What happened

On October 24, 2024, the Irish Data Protection Commission (DPC) imposed a €310 million fine on LinkedIn for processing personal data for ad targeting without user consent.

The complaint, originally filed with the French Data Protection Authority in 2018, was processed by the DPC, as LinkedIn’s European base is in Ireland. The DPC’s draft decision, submitted in July 2024, received no objections from other EU data authorities.

The investigation focused on LinkedIn’s use of personal data for behavioral analysis and targeted advertising on users’ profiles, without a valid legal basis.

The DPC concluded that LinkedIn’s ad targeting practices violated GDPR’s principles of lawfulness, fairness, and transparency. Alongside the fine, LinkedIn received an official reprimand and an order to bring its ad practices into compliance.

Source

Tags: news