Slashdot Mirror

← Back to Stories (view on slashdot.org)

Password Protection Act: Bans Bosses Asking For Facebook Passwords

Posted by samzenpus on from the get-your-hands-off-my-friends-list dept.

An anonymous reader writes "On the heels of a similar bill introduced last month. A group of Democrats today introduced legislation in both the House and Senate to prevent employers from forcing employers and job applicants into sharing information from their personal social networking accounts. In other words, Maryland may soon not be the only state that has banned employers demanding access to Facebook accounts. The Password Protection Act of 2012 (PPA) would also prevent employers from accessing information on any computer that isn't owned or controlled by an employee, including private e-mail accounts, photo sharing sites, and smartphones."

31 of 247 comments (clear)

  1. And now.. by Severus+Snape · · Score: 5, Insightful

    They'll demand you add them as a friend!

    1. Re:And now.. by gstrickler · · Score: 4, Informative

      That would be covered under

      Prohibits an employer from forcing prospective or current employees to provide access to their own private account as a condition of employment.

      --
      make imaginary.friends COUNT=100 VISIBLE=false
    2. Re:And now.. by cayenne8 · · Score: 5, Insightful
      While I am all for this type of legislature, I have to ask myself, on what authority do the FEDS have to make this law?

      I'm not sure how I see this falling into the interstate commerce clause? I mean, a person works in his state....money paid to him in a state in which he is responsible for state taxes, etc.

      I would think this would have to be done on a state basis, and not a federal one?

      Sorry, but these days...I'm questioning every law the feds are trying to pass, and trying to understand where the constitutional authority is for these mandates/laws.....

      --
      Light travels faster than sound. This is why some people appear bright until you hear them speak.........
    3. Re:And now.. by mysidia · · Score: 4, Insightful

      I'm not sure how I see this falling into the interstate commerce clause? I mean, a person works in his state....money paid to him in a state in which he is responsible for state taxes, etc.

      Internet social networking sites have a multi-state presence; the federal government has long claimed to have the jurisdiction over regulation of telecommunications services, see FCC. In Facebook's case, it's a terms of use violation to share your password.

      They are essentially passing legislation that forbids employers from interfering with citizens' private relationship with certain other companies.

      The legislation is broken though, because it's specific to social networking. This should apply to all sites.

      Including online banking sites, and sites where you pay your utility bills. This is a form of consumer protection and privacy protection for interstate commerce.

      Your private dealings are not your employer's business.

      Your employer has no business seeing who your friends are, who your banks are, what your account balances are, which cable package you subscribe, to, what book you ordered from Barnes and Noble or Amazon, what your viewing history is on Youtube and Netflix, etc.

      And if some of employers are trying to pry anyways and demand passwords to personal accounts their company has no right to, then it certainly is the feds' job to reign in the abuse.

  2. 10 Amendment by misfit815 · · Score: 4, Insightful

    How is this the domain of the United States Congress?

    --
    Jesus told him, "I am the way, the truth, and the life. No one can come to the Father except through me. - John 14:6 NLT
    1. Re:10 Amendment by Anonymous Coward · · Score: 3, Insightful

      It's an election year.

    2. Re:10 Amendment by Anonymous Coward · · Score: 4, Interesting

      Business practices that seem to want to coerce people to provide information they normally would not do for their job, or to actively violate laws (e.g., federal laws that prohibit, at least in letter, sharing of passwords for online resources) in order to interview for a job, things like that? You know, laws that the Congress passed in the first place?

      Shouldn't take too much lobbying by US Chamber of Commerce, et al, to make sure this bill doesn't even make it out of committee or otherwise dies a quiet procedural death. But, because it's sponsored by (D)'s, even if it did make it to the floors, it's going to be voted down just because.

    3. Re:10 Amendment by JoshuaZ · · Score: 4, Informative

      Interstate commerce, covered in Article I of the Constitution http://en.wikipedia.org/wiki/Interstate_Commerce_Clause. The websites in question are large sprawling entities like Facebook which have people in all states and have offices in multiple states. Once that's a common setup, regulation is almost certainly Constitutional. And even when websites are all in one state, packets and the like go very far afield. There might be an argument that they can't regulate an in-state employer wanting a password from a completely in-state website, but that case is both unlikely to come up, and even if it did, courts would likely consider that to be a a weak argument.

    4. Re:10 Amendment by Gimbal · · Score: 4, Informative

      There's a commentary on the Constitutional support of right to privacy at U Missouri KC (and that, I had not expected, but hey, score one for democratic discourse)

  3. If corporations are people by flaming+error · · Score: 4, Insightful

    If corporations are people, these laws probably exist already.

    Regardless of laws, the audacity of demanding personal passwords as a condition of employment just boggles my mind.

    We're employees hired to do a job and go home. We're not paid to room and board our employer in our underpants.

    1. Re:If corporations are people by SeaFox · · Score: 5, Insightful

      That's what happens when you have...

      1. (Relatively) high unemployment.

      2. A government that is pro-business and anti-employee rights for years and years.

      3. Companies more and more feeling what an employee does on their personal time is their business because "it might reflect badly on the company".

    2. Re:If corporations are people by shentino · · Score: 3, Insightful

      And then someone rats them out and they get fired for lying about it.

      Expecting employees to lie is not a viable workaround, and neither is any other ethically questionable action.

    3. Re:If corporations are people by Concerned+Onlooker · · Score: 4, Insightful

      What about when they ask for Slashdot account info? You may not think you're participating in social media, but you are.

      --
      http://www.rootstrikers.org/
    4. Re:If corporations are people by HornWumpus · · Score: 3, Funny

      /. is antisocial media you retarded festering douchbag full of puss.

      --
      John McAfee 'It was like that time I hired that Bangkok prostitute; to do my taxes, while I fucked my accountant'
    5. Re:If corporations are people by mysidia · · Score: 3, Informative

      (1) Manage your Facebook password with a password management application, so you can legitimately tell them you "don't know" any Facebook passwords, they were randomly generated and are stored securely in a password manager at home and tied to that web browser.

      (2) Enable Facebook 2-factor authentication with a second cell phone. Don't bring that phone to any job interview.

      Even if you have the correct FB password, you cannot login to FB on a new unknown device without receiving the SMS message, and entering the security code that Facebook sends you via SMS.

    6. Re:If corporations are people by Jiro · · Score: 3, Insightful

      Manage your Facebook password with a password management application, so you can legitimately tell them you "don't know" any Facebook passwords

      "Well, I guess you're not hired then".

      Geeks have this idea that if you just answer a question in a way that is literally accurate but not what the other guy wants, that's the way to win. The real world doesn't work that way except in a very small number of cases, of which this is not one. If the employer asks for your Facebook password, as far as he's concerned, either you provide it or you don't. "Honestly, I rigged up some system where I can log into my Facebook account but truthfully say I don't know the password" counts as not providing it. The fact that the statement "I don't know the password" is truthful makes no difference whatsoever.

  4. Re:Really? by mark-t · · Score: 4, Informative

    Yes, it actually happened

    No, it's not. See above

    Unfortunately not yet. But there could be soon.

    --
    File under 'M' for 'Manic ranting'
  5. Summary Confusion by Githaron · · Score: 3, Informative

    The Password Protection Act of 2012 (PPA) would also prevent employers from accessing information on any computer that isn't owned or controlled by an employee, including private e-mail accounts, photo sharing sites, and smartphones.

    I assume the summary meant to say that the act prevents employers from accessing information on any computer that is owned or controlled by an employee.

    1. Re:Summary Confusion by Dahamma · · Score: 3, Interesting

      Actually, from TFA it sounds like they meant to say it prevents employers from accessing personal information on any computer that isn't owned or controlled by an employer. I'm pretty sure the intent is that an employer should still be able to access and demand passwords to servers it owns, even if the employee runs them, etc, and anything else is none of their business.

  6. Re:Is it a typo, or just leaving huge loophole ope by Script_God · · Score: 3, Interesting

    As an applicant, you are not yet an employee. If they want to demand that I give them that information after I am an employee, and I refuse, I would not be surprised if there can be a wrongful termination lawsuit.

  7. Re:Is it a typo, or just leaving huge loophole ope by Dahamma · · Score: 3, Interesting

    Yeah, it didn't make sense. After reading the article, it was clearly a typo, and should have said "from accessing information on any computer that isn't owned or controlled by an employer". Ie. employers can still demand you hand over passwords on *their* systems, which seems reasonable enough.

  8. Re:Doesn't matter. by bky1701 · · Score: 4, Insightful

    That's why it is illegal to ask a large number of questions that are not directly relevant to the job; it is an unjustifiable source of potential bias. This law really isn't needed, what we need is a more general one outlining ALL cases to this effect, rather than several laws trying to specific specific things you cannot ask.

    --
    Great Intellect...
  9. Re:why another bill? by Dahamma · · Score: 3, Informative

    That happens a lot - similar bills are introduced, debated in committee, etc. Some are better than others, and if the process isn't completely broken (not even going there...) the various ideas get consolidated into something that meets everyone's needs and is then introduced to the floor.

    In this case, it seems like a law protecting any of your password-protected/private information (email, photo sharing, online backups, whatever) would be much more powerful than the previous one that focused mostly on your "social networking" accounts...

  10. Re:The 4th isn't enough? by KiahZero · · Score: 4, Informative

    No, the Fourth Amendment only covers state action; it doesn't address searches by third parties (unless they are being used as agents of the state).

    --
    I'm a lawyer, but not yours. I wouldn't represent someone who thinks taking legal advice from Slashdot is a good idea.
  11. Re:Game it by Grishnakh · · Score: 3, Interesting

    the constant stream of news about police brutality, unjust situations, erosion of rights, destruction of the economy, etc., etc. has left me hopeless, with only the prospect of gaming the system instead of fighting it.

    Not me. These things have made me start looking for jobs outside the USA.

  12. The 4th isn't enough! by DragonWriter · · Score: 4, Informative

    I would have thought the 4th amendment would have covered this

    You would have thought wrong, since the 4th Amendment imposes no restrictions on private conduct.

  13. Re:Here's an idea by bky1701 · · Score: 5, Insightful

    "Just don't use social media and you won't have to hide from your employer"

    And when you tell them this, they believe you are lying and don't hire you. Or hell, consider that a personality flaw and don't hire you for being anti-social.

    "Or.. Gasp... Be careful and keep it safe for work at all times. "

    Because living in fear is exactly what we should all aspire to, right?

    "One really should not put anything online that you would not want EVERYBODY to be able to read."

    Bit of a difference between, say, posting on a blog, and being pressed into giving someone else a password to your private accounts. Would you be against letting them scan your hard drive for anything they might find objectionable? After all, what's the difference? Your computer is connected to the internet.

    "Everything you put online, pictures, comments, blogs, chats etc. is going to be public information forever, or at least it CAN end up out living you. Remember that every time you are tempted to post."

    Does that apply to spineless pro-corporate shilling on slashdot?


    I kind of see this all as a non-issue. In some ways the loss of privacy is a bad thing... in other ways it is good. We didn't see much motion in the gay rights movement until people started to come out. I think the same is going to start to happen in other parts of society - the petty prejudices aren't going to hold up so well in an age where everyone is more open. Not to say I am for invasions of privacy, but it is going to happen, and it isn't all bad. I also can see being closed off as becoming something itself considered undesirable and I think rightly so.

    --
    Great Intellect...
  14. Re:Really? by PRMan · · Score: 3, Insightful

    Most people's Facebook status includes their Marital Status, Religion, etc., several things that are not allowed to be asked in of a prospective employee. So I would think somebody could have gotten them on that.

    --
    Peter predicted that you would "deliberately forget" creation 2000 years ago...
  15. Re:Nice Sentiment by Anonymous Coward · · Score: 3, Insightful

    This is the argument of the coward. Just stay quiet while your rights are violated because its too dangerous to stand up for yourself.

    Tell that to the countless workers that fought for their rights, some of whom paid for it with their lives. Are you saying they should not have bothered?

  16. Wait a sec by SilverJets · · Score: 3, Insightful

    The Password Protection Act of 2012 (PPA) would also prevent employers from accessing information on any computer that isn't owned or controlled by an employee, including private e-mail accounts, photo sharing sites, and smartphones."

    Shouldn't that be isn't owned or controlled by the employer or company instead? An employee's personal computer (and I'm using personal here to mean one that belongs to the employee) shouldn't be accessed by the employer either.

  17. Re:Doesn't matter. by mysidia · · Score: 4, Informative

    That's why it is illegal to ask a large number of questions that are not directly relevant to the job

    It's not illegal. It's just inadvisable. If one of your questions exposes membership in a protected class, there is a risk that there may be liability / possibility of a discrimination suit.

    However ill advised, if you want to refuse employment to a janitor who never played Chess or Checkers, can't remember the rules to the game Go, or can't beat the interviewer in a poker game, the employer can do that, as long as they are consistent and require the same of every candidate.

    It just happens that employers are in the business to select employees, and any irrelevent question is a waste of time.