With a detailed workplace policy, checking personal email usage is fair game

In an ideal world, your employees would use the Internet, e-mail, company-supplied cell phones and other electronic equipment for legitimate business only. No online shopping while on the job; no browsing nonwork-related websites for hours at a time; no e-mailing coworkers the latest joke or company gossip; and no texting friends and family on a company cell phone or pager. But we know better. For all the conveniences electronic equipment provides in the modern workplace, it also opens the door to abuse, which is why most employers monitor electronic equipment for inappropriate or excessive personal use.

But how deep can you dig? In most situations, that depends on your electronic communications policy – and the specifics of said policy. As a recent court decision revealed, precise wording matters. In Holmes v. Petrovich Development Co., LLC, an employee sued her employee for discrimination and retaliation. While developing its defense, the employer identified emails the employee sent to her attorney from her work computer using her personal, password-protected email account. Although the employee argued that the emails were off-limits due to attorney-client privilege, details in the employee handbook proved otherwise.

There, in black and white, were the following guidelines: (1) company computers are to be used only for company business; (2) employees are prohibited from accessing personal email on company computers; (3) the company will monitor its computers for compliance with the policy and thus might "inspect all files and messages . . . at any time"; and (4) employees using company computers to create or maintain personal information or messages "have no right of privacy with respect to that information or message."

Due to the explicit and prohibitive workplace policy (which the employee received and reviewed), the court ruled that the emails were not privileged and that the employer was entitled to use them in the case.

Lesson learned: Your employee handbook should include a well-drafted electronic communications policy that informs employees that there will be no expectation of privacy for personal business conducted on company equipment – and that your company may review e-mails, voicemails, web search history and other activity for any legitimate business purpose. The policy should also advise employees that use or misuse of company equipment violates company policy and is subject to disciplinary action. That way, your company is shielded from liability for reasonably reviewing employee communications.

With a detailed workplace policy, checking personal email usage is fair game

Supreme Court: Search of work-issued pager acceptable

In a mid-December 2009 blog post, I talked about a case involving an employee in an Ontario, CA, police department who sent sexually explicit text messages on a work pager. After first warning the employee about the number of texts being sent each month, the employer dug a little deeper and reviewed the actual content of the texts. This set off a heated privacy debate that elevated to the Supreme Court.

Our nation’s highest court recently heard arguments and delivered a unanimous ruling: The police department did not violate the constitutional privacy rights of the employee when it audited his text messages on a city-issued pager.

While Justice Anthony M. Kennedy shared that the court was uneasy fashioning comprehensive legal rules, based on the pace of technological and cultural change, he offered practical insight:

“Cellphone and text message communications are so pervasive that some persons may consider them to be essential means or necessary instruments for self-expression, even self-identification. On the other hand, the ubiquity of those devices has made them generally affordable, so one could counter that employees who need cellphones or similar devices for personal matters can purchase and pay for their own.” New York Times

Although the Supreme Court’s decision did not address the privacy rights of people employed by private companies, I think it’s safe to say employers have firm legal footing for issuing a policy prohibiting personal use of company equipment – and for prying if they have a legitimate, work-related purpose for doing so.

Supreme Court: Search of work-issued pager acceptable

Inappropriate texting on company equipment a privacy issue - or a policy issue?

Earlier this week, the U.S. Supreme Court announced it would hear arguments in a case involving sexually explicit text messages sent by an employee using employer-provided equipment. After an employee of the Ontario, CA, SWAT unit was warned repeatedly for exceeding the number of texts sent per month, his employers reviewed the content of the texts, setting off a whole privacy debate. The court is to determine whether the employer violated privacy rights by reviewing the messages.

My knee-jerk reaction? Privacy shmivacy. When it comes to privacy vs. policy issues where employees don’t follow the rules, it’s hard to comprehend a reasonable defense.

“But judge, I didn’t understand the privacy policy.”

That’s the only possible explanation, in my opinion. As dim-witted as that may sound, it puts the onus completely on the corporation to defend itself. As HR specialists, it becomes your burden to first, create a comprehensive electronic usage policy that covers all the “what ifs” and then, to ensure every employee has reviewed and understood the policy. It only takes a few employees saying the rules and regulations were never explained to them, or that they didn’t understand what was explained, to create a leak in your airtight policy.

As unbelievable as this kind of court case may sound (the employee blatantly used a company phone to send racy messages!), it further demonstrates the importance of creating a thorough privacy policy review process that engages every employee. In the case of the Ontario SWAT unit, their policy allowed for a certain number of texts per month per employee. If employees exceeded the limit, it was their responsibility to pay for the overage amount. That’s a good policy and one that every officer understood. The issue arose when one officer repeatedly violated the limit policy, prompting his manager to audit the messages for personal use.

What was the purpose of the excessive texts and were they a detriment to the officer’s productivity on company time? Which begs another question: How detailed should your privacy policies be? Enough to cover all the bases. The Ontario SWAT unit was very detailed in their policy in some areas, but lacking in others. If the policy had clearly stated that excessive abuse of the monthly limits would lead to a review of the message content, employees would have been aware that their activities could lead to further scrutiny.

While this case seems cut and dried, it isn’t because it forces HR managers from coast to coast to review, revise and reinforce their privacy policy standards. At the very least, you may want to look at your privacy policies when it comes to corporate-supplied equipment to ensure you have an iron-clad and understandable position.

Inappropriate texting on company equipment a privacy issue - or a policy issue?