Blog

Who Owns Liability in AI Hiring?

ByKayne June 16, 2026June 16, 2026

Cropped shot of female lawyer holding lady justice statue isolated on white

Key quote:

“It makes no sense for a Texas employer with a Texas applicant who will perform work in Texas, I don’t think there is any dispute that that employer would be subject to Texas law for employment discrimination.” What plaintiffs are asking the court to do is to also apply California law, depending on who the defendant is in the action. That is not the way the law is intended to work.” — Kayla Grundy, Workday attorney

Why it matters:

The legal battle in Mobley v. Workday isn’t just about algorithms; it’s also about geography. U.S. District Judge Rita Lin’s May 27 tentative opinion suggests that California’s Fair Employment and Housing Act (FEHA) applies nationwide if Workday develops tools there, which could set a significant precedent for tech vendors. Workday argued this logic is wrong. Their lawyer, Kayla Grundy, told the court during Monday’s oral arguments that software development shouldn’t count as a FEHA-regulated activity. If a Texas company hires a Texan, Texas law should rule, not California law, but that clean logic breaks when you realize Workday is based in Pleasanton, and uses their own software for hiring.

This dispute follows Judge Lin’s March 6 order where she dismissed some claims but let others move forward after giving plaintiffs until March 27, 2026 to fix factual gaps about unlawful conduct in California. Now they’re back arguing that Workday designed the screening systems from their headquarters, meaning the location of the code dictates the liability. If Lin rules against Workday, every AI hiring tool (also called ADMT) built in Silicon Valley faces potential liability across all 50 states. The preliminary class certification already covers applicants over 40 who were denied jobs since September 2020. The AARP’s even filed an amicus brief, signaling broader age discrimination concerns that go beyond a single vendor.

For executives, this would change vendor compliance and risk management. Companies would need to ask where the code lives, because if the screening tool runs on servers in California, you might suddenly owe penalties under a state law you never thought applied. Federal laws like the ADEA and ADA likely wouldn’t provide adequate legal cover if FEHA applies. While Lin hasn’t commented on when she’ll issue a written order, this increases the compliance risks for anyone building hiring tech outside the jurisdiction where their clients sit.

Blog

The $9 Billion Market Built on Junk Science
ByKayne May 15, 2026June 10, 2026

Key quote: “There are — I mean, literally, at this point — hundreds and hundreds of studies involving thousands and thousands of people to show that when it comes to emotion, variation is the norm. The idea that emotions can be objectively measured or analyzed at all, in other words, is fantasy.” Why it matters:…

Read More The $9 Billion Market Built on Junk Science
Blog

CISOs Need To Stop Treating MCP Security Like Software Bugs
ByKayne June 5, 2026June 10, 2026

Key quote: “MCP itself cannot enforce these security principles at the protocol level.” Why it matters: I finally had time to sit and read the NSA’s most recent report on Model Context Protocol (MCP) security that landed in my inbox earlier this week. It’s 17 pages of fun that make you wonder what else the…

Read More CISOs Need To Stop Treating MCP Security Like Software Bugs
Blog

When the Algorithm Cancels Your Coverage Before You Know It
ByKayne June 12, 2026June 12, 2026

Key quote: Consumers deserve transparency and fairness throughout the insurance process, especially when losing coverage can leave someone unknowingly uninsured and vulnerable to penalties and financial risk. Why it matters: Since 2021, the insurance sector has chased AI efficiency gains only to get stuck in a cycle of lawsuits and settlements. The latest example is…

Read More When the Algorithm Cancels Your Coverage Before You Know It
Blog

Privilege Wins the Round, But the AI Discovery War Just Got Messier
ByKayne June 3, 2026June 10, 2026

Key quote: Here, Workday has represented that its attorneys curated the data it used in the bias testing, the overall purpose of the testing was to provide legal advice and not to be used in a business capacity, and it has not submitted the data to a regulatory body. The plaintiffs’ assertions that Workday’s purpose…

Read More Privilege Wins the Round, But the AI Discovery War Just Got Messier
Blog

The Community Bank Wake-Up Call
ByKayne May 18, 2026June 10, 2026

Key quote: Among the customer information the Bank has determined was disclosed are customer names, social security numbers and dates of birth. Why it matters: This probably isn’t just another boring data leak; it’s looks like this is the first time an employee YOLOed non-public banking data into a public LLM and forced their CEO…

Read More The Community Bank Wake-Up Call
Blog

Why Your “Safe” AI Might Just Be High-Stakes In The EU
ByKayne May 26, 2026June 10, 2026

Key quote: The guidelines are intended to support providers, deployers and other relevant actors in determining whether an AI system falls within the high-risk category. They offer clarifications on the relevant provisions of the AI Act and include practical examples to illustrate how the classification should be assessed in different areas and use cases. Why…

Read More Why Your “Safe” AI Might Just Be High-Stakes In The EU

Similar Posts