HomeRegulationsMobley v. Workday

Regulation · US Federal (N.D. Cal.); ADA, ADEA, Title VII claims

Mobley v. Workday: vendor liability for AI-driven hiring decisions

The class-action case shaping US vendor-liability case-law for AI hiring. Live as of 2026-05-21.

What this case is

Derek Mobley v. Workday, Inc. (N.D. Cal. Case No. 3:23-cv-00770) is a putative class action filed in February 2023. The plaintiff alleges that Workday's AI-driven recruiting tools have a disparate impact on Black, disabled, and older applicants in violation of Title VII, the Americans with Disabilities Act, and the Age Discrimination in Employment Act.

The case is significant because it sues the vendor directly, not just the employers using the vendor's tool. If the plaintiff's theory of vendor liability survives, it changes the risk model for every AI hiring vendor with US exposure.

Status as of 2026-05-21

The procedural history that matters:

  • July 2023: Workday moved to dismiss, arguing it is not an "employer" under Title VII / ADEA / ADA and therefore not liable.
  • July 2024: Court denied the motion to dismiss in part. The court held Workday plausibly acts as an "agent" of its employer customers under Title VII, reasoning that delegating screening to the vendor's algorithm puts the vendor in the role of the employer for that function.
  • May 2025: Court granted conditional collective certification under the ADEA, opening the class to candidates aged 40+ who applied through Workday tools.
  • July 2025: Coverage widened; Fortune and Information Week reported the audit-conclusion challenge in detail.
  • January 2026: Plaintiffs filed a second amended complaint arguing that data from Workday's Secretariat bias audit, when properly analyzed, shows statistically significant disparities against African American applicants and women. Workday's audit had concluded "no evidence of disparate impact."

The case remains active. No merits ruling has issued; the second amended complaint is in early motion practice as of this writing.

Who's affected

Anyone in the US AI hiring stack is affected by the precedential implications:

  • AI hiring vendors: If the "agent" theory holds, vendors face direct Title VII / ADEA / ADA exposure for the outputs of their models. Contractual indemnification with the deployer does not fix this.
  • Employer-deployers: The case does not insulate the employer; it expands the universe of defendants. Employer-deployers should expect to be sued alongside the vendor in any future similar action.
  • Bias-audit auditors: The Secretariat-audit dispute matters because if the court takes seriously the argument that an audit can be both formally completed and substantively wrong, the audit becomes a much weaker shield than vendors have been treating it as.

Key dates

DateEvent
21 February 2023Original complaint filed.
12 July 2024Motion-to-dismiss order: Workday potentially liable as employer-agent.
16 May 2025Conditional collective certification under ADEA.
January 2026Second amended complaint challenges the Secretariat audit's conclusion.

What deployers should do

  1. Do not treat vendor bias audits as case-closed. The Mobley complaint argues that the same data Workday's auditor analyzed in fact shows disparate impact when stratified differently. Deployers should ask their vendors for the underlying data, run their own stratification, and document the analysis.
  2. Maintain independent records. Even if your vendor publishes an audit, your own logs of who was screened, who was advanced, and on what criteria are the artifacts a court will ask for.
  3. Plan for joint defense, not pass-through liability. Contractual indemnity language that holds the vendor responsible for discrimination claims is unlikely to extinguish the employer's own exposure under Title VII. Build a defensible internal record.
  4. Watch the Secretariat audit-methodology debate carefully. The methodology choices (data window, profile selection, statistical tests) that are disputed in Mobley apply to every NYC LL 144 audit; the case will likely shift what counts as a "defensible" audit.

How vendors are addressing it

Vendor posture varies sharply:

  • Workday is litigating and continues to publish the Secretariat audit conclusion as authoritative. The Paradox and HiredScore acquisitions add complexity: Workday's compliance frame now covers three distinct audit perimeters.
  • HireVue maintains the most consistent annual audit cadence in the set (DCI Consulting since 2023, ORCAA in 2021) and has avoided Mobley-style allegations to date.
  • Eightfold, Beamery, Harver have published audits with stronger methodology disclosures than the one challenged in Mobley.
  • Smaller vendors — particularly those relying on gated audit reports — are most exposed to a "Mobley-style" methodology challenge if they ever face a similar suit.

The litigation is fast-moving. This page is dated; we refresh as material developments land.

See per-vendor profiles in the directory for cited bias-audit evidence and the audit-methodology details.