The Computer Fraud and Abuse Act: ‘Authorization’ in Flux and the Ninth Circuit Dilemma

The Computer Fraud and Abuse Act (‘‘CFAA’’) was passed by Congress in 1984 to address the unauthorized access and use of computers and computer networks. Although the CFAA is primarily a criminal statute, the 1994 amendment to the CFAA allowed individuals and companies to bring a private civil suit against a person who accessed a protected computer ‘‘without authorization’’ or while ‘‘exceed[ing] authorized access.’’ Increasingly, employers have used the CFAA to bring suit against former employees or agents (‘‘insiders’’) who have absconded with company data. Within this context, there is currently a widening split among circuit and district courts over whether insiders can be held liable under the CFAA for accessing data without or in excess of authorization. This diversity of viewpoints is currently playing out in the Ninth Circuit, where an en banc panel is considering whether to affirm a definition of authorization that will allow employers a remedy against insiders who exceed their authorized access, or whether to define to term narrowly.

Please see full article below for more information.

LOADING PDF: If there are any problems, click here to download the file.

Published In: Civil Procedure Updates, Civil Remedies Updates, Labor & Employment Updates, Science, Computers & Technology Updates

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Lewis Roca Rothgerber | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »