Arizona Spy Pixel Lawsuits Keep Failing in Court

If you have wondered whether the law is finally catching up to the invisible pixels that report when you open an email, Arizona offers a sobering answer: it depends entirely on which courthouse you are standing in. Plaintiffs in Arizona tried to stretch a 2006 records protection statute to cover marketing pixels, and judge after judge said no. Meanwhile, in California, nearly identical technology has produced a $10 million settlement. The legal status of the spy pixel is not settled. It is contested, inconsistent, and changing state by state.

Key Takeaways

• Arizona's TUCSRA (A.R.S. § 44-1376 et seq.), enacted in 2006 and amended in 2007, was written to protect telephone, utility, and communication service records, not email marketing metrics.
• At least five courts have held that data captured by an email tracking pixel is not a protected "communication service record" under the statute.
• The Arizona Court of Appeals affirmed dismissal in Smith v. Target Corp. on November 13, 2025, the first appellate ruling on the theory.
• California is moving the opposite direction: under CIPA section 638.51, Forbes agreed to a $10 million pen-register settlement that reached preliminary approval in May 2026.
• France's CNIL set a July 14, 2026 consent deadline for email pixels, and Italy's Garante set its own deadline of October 28, 2026.

What Is TUCSRA?

TUCSRA is Arizona's Telephone, Utility and Communication Service Records Act, codified at A.R.S. § 44-1376 et seq. It was enacted in 2006 and amended in 2007 to stop the fraudulent acquisition and sale of sensitive account records. Think pretexting: someone calling your phone company, pretending to be you, and walking away with your call logs or account details. The law was aimed squarely at that kind of abuse by and against communication service providers.

The statute protects "communication service records," a category that includes things like subscriber identifying information and access logs held by the carrier that actually provides your service. For years it was applied only to telecommunications carriers. Then plaintiffs' lawyers had a new idea: what if a retailer's email tracking pixel, which logs the moment you open a message, counts as a protected record too?

Why Do Arizona Spy Pixel Lawsuits Keep Failing?

Because Arizona courts have repeatedly found that a retailer sending marketing email is not the kind of entity the statute regulates, and a tracking pixel is not the kind of record it protects. The theory has now been rejected by at least five courts, and at least four of them held that retailers using email marketing simply are not "communication service providers" under the act.

The pattern started at the trial level. In Carbajal v. Home Depot (D. Ariz. 2024) and Williams v. Pacific Sunwear of California (No. 24-cv-02015, D. Ariz. April 16, 2025), federal judges concluded the defendants were not "engaged in providing a service that allows its users to send or receive electronic communications." A clothing brand is not your internet provider. The courts also drew a sharp line on the statute's "access logs" language, reading it to mean records of when a subscriber accesses the communication service itself, "not marketing metrics collected by retailers about email engagement."

The capstone came from the Arizona Court of Appeals in Smith v. Target Corp., decided November 13, 2025. It was the first appellate decision on the issue, and it affirmed dismissal: an email sender is not the kind of entity TUCSRA seeks to regulate, and a tracking pixel is not a "communication service record." For now, the spy pixel theory is effectively dead in Arizona.

How Is California Different?

California is going the other way, and the contrast is stark. There, plaintiffs invoke the California Invasion of Privacy Act, specifically the pen register and trap and trace provision at section 638.51, arguing that trackers which silently collect identifiers function like the surveillance devices the old wiretap law was written about. Hundreds of these suits are pending, and they have real settlement leverage.

The headline example is Forbes. Berman v. Forbes Media reached a proposed $10 million settlement, which hit preliminary approval in May 2026, over trackers that collected unique identifiers from website visitors. Combined with a separate $7.5 million Video Privacy Protection Act settlement,, Forbes has spent roughly $17.5 million on tracker litigation in a single year. We unpack that case in the Forbes CIPA pen-register settlement, and the broader wiretapping wave in the CIPA email tracking lawsuits.

Europe takes a third path entirely: consent. France's CNIL published a formal recommendation on email pixels in April 2026 and gave senders until July 14, 2026 to obtain real, informed consent. Italy's Garante set its own deadline of October 28, 2026. The same pixel is shrugged off in Phoenix, litigated in Los Angeles, and regulated in Paris.

What Does This Mean for You?

It means you should not wait for the courts to protect your inbox, because they cannot agree on what a spy pixel even is. So is email tracking illegal? In Arizona, at least under TUCSRA, the answer right now is no. In California it may expose a company to enormous liability. In the EU it requires your consent. A single technology produces three different legal verdicts depending on the map.

Here is the part that does not change with the jurisdiction. However a court chooses to label it, a spy pixel still does exactly one thing: it silently reports the moment you open a message, often along with your approximate location, device, and how many times you looked. And pixels are no longer the only method; senders increasingly use zero click tracking techniques beyond the pixel that fire without you clicking anything.

The practical move is to stop the request before it reaches the sender's server, regardless of what any statute says. A browser blocker that intercepts known tracking pixels and tracked links does this automatically. If you want the step by step, see how to block email tracking in Gmail. The litigation will keep zigzagging for years; your inbox does not have to wait for it.

Source: Womble Bond Dickinson on the Arizona Court of Appeals spy pixel ruling and Perkins Coie on the TUCSRA tracking pixel dismissals.