Is email monitoring legal?
According to a recent survey by M2 Communications Ltd, more than 8 out of 10 employers monitor their employees' emails. However, Law firm Allen & Overy found that only two-thirds of the employers who monitor emails actually have a data privacy policy in place. By monitoring emails, employers are arguably infringing on an individual’s privacy. However, as can be concluded from the court cases discussed below, a sound email policy, uniform measures and reasonable and prompt action should protect companies from legal repercussions.
It is important to first make a distinction between email auditing (sometimes called email monitoring), where email is checked after the actual transmission, and email interception (sometimes called email filtering), where email is intercepted and checked during transmission.
Email auditing
Several court cases have upheld that checking email after transmission is legal, since it is viewed as no different than searching through a file in an employee’s drawer. For instance in a criminal case against a CIA employee charged with receiving child pornography (United States v. Mark L. Simmons), the court ruled that the viewing of personal email did not violate federal wiretapping laws, since the email was not viewed while it was being transferred but was obtained from storage.
Email interception
Cases in the United States have proven that most forms of email interception are permitted if this is done in a reasonable manner and is backed up by an email policy, as proven by the Nissan and Pillsbury case: In 1991, Nissan Motor Corporation fired two employees after they had been caught sending sexually explicit emails. The employees took Nissan to court (Bourke v. Nissan) claiming unfair dismissal and violation of privacy. However, since the company had an email policy in place and had explicitly stated that employees’ emails would be monitored, the court ruled in favor of Nissan. In another case (Smyth v. Pillsbury Company) an employee was fired for communicating unprofessional comments over the company's email system. When the employee claimed that the company had violated privacy laws, the court concluded that no reasonable person would consider the interception to be a highly offensive invasion of privacy, and that the company's interest in preventing inappropriate or unprofessional comments or illegal activity outweighed any privacy interest.
However, another case points out that whilst email monitoring itself may be allowed, the resulting actions taken must be reasonable. The City of Scottsdale faced paying out damages of $300,000 after it dismissed an officer for sending out a sexually offensive email to a colleague. The officer had just received a promotion and had sent an email to a female coworker asking if she would sleep with him now that he was promoted. Even though the recipient was a close friend of the officer and found the message amusing instead of offensive, the police department removed the officer from the promotions list and after several disputes ended up firing him. The officer sued the police department and was awarded $300,000 in damages.
Finally, try to apply monitoring as uniformly as possible. It is best not to single out an individual unless there is clear reason to do so. If you single out a person, the company could be found to be discriminating against the individual. Therefore, use monitoring software for all emails on your system.
![[machinegun]](/data/assets/smilies/machinegun.gif "[machinegun] [machinegun]")
![[thumbsup2]](/data/assets/smilies/thumbsup2.gif "[thumbsup2] [thumbsup2]")
Well, thanks for the responces. I do not live in the USA. I believe (I'm not absolutely sure) that it is only allowed in special circumstances in the Netherlands. I have encountered an employer that tapped the phone as well as the e-mail...