Businesses frequently publish rules that limit employee use of company computers. All too often they discover employees’ computer use goes beyond those limits and imperils valuable information. But when does this kind of workplace misconduct become a criminal act, and how should employers craft internal policies to deter these activities?