Scherzer Blog

Expungement of Criminal Convictions – California Style

Some states allow a defendant convicted of a crime to apply for a court order limiting public access to the conviction record or to restore rights and remove disabilities caused by the conviction. This type of order is commonly referred to as an expungement; however, the qualifications for obtaining an expungement and the effect of the expungement vary among the states that allow expungements.

California has an expungement procedure set forth in Penal Code 1203.4. If a defendant meets the qualification of Penal Code 1203.4, the court will allow the defendant to withdraw a plea of guilty or no contest, to reenter a plea of not guilty, and to have the case dismissed. The defendant is also relieved from many of the negative consequences of a criminal conviction.

When reviewing California criminal records showing a conviction, it is important to note if there is also a reference to a Penal Code 1203.4 dismissal because this can impact whether the record is reportable in a background check for a California employer. For example, California law does not allow the reporting of criminal records that result in a non-conviction in employment-purpose reports. Even though the record shows a conviction, the Penal Code 1203.4 dismissal effectively means the conviction never happened.

The reference to the code section will typically be found on the case docket, dated a year or so after the conviction date.

January 26th, 2022|Compliance Corner|

Decoding Criminal Case Dispositions

A “disposition” is the final outcome of a case, regardless of what it is called. Here is a list of typical criminal case dispositions.

Guilty or Conviction: This is the worst possible disposition if you are the defendant. It means that the case was heard and decided against you. With a conviction, the court will impose a sentence that may include jail time, probation, and paying a fine and court fees.

Not Guilty: The case actually proceeds to a trial, where a jury (or a judge in certain types of cases) decides that the evidence against the defendant was insufficient for a conviction. It does not mean the defendant was innocent – just that the case was heard and decided in the defendant’s favor.

Dismissal: A dismissal is entered when the court determines that the case should not move forward for some reason. There are many reasons for dismissals. For instance, there can be procedural errors, a lack of proper jurisdiction over the type of case, or the prosecutor decides to dismiss the charges (see below).

Nolle Prosequi or Nolle Prosse: A Latin phrase meaning “no more prosecution.” This is another way of saying that a case is dismissed by the prosecutor. This approach is often used when a defendant may agree to plead guilty to a lesser offense that guarantees the prosecution a conviction for a related offense, in exchange for the prosecutor “dismissing” the more serious charge.

January 12th, 2022|Compliance Corner|

Does New York law require notice to the employee in order to have a consumer reporting agency conduct a background check in connection with the employee’s misconduct?

The NY FCRA sets forth notice and authorization requirements for investigative consumer reports as shown in  “https://law.justia.com/codes/new-york/2017/gbs/article-25/380-c/” NY Gen Bus L § 380-C. However, this section is silent on the issue of employee misconduct investigations and we found no language in NY FCRA law that is analogous to the federal FCRA exemption for employee misconduct investigations as provided in 15 U.S.C.1681a(y)(1).

When analyzing this question, we reviewed a 2006 opinion by the Oklahoma Attorney General that addressed a very similar issue. A state senator wanted to know whether OK employers could rely on the FACTA amendment to the federal FCRA that provides the exemption for employee misconduct investigations and dispense with the OK notice requirements for consumer reports. The OK AG said “no,” the reason being that the OK statute (which specifically references the previously enacted federal FCRA) was enacted before FACTA and the OK legislature did not indicate in the statute that amendments to the original FCRA would also be adopted.

Of course, the AG opinion is not a binding law anywhere, including in OK. But it does show how the issue may be analyzed to the detriment of the employer if it arose in litigation. Like the OK statute, the NY FCRA was enacted well before the FACTA amendment in 2003 (NY FCRA was enacted in 1977). However, unlike the OK statute, the NY FCRA does not include any references to the federal FCRA and, therefore, does not rely on any of its language as originally enacted. That is a distinction that can undermine an OK AG-type analysis to the NY FCRA.

The most we can say is that the NY FCRA does not address employee misconduct investigations and that the federal FCRA does set forth an express exemption from its notice requirements for such investigations. Whether there is a conflict between the NY notice requirements (or any other state’s notice requirements) and the federal exemption for employee misconduct investigations remains to be seen and there are no court opinions addressing the issue.

In the absence of guidance from NY FCRA regarding employee misconduct investigations, the employer can follow the federal FCRA exemption for these investigations. It would be prudent for the employer to document the need for confidentiality of the investigation, specifying the reasons why alerting the employee would undermine the investigation.

December 20th, 2021|Compliance Corner|

Arrest record but no charges

Typically, an arrest record will show the date, arresting agency, and the subject’s name (and other identifiers such as DOB and address), without specifying the charge or charges. The reason for this is twofold: (1) until the district attorney (“DA”) files a criminal case, there are no charges; and (2) the charges filed by the DA may be different than the charges on which the arresting officer based the arrest. An “arrest” and “being charged with a crime” are different things (although obviously related).  An “arrest” means that a person is taken into custody because they have been accused either by a warrant or by probable cause of committing a crime. Once in custody, the prosecutor’s office will decide whether the person will be charged with a crime. The person will then be given a charging document (complaint or information) that will state what charges they are facing.

A record will never show that an arrest was “dropped.” At best, you can infer that no charges were filed after an arrest if there is no corresponding court case.

December 15th, 2021|Judgment|

New Jersey Crime Categories

As explained in our previous posts, the most serious offenses are categorized as “felonies” and less serious as “misdemeanors.”  While this is true in nearly every state, there is an exception (of course) and that exception is New Jersey.

In New Jersey, crimes are not categorized as felonies and misdemeanors but as “indictable crimes,” “disorderly person offenses,” and “petty disorderly person offenses.”

According to New Jersey law, indictable offenses are the equivalent of felonies in other states. Courts classify charges into first, second, third, and fourth-degree charges. A first-degree offense is the most serious of all charges. “Indictable” means that a grand jury has found enough evidence against the defendant to make them face trial.

“Disorderly person offenses” and “petty disorderly person offenses” (sometimes referred to as “DP offenses”) are the equivalent of misdemeanors in other states because they are less serious offenses and are punishable by less than one year in jail.

November 29th, 2021|Compliance Corner|

Legal considerations when recruiting, hiring out-of-state WFH employees

Since the COVID-19 pandemic, employees working from home (WFH) have created a host of new wrinkles for employers, many of which are still being ironed out.

For employees, the WFH option can be safer (less chances of contracting COVID) and easier (no more commute); for employers, WFH reduces the cost of overhead and can result in happier, more productive employees.

While it may sound easy to simply hire a worker on the other side of the country, there are several legal questions for employers who want to recruit and hire an out-of-state employee who will WFH. The following are some of the important issues that employers should consider.

  • Recruiting. Looking for a new employee beyond state lines appears to present a limitless supply of potential new workers. But employers need to familiarize themselves with the laws of the state where the applicant lives, particularly with regard to issues such as background checks, criminal record searches and compensation.

Several states – including New Jersey and New York – prohibit employers from inquiring about a job applicant’s salary, benefits and other compensation history.

Other factors may make certain locations a more advantageous space to find new WFH hires.

Some states offer financial incentives to remote workers. Alabama, Georgia, Oklahoma and West Virginia offer bonuses to entice remote workers, ranging from reimbursement of moving expenses to $12,000 in cash (West Virginia will pay $10,000 divided over the course of 12 months with $2,000 paid at the end of the second year in residence).

  • Employee benefits and protections. Once an out-of-state employee has been hired to WFH, employers have a whole new list of individual state laws to learn. Each state has its own variations on employee benefits as well as legal protections – and in many cases, additional differences at the county and/or municipal level.

These differences can present the possibility of additional liability for employers on issues such as paid sick leave, paid family leave, minimum wage, disability, unemployment and vacation days, among others.

State laws on minimum wage vary widely, along with differences for tip credits and minimum salary thresholds for exemptions. The current minimum wage in Texas is $7.25 per hour, for example, while New York’s minimum wage is $11.00.

Paid family leave is now mandatory (or will be soon) in California, Colorado, Connecticut, Massachusetts, New Jersey, New York, Oregon, Rhode Island, Washington and Washington, D.C.

As for overtime, most states follow the standard payment of time-and-a-half for hours worked over 40 in a workweek, but a handful (including California) have more stringent requirements, while some states (California again) mandate that earned vacation days never expire.

Without a physical location in the state where a WFH employee resides and a breakroom to hang various notices, an employer must still remember to fulfill poster and notification obligations as well as various mandatory trainings. Remote employees do not need to tape posters up on their walls to satisfy state laws, but employers do need to provide certain information and documentation to out-of-state WFH employees to achieve compliance by sharing – and updating – federal, state and local notices.

Even if an employer has a single WFH employee in another state, workers’ compensation insurance is necessary, along with registration with the appropriate state agency. Some states have their own fund that employers must contribute into, while a third-party insurance company will suffice in others.

In addition, each state has different laws on employee protections, sometimes with variations at the local level. Employers should be careful to consider state, county and/or municipal statutes and regulations with regard to noncompete agreements, discrimination and retaliation protections and the requirements to legally terminate an employee.

  • Tax implications. Employees must be registered for tax purposes in the state where they reside, which means the company itself needs to register its presence in those states for tax purposes. That potentially newfound “tax nexus” to another state may mean sales and use taxes, income taxes and franchise taxes for the employer as well, depending on the requirements of the other state. The failure to properly register and pay the appropriate taxes can result in fines and penalties.

The registration process requires paperwork, time and patience, as it can take several weeks for an employee and the employer to be property registered. And some states – Pennsylvania, for example – also have local city or township registration requirements in addition to those at the state level.

Employers may also be subject to higher corporate income tax rates, which is calculated in part based on the employee’s role and seniority. So a WFH executive in a state with a high tax rate may cost an employer more money than a lower-level WFH employee in that state.

WFH employees themselves may face a tax conundrum with the “convenience of employer” rule that applies in seven states. In Arkansas, Connecticut, Delaware, Massachusetts, Nebraska, New York and Pennsylvania, if an employee works in a different state than her employer by choice – not because the job mandates – then the employer’s state has the right to tax her, and the employer would be required to withhold taxes from her paycheck in both her home state and the employer’s.

Alternatively, some states have reciprocity agreements that expressly forbid this double taxation. A total of 16 states and Washington, D.C. have such deals, where an employee who lives in Wisconsin and works for an Illinois employer, for example, only pays income taxes in Wisconsin. States that have reached such agreements typically share a border, although Arizona has gone above and beyond, with reciprocity in California, Indiana, Oregon and Virginia.

One additional complication: some states have issued temporary guidance to deal with the out-of-state WFH situation during COVID. Alabama and Georgia stated that they would not enforce payroll withholding requirements for employees who are temporarily working from home due to government-mandated stay-at-home orders; Connecticut said that employees WFH due to the pandemic is a necessity for work but New York reached the opposite conclusion, stating that it is for the employee’s convenience.

Employers should consider all of the legal ramifications before hiring an out-of-state WFH employee.

November 16th, 2021|Compliance Corner|

Civil Cases and Garnishees

A common occurrence when searching civil case records for a company is to locate a record that identifies the company’s role in the case as a “garnishee.” What’s a garnishee and should these cases be included in background reports?

A garnishee can be any company (or person) who holds property (including money) owed to a debtor – that is, someone who has an unpaid judgment against them.

Employers often become a garnishee because they hold wages to be paid to an employee who is a debtor. A creditor can use a procedure called a wage garnishment, which is a court order, that requires the debtor’s employer to hold the debtor’s wages to pay the creditor. The employer as garnishee simply pays the employee-debtor’s wages to the court.

Because a garnishee’s involvement in a civil case is neither negative nor noteworthy, it typically should not be included in the report.

November 16th, 2021|Compliance Corner|

Digital Spring Cleaning

Spring is traditionally a time when people do a deep cleaning of their homes. Have you thought about taking this one step further and doing a digital security deep clean? We recommend reviewing at least every quarter to minimize the risk of identity theft. Here are four steps to get you started to protect your personal data. 

  • Change your passwords. Your company probably automatically asks you to switch passwords every 4-6 weeks. But when is the last time you changed your passwords on your personal social media accounts, subscriptions, or places you shop? You should consider updating these passwords, too. In fact, old passwords can be easy ways for hackers to steal your identity. Delete old accounts you no longer use. You might be surprised to find that some of those are decades old with easily guessed passwords. When you choose your new passwords, do not repeat them across various accounts. You’re just making it easier to get hacked.
  • Review your social media accounts. Have you been cloned on Facebook, Instagram, or other social media platforms? Take a moment and search for yourself on these sites and see if you appear more than once. Don’t wait for your friends to send you a text saying, “I just got a friend request from you, but we’re already friends.” If you’ve been cloned, report it and change your passwords.
  • Avoid oversharing. Think twice before you overshare information or play a social media game that asks you to list personal information about yourself. These simple activities are ways that hackers gather your data. The latest high-risk trend is sharing a picture of your COVID vaccination record with your full name and date of birth clearly visible. Instead, consider sharing a photo of an “I got vaccinated” sticker. 
  • Have you been hacked? A cybersecurity FBI agent once told me, “It used to be a case of not if, but when you’ve been hacked. Now it’s a case of you’ve been hacked, and you either know it or don’t know it yet.” HaveIBeenPwned is one of several free sites where you can check if you’ve been caught up in a security breach.

These four steps will help you do a simple yet effective spring cleaning of your digital presence and protect your online identity. 

March 18th, 2021|Risk Management, Security, Social Media|

Client Alert: EU Court of Justice Invalidates the EU-US Privacy Shield

An important and unexpected ruling was handed down by the Court of Justice of the European Union (CJEU) on July 16, 2020, in Data Protection Commissioner v Facebook Ireland Ltd and Maximillian Schrems (“Schrems II”) that invalidates the EU-U.S. Privacy Shield (“Privacy Shield”) arrangement. Since 2016, the Privacy Shield provided U.S. companies with a mechanism to comply with the General Data Protection Regulation (GDPR) requirements when transferring personal data from the European Union to the U.S.

What this means

Now companies that subscribed to the Privacy Shield must find another GDPR-compliant solution for the transfer of data. The European Data Protection Board indicated in its July 23, 2020 FAQs that it will not be providing a grace period as the authorities had done for the EU-U.S. Safe Harbor (“Safe Harbor”) framework following the “Schrems I” decision.

Notably, the CJEU’s decision expressly stated that the standard contractual clauses (SCCs) previously promulgated by the European Commission (EC) are still a valid tool for data transfers from the EU to the United States. The SCCs are sets of contractual terms and conditions that the controller and the processor of the data both execute to comply with GDPR’s requirements.  However, the CJEU’s decision does not give blanket approval to the SCCs–the decision acknowledged that future challenges to SCCs are permissible by the local data enforcement agency for any EU-member state. For example, an EU-member state might prohibit or suspend exports of personal data from its country under SCCs, if the member state concludes that the SCCs are not or cannot be complied with in the recipient third country (such as the U.S.) because of the member state’s local legal requirements.

The CJEU did not directly reference binding corporate rules (‘BCRs’) which are used for intragroup data transfers and require prior approval of the competent data protection authority. For now, this means that BCRs remain a valid transfer mechanism under the GDPR as BCRs are of a similar nature to  SCCs (both are considered an “appropriate safeguard” pursuant to Article 46 GDPR).

For some situations, an alternative is to look to the narrow derogations under Article 49 of the GDPR, such as to perform a contract or base the transfer on the subject’s explicit consent.  

What happens next

When the adequacy of the Safe Harbor was invalidated by the CJEU in 2015, the U.S. Department of Commerce (DOC) and the EC had already been negotiating for an updated trans-Atlantic program for many months. With Schrems II, and although the DOC and EC have indicated that lines of communication are open, the discussions are not nearly as advanced. And the issues cited by the CJEU in Schrems II may require some form of legislative and not merely an administrative action to address. As such, the process to revamp the Privacy Shield is unlikely to be concluded any time soon.  

The DOC, in a press release in response to the CJEU’s decision, and later in its updated Privacy Shield FAQs, stated that it will continue to administer the Privacy Shield program, including processing submissions for self-certification and re-certification and maintaining the participants’ list. The DOC emphasized that the CJEU’s decision “does not relieve participating organizations of their Privacy Shield obligations.”

The UK’s Data Enforcement Agency also issued a statement advising companies to continue using the Privacy Shield until new guidance becomes available but added that companies “do not start using the Privacy Shield during this period.”

Stay tuned for more regulatory guidance and other developments in the next few weeks.

Disclaimer: This is not legal advice. The resources and information provided here are for educational purposes only. Consult your own counsel if you have legal questions related to your specific practices and compliance with applicable laws.

July 30th, 2020|Judgment|

The CFPB issues new policy guidance on credit reporting and dispute resolution

On April 1, 2020, the Consumer Financial Protection Bureau (“CFPB” or “Bureau”) issued a non-binding general policy statement (“Policy Statement”) regarding the Fair Credit Reporting Act (FCRA) and Regulation V in light of the recently enacted Coronavirus Aid, Relief, and Economic Security Act (CARES Act).

The CFPB’s Policy Statement highlights furnishers’ responsibilities and informs consumer reporting agencies (“CRAs”) of the Bureau’s flexible supervisory and enforcement approach during this pandemic. The Bureau intends to consider the circumstances that entities face as a result of the COVID-19 pandemic and their good faith efforts to comply with statutory and regulatory obligations as soon as possible.

The Bureau believes that this flexibility will help furnishers and CRAs to manage the challenges of the current crisis. Below are examples of the flexibility the Bureau intends to provide in the consumer reporting system.

Furnishing consumer information impacted by COVID-19: The Bureau reiterates its prior guidance encouraging financial institutions to work constructively with borrowers and other customers affected by COVID-19 to meet their financial needs. While companies generally are not legally obligated to furnish information to CRAs, the Bureau encourages them to continue doing so despite the current crisis. Furnishers’ providing accurate information to CRAs produces substantial benefits for consumers, users of consumer reports, and the economy as a whole. The CARES Act, a section of which amends the FCRA, generally requires furnishers to report as current certain credit obligations for which furnishers make payment accommodations to consumers affected by COVID-19 who have sought such accommodations from their lenders. Many furnishers are or will be offering consumers affected by COVID-19 various forms of payment flexibility, including allowing consumers to defer or skip payments, as required by the CARES Act or voluntarily. Such payment accommodations will avoid the reporting of delinquencies resulting from the effects of COVID-19. The Bureau supports furnishers’ voluntary efforts to provide payment relief, and it does not intend to cite in examinations or take enforcement actions against those who furnish information to CRAs that accurately reflects the payment relief measures they are employing.

Disputes: The FCRA generally requires that CRAs and furnishers investigate disputes within 30 days of receipt of the consumer’s dispute. The 30-day period may be extended to 45 days if the consumer provides additional information that is relevant to the investigation during the 30-day period. The Bureau is aware that some CRAs and furnishers may face significant operational disruptions that pose challenges in the investigations. For example, some CRAs and furnishers may experience reductions in staff, difficulty in taking disputes, or lack of access to necessary information, rendering them unable to investigate the disputes within the timeframes the FCRA requires. Furnishers include a wide variety of businesses that vary in size and sophistication and can range from small retailers to very large financial services firms, each of which will face unique challenges due to the COVID-19 pandemic. In evaluating compliance with the FCRA as a result of the pandemic, the Bureau will consider a CRA’s or furnisher’s individual circumstances and does not intend to cite in an examination or bring an enforcement action against a CRA or furnisher making good faith efforts to investigate disputes as quickly as possible, even if dispute investigations take longer than the statutory timeframe. The Bureau reminds furnishers and CRAs that they may take advantage of statutory and regulatory provisions that eliminate the obligation to investigate disputes submitted by credit repair organizations and disputes they reasonably determine to be frivolous or irrelevant. The Bureau will consider the current constraints on furnishers’ and CRAs’ time, information, and other resources in assessing if such a determination is reasonable.

Regulatory requirements: The Policy Statement is a non-binding general statement of policy articulating considerations relevant to the Bureau’s exercise of its supervisory and enforcement authorities. It is therefore exempt from the notice and comment rulemaking requirements under the Administrative Procedure Act pursuant to 5 USC 553(b).

Resources for consumers and small businesses facing the impacts of the COVID-19 pandemic are available on the Bureau’s website at https://www.consumerfinance.gov/coronavirus/.

April 3rd, 2020|Guidance|
© 2012- SCHERZER INTERNATIONAL | ALL RIGHTS RESERVED
Go to Top