No. Sharing passwords in Idaho violates state and federal cybersecurity laws, exposing users to civil liability under the Idaho Computer Crimes Act and potential federal charges under the CFAA. The Idaho Attorney General’s 2024 cybersecurity bulletin explicitly warns against unauthorized access, even among acquaintances.
Key Regulations for Sharing Passwords in Idaho
- Idaho Computer Crimes Act (ICCA, §18-2201 et seq.): Prohibits knowingly accessing a computer system without authorization, which includes sharing credentials that enable unauthorized use. Violations carry misdemeanor penalties for first offenses and felony charges for repeat or aggravated cases.
- Federal Computer Fraud and Abuse Act (CFAA): Criminalizes unauthorized access to protected computers, with penalties including fines and imprisonment. Idaho courts have upheld CFAA claims in cases involving shared credentials, as seen in U.S. v. Nosal (2012) and subsequent Idaho district rulings.
- Idaho Data Breach Notification Law (IDAPA 16.02.10): Requires businesses to report breaches involving shared credentials that compromise personal data. Failure to comply risks enforcement by the Idaho Attorney General’s Consumer Protection Division, with fines up to $10,000 per violation.
Corporate policies in Idaho often mirror these legal constraints. For instance, Boise-based tech firms like Micron and Clearwater Analytics enforce strict password-sharing prohibitions in employee handbooks, aligning with ICCA interpretations. Even incidental sharing—such as lending a work account to a colleague—may trigger disciplinary action or legal exposure. Idaho’s 2026 legislative session is considering amendments to the ICCA that would explicitly criminalize password sharing in commercial contexts, further tightening compliance requirements.