Blog

 
     

Colorado Enacts Social Media Privacy Law

By Michael Klazema on 6/20/2013

Colorado has joined several other states in a growing trend that restricts employers from inquiring about social media account information. The Governor signed the new legislation on May 11, 2013, that restricts employer access to personal information through electronic communication devices. The new social media privacy law became effective upon passage.

The new law applies to public and private employers in the state and to “an agent, a representative, or a designee of the employer.” Exempt from the law are the Department of Corrections, County corrections departments, or any state or local law enforcement agency.

The Act restricts employers in three ways. First, employers are restricted from suggesting, requesting, or requiring an applicant or employee to disclose user name, password, or other means for accessing the person’s personal account or service. Second, employers may not cause an applicant to make such a disclosure. Third, employers must not compel an applicant or employee to add anyone, including the employer, to his or her list of contacts, or change privacy settings associated with a social media account.

Employees are protected under the Act from retaliation for refusing to disclose the protected information. Employers may not take any adverse employment action against an applicant or employee based on these restrictions. Adverse action is a refusal to hire an applicant, or the discharge, discipline, or other penalty or threat, made by an employer against an employee because he or she will not disclose the information.

Two exceptions to the restrictions are spelled out in the Act. Employers are permitted to conduct investigations into employee web-based accounts if it has information that the employee used a personal account for business purposes when the investigation is to ensure compliance with securities or financial law or regulatory requirements. An employer may also investigate if the employer has information about an unauthorized downloading of its proprietary or financial information to a personal web-based account.

Nothing in the law prohibits an employer from requiring an employee to disclose user name, password, or other means for accessing non-personal accounts or services that provide access to its internal computer or information systems.

Persons who believe they have been injured as a result of a violation of this law may file a complaint with the Department of Labor and Employment. The law provides that the Department may create rules regarding penalties for violations, including imposing fines of up to $1,000 for the first violation and up to $5,000 for each subsequent violation.

The Act is available at: http://www.leg.state.co.us/clics/clics2013a/csl.nsf/fsbillcont3/
B1355B3A769E5C4A87257A8E0073C3BA?Open&file=1046_enr.pdf


Tag Cloud
Categories
Recent Posts

Latest News

  • May 18 In search of more personnel and considering normalization, some major employers have elected to drop pre-employment drug screens for marijuana. As the opioid epidemic continues, there is still a role for workplace drug tests.
  • May 15

    A Congressional IT contractor who is facing bank fraud, a class-action lawsuit, and allegations of cyber breach never underwent a background check. Congressional guidelines recommend background screenings but have a loophole that makes it possible to skip them.


  • May 10 Are SSN background checks essential, or even necessary? We look at what Social Security Number data can and cannot do in the background check process.
  • May 10

    In the wake of an attack in which the perpetrator used a rental vehicle to strike pedestrians, and with a growing number of such attacks around the world in recent years, rental companies must consider how to address the issue. Effective security measures have proven difficult to implement.


  • May 08 Some statistics suggest employers aren’t running international background checks. In a job market where foreign candidates are increasingly common, this oversight can be dangerous.
  • May 03

    Despite player numbers in the millions, the primary sanctioning body for youth soccer in the United States established no standard policy requiring background checks. They face legal jeopardy due to the actions of abusive coaches. 


  • May 03 Are you applying for a job with Starbucks? Here’s what to expect from the background check process.
  • May 02 — Further restrictions have been placed on employers that inquire about prior criminal records. Timeframes have been adjusted and asking about expunged records is prohibited. 
  • May 01 Uber is expanding its background check policies. Going forward, the company will incorporate repeat background checks and ongoing criminal monitoring into its driver screening processes.
  • April 28 Airport background checks are governed by the TSA and FAA. They typically include employment history checks, criminal history searches, and a few other elements.