Workplace privacy law · MD
Maryland workplace electronic monitoring law and what it means for organizational health intelligence.
The governing statute is Md. Code, Cts. & Jud. Proc. § 10-402. Two-party consent for the interception of oral or wire communications.
Maryland combines a two-party consent posture with one of the country’s newest comprehensive privacy laws. Workplace monitoring that records voice or video must satisfy two-party consent.
Consent posture
Two-party consent
Primary citation
Md. Code, Cts. & Jud. Proc. § 10-402
Enforcement
Maryland Attorney General; private right of action under § 10-410.
Notification requirements in Maryland
- Personal social media accounts protected from compelled disclosure
Other relevant Maryland statutes
Md. Code, Lab. & Empl. § 3-712
Limits employer access to personal social media accounts.
Maryland Online Data Privacy Act (effective Oct 1, 2025)
New comprehensive privacy law. Employee data is partially exempted but breach-notification and reasonable-security obligations apply.
Employer obligations
- Two-party consent for recording oral or wire communications.
- No demand for personal social media credentials.
- Reasonable security obligations for personal information.
How ClarityLift’s privacy posture maps to Maryland law
ClarityLift surfaces team-level patterns from the conversations a customer already has in Slack or Teams. The architecture is privacy-first by design. No DMs. Ever. Aggregate signals only. Minimum group threshold of 10. No individual scores. Customers retain full control of which channels are connected.
For employers operating in Maryland, the relevant requirements typically resolve at the policy and channel-selection layer, not the technical layer. ClarityLift does not record voice or video, so two-party consent statutes for audio/video recording are structurally inapplicable.
Compliance with Md. Code, Cts. & Jud. Proc. § 10-402 is achieved by the customer through written notice to employees (where required), an acceptable-use policy, and clear channel-connection scope. ClarityLift’s consent architecture supports this directly: every connected workspace surfaces the channel list, retention posture, and group-floor minimum to admins.
This is not legal advice. Employers should review their specific monitoring practices with counsel before deploying any workplace analytics tool.
Frequently asked
Does ClarityLift read individual employee messages?
No. ClarityLift processes communication signals at the aggregate team level. No individual scores are produced. The minimum group threshold of 10 is structurally prevented in code — teams below that floor never surface signals.
What does Maryland consider a "private" communication for monitoring purposes?
Under Md. Code, Cts. & Jud. Proc. § 10-402, the operative question is whether the communication was made with a reasonable expectation of privacy. Workplace channels under an acceptable-use policy that defines them as business communications generally fall within the business-purpose exception. DMs and personal channels are different — and ClarityLift excludes them by design.
Are DMs ever processed by ClarityLift?
No. DMs are rejected at the ingest gate before any classification, signal generation, or storage. This is structurally prevented, not a policy choice.
Does the Maryland consent statute apply to ClarityLift?
Maryland's consent statute applies primarily to recording of voice or wire communications. ClarityLift does not record voice. Text-based communication processing falls under the business-communications and consent exceptions of ECPA.
See ClarityLift’s privacy architecture before you deploy in Maryland.
Aggregate signals only. No DMs. Minimum group threshold of 10. The compliance posture is built into the architecture, not bolted on after.