Defense Lawyer
Phone, Computer, and Digital Device Searches in Massachusetts
The most important evidence in a modern Massachusetts criminal case usually is not in a pocket, a car, or a house. It is on a phone, a laptop, or a server, and the rules that govern how police reach it decide cases. The Fourth Amendment and Article 14 of the Massachusetts Declaration of Rights treat digital devices differently from physical containers, because a phone is not a container. It is a record of a life. Over the past decade the Supreme Judicial Court has built the most developed body of digital search law in the country, case by case, covering seizure, nexus, particularity, passcodes, location data, tower dumps, and real-time tracking. Nearly every drug, firearms, fraud, harassment, and domestic violence prosecution in the Commonwealth now involves a fight over a device, and those fights are won on this law. Attorney Joe Serpa litigates digital suppression issues across the courts of Eastern Massachusetts, and this page explains the framework in the order the issues arise in a real case.
Seizure First: When Police May Take the Device
The seizure and the search are separate events with separate rules. Police may seize a phone incident to a lawful arrest, or on probable cause to believe it contains evidence, and hold it while they apply for a warrant. What they may not do is search it on either basis alone. The seizure itself is litigable on two fronts. First, the probable cause supporting it, which in a stop case depends on the legality of everything that preceded it. Second, the timing that follows it, because a device seized and then held for weeks while no warrant application is made raises its own reasonableness problem. The SJC confronted a lengthy gap between seizure and warrant application in Commonwealth v. White, 475 Mass. 583 (2016), and delay remains a recurring defense issue. A phone in an evidence locker is a person’s life in an evidence locker, and the Constitution does not permit indefinite holds while the investigation looks for a theory.
The Search Requires a Warrant, Almost Always
Police may not search a seized phone without a warrant. Riley v. California, 573 U.S. 373 (2014). The Supreme Court’s reasoning was categorical. Searching a phone is nothing like searching a wallet, because the phone holds the sum of a person’s communications, photographs, movements, and associations. The SJC extended the same rule under Article 14 to other digital devices, holding that even a digital camera could not be searched incident to arrest. Commonwealth v. Mauricio, 477 Mass. 588 (2017). The same logic reaches laptops, tablets, external drives, gaming consoles, and the accounts they connect to. Exigent circumstances rarely justify a warrantless data search, because data does not run away. The risk of remote wiping is answered by seizing and securing the device, not by searching it, and provider-side evidence is answered by preservation letters, not warrantless access. With narrow exceptions, the question in a Massachusetts digital case is never whether police needed a warrant. It is whether the warrant they obtained was valid, particular, and honestly built.
Nexus: The Warrant Application’s Weak Point
A digital search warrant requires probable cause on two distinct points, that a crime occurred and that evidence of it will be found on this particular device. The second point is where warrants fail. The SJC has squarely rejected the assumption that because most people carry phones and criminals coordinate by phone, any defendant’s phone probably contains evidence of his crime. Ownership plus a charge does not equal nexus. Commonwealth v. White, 475 Mass. 583 (2016). The affidavit must connect the device to the offense with particularized facts. The contrast case shows what suffices. Where witnesses told police the participants had planned the crime by text, the nexus was real and the warrant stood. Commonwealth v. Holley, 478 Mass. 508 (2017). Defense review of the affidavit, paragraph by paragraph, is the first step in every device case. Boilerplate about how criminals use phones, recycled from application to application, is exactly what White forbids, and warrants built on it get challenged.
Scope: What the Warrant Actually Opens
Even a valid warrant does not open the whole device. The warrant must be particular about what police may search for and where on the device they may look. Two SJC cases frame the fight. In Commonwealth v. Dorelas, 473 Mass. 496 (2016), the court confronted how far a warrant for communications reaches into a phone’s photographs, and the divided opinions in that case are the starting point for every scope argument since. In Commonwealth v. Snow, 486 Mass. 582 (2021), the court enforced temporal limits, so a warrant justified by recent conduct does not authorize an expedition through years of data. This matters because forensic platforms extract everything by default. Cellebrite and similar tools image the entire device, and the legal question becomes what portion of that image anyone was authorized to examine. Evidence found outside the warrant’s scope is suppressible, the plain view doctrine operates differently when every file is momentarily visible to an examiner, and scope litigation is now a standard second front in device cases.
Passcodes, Decryption, and the Fifth Amendment
The government cannot make you testify against yourself, and a passcode lives close to that line. Massachusetts confronted compelled decryption before most states. In Commonwealth v. Gelfgatt, 468 Mass. 512 (2014), the SJC held that compelling a defendant to enter a decryption key is testimonial, permissible only where the act tells the government nothing it has not already proven. Commonwealth v. Jones, 481 Mass. 540 (2019), set the standard for phones. The Commonwealth must prove, beyond a reasonable doubt, that the defendant knows the passcode before compulsion is available. What makes that proof possible is almost always the defendant’s own conduct, the arrest-scene statement that the phone is mine, the booking-room unlock, the consent given to make things easy. Biometric unlocking by face or fingerprint raises related questions that remain unsettled in Massachusetts, which is one more reason the safest course is the simplest one. Do not unlock anything, and do not discuss ownership or passcodes. Our post covers the details: Your Fifth Amendment Right to Refuse a Passcode in Massachusetts.
Location Data: Massachusetts Wrote the National Rule First
The device in your pocket is also a tracking instrument, and the SJC built the governing law years ahead of the federal courts. Historical cell site location information requires a warrant under Article 14. Commonwealth v. Augustine, 467 Mass. 230 (2014). The United States Supreme Court adopted the same rule nationally four years later. Carpenter v. United States, 585 U.S. 296 (2018). The Massachusetts doctrine has real texture beyond the headline. Requests reaching only a brief period of CSLI, measured in hours, have been treated differently from the weeks-long requests that triggered Augustine, so the duration of the request is itself litigable. Commonwealth v. Estabrook, 472 Mass. 852 (2015). Real-time tracking is a search too. When police cause a phone to reveal its live location by pinging it, they have searched it, and they need a warrant. Commonwealth v. Almonor, 481 Mass. 940 (2019). And the tower dump, the request for every device that connected to a cell tower in a window of time, is a search of everyone in the dump. The SJC requires a warrant supported by probable cause and subject to protocols protecting the thousands of uninvolved people whose data comes back. Commonwealth v. Perry, 489 Mass. 436 (2022).
The organizing principle across these cases is the mosaic. A single location point reveals little, but aggregated points assemble a portrait of a life, and the government needs a warrant before assembling one. The same principle governs license plate reader networks under Commonwealth v. McCarthy, 484 Mass. 493 (2020), and long-term pole camera surveillance of a home under Commonwealth v. Mora, 485 Mass. 360 (2020). It frames the newest disputes as well, geofence warrants that ask providers for every device in an area and reverse keyword warrants that ask who searched a phrase. Perry supplies the Massachusetts template for those fights, and any case built on area-based or query-based data should be litigated on the assumption that the law is still being written in the defendant’s favor.
Standing: Whose Phone, Whose Messages
Digital cases raise standing questions physical cases do not. A defendant can challenge the search of his own device and his own accounts. Messages he sent, sitting on the recipient’s phone, are different. The SJC has held that a sender retains no reasonable expectation of privacy in messages once delivered to another person’s device, so the search of a co-defendant’s phone is fought, if at all, by the co-defendant. Commonwealth v. Delgado-Rivera, 487 Mass. 551 (2021). This shapes strategy from the first day. In multi-defendant text-thread cases, whose device produced the thread determines who can move to suppress it, and the defense maps the provenance of every exhibit before deciding where the suppression fight lives.
Consent: The Exception That Swallows Everything
Consent waives the warrant requirement, the nexus requirement, and the particularity limits in a single sentence, and police ask for it precisely because it works. The scope of consent is measured by what a reasonable person would have understood, so take a look does not obviously authorize a full forensic extraction, and consent can be limited or withdrawn. Third-party consent adds another layer. A spouse or roommate cannot consent to the search of a device that is not theirs and not shared. A parent’s authority over a minor child’s device is broader but not unlimited. An employer’s authority over a work-issued device is real, which is why the work phone is the professional’s most exposed device, and the personal phone used for work under a BYOD policy sits in genuinely contested territory. The safe rule for every client is uniform. Decline all searches, of every device, every time, and let the Commonwealth carry its burden.
Cloud Accounts, Providers, and Third-Party Records
Email, social media, messaging platforms, and cloud storage sit with providers and arrive through legal process served on the company, largely under the federal Stored Communications Act. The defense examines the entire paper trail. What process was served, what the provider actually produced against what was demanded, whether content was preserved before any warrant issued, and how the records will be authenticated at trial. Screenshots are not self-authenticating, accounts get spoofed and shared, and the person who controls an account is a fact to be proven, not assumed. Article 14 has been read to protect against some government access that the federal third-party doctrine would allow, so the Massachusetts analysis does not end where the federal one does, and provider records obtained on thin process are challenged under both frameworks.
Where the Device Was Taken: Stops, Homes, Campuses, and the Border
The location of the seizure shapes the whole case. At a traffic stop, the phone rides on the legality of the stop, the exit order, and the search that produced it, covered at Massachusetts Traffic Stops, Exit Orders, and Pretext Searches and in The Modern Massachusetts Traffic Stop. In a home, the device comes in under a premises warrant whose scope is measured like any other. On a campus, the device sits under overlapping authorities, because a university’s ability to search its own network and its students’ conduct records runs in parallel with police authority, and evidence flows between the disciplinary case and the criminal one in both directions. At the border, including Logan Airport, federal agents claim broader authority to search devices without a warrant under the border search exception, with the First Circuit distinguishing basic manual searches from advanced forensic ones. A device searched at the border can feed a Massachusetts prosecution, and the interaction between federal border authority and state suppression law is its own battleground. Travelers carrying sensitive data should minimize what crosses with them.
The Fruit of the Poisonous Tree in Digital Cases
Digital evidence chains are long, and the fruit of the poisonous tree doctrine follows every link. Wong Sun v. United States, 371 U.S. 471 (1963). An unlawful stop or frisk poisons the seizure of the phone. An unlawful seizure poisons the warrant obtained while police held it. Statements taken in violation of Miranda poison the passcode compulsion they enabled, and a warrant affidavit that rests on unlawfully obtained information is attacked on that basis, with the Commonwealth bearing the burden of showing an independent, lawful path to its evidence. In practice, winning the roadside issue often wins the phone, and winning the phone often ends the case, because drug, firearms, and fraud prosecutions rarely survive the loss of the digital evidence.
Discovery, the Full Extraction, and the Defense Forensic Review
When the Commonwealth extracts a device, the defense is entitled to discovery of the extraction under Rule 14, and reviewing it is not optional. The police report quotes three messages. The extraction contains forty thousand, and the three were chosen. The full record frequently holds what the summary leaves out, the messages before the screenshot that change its meaning, the deleted content that undermines the timeline, the location data that puts the defendant somewhere else, the metadata showing when files were actually created. Authentication gets contested, chain of custody gets tested, and where the case warrants it, a defense forensic examiner reviews the image independently. Digital evidence looks authoritative in a prosecutor’s exhibit. It is as contestable as any witness, and in a message-thread case the full thread is routinely the best defense exhibit in the courtroom.
Getting the Device Back
Phones and laptops held as evidence sit in property rooms for months, and for most clients the device is also the bank account, the photo archive, and the business. Return of seized property can be pursued by motion, the reasonableness of continued retention can be litigated, and where the device has been imaged there is frequently no investigative justification for holding the hardware itself. Raising retention early also disciplines the timeline problem, because a device held long term without a warrant application is building the defendant’s delay argument.
What to Do, Starting Now
Do not consent to any search of any device. Do not unlock anything, by code, face, or fingerprint, and do not discuss ownership or passcodes. Do not delete anything either, because wiping messages once an investigation is underway can be charged as intimidation of a witness under M.G.L. c. 268, § 13B, a felony that is frequently worse than the underlying case. Preserve your own evidence, the full threads, the account records, the photos, before retention policies and auto-delete settings erase them. And treat every statement about the phone as evidence, because it is. The Commonwealth’s path to compelled decryption usually runs through the defendant’s own words.
Who These Cases Reach
Device litigation now runs through every charge category and every client type this office represents. Drug and firearms cases built on phones seized at stops on I-93, Route 128, and the Turnpike. Domestic violence and 209A and 258E matters where the entire case is a message thread and the full extraction, not the screenshot, tells the story. Stalking and criminal harassment charges built on posts and accounts whose authorship must actually be proven. Fraud and larceny cases living in email and banking apps. University students at Harvard, MIT, BU, BC, Tufts, and Northeastern, whose laptops and accounts sit under both police and campus authority and whose disciplinary files feed the criminal case. Licensed professionals whose employer-issued devices carry consent questions they never personally answered, and whose licensing boards follow the criminal case. And non-citizens, for whom border device searches at Logan intersect with immigration screening and for whom a digital disposition can carry consequences a citizen would never face.
Courts Where Serpa Law Office Litigates Digital Search Issues
Serpa Law Office litigates device suppression motions, passcode compulsion proceedings, and digital discovery disputes in the following courts, and in the Suffolk, Middlesex, and Norfolk Superior Courts:
- Boston Municipal Court (all divisions, including Central, Brighton, Charlestown, Dorchester, East Boston, Roxbury, South Boston, and West Roxbury)
- Cambridge District Court
- Somerville District Court
- Newton District Court
- Brookline District Court
- Waltham District Court
- Malden District Court
- Woburn District Court
- Concord District Court
- Framingham District Court
- Dedham District Court
- Quincy District Court
- Hingham District Court
See the full list of 48 District Court and BMC divisions at Courts We Serve Across Greater Boston. If your case involves a seized phone or computer anywhere in Greater Boston, the seizure, the warrant, and the extraction each deserve independent review. Contact Serpa Law Office at 617.936.0201 for a free consultation. Boston office: 20 Park Plaza #400A. Quincy office: 500 Victory Rd., Suite 400A. Available 24 hours a day.
Related Serpa Law Office resources
- Massachusetts Phone and Computer Search FAQs
- Illegal Searches and Seizures in Massachusetts
- Massachusetts Traffic Stops, Exit Orders, and Pretext Searches
- The Modern Massachusetts Traffic Stop: Phones, GPS, and License Plate Readers
- Massachusetts Traffic Stop FAQs
- Your Fifth Amendment Right to Refuse a Passcode in Massachusetts
- Your Right to Remain Silent in Massachusetts
- Stalking and Criminal Harassment in Massachusetts
- College and University Student Criminal Defense
- Criminal Defense for Licensed Professionals
- Immigration Consequences of Massachusetts Criminal Charges
- Courts We Serve Across Greater Boston











