With less than a week ago Amazon announcing that a serious technical error had led to massive data breach, now it is Linkedln’s turn to set the alarm ringing over data breach. Actually this is not the first time that the world’s most popular professional networking website has landed in a data breach mess. However, this seems to be the first time that a full-fledge investigation has brought Linkedln’s data breach practices in full spotlight. The investigation has subsequently forced the company to withdraw these practices.
This investigation was spearheaded by Ireland’s Data Protection Commission (DPC), following a data breach complaint against Linkedln. DPC looked into Linkedln’s activities for the first six months in the current calendar year and noted grave lapses on the data protection front. The commission’s report revealed that Linkedln “processed hashed email addresses of approximately 18 million non-LinkedIn members.” It subsequently used the data of these 18 million members to target them through Facebook ads in a bid to convince them to join their network.
This practice by Linkedln pretty much explains how Linkedln used to obtain new members through uncanny means.
Linkedln has so far not issued any official apology for this alleged data breach. But it has certainly restored to amicably resolve this issue by agreeing to withdraw these malpractices – as has been mentioned above.
However, Linkedln’s issues with DPC may not end anytime sooner. This is because the Ireland based commission carried further audit of Linkedln’s practices and found further lapses. The commission found it was also using social graph-building algorithms to suggest professional network to users.
With the implementation of General Data Protection Regulation (GDPR) across Europe earlier this year, most tech companies are finding it tough to protect the data of their customers. Most experts have welcomed the implementation of GDPR, since almost all tech companies have a poor track record in data protection.