Active Incident? 24/7 Response →
SleuthX

Infidelity Digital Forensics

Infidelity Digital Forensics: Recover the Evidence, Keep It Admissible

A lawful forensic examination of devices and accounts you own or are authorized to submit — recovered messages, app data, and account-access history, collected so it can survive scrutiny in a divorce or custody case.

Suspecting infidelity is a uniquely bad position to make evidence decisions from. Move too fast — into a partner’s locked phone, a guessed password, a tracker on a car — and you can turn the wronged party into the defendant and get the evidence thrown out. Move too slowly and messages, app data, and backups quietly age out. This page covers the lawful middle: what a forensic examination can actually find, on which devices, and the legal groundwork that decides whether any of it holds up.

Written by Quinnlan Varcoe, digital-forensics examiner (Founder & CEO, SleuthX) — the named examiner on every relationship-matter engagement. Educational, not legal advice: whether any step is lawful in your situation is a question for a family-law attorney in your state.

If a current or former partner may be monitoring your phone or accounts, your safety comes first — start at our domestic-violence safety page (Quick Exit, no ad tracking) or the guide to checking whether your phone is monitored.

What a lawful infidelity forensic exam finds

We do not perform private investigation field work in Florida. When a matter requires surveillance to confirm or rule out infidelity, we coordinate a referral to a licensed Florida private investigator who runs it under their license, with their contract and their report. The digital half — deleted messages, hidden chat apps, secret accounts, shared-device activity — is the lane we own: the licensed partner runs the field surveillance, we run the forensics, and your attorney gets a complete picture.

On devices and accounts you own or are legally authorized to submit, a forensic examination can produce:

The evidence, by type — what each proves

The legal groundwork: what decides whether evidence is usable

This is the part most infidelity-investigation pages skip, and it is the part that decides cases. Four federal doctrines and one state-law patchwork do most of the work. Educational, not legal advice — the application to your facts belongs to your attorney.

There is no marriage exception to the Wiretap Act

Intercepting a spouse’s communications in real time — a recorder on the home phone line, an interception app on their handset — violates the federal Wiretap Act (18 U.S.C. §2511). Courts once split on an implied “interspousal exception”; the Eleventh Circuit, sitting en banc, eliminated its own in Glazner v. Glazner(2003), and the modern circuits are uniform: marriage is not a defense. One precision point worth knowing: the Act’s automatic evidence-exclusion rule (§2515) covers intercepted wire and oral communications, and does not automatically exclude intercepted electroniccommunications like texts and email — but using or disclosing those is a separate federal violation (§2511(1)(c)–(d)), state wiretap acts often exclude them, and family-court judges have little patience for unlawfully intercepted anything. Civil remedies run to statutory damages (the greater of $100 a day or $10,000), punitive damages, and fees (§2520); criminal exposure runs up to five years.

Stored accounts vs. the device in your hand

The Stored Communications Act (18 U.S.C. §2701) protects communications in providerstorage — webmail, iCloud, social accounts. Logging into a spouse’s account without authorization is the classic violation. It generally does not reach data already sitting on a personal device: the Fifth Circuit held in Garcia v. City of Laredo(2012) that a personal phone is not a “facility” under the Act. That distinction — device in your possession vs. account on a server — decides many close calls, which is exactly why an examiner asks about authorization before touching anything.

The password line on shared devices

Joint ownership of a computer is not blanket authorization. In Trulock v. Freeh(4th Cir. 2001), password-protected files kept a reasonable expectation of privacy even on a shared machine — one user could not consent to a search of the other’s protected files. The practical rule courts keep reaching for: what a spouse leaves open on a genuinely shared device is one thing; what sits behind their password is another. Bypassing or guessing a password is where lawful access typically ends, and where liability under the Computer Fraud and Abuse Act can begin (civil CFAA claims require $5,000 in economic loss — 18 U.S.C. §1030(g) — a bar interspousal claims often fail, but the criminal statute has no such comfort).

Recording conversations: the state consent patchwork

Federal law and most states require only one party’s consent to record a conversation — and if you are a party, that can be you. A minority of states require everyparty’s consent, and a recording lawful where you made it can still be a crime where the other person was standing. Legal review last verified: 2026-07-02.

All-party-consent stateNuance worth knowing
CaliforniaAll parties must consent.
ConnecticutOne-party criminally, all-party for civil liability (Conn. Gen. Stat. §52-570d) — treat as all-party.
DelawareTwo statutes conflict (one-party wiretap act vs. all-party privacy act) — follow the stricter all-party reading.
FloridaAll parties must consent.
IllinoisAll parties must consent.
MarylandAll parties must consent.
MassachusettsAll parties must consent.
MichiganCourts read the statute to allow a participant to record their own conversation; recording a conversation you are NOT part of requires all parties' consent. Treat as all-party.
MontanaAll parties must consent.
NevadaAll-party for telephone calls (Nev. Rev. Stat. §200.620 as read by the Nevada Supreme Court in Lane v. Allstate); one-party for in-person conversations.
New HampshireAll parties must consent.
OregonIn-person conversations require notice to all participants (ORS 165.540) — upheld en banc in Project Veritas v. Schmidt (9th Cir. 2025); phone calls are one-party.
PennsylvaniaAll parties must consent.
WashingtonAll parties must consent.

Everywhere else follows the federal one-party rule for participants. Statutes change — verify your state’s current rule with counsel before recording anything.

GPS trackers: joint title is not a safe harbor

Putting a tracker on a partner’s car is increasingly a crime in its own right, and the trend is toward more exposure, not less. Florida makes installing a tracking device or app on another person’s property without consent a third-degree felony (Fla. Stat. §934.425, elevated from a misdemeanor in 2024) — and consent is presumed revoked once a divorce petition or protective-injunction filing is on file. Other states run the other way: California’s tracking statute (Penal Code §637.7) exempts tracking consented to by the vehicle’s registered owner, and Texas (Penal Code §16.06) makes the owner’s consent an affirmative defense. Joint title is not a safe harbor, but the rule is genuinely state-by-state — which is exactly why this is an ask-your-attorney-first decision, not a buy-a-tracker-first one.

Worried, but not ready to hire anyone? Start lawfully

There is a real difference between noticing red flags and building a case. Changed passwords, a phone that never leaves their pocket, new privacy settings, unexplained charges — the digital signs of infidelity guide walks what patterns mean and what they do not. And before you do anything yourself, the can-I-investigate-this-myself guide covers where lawful self-help ends. The short version: preserve what you lawfully have (your own threads, your own accounts, jointly held records you already have credentials for), write down what you observed and when, and let formal discovery — document requests and subpoenas through your attorney — compel the rest. That path is slower and it works.

Which page do you actually need?

How we work (methodology)

Every relationship-matter engagement runs the same way: an authorization check before anything is touched (whose device, whose account, what consent or court order applies); hash-verified collection so the original is preserved and provable; analysis on the working copy, never the original; and findings documented so they can be authenticated— with the examiner available for deposition or testimony on the digital portion. Where a legal matter is involved we work under your attorney’s direction, which keeps findings inside the privilege framework your counsel manages.

What this costs

The digital-forensics engagement is examiner-delivered, under our own engagement letter. On a relationship matter we examine only devices and accounts you own or are legally authorized to access. We open the digital matter with a $5,000 refundable engagement retainer; done-for-you forensics run from $2,000, with $400/hr flat for anything beyond, including expert-witness testimony. You get a written scope before any retainer is collected, and the first call is free and NDA-protected. If your matter also needs field surveillance, PI-partner rates are set by the partner — details on the referral page.

Primary sources

  1. Legal Information Institute, Cornell Law School, 18 U.S.C. §2511 — Interception and disclosure of wire, oral, or electronic communications prohibited. https://www.law.cornell.edu/uscode/text/18/2511
  2. Legal Information Institute, Cornell Law School, 18 U.S.C. §2515 — Prohibition of use as evidence of intercepted wire or oral communications. https://www.law.cornell.edu/uscode/text/18/2515
  3. Legal Information Institute, Cornell Law School, 18 U.S.C. §2701 — Stored Communications Act: unlawful access to stored communications. https://www.law.cornell.edu/uscode/text/18/2701
  4. Legal Information Institute, Cornell Law School, 18 U.S.C. §1030 — Computer Fraud and Abuse Act (civil actions require $5,000 in economic loss). https://www.law.cornell.edu/uscode/text/18/1030
  5. U.S. Court of Appeals for the Eleventh Circuit (en banc), Glazner v. Glazner, 347 F.3d 1212 (11th Cir. 2003) — no interspousal exception to the Wiretap Act. https://www.courtlistener.com/opinion/76359/glazner-v-glazner/
  6. U.S. Court of Appeals for the Fifth Circuit, Garcia v. City of Laredo, 702 F.3d 788 (5th Cir. 2012) — a personal phone is not an SCA 'facility'. https://www.courtlistener.com/opinion/3071654/fannie-garcia-v-city-of-laredo-texas/
  7. U.S. Court of Appeals for the Fourth Circuit, Trulock v. Freeh, 275 F.3d 391 (4th Cir. 2001) — password-protected files keep privacy on a shared computer. https://www.courtlistener.com/opinion/7102371/trulock-v-freeh/
  8. Reporters Committee for Freedom of the Press, Reporter's Recording Guide — state-by-state consent rules. https://www.rcfp.org/introduction-to-reporters-recording-guide/
  9. Justia, Recording Phone Calls and Conversations — 50-State Survey. https://www.justia.com/50-state-surveys/recording-phone-calls-and-conversations/
  10. Florida Legislature, Fla. Stat. §934.425 — Installation of tracking devices or tracking applications (third-degree felony). https://www.leg.state.fl.us/statutes/index.cfm?App_mode=Display_Statute&URL=0900-0999/0934/Sections/0934.425.html

Meet Your Practitioner

Quinnlan Varcoe

Founder & CEO

GIAC-certified · 9 industry certifications

With operational experience across Fortune 50 security programs and the defense industrial base, Quinnlan founded SleuthX in 2022 to provide clients with the caliber of expertise typically reserved for the largest enterprises. Her work in threat intelligence and digital forensics has earned the trust of 26,000+ cybersecurity professionals who follow her analysis.

“26,000 professionals follow my work because I say what others won't — and I can back it up technically.”

Fortune 50 BackgroundDefense IndustryThreat IntelligenceDigital PrivacyIncident Response
Quinnlan Varcoe, Founder & CEO

Certified Expertise

GIAC

Infidelity forensics questions, answered plainly

Quinnlan Varcoe, Founder & CEO

Schedule Your Session

Schedule a confidential consultation

A direct conversation with Quinn, the founder and CEO who oversees every engagement. NDA-protected. No sales process. Most engagements begin within 48 hours.

Transparent pricing

Trusted by partners across the practice

DAS Health
Exhibit A Cyber
Ally Security
KIRO Group
Black Mirage
Kalles Group
Gridware
CQR
Archstone Security
Cyvergence
Sentinel Cyber
Cloud Underground
Seron Security
Hexen
Koru Risk Management
DAS Health
Exhibit A Cyber
Ally Security
KIRO Group
Black Mirage
Kalles Group
Gridware
CQR
Archstone Security
Cyvergence
Sentinel Cyber
Cloud Underground
Seron Security
Hexen
Koru Risk Management