The present case before the Higher Regional Court of Zweibrücken is based on the following facts: The managing director of a limited liability company (GmbH) received phishing emails from unknown fraudsters abroad. These fraudsters manipulated the email address of a long-standing business partner of the company by substituting two letters (instead of "@w...film.com," they substituted "@w...flim.com"). Since email was common communication between the business partners, the email appeared credible at first glance. The managing director subsequently repeatedly transferred sums in the low six-figure range to the bank accounts listed in the emails to settle the alleged claims. Only later did she realize that she had fallen victim to fraudsters.
The GmbH then demanded compensation from the managing director for the damages incurred. The Frankenthal Regional Court dismissed the claim for payment. The GmbH appealed.
The Higher Regional Court of Zweibrücken dismissed the appeal and found that director liability under Section 43 (2) of the German Limited Liability Companies Act (GmbHG) did not apply. The court held that a breach of a specific duty is required, which was not the case in this case.
The duties of the directors and officers can be divided into four areas of responsibility: the duty of legality, the duty of care in the narrower sense, the duty of supervision, and the duty of compliance. Liability for other activities of directors is subject to general civil law.
The Zweibrücken Higher Regional Court considers the commissioning of a money transfer based on phishing emails to be essentially an accounting activity and not a violation of a specific duty. The transfer of company management and any possible duty of supervision were not violated in this case.
The Zweibrücken Higher Regional Court also rejects liability under the civil law principles of Section 280 (1) and Section 823 (1) of the German Civil Code (BGB). It finds that the managing director's failure to notice the typos in the phishing emails was only slightly negligent. Therefore, liability is ruled out despite slight negligence, similar to the liability principles under labor law.
The liability of the managing director relates exclusively to the violation of his or her specific duties as a director. This also applies to the liability of board members of a stock corporation under Section 93 of the German Stock Corporation Act (AktG). The same applies to the liability of managing directors under Section 43 (2) of the German Limited Liability Companies Act (GmbHG), which is modeled on Section 93 of the German Stock Corporation Act (AktG).
The distinction between the various grounds for liability can have significant practical implications. There are differences in the standard of care and the allocation of the burden of proof. While liability under general rules requires compliance with the "due care required in business," corporate liability under Section 43 (1) of the German Limited Liability Companies Act (GmbHG) requires the "due care of a prudent businessman." Furthermore, in liability under Section 280 (1) of the German Civil Code (BGB), the managing director bears only the burden of proof regarding fault, whereas in liability under Section 43 (2) of the German Limited Liability Companies Act (GmbHG), he or she must also exonerate himself or herself regarding breach of duty.
Interestingly, in this case, the Higher Regional Court of Zweibrücken also applied the principles of internal company compensation to the managing director's breach of a non-board-specific duty. The managing director was not required to pay the resulting damages, even though she had acted with slight negligence. Internal company compensation is a mitigation of liability under labor law, developed by case law for work-related activities of employees. In the case of only slight negligence, the employee is not liable. Whether these principles are also transferable to managing directors or board members is discussed in the literature. The prevailing view rejects this. However, the Higher Regional Court of Zweibrücken wishes to apply the labor law liability privilege to managing directors in individual cases. A transfer is all the more likely the more the managing director is bound by his or her actions, for example, as managing director of a group-dependent GmbH. Since no appeal has been filed, there will be no clarifying supreme court decision in this case.
This decision highlights the complexity of directors' liability and should be taken as an opportunity to take a closer look at D&O insurance for directors. Typically, D&O insurance coverage is designed to cover only those breaches of duty that arise from the directors' activities. This means that a director whose breach of duty is not classified as a directors' activity may not be covered by the insurance. The individual classification could therefore lead to problems with the insurer's liability.
office
Grugaplatz 2 (c/o Regus)
45131 Essen
Phone: +49 201 74960001
Email: office@turgerlegal.de
branches
Kurfürstendamm 195 (c/o Regus)
10707 Berlin
Phone: 030 46690580
Email: office@turgerlegal.de
Breite Straße 3 (c/o Signature by Regus)
40213 Düsseldorf
Email: office@turgerlegal.de
Mon. – Fri. 10:00 – 17:00
You need to load content from reCAPTCHA to submit the form. Please note that doing so will share data with third-party providers.
More InformationYou are currently viewing a placeholder content from Instagram. To access the actual content, click the button below. Please note that doing so will share data with third-party providers.
More InformationYou are currently viewing a placeholder content from Google Maps. To access the actual content, click the button below. Please note that doing so will share data with third-party providers.
More InformationYou are currently viewing a placeholder content from Google Maps. To access the actual content, click the button below. Please note that doing so will share data with third-party providers.
More InformationYou need to load content from hCaptcha to submit the form. Please note that doing so will share data with third-party providers.
More InformationYou need to load content from reCAPTCHA to submit the form. Please note that doing so will share data with third-party providers.
More InformationYou are currently viewing a placeholder content from Turnstile. To access the actual content, click the button below. Please note that doing so will share data with third-party providers.
More Information