Employee theft and fraud cost businesses billions every year. The question most owners ask after discovering a trusted employee has stolen money or property is whether they, the employer, are legally responsible for that theft. The answer is rarely simple, but it comes down to one core legal principle: vicarious liability. This doctrine holds an employer legally responsible for the actions of an employee, even when the employer did nothing wrong. The key is understanding when the theft happens in a way that the law considers part of the employee’s job.
Courts do not automatically blame bosses every time a worker steals. The law draws a line between acts committed within the scope of employment and acts that are purely personal or criminal. For an employer to be liable, the theft or fraud must be connected to the employee’s job duties. That connection is what makes the employer’s business the cause of the loss, not just a random criminal act.
Imagine a cashier who pockets cash from the register during a shift. That theft occurs directly while the employee is performing work duties. The cashier’s job gives them access to money, and the theft happens on company time and on company premises. In that situation, a court will almost always find the employer vicariously liable. The business put the employee in a position where the theft was possible, and that proximity ties the employer to the loss.
Now consider a warehouse worker who, after clocking out, breaks into the office safe at midnight using a crowbar. The employee is no longer working, the theft requires illegal force, and the act has no connection to the worker’s usual duties. Here, the employer is very unlikely to be held liable. The law sees this as a personal crime, not part of the job. The distinction hinges on whether the employee was acting within the scope of employment at the moment of the theft.
Scope of employment is the legal term that decides the case. It covers actions that are of the kind the employee was hired to perform, that occur substantially within the time and space limits of their job, and that are motivated at least in part by a desire to serve the employer. The last point is the tricky one. Theft obviously is not meant to serve the employer. But courts apply a looser test. If the employee’s position gave them the opportunity and means to commit the fraud, and the fraud was committed while they were doing their job, the employer can still be liable even though the employee had dishonest motives.
A classic example is a salesperson who fakes orders and pockets commissions. The salesperson’s job is to generate sales, and the fake orders look like real sales. The employer benefits temporarily from the increased revenue, even though the employee intends to rob the company later. Courts will likely find the employer liable because the fraudulent activity was intertwined with the job duties.
Another common scenario involves computer access. An accounts payable clerk who generates fake invoices and wires money to a personal account is clearly using job authority to steal. The employer’s decision to give that clerk control over payment systems creates the risk. If the employer did not train the clerk properly, did not supervise the account, or ignored warning signs, the employer’s own negligence makes liability even stronger.
Negligence is a separate but related basis for employer liability. Even if vicarious liability does not apply because the theft was outside the scope of employment, an employer can still be liable for negligent hiring, negligent supervision, or negligent retention. If the employer knew or should have known that the employee had a history of theft or dishonesty and still gave them access to money or sensitive data, the employer may be directly at fault.
For example, if a company hires a bookkeeper without checking references and that bookkeeper has a prior embezzlement conviction, the employer can be sued for negligently hiring someone who posed a foreseeable risk. Similarly, if an employer receives complaints about an employee’s suspicious behavior but does nothing, and the employee later commits fraud, the employer’s failure to supervise or fire the worker can lead to liability.
The legal outcomes vary by state because different courts interpret scope of employment differently. Some states are more protective of employers and require strong evidence that the theft was part of the job. Others lean toward compensating victims and apply a broader rule. The common thread is that employers cannot escape liability simply by saying they did not know or did not approve of the theft. If the employee used the tools and authority the employer provided, the employer bears the risk.
There are practical steps every business must take to limit this risk. Background checks on employees who handle money, accounts, or sensitive data are essential. Clear policies that prohibit theft and require dual authorization for large transactions reduce opportunities. Regular audits and surprise reviews catch fraud early. And perhaps most importantly, employers should never tolerate warning signs like an employee who refuses to take vacation or who lives beyond their obvious means. These are classic red flags of embezzlement.
Employers should also carry fidelity insurance, also called employee dishonesty coverage. This insurance pays for losses caused by employee theft. It does not prevent liability, but it prevents financial ruin from a single bad actor.
The bottom line is that an employer can be held liable for employee theft or fraud when the crime occurred because of the job. The law does not require the employer to have been careless or to have known about the theft. Simply putting an employee in a position where theft was possible is enough in many cases. The best defense is prevention, not litigation.