ORDER A REPORT

The FCRA Big Three Lawsuit Triggers

Hiring the right talent is critical but one overlooked detail in your background screening process can cost your company millions. Employers often assume background checks are routine, yet the legal landscape tells a different story. The majority of lawsuits tied to employment screening aren’t about discrimination or bad hires—they’re about technical compliance mistakes under the Fair Credit Reporting Act (FCRA). These errors are easy to make and expensive to fix.

Research shows that approximately 73% of FCRA-related lawsuits against employers stem from these three common mistakes:

  • Non-compliant disclosure forms
  • Missing or delayed pre-adverse action notices
  • Inadequate authorization forms

The consequences can be significant: statutory damages of $100–$1,000 per violation, plus attorney fees, with settlements often reaching mid-six to seven figures.

Emerging Risk: Disparate Impact Discrimination

Background check policies and particularly those applying strict pass/fail criteria based on criminal history can unintentionally violate Title VII if they disproportionately impact protected groups. The EEOC has successfully challenged such blanket policies in litigation.

EEOC guidance emphasizes individualized assessments, considering:

  • The nature of the offense
  • Time elapsed since the offense
  • Relevance to the job

Relying on generalized exclusions without job-specific review creates legal risk. Additionally, many state and local laws impose specific requirements for individualized assessments.

Best Practices to Reduce Lawsuit Risk

To minimize exposure from background screening:

  • Use standalone, plain-language disclosure forms before any check.
  • Obtain written authorization in a separate form, not embedded in applications.
  • Follow the adverse action protocol: provide a pre-adverse notice with a copy of the report and summary of rights, and wait at least five business days before issuing the final notice.
  • Allow candidates to dispute findings.
  • Implement individualized assessments, especially for criminal record policies.
  • Regularly audit processes and train HR staff on evolving regulations.

 

Disclaimer: This communication is for general informational purposes only and does not constitute legal advice. The summary provided in this alert does not, and cannot, cover in detail what employers need to know about the amendments to the Philadelphia Fair Chance Law or how to incorporate its requirements into their hiring process. No recipient should act or refrain from acting based on any information provided here without advice from a qualified attorney licensed in the applicable jurisdiction.

December 23rd, 2025|Categories: Compliance Corner, FCRA|Tags: , , |

The Illusion of Instant Criminal Checks: Why a True National Criminal Database Still Doesn’t Exist

If you’ve ever been pitched a “national criminal database,” you’ve probably imagined a single, authoritative system that instantly returns every criminal record across the United States. That database doesn’t exist for non‑law‑enforcement users and relying on anything marketed that way can lead to missed records, inaccurate matches, and regulatory headaches.

What actually exists at the national level?

The FBI operates several national systems—NCIC, III, NGI, N‑DEx, and NICS—to support criminal justice operations. These are law‑enforcement systems, with access tightly constrained by federal law and regulation (including 28 C.F.R. § 20.33). Employers generally cannot query NCIC/III directly unless a statute authorizes fingerprint‑based checks for specific roles (e.g., child care, elder care, or other regulated positions) and the check is routed through the state repository per the Compact Council rules.

Even within law enforcement, these systems are indexes and exchanges that depend on state and local repositories to submit arrests and dispositions; coverage and timeliness vary. The DOJ/BJS surveys and FBI guidance repeatedly emphasize gaps and the critical need to report final court dispositions to keep records accurate.

So what are “national criminal databases” sold by private vendors?

Commercial “national” or multi‑jurisdictional files aggregate data from many sources (state repositories where available, departments of corrections, sex offender registries, selected county uploads, watchlists, etc.). They can be useful as a pointer or discovery tool, but they are not comprehensive and often not current enough to stand alone. Coverage varies by jurisdiction and update cadence; name‑match noise creates false positives/negatives, especially with common names.

Industry resources and compliance guidance are consistent on this point: use multi‑jurisdictional databases to broaden the net, then verify at the originating court or repository before reporting or taking action.

Why “database‑only” screening creates risk

  1. Incomplete coverage: Not all courts or states report; updates lag. Recent charges or local misdemeanors may be absent.
  2. Identity ambiguity: Limited identifiers can mis‑match results; aliases and data entry errors compound the problem.
  3. Stale or missing dispositions: Arrests without case outcomes mislead; expungements or dismissals may remain in bulk feeds.
  4. Fair Credit Reporting Act (FCRA) compliance exposure: The FCRA requires “reasonable procedures to assure maximum possible accuracy” and complete, up‑to‑date public record reporting. Database “hits” must be confirmed at the source, and consumers must be notified appropriately when adverse public records are reported for employment decisions.

Regulators have sharpened expectations. In 2024, the Consumer Financial Protection Bureau (CFPB) reiterated that consumer reporting agencies (CRAs) must prevent reporting of duplicate or expunged/sealed items and include disposition information where available. CRAs also must disclose the source(s), both original and any intermediaries, when consumers request their files.

Why this still matters

Despite modernization, data gaps persist—especially in disposition reporting and identity matching. The newest BJS/SEARCH survey shows continued dependence on state repositories and varying automation/completeness across states, reinforcing why source verification and robust procedures remain critical.

Meanwhile, regulators (CFPB/FTC) are raising the bar on “maximum possible accuracy.” Organizations that rely on “instant database” products without verification risk adverse action mistakes, consumer disputes, and enforcement exposure.

 

Disclaimer: This communication is for general informational purposes only and does not constitute legal advice. The summary provided in this alert does not, and cannot, cover in detail what employers need to know about the amendments to the Philadelphia Fair Chance Law or how to incorporate its requirements into their hiring process. No recipient should act or refrain from acting based on any information provided here without advice from a qualified attorney licensed in the applicable jurisdiction.

December 12th, 2025|Categories: Compliance Corner, FCRA|Tags: , , |

San Francisco enacts ordinance for using criminal records in employment decisions

Effective August 13, 2014, under San Francisco’s Fair Chance Ordinance, companies with 20 or more employees are prohibited from inquiring about an applicant’s criminal history on the employment application or during the first live interview. Along with banning the box, the ordinance imposes several additional restrictions and mandates certain considerations for individualized assessment. San Francisco employers must also ensure that their notice and consent forms for criminal background inquiries later in the process comply with the guidelines that will be published by San Francisco’s Office of Labor Standards Enforcement (OLSE) as well as with the already existing background check disclosure/authorization requirements under California’s ICRAA and the FCRA.

San Francisco is the ninth jurisdiction with legislation that affects private employers. The remaining eight are the states of Hawaii, Massachusetts, Minnesota, Rhode Island, and the cities of Buffalo, NY, Newark, NJ, Philadelphia, PA, and Seattle, WA. Multi-state employers should consider whether their particular circumstances warrant adopting individualized employment applications for jurisdictions with ban-the-box laws, or whether to use a nationwide standard form. Employers who opt for a standard electronic application for all locations need to include a clear and unambiguous disclaimer for applicants in each applicable ban-the-box jurisdiction. It is uncertain whether such disclaimers are sufficient for paper applications of multi-state employers in at least one ban-the-box jurisdiction (Minnesota) or if the box must be removed altogether.

For more information on ban-the-box legislation, see the recently published briefing paper by the National Employment Law Project titled Statewide Ban the Box – Reducing Unfair Barriers to Employment of People with Criminal Records.

Note: Effective August 13, 2014, with our California employment-purpose disclosure/ authorization form, we will be including a supplemental disclosure/authorization notice as prescribed by the OLSE, to use by San Francisco employers. 

March 28th, 2014|Categories: Criminal Activity, Employment Decisions|Tags: , , |
© 2012- SCHERZER INTERNATIONAL | ALL RIGHTS RESERVED
Go to Top