October 24, 2024 – Ireland’s Data Protection Commission (DPC) has issued a €310 million fine to LinkedIn, citing violations of the General Data Protection Regulation (GDPR). The investigation found that the social media platform failed to adequately protect user data and engaged in non-compliant practices regarding personalized advertising.
The DPC, which serves as the lead regulator for many tech companies operating in the EU, determined that LinkedIn had collected and processed user information without obtaining proper consent, violating GDPR principles on transparency and lawful data handling.
“We identified significant issues with LinkedIn’s use of behavioral data for ad targeting, which undermined user privacy rights,” the commission said in a statement.
This fine follows several high-profile cases against other tech giants, as the EU continues to crack down on data protection violations. In recent years, companies like Meta and Amazon have faced similar penalties, underscoring the EU’s efforts to ensure compliance with strict privacy laws.
LinkedIn, a subsidiary of Microsoft, has responded by saying it will appeal the decision, arguing that the company has taken steps to address privacy concerns and improve its data practices.
“We respect the DPC’s role but disagree with aspects of the findings. We remain committed to ensuring transparency and protecting user data,” a LinkedIn spokesperson said.
The fine is among the largest issued by the DPC this year, reflecting growing scrutiny of tech firms operating across Europe. The case also highlights ongoing debates about the balance between targeted advertising and privacy rights, with regulators pushing for stricter oversight to protect users.
As enforcement actions increase, companies are being urged to strengthen their data policies to avoid steep penalties and ensure compliance with GDPR guidelines.