revenues that the entire company 5 had when we went public. And there’s like three guys and a dog managing that business. . 6 . . [W]e need to do better and we are investing to do a lot better on that.” Id. After the 7 Class Period, Zendesk’s officers continued suggesting that slowing EMEA and APAC 8 growth was due to a lack of sales leadership that could drive more enterprise deals in the 9 regions, and that Zendesk was working to fix that problem across EMEA and APAC, 10 including in the Australia-New Zealand (ANZ) sub-region. Id. ¶¶ 90, 93–94, 96–97. 11 Zendesk officers also stated that Zendesk was focusing on adopting the best practices of its 12 “velocity” business in the Americas in these regions. Id. ¶¶ 95–97. 13 The Pension Fund alleges that before the slowdown in EMEA and APAC was 14 revealed on July 30, 2019, Zendesk had made materially false and misleading statements. 15 The Pension Fund cites the following specific statements: 16 a. February 5, 2019 Shareholder Letter 17 Zendesk’s February 5, 2019 Shareholder Letter (concerning fiscal year 2018 and Q4 18 2018 performance) stated that there was “strong demand” for Zendesk’s products globally 19 in 2018. “We continue to deliver strong revenue growth from [SMBs] and large 20 enterprises. . . . [A]s a proxy of our success in moving upmarket, the percentage of our 21 monthly recurring revenue from customers with 100 or more Zendesk support agents 22 expanded to 40% at the end of the fourth quarter compared to 38% a year ago.” Under the 23 heading “2018 in review,” the letter stated that Zendesk’s “growth in 2018 reflects the 24 strength of our products, our ability to execute, and global trends that are driving demand 25 . . . [w]ith customers in more than 160 countries . . . we are seeing strong global demand 26 and revenue growth in every region.” Under the heading “Enterprise Momentum,” the 27 letter stated that “[i]n 2018, we also significantly matured our enterprise sales and 1 serve as strategic partners with our enterprise customers. We broadened our sales and 2 customer success capabilities . . . while increasing our executive engagement with strategic 3 customer accounts. We also hired an executive-level leader of partner channels to develop 4 a partner ecosystem and strategy to extend our reach with enterprise customers.” Id. 5 ¶¶ 46–47. 6 b. February 5, 2019 Conference Call 7 On February 5, 2019, Zendesk hosted a conference call with investors regarding 8 Q4 2018 and 2018 fiscal year results. Gomez stated that Zendesk was 9 pleased with its Q4 performance. “It’s really a combination of the sales force executing 10 and productivity up all around; strength in our Americas business, particularly with 11 bigger deals this quarter. There’s a healthy demand environment, overall, we’re seeing. 12 We’re not seeing our pipeline slip in any way.” Gomez stated that Zendesk would 13 “continue” to add “named account managers and named account executives . . . there may 14 be tweaks, but nothing wholesale changed.” When asked about EMEA growth, Head of 15 Investor Relations Marc Cabi said Zendesk was seeing similar success in EMEA enterprise 16 growth: “we employ the same kind of go-to-market motions in all the regions. EMEA has 17 had a very strong presence across all business sizes.” And in terms of macroeconomic 18 issues, Gomez said “we haven’t seen anything, any disruption. And the first place we’re 19 looking, obviously, is our pipelines. And we look at our pipeline across every region 20 . . . . And so far, we have not seen anything . . . Not that it won’t come. But today, with 21 the data we have, we haven’t seen it.” Id. ¶¶ 48–49. 22 c. February 25, 2019 JMP Securities Technology Conference Presentation 23 24 On February 25, 2019, Gennaro spoke at the JMP Securities Technology 25 conference. He stated that as the company began pursuing more enterprise accounts, it 26 “had to work in a different way and support them in a different manner.” So, in 2018, 27 Zendesk started “putting in the people and activities in place to make that happen.” For 1 specific enterprise and making sure that they understand the terminology that those 2 companies use and the concerns that they would have.” Zendesk previously had done that 3 “in pockets. But this is—it just allowed us to kind of build it out and expand it.” Id. ¶ 56. 4 d. March 27, 2019 Press Release 5 On March 27, 2019 Zendesk issued a press release announcing Amy Foo as new 6 managing director in the Australia-New Zealand (ANZ) APAC sub-region. The press 7 release stated that Zendesk was “Poised for Next Phase of Growth in ANZ With New 8 Leadership.” It stated that in 2018, “ANZ saw a strong double digit growth in total 9 number of customer accounts . . . . This boost solidifies Zendesk ANZ as the largest 10 market in the region, and fourth largest market for the company globally. ANZ was also a 11 significant contributor to the [APAC] region’s growth . . . . Under Amy’s leadership, the 12 organization will continue to deepen its relationships with the market’s startups and 13 [SMBs], and further showcase its product offerings to large scale, multinational 14 enterprises.” The press release quotes Gomez as saying “I am excited to see how [Foo] 15 will lead our business into our next phase of growth particularly in a mission-critical 16 market like ANZ.” The release goes on to state that “[a] key factor to achieving its growth 17 has been Zendesk’s continuous investment into finding and fostering local talent. The 18 number of employees grew by almost half (49%) in FY18 to more than 300 people across 19 engineering and go-to-market roles.” Id. ¶ 57. 20 e. April 30, 2019 Shareholder Letter 21 Zendesk’s April 30, 2019 Shareholder Letter regarding its Q1 2019 performance 22 stated that “[d]emand for our products remains strong as companies around the world, 23 large and small, seek to transform their businesses by adopting modern software . . . . Our 24 growth is driven by favorable global market trends and our dedication to delivering 25 seamless, omnichannel experiences . . . . We are advancing our move upmarket by 26 investing in the expansion of our product and go-to-market capabilities to serve larger, 27 more complex use-cases.” The letter also stated that Zendesk’s “broad-based growth in the 1 initiatives, and global trends that are driving high demand.” Under the heading 2 “Leadership Team,” the letter stated that Zendesk was “scaling our operations to support 3 our global growth and momentum . . . . We also recently expanded our leadership 4 team . . . . These proven enterprise leaders are an important part of our strategy to provide 5 platforms and products to help companies around the world transform their customer 6 experiences.” Id. ¶¶ 59–60. 7 f. April 30, 2019 Conference Call and “Follow-Up” Call 8 During an April 30, 2019 conference call with investors, Gomez said that Zendesk’s 9 growth during Q1 2019 “was driven by continued favorable market dynamics, product 10 innovation and improving sales and marketing initiatives.” She noted that the quarter had 11 featured “strong and balanced revenue growth across all regions.” Gomez stated that the 12 Americas “had a very strong start to the year. I think the regions, if there’s a place where 13 I’m paying attention to, particularly in APAC, that’s a place we’re looking at. But other 14 than that, I don’t think there’s anything different.” Analysts at Piper Jaffray noted that 15 during a “follow-up call, management indicated pockets of macro-related cautious 16 feedback in some APAC countries.” Id. ¶¶ 61–62. 17 g. May 22, 2019 “Analyst Day” Meeting 18 At a May 22, 2019 investor “Analyst Day” meeting, Gomez said that Zendesk’s 19 “global footprint” is “a little bit different. I view this as a complete advantage for us. 20 . . . [C]lose to 50% of our business is outside the U.S. . . . This has been completely 21 important for us as we think about managing our portfolio of regions. We definitely focus 22 on all regions doing well, but the fact that we’re balanced, it doesn’t ever put any pressure 23 on any single region. So this is incredibly important and speaks to the opportunity that lies 24 ahead.” Id. ¶ 65. 25 h. May 29, 2019 Cowen Technology, Media & Telecom Conference 26 27 During a May 29, 2019 Cowen Technology, Media & Telecom Conference, an 1 extremely strong U.S. growth . . . As we go outside the U.S., the markets have been strong. 2 We did point out on our first call—first quarter earnings that we’re just closely watching 3 APAC. Nothing alarming there, but there has been some uneven performance in the 4 APAC market.” Id. ¶ 66. 5 * 6 The Pension Fund argues that these statements were materially false or misleading 7 because they indicated that Zendesk’s “sales model was the same in all regions, demand 8 was high, execution was strong, the sales pipeline was of no concern, and Zendesk had no 9 data to indicate any slowdown.” Id. ¶ 100. The Pension Fund also argues that the 10 statements were misleading because Zendesk “knew or deliberately disregarded and failed 11 to disclose” that: 12 (a) “Macroeconomic business challenges related to the U.K.’s separation from the European Union, euphemistically referred to as ‘Brexit,’ and the 13 escalating trade war between the United States and China had already 14 begun to have a negative effect on Zendesk’s business performance and thus revenue growth in EMEA and APAC;” and 15 16 (b) “The Company’s execution of its sales model in EMEA and APAC was not strong, as the Company had claimed, nor were the strategies and sales 17 processes applicable in EMEA and APAC the same as in the U.S. Specifically, Zendesk: (i) lacked high level executives and leadership in 18 the regions to effectively sell enterprise products including executives 19 and leadership required to properly engage with enterprise customers and coordinate with Zendesk HQ in San Francisco; and (ii) had not 20 implemented the ‘best practices’ from its U.S. velocity business in 21 EMEA and APAC.” 22 Id. ¶¶ 55(a)–(b); 67(a)–(b). 23 2. First Element: Material Misstatement or Omission 24 The Pension Fund could specify “the reason or reasons” why Zendesk had misled 25 investors, see 15 U.S.C. § 78u–4(b)(1), in two ways. First, the Pension Fund could show 26 that the statements contained material falsehoods. Dura Pharms., Inc., 544 U.S. at 341. 27 Second, the Pension Fund could show that the statements omitted material information in a 1 Fund has failed to do either under the applicable pleading standard. 2 a. Falsity 3 The Pension Fund’s allegations do not show that Zendesk’s pre-July 30, 2019 4 statements contained any material falsehoods. 5 First, many of the statements explained Zendesk’s 2018 fiscal year, Q4 2018, and 6 Q1 2019 performance. Statements explaining why Zendesk was successful before Q2 7 2019, in the EMEA and APAC regions or otherwise, are not alleged to have been false. 8 See Amended Compl. ¶¶ 46–49, 56, 59–62. 9 Second, Zendesk’s statements regarding global and regional demand were 10 consistent with eventual growth deceleration in EMEA and APAC. The Pension Fund has 11 not plausibly alleged that Zendesk had reason to know of any weakness in those regions 12 when Zendesk officers made statements in February 2019 discussing Zendesk’s 2018 and 13 Q4 2018 performance. Indeed, the Pension Fund’s allegations are consistent with 14 Gomez’s statement that Zendesk had “not seen anything” in its sales pipeline indicating 15 weakness—“not that it won’t come.” Id. ¶ 49. The Pension Fund does not allege that, 16 contrary to Gomez’s statement, Zendesk’s pipeline had experienced a “slip” (that is, fewer 17 pending deals) about which Gomez or anyone else was aware. Id. ¶ 48. Indeed, the 18 Pension Fund’s allegations indicate that the number of deals did not slip, but that deals 19 ended up “taking longer to close” than expected. Id. ¶ 70. As discussed below, see infra 20 part III.2.b, the Pension Fund does not allege that Zendesk knew deals would take longer 21 to close (or how Zendesk could have known this). Finally, Zendesk’s April 30, 2019 22 Shareholder Letter observed “favorable global market trends” during Q1 2019 but did not 23 say those trends would continue. The same day, Gomez told investors on a conference call 24 that Zendesk was “looking at” APAC due to concerns about performance. Id. ¶ 61.6 25 Third, the Pension Fund does not plausibly allege that Zendesk’s statements about 26 27 6 Similarly, at the May 29, 2019 Cowen Conference, an unspecified Zendesk representative— 1 adding sales representatives to grow its enterprise business, see id. ¶¶ 47–49, 56, were 2 false—only that, as it turned out, Zendesk had not added enough people, or the right 3 people, to keep growth steady or accelerating. Gennaro’s February 25, 2019 statement that 4 Zendesk had generally been increasing its efforts to have sales representatives in place to 5 pursue enterprise clients did not assure that those efforts would result in revenue growth 6 remaining stable or accelerating in EMEA and APAC during the following quarter. Id. 7 ¶ 56. Similarly, there is no indication that Zendesk lied about “scaling” or adding “proven 8 enterprise leaders” across regions as a strategy to drive sales, id. ¶ 60—even if Zendesk, in 9 hindsight, needed to do more to maintain the same levels of growth in the EMEA and 10 APAC regions. 11 Fourth, the Pension Fund’s allegations do not show that Zendesk ever stated that it 12 was using the same sales practices in the U.S. and the EMEA and APAC regions. On 13 February 5, 2019, Gomez stated that Zendesk used “the same kind of go-to market motions 14 in all the regions,” but did not state or imply that strategies across regions were identical or 15 that best practices from the U.S. business were uniformly being applied elsewhere. Id. 16 ¶ 48. Similarly, Gennaro’s February 25, 2019 statement that Zendesk had previously 17 added dedicated enterprise salespeople “in pockets” but had begun pursuing strategies to 18 “build [this strategy] out and expand it” across regions did not indicate that Zendesk had 19 implemented uniform “best practices” across all regions. Id. ¶ 56. 20 Finally, the Pension Fund cites certain other statements that were not factual in 21 nature and thus could not be true or false. For example, Zendesk’s March 27, 2019 press 22 release announcing Foo as managing director of the ANZ sub-region consisted of several 23 undisputed facts regarding ANZ’s importance to Zendesk’s business, then referred to 24 Yoo’s hire as a “boost” that would enable Zendesk to “showcase its product offerings” to 25 enterprise customers during the “next phase of growth . . . in a mission critical market.” Id. 26 ¶ 57. 7 Similarly, Gomez told investors at the March 22, 2019 “Analyst Day” meeting that 27 1 Zendesk’s “global footprint” was “different,” a “complete advantage,” “balanced,” 2 “important,” and an “opportunity.” Asking whether such “puffery” is true or false is 3 simply a non sequitur. Or. Pub. Emps. Ret. Fund v. Apollo Grp. Inc., 774 F.3d 598, 606 4 (9th Cir. 2014) (“[I]nvestors do not rely on vague statements of optimism . . . [or] feel 5 good monikers.”) (citation omitted). 6 In sum, the Pension Fund has not adequately pleaded any specific false statement 7 relating to Zendesk’s EMEA and APAC performance. 8 b. Material Omissions 9 The Pension Fund argues that even if Zendesk’s statements did not contain 10 falsehoods, they were misleading because they did not disclose important information: 11 macroeconomic challenges relating to Brexit and the U.S.-China trade war had “begun” to 12 affect Zendesk’s business; Zendesk’s sales execution was not aligned with the “strategies 13 and sales processes applicable” in the U.S. because Zendesk had not “implemented the 14 ‘best practices’ from its U.S. velocity business”; and Zendesk’s sales execution in EMEA 15 and APAC was “not strong” because it “lacked high level executives” who could drive 16 enterprise business and “coordinate with Zendesk HQ in San Francisco.” Amended 17 Compl. ¶¶ 55(a)–(b); 67(a)–(b). 18 Under the applicable pleading standard, see 15 U.S.C. § 78u–4(b)(1), these were not 19 material omissions in the relevant sense. 20 Zendesk has not specifically alleged either (i) what Zendesk should have disclosed 21 about macroeconomic developments, and (ii) why any failure to disclose information 22 relating to Brexit and the U.S.-China trade war was material. The Pension Fund has not 23 explained whether and how Zendesk should have known these global trends were affecting 24 its APAC and EMEA business; indeed, aside from conclusory statements, see, e.g., 25 Amended Compl. ¶18(a), the Amended Complaint does not clearly allege that these trends 26 affected Zendesk’s business at all.8 Given the lack of detail in the Amended Complaint, 27 1 the Pension Fund’s allegations establish only that Zendesk failed to disclose an unspecified 2 business effect, about which Zendesk was not necessarily aware at the relevant time, and 3 the nature of which remains a mystery. 4 Similarly, the Pension Fund has not explained why Zendesk’s failure to expressly 5 tell investors that it had not implemented ‘best practices’ from its U.S. Velocity business in 6 the EMEA and APAC regions would have been “viewed by the reasonable investor has 7 having significantly altered the ‘total mix’ of information available” before and during Q2 8 2019. Basic Inc., 485 U.S. at 231–32 (quoting TSC Industries, 426 U.S. at 449). The 9 Pension Fund’s allegations show that investors were interested in whether Zendesk was 10 pursuing enterprise clients in EMEA and APAC like it was in the U.S., Amended Compl. 11 ¶ 48, but the allegations do not indicate that investors thought Zendesk employed identical 12 sales practices across regions. It is unclear why, at the time of the challenged statements, 13 investors would have had any reaction to Zendesk disclosing that its strategies across 14 regions were similar in some ways and different in others—even if, in hindsight, Zendesk 15 determined that it needed to use more of its U.S. strategies in EMEA and APAC. 16 Nor has the Pension Fund specified what “fact” Zendesk omitted regarding its sales 17 leadership in the EMEA and APAC regions. See 17 C.F.R. § 240.10b-5. The Pension 18 Fund alleges that Zendesk’s leadership was “not strong” in those regions. Amended 19 Compl. ¶¶ 55(a)–(b); 67(a)–(b). But the Pension Fund’s allegations do not explain how 20 such information would have been “capable of objective verification” at the time of the 21 challenged statements. Or. Pub. Emps. Ret. Fund., 774 F.3d at 598. It is not enough that 22 Zendesk “had complete access to all the sales data in EMEA and APAC during the Class 23 Period.” Opp. to Motion to Dismiss at 18–19; Amended Compl. ¶ 93. To be sure, 24 Zendesk’s sales data would have eventually indicated lagging performance as reflected in 25 the Q2 2019 results, which might imply weak leadership in those regions. The securities 26 laws require quarterly filings precisely so that such information will be disclosed to 27 1 investors. But the Pension Fund’s allegations do not specify what material facts Zendesk’s 2 top executives (or even its sales leaders) knew and failed to disclose. 3 3. Second Element: Scienter 4 For substantially the same reasons, the Pension Fund has not stated “with 5 particularity facts giving rise to a strong inference” that Zendesk acted with the intent “to 6 deceive, manipulate, or defraud.” Tellabs, 551 U.S. at 313–314 (quoting 15 U.S.C. § 78u– 7 4(b)(2). To the contrary, the Pension Fund’s allegations give rise to a different inference: 8 that Zendesk made strategic mistakes that it later examined and began taking steps to fix. 9 The Pension Fund provides no reason to think that Zendesk’s sales leaders (let alone 10 Zendesk’s top executives) knew that deals would take longer to close, or the precise 11 reasons why deals would take longer to close, well before the end of Q2 2019. Based on 12 the present allegations, Zendesk’s course of conduct “was neither deceptive nor 13 manipulative and therefore did not violate either § 10(b) . . . or Rule 10b-5.” Santa Fe 14 Indus., Inc., 430 U.S. at 474. 15 B. Alleged Data Security Fraud 16 The Pension Fund has also failed to state a claim for which relief may be granted 17 relating to the data breach that Zendesk failed to detect for three years. Although failure to 18 disclose the data breach may have been a material omission, the Pension Fund has not 19 alleged that Zendesk knew of the data breach (or was consciously reckless with respect to 20 its occurrence) when it made any challenged statements or disclosures. Indeed, the 21 Pension Fund’s allegations are consistent with Zendesk acknowledging the risk of such a 22 breach and swiftly disclosing the breach once Zendesk became aware. Therefore, the 23 Pension Fund’s allegations do not support a strong inference that Zendesk intended to 24 deceive or manipulate its investors. 25 1. Specific Allegations 26 Fund alleges that Zendesk misled investors when it discussed its data security 27 because Zendesk’s “data security program was not up to the highest possible standards and 1 disclosed on September 24, 2019, id. ¶ 80. 2 On October 2, 2019, Zendesk published an “Important Notice regarding 2016 3 Security Incident” (the Notice) on its website. Id. ¶ 25. The Complaint incorporates 4 relevant parts of the notice, which I reproduce below: 5 Important Notice regarding 2016 Security Incident We recently were alerted by a third party regarding a security matter that may have 6 affected the Zendesk Support and Chat products and customer accounts of those products 7 activated prior to November of 2016. . . . 8 * * * 9 On September 24 [2019], we identified approximately 10,000 Zendesk Support and 10 Chat accounts . . . whose account information was accessed without authorization prior to November of 2016. Information accessed included some [PII] and other service data. 11 12 For impacted customers, the information accessed from these databases includes the following data: 13 -Email addresses, names and phone numbers of agents and end-users of certain 14 Zendesk products. 15 -Agent and end user passwords that were hashed and salted—a security technique used to make them difficult to decipher, potentially up to November 2016. . . . 16 17 We have also determined that certain authentication information was accessed for a much smaller set of approximately 700 customer accounts, including expired trial accounts 18 and accounts that are no longer active. . . . 19 Id. ¶ 84. The Notice was later updated to reflect that a total of ~22,000 breached customer 20 accounts: ~15,000 Support and Chat accounts, with authentication information accessed 21 for approximately ~7,000 customer accounts. Id. ¶¶ 23, 25, 88. Because Zendesk’s 22 customers often have many end-users, the breach may have affected many persons’ data. 23 Id. ¶ 86.9 24 25 9 The Pension fund alleges that on September 24, 2019, Zendesk’s stock price dropped from 26 $77.23 per share to $73.60 per share and that on September 27, 2019, the stock price dropped from $74.08 per share to $72.08 per share. Id. ¶¶ 81, 83. The Pension Fund alleges that based on 27 Zendesk’s policy of notifying all customers within 72 hours of a breach, customers would have 1 The Pension Fund alleges that Zendesk’s officers’ subsequent statements indicate 2 that, at the time of the breach in 2016, Zendesk’s security had been “in a very different 3 state” than it was when the breach was discovered. Id. ¶ 91. After Zendesk disclosed the 4 breach, Zendesk’s Chief Security Officer Maarten Van Horenbeeck said that “[w]hile no 5 security measure can be considered to be 100% effective, Zendesk has significantly 6 invested in its security program since 2016” and detailed certain security measures that had 7 been put in place between when the breach occurred and when it was detected. Id. ¶ 92. 8 The Pension Fund argues that before the data breach was revealed, Zendesk had 9 made materially false and misleading statements. In particular, the Pension Fund cites the 10 following statements: 11 a. February 14, 2019 Form 10-K for Fiscal year 2018 12 This filing stated that Zendesk maintains a “comprehensive security program 13 designed to help safeguard the security and integrity of our customers’ data. We regularly 14 review our security program . . . [and] obtain third-party security audits and examinations 15 of our technical operations and practices covering data security.” Zendesk also noted that 16 in June 2017 it had announced its completion of the EU approval process for using 17 Binding Corporate Rules “as a data processor and controller. This significant regulatory 18 approval validated our implementation of the highest possible standards for protecting PII 19 globally, covering both the PII of our customers and employees.” Id. ¶ 52. The filing also 20 warned investors that if a data breach were to occur, “our products may be perceived as 21 insecure, we may lose existing customers or fail to attract new customers, and we may 22 incur significant liabilities. . . . Unauthorized access to or security breaches of our products 23 could result in the loss of data. . . . We may also experience security breaches that may 24 remain undetected for an extended period.” Id. ¶ 53. 25 b. May 2, 2019 Form 10-Q for Q1 2019 and August 2, 2019 26 close at $69.81 per share . . . on unusually high trading volume.” Id. ¶¶ 26, 87. The parties 27 dispute the precise date that Zendesk became aware of the data breach. Motion to Dismiss at 13 Form 10-Q for Q2 2019 1 2 These filings provided investors with the same warnings regarding the risks that 3 “could” occur “if” Zendesk suffered a data breach, and the possibility that Zendesk “may” 4 experience undetected data breaches. Id. ¶¶ 63, 77. 5 2. First Element: Material Misstatement or Omission 6 Under the applicable pleading standard, see 15 U.S.C. § 78u–4(b)(1), the Pension 7 Fund has not specified why any of Zendesk’s statements relating to data security were 8 false. The Pension Fund argues that Zendesk’s “data security program was not up to the 9 highest possible standards.” See, e.g., Amended Compl. ¶ 67(c). But even assuming that a 10 data breach is enough to infer that data security is not up to the highest possible standards, 11 this breach occurred in 2016, and the Pension Fund cites only statements made in February 12 2019 or later. Id. ¶¶ 53, 63, 77. The Pension Fund’s own allegations show that Zendesk’s 13 data security improved between 2016 and 2019, such that Zendesk’s 2019 statements are 14 plausibly consistent with a breach having occurred in 2016—especially given Zendesk’s 15 acknowledgement that breaches “may remain undetected for an extended period.” Id. ¶ 53. 16 The Pension Fund has, however, plausibly alleged a material omission. Zendesk 17 did not disclose the existence of the data breach, and it is plausible that such a breach 18 “would have been viewed by the reasonable investor” as significant. Basic Inc., 485 U.S. 19 at 231–32 (quoting TSC Industries, 426 U.S. at 449). 20 3. Second Element: Scienter 21 That said, the Pension Fund has failed to “state with particularity facts giving rise to 22 a strong inference” that Zendesk acted with the intent “to deceive, manipulate, or defraud” 23 in failing to disclose the data breach. Tellabs, 551 U.S. at 313–314 (quoting 15 U.S.C. 24 § 78u–4(b)(2); Ernst & Ernst, 425 U.S. at 194 & n.12). The Pension Fund’s allegations 25 indicate that Zendesk was simply unaware of the breach until September 2019. See 26 Amended Compl. ¶ 80. Zendesk’s Notice regarding the incident (published on October 2, 27 2019) shows only that Zendesk “recently” became aware of the breach, id. ¶ 84, and 1 || nothing else in the Amended Complaint suggests that Zendesk knew of the breach earlier 2 || than September 24, 2019 or was consciously reckless in failing to detect and disclose the 3 || breach before then. See Gebhart, 595 F.3d at 1041-42. Accordingly, the Pension Fund’s 4 || allegations do not suggest that Zendesk intended to “deceive” or “defraud” regarding the 5 || breach, see Tellabs, 551 U.S. at 313-314, let alone give rise to a strong inference this was 6 || the case. 7 C. — Section 20(a) Claims 8 Because the Pension Fund has not stated an underlying securities fraud claim, the 9 || Pension Fund’s § 20(a) control persons claim fails. See 15 U.S.C. § 78t(a).’° 10 |} IV. CONCLUSION 11 For the foregoing reasons, the Court GRANTS Zendesk’s motion to dismiss without 12 prejudice. Because it is conceivable that the Pension Fund could add allegations to cure 13 || the above-described deficiencies, the Court grants Zendesk leave to amend. See 14 || Leadsinger, 512 F.3d at 532. The Pension Fund shall have 60 days from the date of this 3 15 || order to file an amended complaint. a 16 IT ISSO ORDERED. -—~— 2 Dated: November 9, 2020 CHARLES R. BREYER Z 18 United States District Judge 19 20 21 22 23 24 25 26 27 || 10 And because the Pension Fund’s allegations do not satisfy the first two elements of a § 10(b) 28 and Rafe claim, the Court need not consider whether the Pension Fund adequately pleaded
Document Info
Docket Number: 3:19-cv-06968
Filed Date: 11/9/2020
Precedential Status: Precedential
Modified Date: 6/20/2024