Facebook-Hacking Employer Still Gets Injunction Against Ex-Employees 2019-02-26T17:05:19-07:00

Posted on February 26, 2019

Scherer Design Group (“SDG”) sued several of its former employees for starting a competing business (while still employed), stealing trade secrets, and stealing clients. The trial court entered an injunction against the ex-employees based on evidence that came, in part, from one of their Facebook accounts, which may or may not have been left open on an SDG laptop after their departure. It turns out that some of the exes used their Facebook accounts to communicate about their new company. When their Facebook communications showed up as evidence in the injunction hearing, the exes cried foul.

The exes argued that their former employer was not entitled to the equitable relief of an injunction because it had acted inequitably, itself, by wrongfully hacking their Facebook accounts. The trial court rejected this argument, finding that the alleged Facebook hack had no bearing on the employer’s right to obtain an injunction because SDG’s alleged hacking was not directly “related to the litigation.” The hacking occurred, if at all, after the conduct that gave rise to the lawsuit.

On appeal, a Third Circuit panel split 2-1 in favor of the employer, applying New Jersey law. The majority agreed that the alleged hacking was not directly related to the subject matter of the lawsuit because: (1) SDG did not hack the Facebook account as a means to acquire the legal rights it asserted against the exes; (2) SDG would have been able to prove the exes’ disloyalty independent of the Facebook evidence; and, (3) the exes’ privacy rights involved a separate body of law not directly tied to employee disloyalty/unfair competition law, so there was no direct nexus between the litigation and the alleged hacking. This appears to be bad facts making peculiar law—the trial court and the Court of Appeals were extremely reluctant to let the exes off the hook for their extraordinary misconduct simply because SDG may have committed a privacy gaffe.

All we can say is: Kids, don’t try this at home! Assuming SDG did hack one or more Facebook accounts, at the very least it potentially jeopardized its ability to obtain an injunction against the exes. Far worse, SDG might have exposed itself to a variety of federal or state law violations for the alleged hack. Before you go jumping into an employee’s private social media account: (1) talk to your lawyer…a lot; (2) make sure your policies clearly provide that you have the right to access any social media account that is accessed from an employer system or device (except where prohibited by state law); and (3) be sure to record your method of accessing the account so you can prove later on that you did not hack into anything, but simply accessed an open account (as SDG claimed in this case).

Scherer Design Group, LLC v. Ahead Engineering LLC et al., No. 18-2835 (3d Cir. February 25, 2019)

Facebooking Misappropriated Employer Form Is Not Protected Activity 2018-07-17T14:41:32-06:00

Posted on July 17, 2018

By Chance Hill

On June 11, 2018, the National Labor Relations Board (Board) Division of Advice applied the Board’s new Boeing standard for assessing employer policies. The Division advised that an employer did not violate the NLRA when it discharged a pro-union employee who Facebooked a form that was “improperly taken” from a team leader’s desk. Kumho Tires, 10-CA-208153 (July 13, 2018)

The employer was in the middle of a union-organizing drive and had been fighting rumors that it paid managers bonuses to fight the union. One employee took a bonus-request form from a team leader’s desk. The form seemed to be asking for a bonus for the team leader’s anti-union efforts. The employee gave a copy of the form to a second union supporter. The second union supporter posted the form to a private, union supporting Facebook group. The employer discharged the second union supporter for violating the employer’s social media policy.

Under the recent Boeing standard, if the rule is not even reasonably interpreted as restricting NLRA rights, the rule is lawful. Here, the work rule ordered “Maintain the confidentiality of the Company’s trade secrets and private or confidential information,” and it called out “internal reports, policies, procedures, or other internal business-related confidential communications” as well as trade secrets. The Division advised that the work rule was lawful because it did not explicitly refer to employees, their terms and conditions of employment, or any other NLRA-covered communications. The Division also advised that, although the Facebooker was engaged in protected concerted activity, he forfeited that protection. Posting the documents was “such disloyalty” that it fell outside the NLRA’s protection. The union supporter knew that the form had been wrongly procured.

Note: Reason is enjoying a revival at the Board. But note also: If the employees had only repeated the information readily viewable on the Team Leader’s compensation form, and had not copied it, all their discussion about the form – including that the employer was paying bonuses and, besides, that the employer was rolling in cash and could afford to increase wages – would have been protected under the NLRA. Try to put confidential information away.

This blog post has been picked up by the Employment Law Daily Newsletter.

Modern Recruiting Hits a Snag 2017-12-22T09:52:20-07:00

Posted on December 22, 2017

By Bill Wright

The former general counsel of the EEOC under President Obama leads a team that is giving many, many employers an early holiday nightmare. A union and a class of plaintiffs are seeking damages from a class of employers; if your company uses Facebook for recruiting, your company might be a defendant in this case.

The allegations include the claim that, when setting up a job ad on Facebook, employers designate the group they want to reach, by location, age, and gender. The identification might be by age range, or by demographic euphemisms like “Millennial” or “Young and hip.” Those of us who remember recruiting before the internet will be aware of the risks involved in targeted advertising. This is the same thing, but with thousands of employers at risk in a single lawsuit.

The case is Communications Workers of America et a. v. T-Mobile US, Inc., et al., Case No. 5:17-cv-07232 (N.D. Cal.). Watch this space for updates.

Happy holidays!

♫ Let It Go, Let it Go ♫ 2017-08-31T13:39:34-06:00

Posted on August 31, 2017

By Beth Ann Lennon

When most people think of employment law problems arising from the use of social media, they envision irresponsible employees taking to the internet to rant about their employer. However, a recent case out of Oregon shows that employers can cause just as much trouble as their employees when they decide to overshare online. A company that was sued by a former employee and lost is facing a new retaliation lawsuit nearly thirteen years after the employment relationship ended because its CEO decided to take up blogging. This blog, which was widely publicized on the CEO’s LinkedIn account, identified the former employee by name and lambasted what the CEO called “fake whistleblowing.” Now, a jury gets to decide whether the blog amounts to “dissemination of a negative employment reference” which would “deter a reasonable employee from engaging in protected activity.” And because this is the internet, it doesn’t matter that the CEO ultimately redacted the former employee’s name from his posts, as there likely will always be “an ‘internet presence’ associated with the material” that was published on the blog. In other words, when we’re talking about the internet, there are no take-backs.

Social Media Showdown II 2017-04-18T09:24:05-06:00

Posted on April 18, 2017

By Bill Wright

TheBlaze, Inc. and Glenn Beck (collectively “TBI”) have squared off against Tomi Lahren over a Facebook page. As reported earlier, Lahren sued TBI, claiming among other things, that they were blocking her access to social media. TBI has responded with a counterclaim against Lahren.

TBI asserts that they are in full compliance with Lahren’s employment agreement: they continue to pay her until her contract expires in September; they just are not broadcasting her opinions. Lahren, they say, is in breach of the same agreement because she has made unauthorized, public disclosures about TBI and because she has made (and is scheduled to make) personal appearances without TBI’s permission (as required by the contract).

As for the Facebook page, TBI declares that it created, owns and administers the Facebook page; that Lahren, and other TBI employees, have editorial rights for the page; and that TBI merely won’t let her post statements on the page that violate her contract. The unspoken issue, of course, is what happens to the 4 million people who “like” her posts on the page. Should TBI have to transfer rights to the page so followers don’t have to go look for Lahren’s personal social media sites?

What do you think? It’s her name and image on the page, but TBI contracted for the rights.

Social Media Showdown 2017-04-11T09:49:23-06:00

Posted on April 11, 2017

By Bill Wright

Commentator and writer Tomi Lahren has filed suit in Dallas County, Texas, against Glenn Beck and TheBlaze, Inc. (“TBI”). Judging from the complaint, the issues include the defendants’ continuing exercise of control over a Facebook account.

Lahren alleges that, after expressing her personal opinions on The View, the defendants stopped producing her shows and banned her from posting to the Facebook account or other social media. The contract attached to the complaint includes a provision that TBI had no obligation to use her material and only had to continue her Salary/Benefits. The complaint alleges that the defendants continued to pay her. Nevertheless, among other things, Lahren seeks a TRO prohibiting the defendants from interfering with her postings on any social media, including Facebook, Twitter, and Instagram.

Does the contractual provision that TBI owns all material Lahren produces as an employee, perhaps together with the defendants’ actual administrative control over the social media accounts, give TBI the power to block Lahren’s use of existing social media accounts and her access to the millions of people who clicked to “follow” Lahren? The answer to the complaint is yet to be filed, but we’ll keep an eye out for it.

Not Just For Facebook 2015-10-06T17:15:46-06:00

Posted on October 6, 2015

By Emily Keimig

The issue of cross border data transfer—including employee data— that is.

Four years ago, Austrian law student Max Schrems attended a semester abroad study at Santa Clara University in Silicon Valley, where he heard one of Facebook’s privacy lawyers speak. In the wake of that class, Schrems launched an attack on Facebook’s data protection practices, asserting that they failed to comply with the EU’s more stringent privacy laws because among other things, they exposed those protected by such laws to the perils of Snowden-esque surveillance. Today Schrems claimed victory.

For years, U.S. companies with employees and business dealings in Europe relied upon the “Safe Harbor” agreement. Safe Harbor is an agreement between the EU and the US intended to facilitate transfer of private data (names, other identifying information, birthdate, health information, employment information and the like) between the two regions. Safe Harbor provided a means by which those companies doing business in the two regions could transfer data without risk of running afoul of the different legal requirements and frameworks of the US and the EU.

Today, the European Court of Justice (“ECJ”) ruled that Safe Harbor is invalid. While the case originally challenged practices by Facebook, the implications of the ECJ’s ruling flow not only to tech giants like Facebook and Google, but to thousands of US companies in all business sectors. Any US company that transfers personal data, including employment data, from or to a country in the EU should examine its practices and compliance strategies in light of the demise of Safe Harbor.

Click here to the Court of Justice of the European Union Press Release.

Facebooker–Good Citizen or Fired? 2015-01-26T15:12:15-07:00

Posted on January 26, 2015

By Doug Towns and Lori Wright Keffer

Can an employee’s Facebook post be grounds for termination? The Fifth Circuit says, “Yes.” Graziosi v. City of Greenville Mississippi, No. 13-60900 (5th Cir. January 9, 2015). A police officer posted on her Facebook page and on the Mayor’s Facebook page criticizing the Police Chief for not sending a police representative to the funeral of an officer killed in the line of duty. After investigation, the City discharged the officer for, among other reasons, insubordination. The officer sued alleging retaliation for exercising her First Amendment rights.

The Fifth Circuit concluded the officer’s Facebook post was not a citizen commenting on a matter of public concern, but rather a personal “rant;” and, even if the officer had posted as a citizen on a matter of public concern, the City’s employer-interests in discipline and working relationships outweighed the officer’s interest. The City did not have to prove actual disruption to its operations. Instead, the City was entitled to take action to “prevent future disruption.”

While this case involves a public employer, it is relevant to private employers. The case might show how far a court will go to protect an employee’s privacy interests when weighed against an employer’s business interest.

See also our earlier post on a similar issue in Lane v. Franks et al., No. 13-483 (U.S. June 19, 2014).

Another NLRB Facebook Fiasco 2013-04-26T13:51:03-06:00

Posted on April 26, 2013

By Mike Grubbs

The NLRB continues its preoccupation with employee use of social media. Design Technology Group, LLC d/b/a Bettie Page Clothing and Vanessa Morris, 359 NLRB No. 96 (April 19, 2013)(“Bettie Page”). In Bettie Page, three employees worked at a retail clothing store in San Francisco. The store closed later than other stores in the area, and employees allegedly felt unsafe closing down when the area was already deserted. The employees took to Facebook. One of the comments stated “tomorrow I’m bringing a California Worker’s Rights book to work … BOY will you be surprised by all the crap that’s going on that’s in violation 8) see you tomorrow.” Another employee, who was friends with the employees on Facebook, forwarded screen shots of the posts to the store’s owner, who responded by terminating the employees.

The NLRB held that the employees’ posts on Facebook were protected and concerted efforts to change the store’s closing time. The NLRB rejected the employer’s argument that it terminated the employees for other unrelated misconduct, including tardiness. Finally, the NLRB ordered the employees reinstated with backpay.

The NLRB continues to “de-friend” employers with its far-flung social media decisions.

LinkedIn Trial Produces No Damages 2013-03-18T17:29:34-06:00

Posted on March 18, 2013

By Bill Wright

After almost two years, the trial over a LinkedIn account is over. Eagle v. Morgan, No. 11-4303 (E.D. Pa. March 12, 2013). Dr. Eagle founded Edcomm, a banking education company. Edcomm encouraged its employees to create LinkedIn accounts for company marketing purposes. Dr. Eagle created an individual LinkedIn account and used it for business purposes. Some time after another entity purchased Edcomm, the company discharged Dr. Eagle, changed her LinkedIn password, and altered the account to show the picture and personal information of the new CEO. For a couple of weeks thereafter, until LinkedIn intervened and recovered the account for Dr. Eagle, if you had searched on LinkedIn for Dr. Eagle, you would have found the picture of the new CEO. Moreover, the company failed to delete some of Dr. Eagle’s honors and awards, so you would have seen the new CEO’s name and picture and Dr. Eagle’s honors and awards.

Both sides sued on various legal theories. Dr. Eagle claimed the company had invaded her privacy and used her name and publicity. The company claimed Dr. Eagle misappropriated company property – the LinkedIn account. After a trial, the court decided that, at least in this case, where the company had no formal policy about social media and did not pay for the LinkedIn account and where the account was Dr. Eagle’s individual account, Dr. Eagle did nothing wrong. The company did invade Dr. Eagle’s privacy by making unauthorized use of her name, but Dr. Eagle was unable to demonstrate to the court’s satisfaction that she would have made any money from her LinkedIn account during the few relevant weeks. Dr. Eagle proved some of her claims, but received no damages.

In the end, neither side won anything and the decision itself has few lessons for the rest of us. We can tell this much – social media may be (or at least was yesterday) the new frontier of marketing, but we are linked and friended to the same old legal principles.

Posted on February 26, 2019

Posted on July 17, 2018

Posted on December 22, 2017

Posted on August 31, 2017

Posted on April 18, 2017

Posted on April 11, 2017

Posted on October 6, 2015

Posted on January 26, 2015

Posted on April 26, 2013

Posted on March 18, 2013

Email Disclaimer

Email Disclaimer