News

LinkedIn violates data protection rules, uses 18 million email addresses without user consent

The report covered the first few months in 2018, just before GDPR was introduced

26 Nov 2018

.polaris__post-meta--date { display: none; } .polaris__post-meta--date.no-script { display: block; padding-left: 45px } 26 Nov 2018

LinkedIn, the white-collar social network with over 500 million users has responded to an investigation which revealed the company violated data protection rules by using the email addresses of 18 million people to buy targeted ads on Facebook.

Following a complaint from a non-LinkedIn user, the Data Protection Commissioner (DPC) of Ireland conducted an audit into LinkedIn's processing of personal data.

The DPC's report, which doesn't say how it acquired the 18 million email addresses covered the first five months of 2018 (Jan-May) and concluded that LinkedIn Ireland, the data controller, used a hashed form of the email addresses to target Facebook users with ads trying to target the user to sign up to its service "with the absence of instruction from the data controller as is required" to stay GDPR compliant.

"The complaint was ultimately amicably resolved," said the DPC, "with LinkedIn implementing a number of immediate actions to cease the processing of user data for the purposes that gave rise to the complaint."

LinkedIn has also been instructed to delete all personal data processed during the time of unlawful processing "with the absence of instruction from the data controller".

LinkedIn, along with other countries have now moved its data processing from Ireland to the USA in an effort to loosen the stranglehold GDPR places around it. It avoids processing user data under law that should not apply to them. LinkedIn will have international users who aren't EU citizens but prior to the move, would have their data processed in a European country.

The report also details particulars about the ongoing investigation it has into Facebook and how it handles facial recognition data, a type of data which has special requirements under GDPR because it records biometric data. Details of Yahoo's data breach and the interaction between Facebook and WhatsApp are included too.

IT Pro has approached LinkedIn for comment.

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

.imgHideOnJavaScriptDisabled_https://media.itpro.co.uk//image/upload/f_auto,t_resource-card-mobile@1/v1657195741/itpro/Whitepaper%20covers/State_of_Salesforce_2022.png { display: none !important; }

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

.imgHideOnJavaScriptDisabled_https://media.itpro.co.uk//image/upload/f_auto,t_resource-card-mobile@1/v1657196714/itpro/Whitepaper%20covers/SAP_Migration_to_the_cloud.png { display: none !important; }

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

.imgHideOnJavaScriptDisabled_https://media.itpro.co.uk//image/upload/f_auto,t_resource-card-mobile@1/v1643881871/itpro/Whitepaper%20covers/Business_value_modernising_mainframe_thumb.png { display: none !important; }

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

.imgHideOnJavaScriptDisabled_https://media.itpro.co.uk//image/upload/f_auto,t_resource-card-mobile@1/v1657121008/itpro/Whitepaper%20covers/The_Total_Economic_Impact_Of_IBM_FlashSystem.jpg { display: none !important; }

Free Download

LinkedIn violates data protection rules, uses 18 million email addresses without user consent

The report covered the first few months in 2018, just before GDPR was introduced

Most Popular

Get the IT Pro newsletter

Get the free daily newsletter from IT Pro, delivering the latest news, reviews, insights and case studies