MI HB5623

Prohibits employers and educational institutions from requesting employees, applicants, students, or prospective students to disclose access information (usernames, passwords, login credentials) for personal data storage accounts.

Prohibits employers and educational institutions from requesting authorization to access personal data storage accounts through "friending" or "shoulder surfing" (viewing account contents after being granted access but without obtaining login credentials).

Prohibits employers and educational institutions from discriminating against individuals for refusing to disclose access information, lacking a personal data storage account, or declining to authorize access to their accounts.

Establishes misdemeanor penalties of up to 93 days imprisonment or $1,000 fine for violations; individuals harmed by violations can pursue civil action for actual damages or $5,000 (whichever is greater) plus attorney fees and court costs.

Creates exceptions allowing employers to base employment decisions on publicly available information or authorized background checks, and permits law enforcement agencies to establish social media policies and negotiate shoulder-surfing access agreements with employee representatives.