The Irish Data Protection Commission published this information through a report, part of an investigation on LinkedIn.
From all existing social networks, LinkedIn may not seem appealing. It is understandable because it focuses on the professional field; However, in an attempt to attract more users, the platform would have sustained an unethical strategy because, according to a report, it violated the confidentiality of 18 million email accounts that were used to promote advertising. on Facebook
As TechCrunch reported, the Irish Data Protection Commission (DPC) reported on Friday, accusing LinkedIn of failing to comply with the General Data Protection (GDPR) regulation in an offer to add more users to its database, which is around 600 million.
CPC investigation against LinkedIn dates back to 2017, from a user's complaint that questioned site practices to attract new users among them. In fact, the social network acknowledged that its US offices effectively obtained the 18 million email addresses of non-members in a way that was not transparent to show their advertising through Facebook.
"The complaint was solved amicably, with LinkedIn implementing a series of immediate actions to stop processing user data for the purposes that gave rise to the complaint," said DPC TechCrunch.
Investigations have not stopped at this time as DPC has decided to conduct a more detailed audit, in which they have discovered that LinkedIn has developed proposed networks of professional connections that would help users overcome the obstacle to having to build them from scratch, one of the main issues for people in social networks. Obviously, this involved the use of members' private data.
In turn, Denis Kelleher, the confidential leader of the company in Europe, the Middle East and Africa (EMEA), said the company he represents is sorry for these actions and they worked closely with DPC during the settlement of the complaint.
"We have done the right steps and improved the way we work to make sure that this does not happen again.During the audit, we also identified additional space in which we could improve the confidentiality of data for non-members, and we therefore voluntarily changed our practices, "Kelleher noted.
As this case happened before the GDPR implementation, DPC instructed LinkedIn through its subsidiary in Ireland to suspend processing the data before the process and removing it together with the processing mentioned before 25 May 2018, the date on which the GDPR came into force.