It’s Maryland. (Now if only they would do something about this).
Details after the jump…
* * *
Earlier last month, I mentioned here that Maryland was one of three states — CA and IL were the others — considering legislation to ban employers from request social media passwords from employees and job applicants. Andrew Feinberg from TheHill.com has the full scoop here on MD becoming the first to make it law:
The state’s General Assembly passed legislation that would prohibit employers from requiring or seeking user names, passwords or any other means of accessing personal Internet sites such as Facebook as a condition of employment.
The bill has its genesis in a controversy that began when Maryland Corrections Officer Robert Collins returned to work following a leave of absence taken after the death of his mother.
Here is a copy of the bill. I wrote about the MD Department of Corrections issues here last year and added my two cents to say that asking for FB passwords is a bad business practice.
Maryland ACLU legislative director Melissa Goemann said that Maryland “has trail-blazed a new frontier in protecting freedom of expression in the digital age, and has created a model for other states to follow.” However, according to this report from C. Benjamin Ford, the Maryland Chamber of Commerce opposed the prohibition because the bills did not acknowledge there could be legitimate issues for some employers to want to review applicants’ or workers’ social media messages.
What concerns me is that there are no carve-outs for public agencies that protect and serve the public. I can understand why a police department may need to fully vet its candidates by making sure that applicants and officers don’t have hate speech towards a particular protected class, for example, on their Facebook page. As I imagine that this information could be used to overturn arrests and indictments.
Additionally, it’s worth noting that the MD law makes it unlawful for an employee to download, without authorization, the employer’s proprietary information or financial data to a personal email account or website. Employer who have information suggesting that this has occurred may get employee social media passwords.