Home Schedule Justices Cases Opinions Advocates Stats How It Works

The Judicial Branch

SCOTUS.wiki

Tracking the Supreme Court in plain language — justices, opinions, cases, and the Court’s calendar.

Congress.wiki WhiteHouse.wiki

Home Schedule Justices Cases Opinions Advocates Stats How It Works Privacy Policy Terms of Service

Share your feedback

Help us improve by sharing your thoughts, reporting issues, or suggesting features.

Description

Describe the issue or feature request. Your current page will automatically be included.

Email (optional)

If you'd like a response, please enter your email.

This is not an official Supreme Court website.

Copyright © 2026 PLEJ LLC. All rights reserved.

The Judicial Branch

SCOTUS.wiki

Tracking the Supreme Court in plain language — justices, opinions, cases, and the Court’s calendar.

Color Theme

Congress.wiki WhiteHouse.wiki

Home Schedule Justices Cases Opinions Advocates Stats How It Works Privacy Policy Terms of Service

Share your feedback

Help us improve by sharing your thoughts, reporting issues, or suggesting features.

Description

Describe the issue or feature request. Your current page will automatically be included.

Email (optional)

If you'd like a response, please enter your email.

This is not an official Supreme Court website.

Copyright © 2026 PLEJ LLC. All rights reserved.

Home Schedule Justices Cases Opinions Advocates Stats How It Works

Scope of CFAA: Whether accessing a computer for an improper purpose violates the law · SCOTUS.wiki

October Term 2020

Merits

Scope of CFAA: Whether accessing a computer for an improper purpose violates the law

Nathan Van Buren v. United States

19-783docketfromUnited States Court of Appeals for the Eleventh Circuit

✓

Granted

Apr 20, 2020

✓

Argued

Nov 30, 2020

✓

Decided

Jun 3, 2021

Current status: Decided

Decision

6–3

Decided Jun 3, 2021

Majority (6)

Official portrait of Amy Coney Barrett

Barrett

Official portrait of Stephen G. Breyer

Breyer

Official portrait of Neil M. Gorsuch

Gorsuch

Official portrait of Elena Kagan

Kagan

Official portrait of Brett M. Kavanaugh

Kavanaugh

Official portrait of Sonia Sotomayor

Sotomayor

Minority (3)

Official portrait of Samuel A. Alito, Jr.

Alito

Official portrait of John G. Roberts, Jr.

Roberts

Official portrait of Clarence Thomas

Thomas

Majority6

Official portrait of Amy Coney Barrett

Official portrait of Stephen G. Breyer

Official portrait of Neil M. Gorsuch

Official portrait of Elena Kagan

Official portrait of Brett M. Kavanaugh

Official portrait of Sonia Sotomayor

Minority3

Official portrait of Samuel A. Alito, Jr.

Official portrait of John G. Roberts, Jr.

Official portrait of Clarence Thomas

Plain-English summary

Court limits computer-hacking law: accessing authorized data for improper reasons is not always a federal crime

The Supreme Court in Van Buren v. United States held that the Computer Fraud and Abuse Act (CFAA) does not criminalize every use of authorized access for an improper purpose. The decision narrows the statute to conduct where a person accesses parts of a computer system that are off-limits to them.

Why this matters

The ruling prevents the government from using the CFAA to turn many ordinary policy violations, terms-of-service breaches, or improper uses of workplace databases into federal crimes. It narrows prosecutors' reach and provides clearer guidance to employees, users, and website visitors about when computer-use problems are criminal.

Who may feel it

Employees and contractors who access workplace computer systems
Law enforcement officers and government workers with database access
Website users and account holders governed by terms of service
Businesses and IT administrators who set access controls
Prosecutors and defense attorneys handling computer-crime cases

Key questions

Does "exceeds authorized access" in the CFAA cover someone who has permission to access data but uses it for an improper purpose?

Or does the CFAA apply only when a user accesses areas of a computer or data that are off-limits under access controls?

What the Court agreed to answer

Whether a person who is authorized to access information on a computer for certain purposes violates Section 1030(a)(2) of the Computer Fraud and Abuse Act if he accesses the same information for an improper purpose.

Whether a person who is authorized to access information on a computer for certain purposes violates Section 1030(a)(2) of the Computer Fraud and Abuse Act if he accesses the same information for an improper purpose.

Case facts

Parties: Nathan Van Buren v. United States
Origin: United States Court of Appeals for the Eleventh Circuit
Lower #: 18-12024

October Term 2020 Official docket Documents page