LinkedIn Accused Of Misusing Private Messages To Train AI Models

LinkedIn, owned by Microsoft,  is facing a lawsuit in the US which accuses the platform of sharing users’ messages to train Artificial Intelligence (AI) models. Now, LinkedIn Premium users have filed the lawsuit accusing the social media platform of illegally misusing their private messages by sharing them with other companies to train their AI models.

The lawsuit also accuses LinkedIn, the Microsoft-owned firm, of hiding its actions by changing its privacy policy to say user information could be disclosed for AI training purposes. 

The lawsuit says that LinkedIn changed its 'frequently asked questions' section to say that users could choose not to share data for AI purposes, but that doing so would not affect training that had already taken place."LinkedIn's actions... indicate a pattern of attempting to cover its tracks," the lawsuit said. "This behaviour suggests that LinkedIn was fully aware that it had violated its contractual promises and privacy standards and aimed to minimise public scrutiny".

"Given its role as a professional social media network, these communications include incredibly sensitive and potentially life-altering information about employment, intellectual property, compensation, and other personal matters," the filing reads.

The lawsuit was filed in a California federal court on behalf of a LinkedIn Premium user and "all others" in a similar situation. It seeks $1,000 (£812) per user for alleged violations of the US federal Stored Communications Act as well as an unspecified amount for breach of contract and California's unfair competition law.

According to an email LinkedIn sent to its users in 2024, it has not enabled user data sharing for AI purposes in the UK, the European Economic Area and Switzerland. 

The complaint raises broader concerns about user data exposure across Microsoft products like Microsoft 365, Teams, and Word. It warns that such integration increases risks of privacy breaches, unintended profiling, and potential misuse in contexts like employment and business negotiations. The plaintiffs allege LinkedIn “attempted to cover its tracks” by retroactively amending its privacy policies, contradicting its public commitments to ethical AI use and transparency.

LinkedIn users' complaints are bear comparison to Elon Musk's AI model Grok, which used posts on X as a training tool without properly obtaining users for permission, breaking GDPR rules.

LinkedIn has more than one billion users around the world, with almost 25% of them in the US. In 2023, the company attracted $1.7bn in revenue from premium subscriptions. It has described the allegations as "false claims with no merit"

BBC  |   ITPro   |   The National   |   TechMonitor   |   Independent   |    ELC 

Image:  Tobias Dziuba

You Might Also Read: 

Musk Sues Microsoft Over OpenAI:


If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Cyber Attack Disrupts Eindhoven University 
Data Privacy Week »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ReadWrite

ReadWrite

ReadWrite is a leading media platform dedicated to IoT and the Connected World.

Fieldfisher

Fieldfisher

Fieldfisher's Technology, Outsourcing & Privacy Group has class-leading expertise in privacy, data & cybersecurity, digital media, big data, the cloud, mobile payments and mobile apps.

Arxan Technologies

Arxan Technologies

Arxan is a leader of application attack-prevention and self-protection products for Internet of Things (IoT), Mobile, Desktop, and other applications.

FDM Group

FDM Group

FDM Group is an international Professional services company with a focus on IT. Services offered include Software Testing, and Information Security with a focus on operational security and compliance.

CodeSealer

CodeSealer

CodeSealer provide invisible end-to-end user interface protection with a unique web security solution to eliminate Man-in-the-Middle and Man-in-the-Browser vulnerabilties.

Quadron  Cybersecurity Services

Quadron Cybersecurity Services

Quadron Cybersecurity Services is a specialist in digital security, data and system protection.

Phosphorus Cybersecurity

Phosphorus Cybersecurity

Phosphorus has fully automated remediation of the two biggest IoT vulnerabilities, out of date firmware and default credentials.

Keyless Technologies

Keyless Technologies

Simple, secure, and interoperable authentication. Keyless offers unmatched security, privacy and usability, while reducing risk and infrastructure costs.

RiskXchange

RiskXchange

RiskXchange's cybersecurity risk rating solution helps businesses solve complex cybersecurity and compliance challenges by providing a 360-degree view of your cybersecurity posture.

Cyberfort Group

Cyberfort Group

Cyberfort exists to provide our clients with the peace-of-mind about the security of their data and the compliance of their business.

Axiata Digital Labs

Axiata Digital Labs

Axiata Digital Labs is the technology hub of Axiata Group Berhad Malaysia which is one of the leading groups in telecommunication in Asia.

HashDit

HashDit

HashDit products and services focus on helping build a safe ecosystem for both protocol users and smart contract developers on BNB Chain.

RB42

RB42

RB42 (formerly Nexa Technologies) provide cyber defense solutions and cyber defense consultancy service.

nandin Innovation Centre

nandin Innovation Centre

nandin is ANSTO’s Innovation Centre (Australian Nuclear Science and Technology Organisation) where science and technology entrepreneurs, startups and graduates come together.

Chaos Computer Club (CCC)

Chaos Computer Club (CCC)

The Chaos Computer Club is Europe's largest association of hackers.

Cyber Castellum

Cyber Castellum

Cyber Castellum is a cybersecurity consulting firm that specializes in the identification of security vulnerabilities in an organization’s technology landscape.