The Irish Data Protection Commission publishes this information through a report part of a LinkedIn investigation.
From all existing social networks, LinkedIn might not seem so appealing. This is understandable as it focuses on the professional field; However, in a bid to attract more users, the platform would make an unethical strategy because, according to one report, it violated the confidentiality of 18 million email accounts that were used to promote the ad. on Facebook
As TechCrunch reported, the Irish Data Protection Commission (DPC) presented a report last Friday, accusing LinkedIn of not complying with the General Data Protection Regulation (GDPR) to add more users to the base, which is about 600 million.
The DPC's investigation against LinkedIn is back in 2017 by the complaint of a user who has questioned site practices to attract new users into their ranks. In fact, the social network has admitted that in fact its offices in the United States have received 18 million e-mail addresses of non-members in a way that is not transparent for Facebook advertising.
"The complaint was resolved by mutual consent, with LinkedIn introducing a series of immediate actions to stop processing user data for the purposes that triggered the complaint," said DPC to TechCrunch.
The investigations did not stop at this point as DPC decided to carry out a more in-depth audit in which they found that LinkedIn is working out proposed networks of professional relationships that would help consumers overcome the obstacles of having to build them from the start – one of the main issues for people on social networks. Obviously this is related to the use of members' personal data.
Dennis Keller, Europe's, Middle East and Africa's Enterprise Leader (EMEA), said the company he represents regretted these actions, and that they cooperated closely with the PDK during the resolution of the complaint .
"We have made the right steps and have improved the way we work to ensure that this does not happen again.During the audit, we also identified an additional area in which we could improve the confidentiality of data for non-members, and as a result we have voluntarily changed our practices, "Keller said.
Since this case occurred before GDPR was implemented, DPC instructed LinkedIn, through its subsidiary in Ireland, to terminate process data before the process and eliminate them together associated with that processing before 25 May 2018, the date on which the GDPR enters into force.