Come on! The sky isn’t falling. Demanding social media access from employees and potential hires and is most definitely the exception and not the rule. And I’ll set the record straight on this bad business practice after the jump…
For starters, this is old news and only involves a scant few employers.
This whole mishegas was rekindled last week when the AP published this story, entitled “Job seekers getting asked for Facebook passwords”. (I know this because about ten readers of this blog forwarded it to me). I say “rekindled” because the AP article discussed two notorious, but dated, instances in which employers — the City of Bozeman and the MD Department of Corrections — made the mistake of requesting social media logins and passwords as a condition of employment. Hey, whattaya know, I scooped the AP by writing about the same two employers over a year ago! More on that in a bit.
Unfortunately, not only does the AP article contain several dated horror stories that jumped the shark long before Kris Humphries popped the queston to Kim Kardashian (remember that?), it sensationalizes how businesses spy on employees and job candidates:
In their efforts to vet applicants, some companies and government agencies are going beyond merely glancing at a person’s social networking profiles and instead asking to log in as the user to have a look around….Since the rise of social networking, it has become common for managers to review publically [sic] available Facebook profiles, Twitter accounts and other sites to learn more about job candidates. But many users, especially on Facebook, have their profiles set to private, making them available only to selected people or certain networks.
Companies that don’t ask for passwords have taken other steps — such as asking applicants to friend human resource managers or to log in to a company computer during an interview…
Not sure the source for these “statistics”. What I can tell you is that when I presented “Social Media for HR: Practical Guidance from a Generation Y Attorney” a few weeks ago to a packed house of HR professionals at the SHRM 2012 Employment Law and Legislative Conference in Washington, DC, no one in the room — not a single person — admitted to requiring job applicants to turn over private social media information, including logins and passwords. Most rolled their eyes or laughed at this “practice”. (Maybe 10% acknowledged accessing publicly available social media content, which is legal, to conduct background checks on potential hires).
You know why employers don’t demand passwords? It may not be legal.
As I wrote here last year, the Stored Communications Act makes it illegal for a person or entity to intentionally access electronically-stored communications without authorization. In the hiring context, conditioning a job offer on a candidate having to hand over the keys to a social media account may be viewed as coercive; akin to access without authorization. Indeed, Facebook’s Chief Privacy Officer, Erin Egan, issued a statement last week in which Facebook threatened to take action against employers that demand that employees provide access to private portions of their Facebook accounts:
Facebook takes your privacy seriously. We’ll take action to protect the privacy and security of our users, whether by engaging policymakers or, where appropriate, by initiating legal action, including by shutting down applications that abuse their privileges.
Although the statement doesn’t specifically mention which law(s) Facebook would avail itself in coming after employers, in the past, Facebook has relied upon the Computer Fraud and Abuse Act (h/t Trading Secrets). And I imagine that the Stored Communications Act would another be weapon in the Facebook arsenal. Just ask the ACLU, who previously brandished the Stored Communications Act in a cease and desist letter to the Maryland Department of Corrections. It should come as no surprise then that the ACLU praised Facebook for speaking out against forcing job candidates to divulge private information.
As if the spectre of Facebook suing weren’t bad enough, employers who demand that job candidates and employees reveal online passwords, may have new federal legislation with which to deal. Last Wednesday,