Wednesday, June 13, 2012

Wiretapping, Invasion of Privacy and Facebook


This post deals with a civil suit in which the plaintiff filed a nine-count Amended Complaint that, among other things, alleged that the defendants had, among other things, violated the New Jersey Wiretapping and Electronic Control Act and committed “common law invasion of privacy.”  Ehling v. Monmouth-Ocean Hospital Service Corp., 2012 WL 1949668 (U.S. DistrictCourt for the District of New Jersey 2012) (“Ehling v. Monmouth-Ocean”).

The plaintiff, Deborah Ehling, is “a registered nurse and paramedic” who was hired by the Monmouth-Ocean Hospital Service Corp. (“MONOC”) some time before 2008.  Ehling v. Monmouth-Ocean, supra.  In July of 2008, she became “Acting President of the local union for Professional Emergency Medical Services Association - New Jersey (the `Union’).” Ehling v. Monmouth-Ocean, supra.  As President, she was “`very proactive in attempting to protect the rights and safety of her union members’” and filed “numerous complaints . . . against MONOC.”  Ehling v. Monmouth-Ocean, supra.  In her complaint, Ehling alleges that "as soon as she became President of the Union,” MONOC and the other defendants “began engaging in a pattern of retaliatory conduct against her” that culminated “in her termination in July 2011.”  Ehling v. Monmouth-Ocean, supra.

In this opinion, the district court judge is ruling on the defendants’ motion to dismiss Ehling’s wiretapping and invasion of privacy claims.  Ehling v. Monmouth-Ocean, supra. They filed a Rule 12(b)(6) motion, which, as Wikipedia notes, is how defendants can have

lawsuits with insufficient legal theories underlying their cause of action . . . dismissed from court. For example, assault requires intent, so if the plaintiff has failed to plead intent, the defense can seek dismissal by filing a 12(b)(6) motion.

The claims at issue here arose out of the account Ehling maintained, “[d]uring the 2008-2009 timeframe,” on Facebook. Ehling v. Monmouth-Ocean, supra.  In his opinion, the judge explains that if someone was not

invited to be her Facebook `friend,’ he or she could not access and view postings on [Ehling’s] Facebook `wall.’ Many of [her] coworkers were invited to be [her] Facebook friends. [She] did not invite any members of MONOC management as friends.

Ehling v. Monmouth-Ocean, supra. 

According to Ehling’s Amended Complaint, MONOC “`subsequently’”

`gained access to Ehling's Facebook account by having a supervisor(s) summon a MONOC employee, who was also one of [her] Facebook friends, into an office’ and `coerc[ing], strong-arrn[ing], and/or threaten[ing] the employee into accessing his Facebook account on the work computer in the supervisor's presence.’ . . .  [Ehling] claims the supervisor viewed and copied [her] Facebook postings. 

Ehling v. Monmouth-Ocean, supra. 

One of the postings “was a comment [Ehling] made regarding a shooting that took place at the Holocaust Museum in Washington, DC,” in which she said:

`An 88 yr old sociopath white supremacist opened fire in the Wash D.C. Holocaust Museum this morning and killed an innocent guard (leaving children). Other guards opened fire. The 88 yr old was shot. He survived. I blame the DC paramedics. I want to say 2 things to the DC medics. 1. WHAT WERE YOU THINKING? and 2. This was your opportunity to really make a difference! WTF!!!! And to the other guards . . . go to target practice.’

Ehling v. Monmouth-Ocean, supra. 

On June 17, 2009, MONOC sent “letters regarding” this post to the New Jersey Board of Nursing and New Jersey Department of Health, Office of Emergency Medical Services. Ehling v. Monmouth-Ocean, supra.  The letters said MONOC was “concerned” that her  Facebook posting “showed a disregard for patient safety.” Ehling v. Monmouth-Ocean, supra.  Ehling claims (apparently in other parts of her Amended Complaint), that they were sent “in a `malicious’ attempt to attack” and “damage her reputation and employment opportunities, and potentially risk losing her nursing license and paramedic certification status.”  Ehling v. Monmouth-Ocean, supra. 

We’re not concerned with those issues, however.  As noted above, we’re concerned with the defendants’ motion to dismiss Ehling’s New Jersey wiretap law and common law invasion of privacy claims, which go to the defendants’ accessing the posting described above.  Ehling v. Monmouth-Ocean, supra.  In ruling on the motion, the judge noted that to survive a motion to dismiss, a plaintiff has to allege facts that are sufficient to raise her “`right to relief above a speculative level, such that it is “plausible on its face.”’” Ehling v. Monmouth-Ocean, supra (quoting Bell Atlantic Corp. v. Twombly, 550 U.S. 544 (2007)).

The judge began his analysis with Ehling’s claim under New Jersey wiretap act:  New Jersey Statutes§ 156A-27, which states that a person is guilty of a crime if

he (1) knowingly accesses without authorization a facility through which an electronic communication service is provided or exceeds an authorization to access that facility, and (2) thereby obtains, alters, or prevents authorized access to a wire or electronic communication while that communication is in electronic storage.”

Ehling v. Monmouth-Ocean, supra (quoting New Jersey Statutes § 156A-27(a)).  He also noted that electronic storage is defined as “[a]ny temporary, intermediate storage of a[n] . . . electronic communication incidental to the . . . transmission thereof;” and “[a]ny storage of such communication by an electronic communication service for purpose of backup protection of the communication.” New Jersey Statutes § 156A-27(a)). 

The judge then explained that “[b]ased on” this definition of electronic storage, New Jersey courts have held that the state’s wiretap act “protects only those electronic communications, which are in the course of transmission or are backup to that course of transmission.” Ehling v. Monmouth-Ocean, supra (quoting White v. White, 344 N.J. Super. 211, 781 A.2d 85 (2001)).  He also pointed out that the White court found that the New Jersey wiretap act

`does not apply to electronic communications received by the recipient, placed in post-transmission storage, and then accessed by another without authorization[,]’ because `the “strong expectation of privacy with respect to communication in the course of transmission significantly diminishes once transmission is complete.”’

Ehling v. Monmouth-Ocean, supra (quoting White v. White, supra). 

Given all this, the judge found Ehling had not stated a claim under the New Jersey Wiretap act:

[Ehling] clearly failed to state a claim under the NJ Wiretap Act. The Amended Complaint does not allege that [her] Facebook posting was in the course of transmission when Defendants viewed it. To the contrary, the Amended Complaint clearly states that the posting was live on the Facebook website for all of [Ehling’s] Facebook friends to `access and view.’ . . . Because the posting was in post-transmission storage when Defendants accessed it, this communication does not fall under the purview of the NJ Wiretap Act.

Ehling v. Monmouth-Ocean, supra. 

The judge then took up the defendants’ motion to dismiss Ehling’s common law invasion of privacy claim.  Ehling v. Monmouth-Ocean, supra.  He explained that her

claim is premised on Defendants' alleged unauthorized `accessing of her private Facebook postings’ regarding the Holocaust Museum shooter. . . . Defendants move to dismiss Count VI, arguing that [Ehling] did not have a reasonable expectation of privacy in her Facebook posting. 

Ehling v. Monmouth-Ocean, supra. 

Next, he outlined the applicable principles of New Jersey law:

Under New Jersey law, to state a claim for intrusion upon one's seclusion or private affairs, a plaintiff must allege sufficient facts to demonstrate that (1) her solitude, seclusion, or private affairs were intentionally infringed upon, and that (2) this infringement would highly offend a reasonable person. . . . “`E]xpectations of privacy are established by general social norms’ and must be objectively reasonable—a plaintiff's subjective belief that something is private is irrelevant.

Ehling v. Monmouth-Ocean, supra (quoting White v. White, supra). 

He then outlined how courts have dealt with “[p]rivacy in social networking”:

There appears to be some consistency in the case law on the two ends of the privacy spectrum. On one end of the spectrum, there are cases holding that there is no reasonable expectation of privacy for material posted to an unprotected website that anyone can view. . . . On the other end of the spectrum, there are cases holding that there is a reasonable expectation of privacy for individual, password-protected online communications. . . .

Courts, however, have not yet developed a coherent approach to communications falling between these two extremes. Although most courts hold that a communication is not necessarily public just because it is accessible to a number of people, courts differ dramatically in how far they think this theory extends. . . . What is clear is that privacy determinations are made on a case-by-case basis, in light of all the facts presented. 

Ehling v. Monmouth-Ocean, supra (emphasis in the original).

The judge then reviewed the arguments both sides were making on this issue:

[Ehling] argues that she had a reasonable expectation of privacy in her Facebook posting because her comment was disclosed to a limited number of people who she had individually invited to view a restricted access webpage. Defendants argue that [she] cannot have a reasonable expectation of privacy because the comment was disclosed to dozens, if not hundreds, of people.  The Amended Complaint and underlying documents do not indicate how many Facebook friends [Ehling] had at the time the comment was made; thus, there is no indication of how many people could permissibly view [her] posting.

Ehling v. Monmouth-Ocean, supra. 

Based on all this, the judge found that Ehling

has stated a plausible claim for invasion of privacy, especially given the open-ended nature of the case law. [She] may have had a reasonable expectation that her Facebook posting would remain private, considering that she actively took steps to protect her Facebook page from public viewing. More importantly, however, reasonableness (and offensiveness) are highly fact-sensitive inquiries. As such, these issues are not properly resolved on a motion to dismiss. . . .

Ehling v. Monmouth-Ocean, supra. 

This does not mean that Ehling won on her invasion of privacy claim.  It means the claim survives and will at some point be resolved, either on a motion for summaryjudgment (in which one side claims they win without going to trial because there are no disputes about the essential facts in the case) or after a trial. 

3 comments:

Anonymous said...

I think you should have mentioned something about the fact that New Jersey is in the process of passing a bill that would make this kind of employer Facebook access illegal.

http://www.nj.com/news/index.ssf/2012/05/password_protection_nj_bill_wo.html

Susan Brenner said...

Actually, I didn't know about that. Thanks for bringing it up.

smarthanna said...

really help me thanks Anil for sharing this wonderful article on do follow websites list