General knowledge

Employee Damages Company Systems: How Can Employers Sue Under Section 12/1? What Are Their Rights?

Posted on by wongsakornsiri
20
Oct

In today’s digital era, every business relies heavily on computer systems, databases, and technology. Damage caused by data loss or system destruction doesn’t just interrupt day-to-day operations it can result in severe business consequences, including the loss of major clients, the collapse of multi-million-baht deals, or long-term reputational harm.

But what if this damage is caused by the company’s own employee? Particularly in cases where a disgruntled employee deliberately damages the system, what legal actions can the employer take?
And how can the employer file a case that falls under Section 12/1 of the Computer Crime Act B.E. 2550 (2007)?

When an Employee Damages the Company’s Computer System?

Suppose Mr. A, an IT staff member responsible for managing the company’s client database, becomes dissatisfied after a dispute with management. Out of anger, he uses his authorized system access to delete the entire client database and changes the login password to lock everyone else out.
The result: all customer data is lost, multi-million-baht business deals collapse, and company operations come to a halt. This isn’t merely a case of “data loss” , it’s a severe blow to the company’s reputation and credibility.

Such an act constitutes a computer-related offense committed by an employee, falling directly under Section 12/1 of the Computer Crime Act.

Understanding Section 12/1 Before Filing a Lawsuit

Reference: Computer Crime Act (No. 2) B.E. 2560 (2017)

Section 12:
 If any offense under Section 5, Section 6, Section 7, Section 8, or Section 11 is committed against computer data or a computer system related to the national security, public safety, economic stability of the country, or any critical public infrastructure,
the offender shall be liable to imprisonment for a term of one to seven years and a fine of twenty thousand to one hundred and forty thousand baht.

If the offense under the first paragraph causes damage to such computer data or computer system,
the offender shall be liable to imprisonment for a term of one to ten years and a fine of twenty thousand to two hundred thousand baht.

If the offense under Section 9 or Section 10 is committed against computer data or a computer system as mentioned in the first paragraph,
the offender shall be liable to imprisonment for a term of three to fifteen years and a fine of sixty thousand to three hundred thousand baht.

What Can the Employer Do?

Employers can pursue both criminal and civil actions as follows:

1.File a Criminal Complaint Under Section 12/1
 The employer can report the case to the police, supported by evidence such as:

o    System access logs

o    Proof of data deletion or alteration

o    Witness statements or written communications showing intent

The offender may face up to 5 years’ imprisonment, a fine up to 100,000 baht, or both.

2.File a Civil Lawsuit for Damages
 The employer can also claim compensation for:

o    Loss of business opportunities

o    Costs to repair or recover data

o    Reputational damage

The employer must prove that the damages were directly caused by the employee’s intentional act.

3.Take Disciplinary Action
 If the employee is still under employment, the company may terminate without compensation, under Section 119 of the Labour Protection Act B.E. 2541, which allows dismissal for serious misconduct causing employer’s damage.

Proving “Intent” Is Key

The court will focus on the employee’s intent.
If the damage was accidental for instance, due to technical error it may not fall under Section 12/1.
However, deliberate actions such as:

  • Deleting critical data,
  • Blocking system access, or
  • Corrupting important files
    clearly demonstrate intent to cause harm and are punishable under the law.

What Employers Must Be Careful About?

Even if the damage is serious, all actions against employees must comply with labor laws.
Wrongful dismissal without sufficient evidence can result in counterclaims.
Also, unauthorized access to an employee’s private accounts could violate personal data protection laws.
Therefore, it is crucial to let a qualified lawyer handle evidence collection and procedural steps from the start.

Why Should Employers Consult a Lawyer Early?

This type of case involves three areas of law:

  • Criminal law (computer-related offenses),
  • Civil law (claims for damages), and
  • Labor law (employee rights).

If handled incorrectly, employers might lose legal advantage or face additional lawsuits.
A lawyer ensures the case aligns properly with Section 12/1 and maximizes the employer’s legal protection.

Don’t Handle It Alone-Consult a Lawyer First

When an employee causes damage to your company’s computer system whether intentionally or in a moment of anger do not attempt to handle it on your own.
 These cases are legally complex, and employees remain protected under labor law.

Consulting an experienced lawyer helps determine:

  • The proper legal charge,
  • How to preserve evidence, and
  • How to file effectively under Section 12/1.

Wongsakorn Law Office offers legal consultation and representation for employers and companies harmed by employee misconduct.
Our team of experts specializes in labor law and computer-related cases ensuring your rights and your company’s interests are fully protected.

👉 Consult our lawyers before taking any action to protect your company’s future.

General knowledge

Employee Resigns and Deletes Company Emails: Is It Against the Law? What Should Employers Do?

Posted on by wongsakornsiri
02
Sep

In today’s digital era, company emails often contain critical business information and are considered valuable corporate assets. A common issue arises when employees resign and delete company emails or files, whether client data, partner communications, or important project documents. Such actions can cause employers significant business losses.

This leads to two key questions: “Is this action illegal?” and “What legal remedies are available to employers?”

Which Laws Are Involved in Deleting Company Emails?

1.Labor Law
 If an employee deletes company data while still employed, it may constitute serious misconduct under the Labor Protection Act B.E. 2541 (1998), Section 119, which allows an employer to terminate the employee without severance pay if the act was intended to cause severe harm to the employer.
However, if the deletion occurs after the employee has resigned, it is no longer considered a violation under labor law, as the employment relationship has ended.

2.Civil and Commercial Code
 If deleting company data results in damages, such as the loss of a customer contract, it may be deemed a tort under Section 420 of the Civil and Commercial Code, which requires the wrongdoer to compensate the injured party.

3.Criminal Law and the Computer Crime Act
 If a former employee unlawfully accesses the company’s email system and deletes data, it may constitute an offense under the Computer Crime Act B.E. 2560 (2017), Section 9, punishable by up to 5 years’ imprisonment, a fine not exceeding 100,000 THB, or both.

Case Studies and Court Decisions

1.Central Labor Court Judgment
 In one case, an employee deleted sales records and client lists before resigning. The Labor Court ruled that this caused serious damage to the employer, allowing termination without severance pay under labor law.

2.Computer Crime Case
 In another case, a former employee used a password to access the company’s email after resignation and deleted project files related to a pending client contract. The Criminal Court sentenced the defendant to 1 year imprisonment (suspended) and a fine of 50,000 THB, as the act constituted unauthorized access and data destruction under criminal law.

What Can Employers Do Under the Law?

1.      Preserve Evidence
 Collect logs, timestamps of deletions, and evidence of destroyed emails. These serve as key evidence in both civil and criminal cases.

2.      Review Employment Contracts and Policies
 Check whether IT usage agreements or confidentiality clauses have been violated to support legal claims.

3.      Exercise Civil Rights
 Employers may sue for damages if data deletion caused measurable harm, provided sufficient evidence exists.4.Exercise Criminal Rights
 If the act falls under the Computer Crime Act, employers may file a police complaint to initiate criminal prosecution.

Preventive Measures for Employers

1.      Draft clear IT usage policies prohibiting deletion of work-related data.

2.      Terminate system access immediately upon employee resignation.

3.      Retain log files as admissible legal evidence.

4.      Apply the law correctly:

o    While still employed → Termination under labor law.

o    After resignation → Civil lawsuit and/or criminal complaint.

5.Consult a Lawyer – Multiple legal aspects may overlap; professional guidance prevents employers from unintentionally violating laws themselves.

Why Should Employers Consult a Lawyer on This Matter?

In complex cases involving labor law, civil law, and criminal law, even a minor mistake in judgment could put an employer at a disadvantage or expose them to legal liability. Consulting a lawyer is therefore the most appropriate choice because:

  • A lawyer can assess which area of law should be applied in the situation.
  • They can review and verify the completeness of evidence, reducing the risk of unsuccessful litigation.
  • They can devise a sound legal strategy to prevent violations of labor rights or personal rights.

As mentioned, while employers do have legal rights, taking action without a proper understanding of the legal details may create risks, such as:

  • Unintentional violation of employees’ personal rights, for example accessing private data without authorization.
  • Incorrect exercise of rights, such as filing a lawsuit without sufficient evidence, which could result in unnecessary time and expenses.
  • Negative impact on labor relations, if other employees perceive the employer as overstepping legal boundaries.

Consult a Lawyer – The Safest Choice for Employers

In cases where an employee resigns and deletes company emails, such actions may not constitute a violation of labor law if committed after the termination of employment. However, they may still fall under other legal frameworks, such as civil law and criminal law, particularly the Computer Crime Act, which imposes clear penalties.

Employers should implement preventive measures, such as controlling access to company data and establishing clear agreements regarding the use of company email. If such an incident occurs, it is essential to preserve evidence and exercise legal rights properly.

Above all, consulting a lawyer is the most prudent choice. Legal counsel ensures that employers take the correct legal approach, minimizing the risk of making mistakes that could lead to unintended violations of the law. Most importantly, consulting a lawyer helps employers navigate the legal process appropriately and effectively. 👉 Click here to contact us

Line @ คลิก! โทรหาเรา คลิก!