Compliance of the LinkedIn privacy policy with the principles of the ISO 29100:2011 standard

Abstract

Sharing personal information in online social networks can be risky, considering that unauthorized users can get access to this information and use it for purposes other than those intended to by the data subjects or those specified by the privacy policy of the online social network. The role of Social Networking Site (SNS) privacy policies is to make clear to the users what information is collected and how it will be used. In this paper we focus on examining whether the current LinkedIn Privacy Policy complies with the privacy principles specified in the ISO 29100:2011 standard. We investigated this conformance by mapping the ISO privacy principles to the privacy policy of the sharing content on LinkedIn, building upon our previous work on Facebook [1]. The results of this examination indicate serious mismatches and can be used for making suggestions that might help the Service Providers to redesign a more privacy respectful LinkedIn.