Company data being misused by employee?

Zamboni · 22-01-2013 2:27pm #1

I received a Linked In Connection invite from an employee of an organisation which holds my personal data.
This person does not know me and I have never given permission for my data to be used in this fashion.
I know it was through the company that my data was used by the email address used in the invite.
This was not done on a general/browsing search.
Is this a legitimate complaint to the organisation and potentially DPC?

Tom Young · 22-01-2013 2:47pm

If you're on LinkedIn - you're fair game.

DPC yes.

Zamboni · 22-01-2013 2:50pm

Tom Young wrote: »

If you're on LinkedIn - you're fair game.

DPC yes.

This is the point - The email address the invite was sent to is not connected to a Linked In account.
They didn't stumble across my profile on Linked In and send an invite.
They picked my email address from the company data and used it.

Tom Young · 22-01-2013 2:51pm

Prove it?

22-01-2013 2:52pm

Zamboni wrote: »

and I have never given permission for my data to be used in this fashion.

How do you know what fashion it's being used in? What permissions did you give?

Tom Young · 22-01-2013 2:52pm

If you're email is stored anywhere, LinkedIn could auto invite if a user do directs or consents to their addressbook being used in such a fashion.

Manach · 22-01-2013 2:56pm

OP could raise an "Information Request"(?) with the Organisation to find out how they acquired the initial email information?

ResearchWill · 22-01-2013 2:56pm

It all dependeds on the reason you gave the data for, and secondly the reason they used it. If you gave the data to the company so they can contact you and this is a genuine way the company wants to interact with its customers then it may be ok.

My own personal view we get a bit ott about our data sometimes. But if your not happy contact the company and request they remove any data about you that is not necessary.

Kenny Logins · 22-01-2013 3:00pm

I get auotmatic/random linkedin invitations from people I may have emailed at some point in the past, it annoys me that they can spam in this manner even after I have chosen not to receive these notifications. I don't even have a linkedin account..

Zamboni · 22-01-2013 3:03pm

ResearchWill wrote: »

It all dependeds on the reason you gave the data for, and secondly the reason they used it. If you gave the data to the company so they can contact you and this is a genuine way the company wants to interact with its customers then it may be ok.

This is not a company Linked In profile.
An employee of the company took company data (my personal contact information) and did this through their own private personal Linked In Profile to (build their own connections by the look of it but the reason is unimportant).

22-01-2013 3:06pm

Zamboni wrote: »

This is not a company Linked In profile.
An employee of the company took company data (my personal contact information) and did this through their own private personal Linked In Profile to (build their own connections by the look of it but the reason is unimportant).

The reason is important. For example, did you submit a CV to this company? The employee could be using it to vet you or contact you. Again, it's dependent on what it's being used for and what permissions you gave.

Grolschevik · 22-01-2013 3:33pm

Zamboni wrote: »

This is not a company Linked In profile.
An employee of the company took company data (my personal contact information) and did this through their own private personal Linked In Profile to (build their own connections by the look of it but the reason is unimportant).

If the employee happened to have your email address in his/her contacts for whatever reason, then joined LinkedIn and imported the contacts to LinkedIn, this might be the source of an automated invite.

listermint · 22-01-2013 3:35pm

Grolschevik wrote: »

If the employee happened to have your email address in his/her contacts for whatever reason, then joined LinkedIn and imported the contacts to LinkedIn, this might be the source of an automated invite.

This, in a nutshell. You are reading too much maliciousness out of what is an automated process.

Zamboni · 22-01-2013 3:46pm

Grolschevik wrote: »

If the employee happened to have your email address in his/her contacts for whatever reason, then joined LinkedIn and imported the contacts to LinkedIn, this might be the source of an automated invite.

True.
But that would be exporting business information into a personal Linked In profile.
There is a clear distinction between an individual and the company that appears to be missed here.

ResearchWill · 22-01-2013 4:01pm

Zamboni wrote: »

True.
But that would be exporting business information into a personal Linked In profile.
There is a clear distinction between an individual and the company that appears to be missed here.

While I agree if there is a distinction between employees doing something personal and business. But if the employee joined linked in on a computer he uses in or for work, and if your e-mail was legit in his contacts on that computer and if he gave LinkedIn access to his contacts, while that may be a breach it is a innocent one. Don't think I would cause an issue over it. But if you think it's important enough go knock yourself out.

Company data being misused by employee?

Comments