LinkedIn Under Scrutiny After €310 Million GDPR Fine
LinkedIn is facing renewed scrutiny in Europe following a €310 million fine imposed by the Irish Data Protection Commission (DPC) in October. On December 11, the company informed all EU users about upcoming changes to its legal basis for data processing, which will take effect by January 22, 2025. These changes include a commitment to no longer use age range, gender, interests, and traits for targeted advertising without user consent.
The adjustments are in response to a ruling by the DPC that found LinkedIn in violation of the General Data Protection Regulation (GDPR) by processing user data for targeted advertising without obtaining proper consent. The deadline for compliance is set for January 24, 2025, just two days after LinkedIn’s planned policy update. This situation highlights the ongoing challenges companies face in aligning their practices with EU privacy laws.
Felix Mikolasch, a data protection lawyer at the European Center for Digital Rights (Noyb), noted that LinkedIn’s changes only partially comply with GDPR requirements. He argued that the platform should seek user consent for all personalized ads, rather than a select portion. Currently, LinkedIn does not require consent for data users voluntarily provide on their profiles for personalized advertising.
Maryant Fernández Pérez, head of digital policy at the European Consumer Organisation (BEUC), emphasized the need for consumers to have control over their data and how it is used for advertising. The DPC is currently working with LinkedIn to ensure compliance with GDPR, assessing whether the company’s recent changes are adequate. Unlike Meta’s controversial ‘pay-or-okay’ system, LinkedIn is not expected to adopt a similar approach for its advertising practices.
Source: LinkedIn faces EU scrutiny over mandatory changes on targeted ads
