• Home
  • Blog
  • Can I Sue My Employer for Disclosing Personal Information?

Can I Sue My Employer for Disclosing Personal Information?

Author(s):

Legal Content Writer

Natalie
Natalie graduated from Bowdoin College with dual degrees in Government & Legal Studies and Sociology. She has spent half a decade working as a paralegal for civil rights law firms in California where she gained knowledge and insight into the state’s workers’ rights laws surrounding discrimination, harassment, retaliation, as well as wage and hour. She continues her passion for workers’ rights in her role as a legal content writer.

Information verified by:

California Civil Rights attorney

Navruz Avloni
Navruz Avloni is a Trial Attorney & Social Justice Advocate. She holds a Juris Doctor degree from the University of California, Davis School of Law and has been practicing Employment & Labor and Civil Rights law for over 15 years. Attorney Navruz has been featured in The Guardian, the San Francisco Chronicle, Yahoo! Finance, Business Insider, TechCrunch, The Mercury News, and more.

When Employer Disclosure of Personal Information Becomes a Legal Issue

Maintaining employee privacy is a cornerstone of appropriate human resources management. Under California law, workplace privacy statutes, HIPAA, California’s Confidentiality of Medical Information Act (CMIA), employment agreements, and other common-law privacy protections, employees are granted a reasonable expectation of privacy. As such, employers are required to handle sensitive employee information, including medical information and personal identifying information, with care in compliance with security protocols in order to maintain employee privacy.

Likewise in most situations, confidentiality and privacy laws prohibit employers from sharing employees’ personal information without explicit consent. There are a few specific situations in which employers may be legally permitted or required to disclose personal information, but any such disclosures are tightly regulated by federal and California state law.

If an employer mishandles personal information, either by failing to securely handle the information or by sharing information inappropriately, employers may be legally liable for violating privacy laws. If you believe that your employer has violated your privacy, understanding privacy rights is the first step toward determining whether you can sue your employer for sharing your personal information.

Confidentiality Obligations in the California Workplace

Federal and state laws, employee handbooks, confidentiality agreements, and employment contracts make clear an employer’s duty to safeguard sensitive data, including medical details, HR records, financial information, and personal contact details. In California, the California Privacy Rights Act (CPRA) requires employers to implement reasonable security measures, provide privacy notices, and give employees the right to access, correct, and delete personal data. 

Unauthorized unlawful disclosures of personal information may be purposeful or accidental, and often occurs through email, file sharing, verbal communication of personal details, or lack of proper security measures surrounding employee data. Violations of confidentiality, whether intentional or not, can lead to legal claims for damages.

Medical Records, Sensitive Data & Privacy Protections

Employers are legally required to maintain employee privacy with regards to employee medical information. Employers may have access to medical information if an employee requires a medical leave or a workplace accommodation, or if the employer collects physical information for any reason. Under HIPAA, the ADA, and California’s CMIA, California employers face strict legal requirements when handling medical documentation, workers’ compensation files, or accommodation-related records.

The Federal Health Insurance Portability and Accountability Act (HIPAA) and Americans with Disability Act (ADA) set strict federal standards for maintaining employee medical privacy, requiring employers to keep all medical information confidential, stored in separate and protected files, and only shared with those who have a need-to-know.

Under California’s Confidentiality of Medical Information Act (CMIA) employers must get consent to share any information, keep medical records separate from personnel files, train staff to handle medical information, and follow strict protocols for handling information related to medical conditions. The CMIA imposes strict penalties for violations and gives employees in California an additional avenue to sue in court.

When Disclosure Happens During Legal Proceedings or HR Investigations

Employers may be legally required to disclose personal information during legal proceedings or human resources investigations, however employers must always balance their duty to disclose information with their obligations to protect employee privacy. In the case that employers are required to disclose personal information, only relevant information should be shared, and it should only be shared with those who have a legitimate need to know.

Employees can pursue legal action if any disclosure of personal information was excessive, unjustified, retaliatory, or outside the scope of the legal or HR investigation requirements.

Co-Workers, Managers & Unauthorized Information Sharing

As the keeper of employee information, the responsibility to maintain employee privacy primarily falls upon human resources departments. However, all employees have a legal obligation to respect workplace confidentiality standards and avoid sharing their colleagues private information internally or externally without consent. Managers, supervisors, and co-workers, are all accountable for respecting employee privacy.

Examples of common privacy breaches by co-workers include gossiping about medical issues and other personal details, sharing addresses or phone numbers, disclosing disciplinary records. In order to avoid privacy breaches, employers should make a point to have clear policies regarding employee privacy, implement training protocols regarding the handling of sensitive information, and enforce disciplinary consequences when employer policies are violated.

California Privacy Laws That Allow Employees to Sue for Disclosure

There are several laws and statues that give California employees the right to sue their employers for privacy violations:

  • California Constitutional Right to Privacy
  • Confidentiality of Medical Information Act (CMIA)
  • California Consumer Privacy Act (CCPA)
  • Common-law invasion of privacy
  • Negligence and breach of contract claims

These laws, among others, protect sensitive information, including personal identifying information and medical information, and restrict unauthorized sharing in the workplace. Under these laws, employees can bring claims for damages in state court when employers violate an employees right to privacy by failing to protect, or sharing without authorization, an employees private information. Under California law, employees may recover statutory damages, emotional distress damages, punitive damages, and attorney’s fees in cases of workplace privacy violation.

How to Sue Your Employer for Disclosing Personal Information

If you are experiencing a privacy violation at work, you may be entitled to compensation, including emotional distress damages and punitive damages under federal and state laws. Take the following steps to support your case:

  • Save Evidence: Keep a record of the unlawful information disclosures and privacy violations in writing. Save related evidence, notes, and documents, including emails, texts, and other communications with coworkers. Additionally, record proof of harm due to the privacy violation, including emotional distress and other negative consequences at (or outside of) work. It is advantageous to reach out to an employment attorney as soon as possible regarding potential privacy violation claims you may have so that they can provide advice. In order to hold your employer accountable, you will need to prove that they have harmed you by violating your privacy. An employment lawyer can help you compile the evidence that you will need to present a legally compelling case.
  • Find an Attorney: Employment law attorneys specializing in privacy issues will be able to help you answer the question “Can I sue my employer for sharing my personal information?” Privacy cases can be very complex and evidence heavy; an employment law attorney can help you make legal sense of what you are experiencing, and help you decide what your options are based on the facts of your situation.
  • Report the Violation: Report the privacy violation directly to your employer. If your employer does not correct their behavior, you may file a complaint with the Federal Equal Employment Opportunity Commission (EEOC) (if your employer has more than 15 employees) or with the California Department of Fair Employment and Housing (DFEH) (if your employer has more than 5 employees). After filing with an appropriate agency, you may chose to bring claims in court. Employment law claims are subject to statutes of limitations. If you miss the deadline to bring a case, you risk losing your right to pursue that particular claim. Contact an attorney promptly so that they can advise you of any pending deadlines that might impact your ability to pursue justice.

Protecting Employee Privacy & Understanding Legal Options

Under federal and California state law, employees have strong legal rights when employers disclose confidential personal information without authorization. If you believe your privacy has been violated at work, you may be entitled to compensation under state laws in the form of emotional distress damages, and putative damages. An employment attorney will be able to help you understand your legal options and build a strong case.

Navruz Avloni is an employment attorney dedicated to fighting for your rights in the workplace. Schedule a consultation with Navruz Avloni today to get started.

Testimonials

Lael Abaya

Do not let Navruz's gentle demeanor fool you - she is an absolute bulldog litigator who will stop at nothing to make sure her client's interests are zealously represented. I routinely turn to Navruz for any discrimination-related issues in my work comp cases, and her command of this area of law is top notch. I have no reservations recommending Navruz as an attorney.

Ryan Shannon

My experience with Avloni Law was the best I could have asked for. Rather than speaking with a case manager, I spoke directly with attorney, Navruz, who was incredibly efficient, diligent and informative, all while maintaining empathy and kindness. After our intake phone conversation, she did not delay in sending me a checklist of documentation to assemble, and was available to answer my questions. She speedily informed me she couldn't take on the case since it involves Tribal Law, however, she didn't leave me hanging. Instead, she sent me a list of attorneys who could assist. To reiterate, while my interactions with Navruz were brief, it's obvious she's thorough and knowledgeable. I was incredibly impressed with her qualifications (including her studies in rhetoric, which I'd imagine would help persuade and build a case) and several honors and awards. I spoke to many law firms and Avloni stood out most due to Navruz's expertise and client follow-up. Don't hesitate in contacting Avloni Law.

Tessa K

Navruz was a godsend when my tech startup employer discriminated & retaliated against me. She explained the process so smoothly and was very responsive. I don't have a ton of experience working with attorneys, but she's the absolute best I've ever worked with and can't imagine meeting anyone better. Each time I would present a new situation or ask a question she was prompt to reply and offer a phone conversation to ensure I understood and could make the best decisions for my case. Although the experience with my employer was brutal, I'd love nothing more than to be able to work with her again. True blessing of a human-being. HIGHLY RECOMMEND.

Tiffany M

Working with Nav has been inspiring to say the least. As a fellow member of the San Anselmo Racial Equity Committee, she brings her knowledge as a highly skilled civil rights attorney, along with her strong commitment to addressing equity issues in our town. She is hard working, patient, understanding and always willing to listen, grow and learn. Her contributions to this committee and community have been invaluable.

Kyle Morishita

Navruz is an intelligent, dedicated, and talented attorney.

Maria Gushchina

I need an advise regarding my unemployment case. Avloni Law helped me with understanding the basics and professionally corrected the wording in my appeal statement. Everything went smooth! Highly recommend!

Alexei Kuchinsky

I have had a pleasure of knowing Navruz for quite a while. I definitely recommend her as a hardworking and highly skilled attorney in the area of employment law, especially wrongful termination and harassment. She is passionate about her cases and she cares about her clients.

Ryan Cadry

I have had the pleasure of knowing Navruz for over seven years. She is extremely diligent, smart, and knowledgeable in labor and employment law. Any client represented by Navruz is, without question, very well-represented! I endorse her without qualification!

Maria Crabtree

Navruz is a strong and knowledgeable attorney whose passion for her work is evidenced by effective results.

Valerie

Navruz Avloni has been my employment law attorney years. Her attention to detail, research and resources, and sincerity in her work are unparalleled. She has given me exceptional employment law advice on multiple occasions. I would not hesitate to recommend her to anyone looking for an excellent employment law attorney.

get in touch

Avloni Law is a boutique plaintiffs’ litigation law firm taking on the world’s largest corporations and entities and fighting for the rights of victims through employment litigation and more. We have a network of offices, including San Francisco, Los Angeles and San Jose, and our reach throughout California and the Bay Area is not limited to the cities where we maintain offices. If you are seeking a sex harassment, race discrimination, disability discrimination or a whistleblower attorney, reach out to us for a phone consultation.

Office - Northern California:
(415) 524-2218

Office - Southern California:
(310) 602-0548

    Contact Us