No, sharing passwords in Kentucky is generally illegal under state and federal laws unless explicitly authorized. Unauthorized access to computer systems violates the Kentucky Computer Crime Act and federal Computer Fraud and Abuse Act, with penalties including fines and imprisonment. Employers and institutions often enforce stricter policies, and recent 2026 compliance shifts emphasize third-party vendor accountability for password misuse.
Key Regulations for Sharing Passwords in Kentucky
- Kentucky Computer Crime Act (KRS 434.840–434.860): Prohibits unauthorized access to computer systems, including password sharing, with criminal liability for offenders.
- Federal Computer Fraud and Abuse Act (CFAA): Imposes federal penalties for password misuse, particularly in interstate contexts or involving protected systems.
- Institutional Policies: Entities like the Kentucky Community and Technical College System (KCTCS) and University of Kentucky (UK) explicitly ban password sharing in employee/student handbooks, subject to disciplinary action.
Corporate compliance teams must audit access controls, while individuals risk civil liability for breaches under Kentucky’s tort laws. The Kentucky Attorney General’s Office has signaled increased enforcement against unauthorized access cases in 2026.