alt.hn

2/21/2026 at 7:06:18 AM

I verified my LinkedIn identity. Here's what I handed over

 https://thelocalstack.eu/posts/linkedin-identity-verification-privacy/

by ColinWright

2/21/2026 at 5:50:59 PM

I'll note that Persona's CEO responded on LinkedIn [1] pointing out that:

  - No personal data processed is used for AI/model training. Data is exclusively used to confirm your identity.
  - All biometric personal data is deleted immediately after processing.
  - All other personal data processed is automatically deleted within 30 days. Data is retained during this period to help users troubleshoot.
  - The only subprocessors (8) used to verify your identity are: AWS, Confluent, DBT, ElasticSearch, Google Cloud Platform, MongoDB, Sigma Computing, Snowflake
The full list of sub-processors seems to be a catch-all for all the services they provide, which includes background checks, document processing, etc. identity verification being just one of them.

I have I've worked on projects that require legal to get involved and you do end up with documents that sound excessively broad. I can see how one can paint a much grimmer picture from documents than what's happening in reality. It's good to point it out and force clarity out of these types of services.

[1]: https://www.linkedin.com/feed/update/urn:li:activity:7430615...

by aylmao

2/22/2026 at 11:34:31 AM

Persona Identity, Inc. is a Peter Thiel-backed venture that offers Know Your Customer (KYC) and Anti-Money Laundering (AML) solutions that leverage biometric identity checks to estimate a user’s age that use a proprietary “liveliness check” meant to distinguish between real people and AI-generated identities.

Once a user verifies their identity with Persona, the software performs 269 distinct verification checks and scours the internet and government sources for potential matches, such as by matching your face to politically exposed persons (PEPs), and generating risk and similarity scores for each individual. IP addresses, browser fingerprints, device fingerprints, government ID numbers, phone numbers, names, faces, and even selfie backgrounds are analyzed and retained for up to three years.

There are so many keywords in there that should raise a red flag, but funded by Peter Thiel should probably be enough.

https://www.therage.co/persona-age-verification/

by frm88

2/21/2026 at 6:38:46 PM

All of which is meaningless if it's not reflected properly in their legal documents/terms. I've had interactions with the Flock CEO here on Hacker News and he also tried to reassure us that nothing fishy is/was going on. Take it with a grain of salt.

by y-c-o-m-b

2/21/2026 at 6:44:19 PM

Why anyone would trust the executives at any company when they are only incentivized to lie, cheat, and steal is beyond me. It's a lesson every generation is hellbent on learning again and against and again.

It use to be the default belief, throughout all of humanity, on how greed is bad and dangerous; yet for the last 100 years you'd think the complete opposite was the norm.

by shimman

2/21/2026 at 8:04:46 PM 

  > when they are only incentivized to lie, cheat, and steal
The fact that they are allowed to do this is beyond me.

The fact that they do this is destructive to innovation and I'm not sure why we pretend it enables innovation. There's a thousands multi million dollar companies that I'm confident most users here could implement, but the major reason many don't is because to actually do it is far harder than what those companies build. People who understand that an unlisted link is not an actual security measure, that things need to actually be under lock and key.

I'm not saying we should go so far as make mistakes so punishable that no one can do anything but there needs to be some bar. There's so much gross incompetence that we're not even talking about incompetence; a far ways away from mistakes by competent people.

We are filtering out those with basic ethics. That's not a system we should be encouraging

by godelski

2/21/2026 at 10:29:10 PM

Because the liars who have already profited from lying will defend the current system.

The best fix that we can work on now in America is repealing the 17th amendment to restrengthen the federal system as a check on populist impulses, which can easily be manipulated by liars.

by judahmeek

2/22/2026 at 5:01:44 AM 

  > Because the liars who have already profited from lying will defend the current system.
Okay? And so we just have to deal with it? Give up? Throw in the towel? Not push back?

  > repealing the 17th amendment
Did you read your first sentence?

*By your own logic,* the liars who have already profited from lying will appoint those who will help them defend the current system.

by godelski

2/21/2026 at 10:38:04 PM

So your senators were appointed before that? No election needed?

by touristtam

2/21/2026 at 10:42:33 PM

Yes, by state legislatures. The concept was the Senate would reflect the states' interests, whereas the House would reflect the people's interests, in matters of federal legislation.

by bitwize

2/22/2026 at 12:56:25 PM

For those unaware, the German Federal democratic system works in a similar way. They have two houses: the Bundestag (directly elected) and the Bundesrat (appointed by state legistatures). As a outsider, their democracy appears to be very high functioning, which demonstrates this form of democracy can work well.

by throwaway2037

2/22/2026 at 3:02:54 PM

> their democracy appears to be very high functioning, which demonstrates this form of democracy can work well

This probably depends on your definition of "working well".

In March 2025, after the last Federal elections were held in Germany (February 2025), but before the new parliament was constituted (within 30 days of the results?), the new governing coalition engineered a constitutional amendment which required a supermajority which they would not have in the new parliament, so instead they held the vote in the old parliament.

https://www.nytimes.com/2025/03/18/world/europe/germany-debt...

This was perfectly legal, although if you explain it to an outsider it might seem like an abuse of process.

by logifail

2/22/2026 at 10:07:05 PM

I added that last line as a honeypot, as part of my ongoing project on HN. No matter what I say positive about some country, culture, or institution, someone will pop into the conversation to say: "Yes, but what about this one incident. See, X is not so great after all." I think we need an equivalent of Brandolini's law for counterpoint of negativity in all HN discussions. It is as though people think they are disproving a maths proof by counterpoint. That's not the way the Real World of Human Society works. Weirdly, I see the same pattern on Wiki pages about living people. There is always a section of a bunch of random one-off events trying to discredit the person.

To react to your specific incident, I think a more nuanced view would be to say that all highly functioning democracies have incidents that are "perfectly legal, but appear as an abuse of process". I don't really think that detracts from the overall statement that Germany is a highly functioning democracy. Moreover, highly functional democracies regularly change parliamentary rules to reduce incidents like this.

by throwaway2037

2/23/2026 at 8:18:28 PM

> I added that last line as a honeypot

Ouch.

> No matter what I say positive about some country, culture, or institution, someone will pop into the conversation to say: "Yes, but what about this one incident. See, X is not so great after all."

Isn't this what's called "balanced reporting"? Life is shades of grey.

Aside: not that long ago, half of Western Europe used to look up to Germany as it was the home of "Made in Germany" and the place where the trains ran on time ... <chuckle> ... VW emissions and Deutsche Bahn, how times change.

> I think a more nuanced view would be to say that all highly functioning democracies have incidents that are "perfectly legal, but appear as an abuse of process". I don't really think that detracts from the overall statement that Germany is a highly functioning democracy.

I suspect we may need to hear your definition of "a highly functioning democracy" to assess that claim.

If - hypothetically - your political worst enemies were to pull the same stunt immediately after losing an election, binding the winners of said election, would you be as supportive?

by logifail

2/23/2026 at 11:16:17 AM

> To react to your specific incident, I think a more nuanced view would be to say that all highly functioning democracies have incidents that are "perfectly legal, but appear as an abuse of process". I don't really think that detracts from the overall statement that Germany is a highly functioning democracy. Moreover, highly functional democracies regularly change parliamentary rules to reduce incidents like this.

I agree with the repealing of the debt brake (it was a dumb idea that lead to badness, exported right across the EU), but there's no question that how it happened was pretty un-democratic. Like, procedurally it's fine but it was essentially making a big change in a lame-duck session of Parliament.

None of this disputes the notion that Germany is a high functioning democracy, but I guarantee that this action will be brought up again and again by populists in the future, as an example of how the "elites" don't care about democracy. The sad part is, they will be entirely correct in this particular case.

by disgruntledphd2

2/23/2026 at 10:42:59 PM

Another idea for the debt brake: What if they set strict limits, like a max of 3% for 7 years, or 5% for 5 years. Literally, you have a "bank of GDP percent points". You can gain them by running a surplus and spend them by running a deficit. Start the initial bank balance at 25%.

    > but I guarantee that this action will be brought up again and again by populists in the future, as an example of how the "elites" don't care about democracy.
This is a good point that I didn't think about.

by throwaway2037

2/22/2026 at 3:55:34 AM

lol what the fuck, no. Can't believe you look at the current system and think "you know what, political parties should be able to choose senators not the citizens." Good lord.

by shimman

2/22/2026 at 4:33:08 PM

> It use to be the default belief, throughout all of humanity, on how greed is bad and dangerous

And what used to be the default beliefs on rape and slavery?

by parineum

2/21/2026 at 9:55:16 PM

Yup exactly, if this is the truth then put it on the terms/privacy policy etc... exec's say anything these days with zero consequences for lieing in a public forum.

by jeffybefffy519

2/21/2026 at 8:28:57 PM

Can a ceo's word on linkedin and X be used to make claims against them?

by nashashmi

2/22/2026 at 1:02:35 PM

Absolutely. I don't know what legal jurisdiction they are subject to, but I could imagine that someone tries to sue an EU division/outpost in an EU court under a GPDR-type of petition, these posts would be submitted as evidence. One could easily argue the CEO is acting on behalf of the company by posting using their real name. (Let's presume there is no identity fraud for these posts.)

And don't forget that Elon Musk was tried in the US for defamation after making a bunch of posts on Twitter against some UK citizens. Assuming that you are posting under your real name, you are definitely legally responsible for those words.

by throwaway2037

2/22/2026 at 4:35:52 PM

Anything a publicly traded company would state that would lead to a person making a decision to buy or sell stock would be subject to FTC regulations.

by parineum

2/23/2026 at 4:12:27 PM

And if it is not a publicly traded company? Can the CEO in question making statements and assurances on a forum or linkedin or X in communication with a user cause the company to be in a binding position?

Or would it be an empty promise?

by nashashmi

2/21/2026 at 6:09:03 PM

But why believe that when their policy says any of it may not be true, or could change at any time?

Even if the CEO believes it right now, what if the team responsible for the automatic-deletion merely did a soft-delete instead of a hard delete "just in case we want to use it for something else one day"?

by majormajor

2/21/2026 at 6:56:31 PM

I dont believe that for one second. I can think of many examples of times CEO's have said things publicly that were not or ended up being not true!

by BorisMelnik

2/22/2026 at 10:47:51 AM

My favourite 'thing' in the modern world is that 'we don't process and store your data' has taken to mean - 'we don't process and store your data - our partner does'.

Which might not even be stated explicitly, it might be that they just move it somewhere and then pass it on again, at which point its outside the legal jurisdiction of your country's ability to enforce data protection measures.

Even if such a scheme is not legal, the fact that your data moves through multiple countries with different data protection measures, enforcing your rights seems basically impossible.

by torginus

2/22/2026 at 11:38:53 AM

"We don't sell your data" translates to "we sell OUR data about you".

They would never admit the data belongs to you while selling it. When they sell it, they declare themselves the owners of that data, which they derived from things you uploaded or told them, so they're never selling your data according to their lawyers.

Another thing they like to do is sell the use or access to this data, without transferring the legal rights to the data, so they can say with a straight face they never sold the data. Google loves this loophole and people here even defend it.

by mikkupikku

2/21/2026 at 7:30:19 PM

> that require legal to get involved and you do end up with documents that sound excessively broad

If you let your legal team use such broad CYA language, it is usually because you are not sure what's going on and want CYA, or you actually want to keep the door open for broader use with those broader permissive legal terms. On the other hand, if you are sure that you will preserve user's privacy as you are stating in marketing materials, then you should put it in legal writing explicitly.

by vinay_ys

2/21/2026 at 11:55:22 PM

> pointing out that

Certainly, you mean: "claiming that".

In the terms of Mandy Rice-Davies [1], "well he would, wouldn't he?" Especially, his claim that the data isn't used for training by companies that are publicly known to have illegally acquired data to train their models doesn't look very serious.

[1]: https://en.wikipedia.org/wiki/Well_he_would,_wouldn%27t_he%3...

by pyrale

2/21/2026 at 6:47:41 PM

A KYC provider is a company that doesn't start with neutral trust. It starts with a huge negative trust.

Thus it is impossible to believe his words.

by egorfine

2/21/2026 at 8:00:00 PM

Can you say more? Why isn't it neutral or slightly positive? I would assume that a KYC provider would want to protect their reputation more than the average company. If I were choosing a KYC provider I would definitely want to choose the one that had not been subject to any privacy scandals, and there are no network effects or monopoly power to protect them.

by jcheng

2/21/2026 at 11:42:47 PM

> Why isn't it neutral or slightly positive?

Because KYC is evil in itself and if the linked article does not explain to you why is that then I certainly cannot.

> KYC provider would want to protect their reputation more than the average company

False. It is exactly the opposite. See, there are no repercussions for leaking customers data, while properly securing said data is expensive and creates operational friction. Thus, there are NO incentives to protect data while there ARE incentives to care as less as possible.

Bear in mind that KYC is a service that no one wants, anll customers are forced and everybody hates it: customers, users, companies.

by egorfine

2/22/2026 at 4:46:13 AM

I want KYC. I want AML. I want reversible transactions. I also want all of those things to be well regulated by a responsive and reasonable regulatory body.

They may have cases where they break down, but their net social impact is positive.

by chowells

2/22/2026 at 11:44:36 AM

We're talking about LinkedIn, not banking. KYC and AML with respect to banks is a privacy tradeoff that is required by law, after public debate from legally elected representatives. With LinkedIn, it's none of that.

by mikkupikku

2/21/2026 at 6:58:18 PM

What does the (I assume) acronym KYC mean?

by flumpcakes

2/21/2026 at 7:16:26 PM

Kill Your Customer.

by egorfine

2/21/2026 at 11:37:58 PM

[dead]

by sieabahlpark

2/21/2026 at 6:58:49 PM

Know Your Customer

by tripdout

2/21/2026 at 7:55:37 PM 

  > - All biometric personal data is deleted immediately after processing.
The implication is that biometric data leaves the device. Is that even a requirement? Shouldn't that be processed on device, in memory, and only some hash + salt leave? Isn't this how passwords work?

I'm not a security expert so please correct me. Or if I'm on the right track please add more nuance because I'd like to know more and I'm sure others are interested

by godelski

2/21/2026 at 8:20:12 PM

I'm not an expert but i imagine bio data being much less exact than a password. Hashes work on passwords because you can be sure that only the exact date would allow entry, but something like a face scan or fingerprint is never _exactly_ the same. One major tenant that makes hashes secure is that changing any singlw bit of input changes the entirety of the output. So hashes will by definition never allow the fuzzy authentication that's required with biodata. Maybe there's a different way to keep that secure? I'm not sure but you'd never be able to open your phone again if it requires a 100% match against your original data.

by wholinator2

2/21/2026 at 9:09:03 PM

I'd assume they'd use something akin to a perceptual hash.

Btw, hashes aren't unique. I really do mean that an input doesn't have a unique output. If f(x)=y then there is some z such that f(z)=y.

Remember, a hash is a "one way function". It isn't invertible (that would defeat the purpose!). It is a surjective function. Meaning that reversing the function results in a non-unique output. In the hash style you're thinking of you try to make the output range so large that the likelihood of a collision is low (a salt making it even harder), but in a perceptual hash you want collisions, but only from certain subsets of the input.

In a typical hash your collision input should be in a random location (knowing x doesn't inform us about z). Knowledge of the input shouldn't give you knowledge of a valid collision. But in a perceptual hash you want collisions to be known. To exist in a localized region of the input (all z are near x. Perturbations of x).

https://en.wikipedia.org/wiki/Perceptual_hashing

by godelski

2/22/2026 at 10:50:26 AM

> Remember, a hash is a "one way function". It isn't invertible (that would defeat the purpose!). It is a surjective function. Meaning that reversing the function results in a non-unique output.

This is a bit of a nitpick and not even relevant to the topic, but that's not the reason cryptographic hashes are (assumed to be) one-way functions. You could in principle have a function f: X -> Y that's not invertible but for which the set of every x that give a particular y could be tractably computed given y. In that case f would not be a one-way function in the computational sense.

Cryptographic hashes are practically treated as one-way functions because the inverse computation would take an intractable amount of time.

by Delk

2/22/2026 at 8:20:24 PM

Yeah that's a good addition. I think often the words we use can really make things more confusing. Like I hate when people say invertible but in reference to a function that isn't bijective. Why not say reversible? (No complaints with the convention of image/preimage)

Which it's very similar to the problem created by saying "one way". It just isn't one way. Going the other direction is perfectly possible but incredibly hard to find the origin. The visual metaphor I like to use for people is it's like you walk out of a room and into a hallway of doors that are all identical looking. Ignoring the fact that you could just physically turn around, it'd be very hard to figure out which one you actually came from.

But maybe what I like least is that we end up having so many terms for the same general concept. It's one thing when they're discovered independently but I'm pretty confident the computer scientists that pioneered hashes were quite familiar with the mathematics and nomenclature.

  > inverse computation would take an intractable amount of time.
On a real side note I really like this explanation of P vs NP as it explicitly talks about reversibility. https://m.youtube.com/watch?v=6OPsH8PK7xM

by godelski

2/21/2026 at 6:17:08 PM

I'm not convinced there's any significant overlap between "people who are worried about which subprocessors have their data" and "people who don't think that eight subprocessors is a lot"

by saghm

2/21/2026 at 6:26:21 PM

I mean, two of them are cloud vendors. The rest just seem like very boring components of a (somewhat) modern data pipeline.

by __float

2/23/2026 at 6:25:38 PM

The issue isn't the vendors themselves necessarily but the quantity of them. Plenty of boring things over the years have had security vulnerabilities that end up with data getting leaked, so each additional one is just more risk even if you trust them not to be actively malicious. All it takes is one well-meaning but careless vendor to make the whole house of cards collapse.

by saghm

2/22/2026 at 1:43:42 AM

This is not the concern for me. I thought the risk was obvious to everyone. Tho I've been tempted because it means I'll "have more interactions" or whatever LinkedIn pitches with, I didn't want to put a public signal out there with yes: "This is my real name, real job, real city" - to me it's like a pre-vetted database of marks for identity theft criminals or whatnot. You know?

I thought everyone, at least in security would be somewhat concerned about this, but they're not. I get the benefits, and I want to enjoy those benefits too. I'd much prefer if I could privately confirm my name using IDs (zero problem with that) but then not have to show it or an exact profile photo. I'm sure there's a cryptographic way for my identity to be proven to any who I chose to prove it to who required such bona fides. I dislike the surface of "proven identity for everyone". You know?

This to me is the far more important thing than: "security focused biometric company processed my data, therefore being rational and modern I will now have a meltdown." Everytime you drive, use a payment method linked to your name, use your plan phone, your laptop, go to a venue that ID scans, make a rental, catch a flight, cross a border, etc, your ID (or telemetric equivalents sufficient to ID you) is processed by some digital entity. If you will revolt against the principle of "my government issued and not-truly-mine-anyway ID documents, or other provided bona fides are being read by digital entities contracted to do that", it seems nonsensical.

I think the bigger risk is always taking a photo of your passport and putting it on the internet, which is basically what the current LI verification means. Casual OSINT on a verified profile likely reveals the exact birthday (or cross-referenced on other platforms), via "happy birthday" type posts. How old am I type image AI can give you rough years.

by keepamovin

2/22/2026 at 1:12:43 PM

> I'm sure there's a cryptographic way for my identity to be proven to any who I chose to prove it to

There is. The pattern is: generate a keypair locally, derive a DID (decentralized identifier) from the public key, and then selectively prove your identity to specific verifiers using digital signatures. No central authority ever holds your private key.

The key difference from the LinkedIn model: you never hand biometric data to a third party. Instead, you hold a cryptographic identity that you control. If someone needs to verify you, they check a signature — not a database. You can prove you're the same entity across interactions without revealing anything about who you are in the physical world.

This is exactly the approach behind things like W3C DIDs and Verifiable Credentials. The crypto has been solved for years; the adoption problem is that platforms like LinkedIn have no incentive to give users self-sovereign identity when the current model lets them be the middleman.

I've been building an open implementation of this for AI agents (where the identity problem is arguably even worse — there's no passport to scan): https://github.com/The-Nexus-Guard/aip. But the same cryptographic primitives apply to human identity too.

by the_nexus_guard

2/23/2026 at 1:44:06 AM

I like this but want to marry it with real world, too. How would you do that? LinkedIn would verify biometrics and then sign your DID? ANd you'd use that biometric-attested ID to prove to who you want?

I guess from a psychological and UX point of view tho, large platforms like LI have lots of "trust" in people's eyes (accurate or not) and so if LI says "verified" we can trust that. It's not just a conspiracy for linkedin to intermediate themselves, it's human sociology. I would just like LI to remove the "self-dox pwn" from verified badges, attest but let me redact.

by keepamovin

2/21/2026 at 8:32:48 PM

As an industry we really need a better way to tell what’s going g where than:

- someone finally reading the T&Cs

- legal drafting the T&Cs as broadly as possible

- the actual systems running at the time matching what’s in the T&Cs when legal last checked in

Maybe this is a point to make to the Persona CEO. If he wants to avoid a public issue like this then maybe some engineering effort and investment in this direction would be in his best interest.

by barryhennessy

2/21/2026 at 10:08:37 PM

Facebook at some period was pushing users to enable 2fa for security reasons, and guess what they did with the phone numbers they collected.

by whatever1

2/21/2026 at 5:57:51 PM

All of those statements require trust and/or the credible threat of a big stick.

Trust needs to earned. It hasn't been.

The big stick doesn't really exist.

by lysace

2/21/2026 at 5:59:05 PM

Whelp, so long as the CEO says it's fine, we've no reason to worry about what's in the legal verbiage.

by paulnpace

2/21/2026 at 9:54:22 PM

I am wondering what the 'sub-processor' means here. Am I right in assuming that the Persona architecture uses Kafka, S3 data lake in AWS and GCP, Elastic Search, MongoDB for configuration or user metadata, and Snowflake for analytics, thus all these end up on sub-processle list as the data physically touches these company's products or infra hosted outside Persona? I hope all these aren't providing their own identity services and all of them aren't seeing my passport for further validation.

by mdani

2/23/2026 at 3:06:16 AM

> what's happening in reality

that's the thing... excessively broad might not reflect reality TODAY but can be an opportunity in the future.

by m463

2/22/2026 at 4:01:20 AM

"The only subprocessors used to verify your identity are"... some of the biggest data mining companies on the planet. Excellent.

by wackget

2/21/2026 at 10:28:43 PM

Right, because as seen over the last several years, the Big Tech CEOs should totally be trusted on their promises, especially if it is related to how our sensitive personal data is stored and processed. This goes even wtihout knowing who is one of the better known "personas" investing in Persona.

by hansmayer

2/21/2026 at 7:15:08 PM

Why would we believe they are deleted after processing and not shared with the government?

by SilverElfin

2/21/2026 at 7:31:21 PM

What's the government going to do with a picture of the ID they, themselves issued to you?

by astura

2/21/2026 at 8:39:54 PM

Associate it with the specific service they don't want you using, or transactions they don't want you making, or conversations and connections they don't want you having.

by JoshTriplett

2/22/2026 at 12:05:10 AM

As an example, the state government may issue a particular ID that I use in several different places. But the federal government did not issue that ID to me.

by SilverElfin

2/22/2026 at 5:28:10 AM

Keep in mind for most users of the service, the ID was not issued by the US government.

by Jolter

2/22/2026 at 11:40:55 AM

TIL the US government issued my Swiss passport

by Biganon

2/21/2026 at 11:43:40 PM

it's one service collecting ID's issued by dozens of governments.

the already too centralized is being made even more centralized here.

by attila-lendvai

2/21/2026 at 9:05:10 PM

Why would anyone believe this?

by singleshot_

2/21/2026 at 7:57:20 PM

This reads like their entire software stack. I don’t understand the role ElasticSearch plays; are people still using it for search?

Infrastructure: AWS and Google Cloud Platform

Database: MongoDB

ETL/ELT: Confluent and DBT

Data Warehouse and Reporting: Sigma Computing and Snowflake

by rawgabbit

2/21/2026 at 11:53:54 PM

If he's really so confident these assurances will stand scrutiny then why doesn't he put them in the agreement and provide legal assurance to that effect?

by dataflow

2/21/2026 at 6:42:31 PM

this is just "trust me bro" with more words. even if true, the point is not what they do right now, the point is what they CAN do, which clearly as pointed in terms is a lot more than that.

by kwar13

2/21/2026 at 8:20:20 PM

What possible use legitimate use is Snowflake in verifying your identity? ES?

by smw

2/22/2026 at 12:56:15 AM

It's probably used to aggregate all their data sources to compile profiles. They then match the passport against their database of profiles. To say, yup, this passport is for real person; not a deceased person whose identity was stolen for example.

by rawgabbit

2/23/2026 at 11:51:38 AM

Man, a top-voted, white-knight comment on each post involving FAANG gets really tiring

by gib444

2/22/2026 at 3:55:17 PM

I mean...

1) This is 'trust me bro' with more details

2) 'After processing' is wide enough to drive a truck through. What if processing takes a year? What if processing is defined as something involving recurring checks?

3) You have no contract with Persona or even LinkedIn beyond the fact that you agreed to LinkedIn's TOS (but didn't even read).

4) The company that acquires or takes-private Persona might have a very different of how it handles this.

5) What does verifying do for you, the user? I understand its value to LinkedIn and their ability to sell your attention to advertisers, but what do YOU gain?

by corry

2/21/2026 at 9:16:53 PM

Ah yes, because companies never lie about how they process your data...

by YorickPeterse

2/21/2026 at 11:05:36 AM

I used to have a LinkedIn account, a long time ago. To register I created an email address that was unique to LinkedIn, and pretty much unguessable ... certainly not amenable to a dictionary attack.

I ended up deciding that I was getting no value from the account, and I heard unpleasant things about the company, so I deleted the account.

Within hours I started to get spam to that unique email address.

It would be interesting to run a semi-controlled experiment to test whether this was a fluke, or if they leaked, sold, or otherwise lost control of my data. But absolutely I will not trust them with anything I want to keep private.

I do not trust LinkedIn to keep my data secure ... I believe they sold it.

by ColinWright

2/21/2026 at 3:56:40 PM

This is a good example of why it's insane that nobody at Mozilla cares that they hire CEOs that have only a LinkedIn page. If you want to visit the website of the Mozilla CEO, you have to create an account and log in. No big deal if it's a CEO of a plastics manufacturing company, but when the mission is fighting against the behavior of companies like LinkedIn, it makes me wonder why Mozilla exists.

by bachmeier

2/21/2026 at 4:27:01 PM

The CEO role at Mozilla is unstable. Even if Mozilla didn't require a LinkedIn page, chances are their CEOs would have an up to date account. Also, Mozilla's ARR is mostly their Google partnership.

by mkl95

2/21/2026 at 5:28:37 PM

If you visit the Mozilla website right now, you will see "Break free from big tech — our products put you in control of a safer, more private internet experience."

by bachmeier

2/21/2026 at 5:34:50 PM

Marketing slogans are just that, words that sound good.

Better look at their actions than take their slogans at face value. Applies to everyone

by pousada

2/21/2026 at 8:19:31 PM

"Doctor, heal thyself!"

by rdiddly

2/22/2026 at 11:42:00 AM

I don't think Mozilla requires a LinkedIn page. bachmeier is complaining that Mozilla's CEO doesn't have a personal webpage, and only has a LinkedIn page. By not having a personal webpage, and having a LinkedIn page, it appears that Mozilla's CEO doesn't really care about the open web.

by Thorrez

2/21/2026 at 4:01:51 PM

It’s hard to be perfect.

by barbazoo

2/21/2026 at 4:25:06 PM

The surest sign of incompetence is somebody claiming they are forced into a requirement for perfection when the requirement is simply a basic adherence to virtue

by AndrewKemendo

2/21/2026 at 4:26:40 PM

Yes, in the same way it's hard for Tim Cook to not run his company on Windows 11.

by bachmeier

2/21/2026 at 6:19:20 PM

Good thing quality isn't binary! It's pretty attainable to at be halfway decent

by saghm

2/21/2026 at 12:25:33 PM

Remember when LinkedIn was condemned because they copied Gmail’s login page saying “Log in with Google”, then you entered your password, then they retrieved all your contacts, even the bank, the mailing lists, your ex, and spammed the hell out of them, saying things in your name in the style of “You haven’t joined in 5 days, I want you to subscribe” ?

by eastbound

2/21/2026 at 2:27:22 PM

The original version of the LinkedIn mobile app uploaded your personal contacts stored on your smart phone and SIM to their server (to also "invite" them), without requesting user permission.

After that, I never installed it again (but too late), and I bought a second (non-smart) phone.

by jll29

2/21/2026 at 6:41:14 PM

When I created an account on LinkedIn, a long time ago, I used the web. When it asked if I wanted to invite other people from my list of contacts, I clicked yes. I thought it would let me manually enter some contacts, or at worst, give me a list to choose from, with some kind of permissions prompt. Somehow, it accessed my entire Gmail contact list, and invited them all. My goodness, that was terrifying (I didn't even know it was possible) and embarrassing. Companies are not to be trusted, ever. Especially now, as they've proven for decades they have zero moral compass, and no qualms about abusing people for profit.

by Teckla

2/21/2026 at 3:53:39 PM

WhatsApp infamously did just that.

It vacuumed the contacts and spammed them with "Join me on WhatsApp". One of the reasons for their initial exponential growth.

by huhtenberg

2/21/2026 at 5:38:39 PM

Almost everything coming out of Silicon Valley has an unethical past(present?) if you look at it a bit more closely.

by pousada

2/21/2026 at 6:15:16 PM

Venmo did this too

by reformdEngineer

2/21/2026 at 12:37:43 PM

I don't know how they're still in business after that. They also had a massive data breach at one point.

by philjackson

2/21/2026 at 12:54:24 PM

Because super-majority doesn't really care if the product does what it's intended to in the end.

by tokioyoyo

2/21/2026 at 12:53:59 PM

Do you have a reference with more information on that?

by StrauXX

2/21/2026 at 1:12:11 PM

They used a legit google oauth but with broad rights. They did pull the contact and repeatedly spam them as personal emails. There were lawsuits.

by genghisjahn

2/22/2026 at 12:43:57 AM

I remember boycotting them for many years after that, yes.

Now lots of contact forms (not even necessarily job related!) are treating it as a required field. Pretty distasteful situation.

by DANmode

2/21/2026 at 1:39:15 PM

Linkedin has been breached a lot over time.

But I have such low faith in the platform that I would readily believe that once they think you're not going to continue adding value, they find unpleasant ways to extract the last bit of value that they reserve only for "ex"-users.

by dijit

2/21/2026 at 3:24:51 PM

> Linkedin has been breached a lot over time.

Yeah but the OP got spam within hours. That would be pretty unlikely to have coincided with a breach.

But LinkedIn probably sold the data, they have a dark pattern maze of privacy settings and most default to ON.

by wolvoleo

2/21/2026 at 1:24:23 PM

My assumption was that it was an intelligence platform first. Just like Skype, Microsoft decided to randomly buy it.

It amazing really. If you reached out to people and asked them for the information and graph that LinkedIn maintains, most employers would fire them.

by Spooky23

2/21/2026 at 3:20:26 PM

There's an entire cottage industry of linkedin scrapers that put a lot of effort into guessing your email address to enable cold outreach.

I'm ashamed to say I worked at one such place for several months.

Apollo is probably the most comprehensive source for this. It's creepy as fuck.

by ljm

2/21/2026 at 3:27:59 PM

Yes I notice that too. I hide my last name now because at my company it's just firstname.lastname so easy to guess.

It helps a lot but I still get a lot of sales goons. A lot of them follow up constantly too "hey what about that meeting invite I sent you why did you not attend"? My deleted email box is full of them (I instantly block them the minute I get an invite to anything from someone I don't know, and I wish Outlook had the ability to ban the entire origin domain too but it doesn't)

by wolvoleo

2/22/2026 at 3:00:10 AM

Put an emoji after your name in LinkedIn. Something that obviously isn’t part of your name. All the bots that scrape LinkedIn and guess your email address will include the emoji when addressing you in an email; no humans will. You can then use this in a spam filter.

by JimDabell

2/22/2026 at 7:22:45 AM

I think it would be fairly easy to clean up. It should help with the dumbest spammers though.

by notpushkin

2/22/2026 at 7:40:26 AM

I’m a bit on the fence with this one. Sure, spam is bad, but they also enable you to reach out to somebody outside of the LinkedIn’s walled garden (personally, without automation).

If it enables a tiny startup trying to solve the exact problem I have to reach out to me – I’d say it’s a net positive (but not by a huge margin), and having to blacklist @mongodb.com with their certifications bullshit is a price I’m ready to pay. If more spammers get their hands on this kind of dataset though it’ll probably be a disaster.

by notpushkin

2/23/2026 at 7:39:56 PM

I think your example goes out of the scope of an expensive platform like Apollo that exists to maintain a shadow profile based off of your online presence, though.

Maybe the thought occurs that one is only accessible on LinkedIn on purpose and just because a recruiter from 8 years ago has your number, it's not up for grabs?

by ljm

2/21/2026 at 1:40:55 PM

> My assumption was that it was an intelligence platform first.

What do you mean by "intelligence platform"?

by vaylian

2/21/2026 at 5:17:07 PM

"Spyware" doesn't quite capture it.

It's "intelligence platform" in the sense that you can gain a ton of information on individuals, organizations, and relationships that drive it all. If you can track how people move and interact between organizations, you can determine who someone is doing business with and even make an educated guess if that's a sale or interview.

I started writing about it almost 20 years ago: https://caseysoftware.com/blog/linkedin-intelligence-part-ii and turned it into a conference presentation called "Shattering Secrets with Social Media"

But there have been numerous proofs of concept over the years: https://en.wikipedia.org/wiki/Robin_Sage

by caseysoftware

2/21/2026 at 9:33:41 PM

Bro if you want people to read your stuff. Don't require java script to view the page. Smart people block that stuff.

by trinsic2

2/22/2026 at 1:13:20 AM

I couldn't agree more.

by reciprocity

2/21/2026 at 2:08:12 PM

Spyware

by estimator7292

2/21/2026 at 4:20:32 PM

ofc it's sold. Take a look at this: https://www.rb2b.com/

It identifies users that visit your site and then shows their email, phone number and living place based on their Li profile ;))

by mati365

2/21/2026 at 8:37:29 PM

rb2b website has an incredibly ironic "we respect your privacy" GPDR banner along the bottom of their landing page.

by anjel

2/21/2026 at 6:04:46 PM

It’s definitely not a fluke. I was getting between 20 and 30 spam emails per day. Simply out of curiosity I deleted my linkedin account and the spam abated. After a week the spam reduced to a trickle and now after a few months I only get a few spam emails per week. Shortly after discovering that LinkedIn was the problem I deleted Indeed as well. Indeed has a fairly robust data deletion program.

by griffineyes

2/22/2026 at 10:00:33 PM

This seems to be exactly the opposite of what I was describing.

While I had a LinkedIn account I was not receiving spam.

When I deleted my account, the spam started, and continues to this day.(+)

(+) Which is not a surprise ... once an email address has been leaked it gets onto lists and the spam will never end.

by ColinWright

2/22/2026 at 3:11:31 AM

LinkedIn definitely sells/shares/leaks email address. I'm not sure which but I also have the same problem. I created my account with a unique email I've only used for LI. I occasionally get B2B and recruiter spam sent to that email.

by driverdan

2/21/2026 at 8:38:35 PM

It could be, but I think it's also as likely it was the scrapers treating that as a trigger event of some type. eg you got a job and might have regrets.

I also saw... not sure what to call them, but honeypot friend requests? I used to get regular requests from profiles I didn't recognize with a generic pretty woman (I'd assume stock photography). Since I ignored them, they would re-request on intervals that were exactly 90 or 180 days. I occasionally glanced at them and there seemed to be no rhyme nor reason to their friends. I'd assume this was also some type of scraping, probably for friends-only profile data.

by x0x0

2/22/2026 at 3:05:02 PM

I don't remember where I got this from, but I've heard long ago about a company which TOS stated vehemently that they would never sell the contacts of their customers... Only to sell them once the accounts are closed because, well, technically those were no longer customers.

So maybe that's what happened?

by rixed

2/21/2026 at 4:54:54 PM

You can replace LinkedIn in your post with every social media etc company and it will ring as true as your current post

by bdangubic

2/21/2026 at 6:02:17 PM

A LinkedIn account's sole purpose is publishing, dissemination, and advertising information about you and your company. Anything that you badly want to keep private certainly does not belong there, much like it does not belong to a large roadside billboard.

Otherwise, LinkedIn can be quite useful in searching for a job, researching a company, or getting to know potential coworkers or hires.

Email spam is, to my mind, an inevitability. You should expect waves of spam, no matter what address you use; your email provider should offer reasonable filtering of the spam. Using a unique un-guessable email address, like any security through obscurity, can only get you so far.

by nine_k

2/21/2026 at 9:46:14 PM

You sound like someone that wants to normalize bad behavior. Good luck with that. I would never use a social networking site to find people or jobs. I'm not going to put support behind a entity that doesn't respect privacy and the fact that they are people who don't care, like you, are the problem and why we are in the situation we are in as a country at this point.

by trinsic2

2/21/2026 at 11:49:34 PM

I won't call it a social networking site. I'd call it a business-card-exchange site, plus a corporate-flyers-handout site, and of course a self-promotion site.

Selling emails is of course bad, but expecting your email that you give to any big corporation to stay private for a long time is, alas, naïve. I've read the fine print; in most EULAs it includes a ton of clauses about sharing your contacts with a bunch of third parties, etc. LinkedIn, in particular, explicitly says that it may share your contacts with advertising partners.

In other words, if you need to enter this space, wear a hazmat suit, expect no niceties.

by nine_k

2/22/2026 at 5:54:58 PM

Your response proves my point.

by trinsic2

2/21/2026 at 7:28:12 PM

This is precisely why I give each website an alias such as website@example.com. If I start receiving spam to that address, I revoke the alias and name and shame the website online whenever I get the chance. Not that I would use LinkedIn anyway.

by drnick1

2/21/2026 at 8:41:34 PM

proxy emails are rejected more and more. Same with google tel numbers. The internet feels more and more like the garbage compactor scene in Star Wars.

by anjel

2/21/2026 at 9:00:30 PM

How would the website know that it is a "proxy email?" I am using my own domain name and email server, and don't believe I ever received a rejection.

by drnick1

2/23/2026 at 7:18:08 AM

I usually try to make it obvious what company I have the account to, it makes it easier to track down in cases where the service isn't one that sends mail often. Samsung will not let me use Samsung in my email address. Many companies don't want your email address to include their name.

After I give up and use a real address, some companies will reject my personal first@last.family address because it's still Y2K and .family is not a valid tld.

by efreak

2/21/2026 at 3:57:46 PM

[dead]

by Keekgette

2/21/2026 at 4:32:31 PM

> Nobody needs these narcisstic, BS spewing pseudo-networking places.

I mean I got my last job through LinkedIn. I'm currently interviewing at a few places, half of which came from LinkedIn. So I personally clearly do need LinkedIn, unless you want to hire me.

by post-it

2/21/2026 at 12:16:21 PM

I really appreciate this write-up.

Was forced to verify to get access to a new account. Like, an interstitial page that forced verification before even basic access.

Brief context for that: was being granted a salesnav licence, but to my work address with no account attached to it. Plus I had an existing salesnav trial underway on main account and didn't want to give access to that work.

So I reluctantly verified with my passport (!) and got access. Then looked at all the privacy settings to try to access what I'd given, but the full export was only sign up date and one other row in a csv. I switched off all the dark pattern ad settings that were default on, then tried to recall the name of the company. Lack of time meant I haven't been able to follow up. I was deeply uncomfortable with the whole process.

So now I've requested my info and deletion via the details in the post, from the work address.

One other concern is if my verified is ever forced to be my main, I'll be screwed for contacts and years of connections. So I'll try to shut it down soon when I'm sure we're done at work. But tbh I don't think the issues will end there either.

Why do these services have to suck so much. Why does money confer such power instead of goodwill, integrity and trust/trustless systems. Things have to change. Or, just stay off the grid. But that shouldn't have to be the choice. Where are the decentralised services. I'm increasingly serious about this.

by luxpir

2/21/2026 at 12:21:10 PM

> Was forced to verify to get access to a new account. Like, an interstitial page that forced verification before even basic access.

I'm forced to verify to access my existing account.

I cannot delete it, nor opt out of 'being used for AI content' without first handing them over even more information I'm sure will be used for completely benign purposes.

by SomeUserName432

2/21/2026 at 3:56:14 PM

About a year ago I wanted to check out LinkedIn. Signed up with my real name, added my employer and past employers, verified my current work email address etc.

About 24 hours later, when logging in to pick up where I left off, I'm redirected to a page that tells me that my account has been locked. For the safety of my account, I needed to verify my identity to continue.

I refused to do so, for the same reasons this article highlights. So I wanted to delete my account and never return. Guess what? You can't delete your account without first verifying.

It took me a few frustrating months of trying to email their DPO (data protection officer) and filling out forms, constantly being routed to regular support with very unhelpful support staff. I actually contacted the Irish data protection agency thing (I'm not Irish, but european), and while waiting for them to process the case, I miraculously got a reply from LinkedIn that my account deletion was being processed.

Quite an infuriating experience.

by kioshix

2/21/2026 at 4:43:22 PM

I had this problem with Facebook 15 years ago. Nothing new, but as always, people will avert their eyes until it begins to affect them personally.

by pteraspidomorph

2/21/2026 at 12:32:46 PM

That's concerning.

Kids in Oz were getting around social media age restrictions by holding up celeb photos. I doubt that'll work in this case, but I'd be tempted to start thinking of ways to circumvent.

At the risk of losing the account, it's a very bad situation they are forcing people into.

by luxpir

2/21/2026 at 12:44:22 PM

Thank you for sharing this.

I understand, and even agree, that how this is being handled has some pretty creepy aspects. But one thing missing from the comments I see here and elsewhere is: How else should verification be handled? We have a real problem with AI/bots online these days, trust will be at a premium. How can we try to assure it? I can think of one way: Everyone must pay to be a member (there will still be fraud, but it will cost!). How else can we verify with a better set of tradeoffs?

There is some info from Persona CEO on (of course) LinkedIn, in response to a post from security researcher Brian Krebs: https://www.linkedin.com/posts/bkrebs_if-you-are-thinking-ab... . I note he's not verified, but he does pay for the service.

by stateofinquiry

2/21/2026 at 1:29:15 PM

> How else should verification be handled?

Many European countries have secure electronic identifications that are trusted by the government, banks etc.

Linkedin could easily use this to verify the identities.

Example of services where you can verify the identity with 35 different providers using a single API:

https://www.signicat.com/products/identity-proofing/eid-hub or https://www.scrive.com/products/eid-hub

I doubt it would take more than a sprint to integrate with this or other services.

by throwaway063_1

2/21/2026 at 12:59:40 PM

How about everyone gets a digital certification from their own government that this is the person named this and that. No need to share cranial measurements and iris scans.

by anttihaapala

2/21/2026 at 1:31:49 PM

Well, different trade offs there. On the plus side, sounds pretty simple. On the other hand...

Digital certification from the gov sounds a lot like "digital ID", which has run into considerable resistance in the UK and EU in just the last few months. As a general observation I find most EU citizens I interact with much more trusting of government than ... well, any other group of folks I have interacted with (I have the privilege of having lived and worked in S. America, N. America, sub Saharan Africa and now an EU country). If it does not fly well here, I don't think its general solution that most people would be comfortable with.

https://blogs.lse.ac.uk/europpblog/2025/10/09/britcard-uk-di...

by stateofinquiry

2/21/2026 at 3:00:18 PM

Having lived in borh the UK and Poland I was very surprised (given history) to find how comfortable, in comparison, Poles are with ID requirements, tax ID to join gyms and football clubs compared to the UK whicb still resists mandatory ID. There does seem to be a UK EU divide here

by dwedge

2/21/2026 at 7:33:41 PM

> How else should verification be handled?

There should be no verification. The idea of a single platform where every worker is listed, identified, and connected to other people he/she knows IRL is scary. It shouldn't exist.

by drnick1

2/21/2026 at 6:50:21 PM

zero knowledge proofs, with services such as https://zkpassport.id/ (i am not affiliated)

by kwar13

2/23/2026 at 3:40:26 AM

He (Rick Song, Persona CEO) is verified:

   > Identity
   > 
   > Verified using government ID in March 2025
Not that I would necessarily trust a verification badge for someone who controls the company with the responsibility for generating verification badges.

by digitalPhonix

2/21/2026 at 3:48:09 PM

[dead]

by 18061235

2/21/2026 at 4:24:38 PM

Let’s not forget Persona is linked to Peter Thiel. When Thiel and his friends support the government snatching citizens off the streets, there is unacceptable risk with forcing job seekers and the like to create accounts on LinkedIn.

by SilverElfin

2/21/2026 at 2:23:33 PM

> Why do these services have to suck so much.

They can do what they please. Its due to the network effects. The tie-ins of tech are so strong, I'd wager that %99 of why they succeed has nothing to do with competency or making a product for the user, just that people are too immobile to jump ship for too many reasons. Its staggering how much stronger this is than what people give credit for. Its as if you registered all your cells with a particular pain medication provider, and the idea of switching pills makes one go into acute neurosis.

by jofla_net

2/21/2026 at 2:33:43 PM

Someone needs to reimplement a "clean" version of its functionality: professional networking is too important to be left to the data hoarders/government surveillance cluster of organizations.

Besides, its UX has decayed to a "Facebook for the employed", where John Doe praises himself for mastering a mandatory training at work or taking Introduction to HTML at "Harvard" via Coursera.

by jll29

2/21/2026 at 3:01:45 PM

Nobody is coming to save us. A federated LinkedIn would be great but will not take over. We just need to stop using these services

by dwedge

2/21/2026 at 3:33:39 PM

The problem is a competitor will never be able to succeed without doing the same thing. Try to compete as a "free" service and you'll have to sell ads, try to charge and you'll never get enough signups to fund the business.

by mcmcmc

2/21/2026 at 6:40:10 PM

It seems to me that if you let Persona verify your identity you're essentially providing data enrichment for the US government. In exchange for what? A blue tick from a feeder platform like LinkedIn, Reddit or Discord? No thanks.

On the other hand it can be hard to escape if it's for something that actually matters. Coursera is a customer. You might want your course achievements authenticated. The Canada Media Fund arranges monies for Canadian creators when their work lines up with various government sponsored DEI incentives. If you're in this world you will surely use Persona as required by them. Maybe you're applying for a trading account with Wealthsimple and have to have your ID verified. Or you want to rent a Lime Scooter and have to use them as part of the age verification process.

KYC platforms have a place. But we need legal guarantees around the use of our data. And places like Canada and Europe that are having discussions about digital sovereignty need to prioritize the creation of local alternatives.

by g8oz

2/21/2026 at 6:45:57 PM

> KYC platforms have a place

Yes. In hell.

by egorfine

2/22/2026 at 3:41:18 PM

No, in banking.

Banks are in a unique and perfect place to collect and require KYC data.

Because of the exorbitant privileges given to banks by state actors it should be easy to demand that the banks KYC be extensible to all other private transactions.

Which is to say: if the banks do KYC, nobody else has to.

by rsync

2/21/2026 at 11:45:27 PM

> On the other hand it can be hard to escape if it's for something that actually matters.

E.g. Job applications, rental references, clearance at existing jobs, citizenship and visa applications, digital signing for things like business contracts.

by tokenless

2/21/2026 at 2:30:00 PM

Somehow the fundamentals of places like linkedin, gmail, google, facebook, etc have eluded people.

1. they are selling you as a target.

2. some people, governments, groups, whatever are willing to pay a lot of money to obtain information about you.

3. why would someone pay good money to target you unless they were going to profit from doing so. are they stupid? no.

4. where does that profit come from? If some one is willing to pay $100 to target you, how are they going to recoup that money?

5. From you.

There is simply no other way this can have worked for this long without this being true.

It is a long causal change, so it is fair to ask whether there is any empirical evidence. If this is true we would expect to see ...? Well how about prices going up? Well how about in general people are less able to afford housing, food, cars, etc.

I'm speculating here, but perhaps it is predictability. There is a common time warp fantasy about being able to go back and guess the future. You go back and bet on a sports game. If I can predict what you are going to do then I can place much more profitable bets.

Do the corporations that participate in this scheme provide mutual economic benefit? Do they contribute to the common wealth or are they parasitical?

No one likes to think they have parasites. But we all do these days.

by talkingtab

2/21/2026 at 4:41:40 PM

Here’s the problem I have with your take (even if I agree): LinkedIn has a product to sell. You’re not supposed to be the product, because companies pay to advertise job postings, they sell career tools, sales tools, etc.

At what point is that not enough for them to stop doing data brokerage or sharing?

by port11

2/21/2026 at 5:07:17 PM

> 1. they are selling you as a target.

This is why people sign up for LinkedIn.

They want to be targeted by companies for jobs. Or when they’re applying for a job, they want to be easily found by people at that company so they can see more information.

If you don’t want those things, you don’t need a LinkedIn page.

> Do the corporations that participate in this scheme provide mutual economic benefit? Do they contribute to the common wealth or are they parasitical?

You wrote a long hand wavey post but you stopped short of answering your own question.

The corporations who pay LinkedIn are doing so to recruit people for jobs. I’ve purchased LinkedIn premium for this purpose at different times.

After “targeting” those LinkedIn users, I eventually hired some of them for jobs. There’s your mutual economic benefit. This is why people use LinkedIn.

> It is a long causal change, so it is fair to ask whether there is any empirical evidence. If this is true we would expect to see ...? Well how about prices going up? Well how about in general people are less able to afford housing, food, cars, etc.

You think the root cause of inflation is… social media companies? This is an extraordinary claim that requires extraordinary evidence. You’re just observing two different things and convinced they’re correlated, while ignoring the obvious rebuttal that inflation existed and affordability changes happened before social media.

> Somehow the fundamentals of places like linkedin, gmail, google, facebook, etc have eluded people.

I think most people understand the fundamentals of LinkedIn better than you do, to be honest. It’s not a mystery why people sign up and maintain profiles.

by Aurornis

2/21/2026 at 8:00:39 PM

You assume that targeting is to find the best worker for the correct pay.

What if it's just to find the most desperate worker for the lowest pay possible?

by themafia

2/21/2026 at 9:29:27 PM

I’m not assuming anything. It’s a job market. Like all markets they operate on supply and demand.

In your example, so what if they give the job to the most desperate worker instead of a different one at a higher price? Are we supposed to prefer that the desperate worker does not get the job and instead it goes to someone else at a higher rate?

If someone is desperate for a job because they really need work, I’d prefer that a platform help them get matched with jobs. Wouldn’t you? I think you’re so focused on penalizing corporations that you’re missing the obvious.

by Aurornis

2/22/2026 at 3:00:30 AM

Like all markets they can be monopolized. You are assuming quite a bit by presuming that the market works perfectly according to rather basic economic principles.

There are all kinds of reasons someone could be more desperate. Perhaps they have a significant skills gap. Perhaps they don't have citizenship. Perhaps their health care options are artificially limited. You invoke supply and demand but you narrow your focus to a single interface when it's obvious that wouldn't be appropriate.

It's not about "penalizing corporations" it's about "being honest about their motives." Unlike many on HN I refuse to handwave away this thorny and uncomfortable process.

by themafia

2/21/2026 at 3:21:22 PM

Beautifully written, I saved your post to send the next friend or relative who asks me why I am so hard-over on privacy. I enjoyed working at Google hears ago as a contractor, and they are my ‘favorite’ tech company - the only mega-tech company who’s services I regularly use, but I am constantly mindful of their business model as I use YouTube, GCP, and their various dev APIs.

by mark_l_watson

2/21/2026 at 4:05:58 PM

being "hard-over on privacy" and regularly using google services is an astounding level of cognitive dissonance.

by andrewjf

2/22/2026 at 5:35:14 PM

Is Apple or Microsoft any better? Not using google services is more than "hard-over on privacy", it is almost being off-grid.

by eimrine

2/22/2026 at 12:09:21 PM

Except, I only use services I pay for and set tight privacy settings.

EDIT: sorry for the initial short reply, your comment deserved a more reasoned response: I build my digital life on two primary service providers:

Proton: mail, cloud storage, and Luma private LLM chat (integrated web search tool with a strong Mistral model: my default tool that replaces plain web searches, 90% of my routine ‘LLM chat’ use)

Google: Gemini APIs, occasional use of Gemini for deep research, very occasional use of AntiGravity for coding using Claude and Gemini models, YouTube Plus for entertainment (philosophy talks, nature videos, Qi Gong exercise, etc. etc.)

Also some use of:

DuckDuckGo: when I still do web search, DDG is my default.

by mark_l_watson

2/23/2026 at 10:23:50 AM

No, it's not. At least argue your point in more detail, don't stop at "just saying stuff".

by AlexeyBelov

2/22/2026 at 12:00:54 AM

a.) But it's cool and shiny and all the cool kids are there AND IT'S FREE!!!

b.) And more-or-less pretty much nobody ever that I remember suffered real consequences for doing what all the cool kids were doing.

c.) Thinking about all that logic stuff makes me unhappy and my head hurt so I won't do that.

by bell-cot

2/21/2026 at 2:37:01 PM

> Somehow the fundamentals of places like linkedin, gmail, google, facebook, etc have eluded people.

LinkedIn is slightly different, as it's fundamentally framed as a job board and recruiting platform. The paying customers are recruiters, and the product is access to the prospective candidates. Hence, LinkedIn offering for free services such as employee verification, work history verificarion, employee vouching, etc.

by locknitpicker

2/21/2026 at 4:22:30 PM

well said. You are the product not the consumer. "Soylent green is people!"

by noefingway

2/21/2026 at 2:53:37 PM

Persona do not seem to be competent guardians of such a trove of private information.

https://vmfunc.re/blog/persona

by petemc_

2/21/2026 at 5:46:33 PM

You can follow the discussions between that blogger and the CEO btw - https://x.com/rickcsong/status/2025038040599810385

    Persona was not hacked. No database was breached.  Frontend code source maps were leaked, 
    which means unminified variable names were exposed revealing all the names of our features. 
    These names are already publicly listed in @Persona_IDV's help center and API documentation.

by cloverich

2/21/2026 at 3:27:02 PM

Thank you so much for sharing this. Not only is it a great post, but the site invokes such warm feelings of an internet long lost.

by illithid0

2/21/2026 at 8:54:12 PM

just a warning: when you press "continue" it starts blasting music

by KomoD

2/21/2026 at 6:48:40 PM

as much as I like the design and the post, that website causes a massive memory leak in Firefox for Mac

by remixer-dec

2/22/2026 at 2:57:37 AM

"reveals", not "causes". The memory leak, if it truly exists, was already present. It's not a website's fault for triggering it.

by foxglacier

2/21/2026 at 4:04:17 PM

LinkedIn is Tiktokified social media brainrot disguised as serious work. „Hey - you‘re not wasting time, you‘re building your network and gather industry knowledge!“

LinkedIn is full if so called professionals who make a living by leveraging their brand. If you‘re not one of them, leave

by DonThomasitos

2/21/2026 at 5:00:54 PM

Most people don’t log in to LinkedIn to check the feed. They don’t interact with the feed at all.

It’s used for keeping contacts, having your online resume in a standard place, and maybe messaging people.

The feed is a sideshow. It enrages a lot of people because it’s full of slop, but you need to treat it like almost everyone else: Ignore it. It’s a sideshow.

by Aurornis

2/21/2026 at 4:53:40 PM

I use it as write-only media and I had an okay experience. I have met a lot of people IRL through LinkedIn.

by nicbou

2/21/2026 at 4:07:03 PM

Kind of. I've had a strict policy since LinkedIn launched of only connecting with people I've actually met and had at least some meaningful conversation with. Most of my contacts are former work colleagues. I think this makes my feed and audience a bit less spammy and grifty.

by dboreham

2/21/2026 at 4:20:19 PM

Never connect with anyone you haven’t met. If a work colleague or someone is on a call and doesn’t use video, no connection either. Don’t upload and store your resume on LinkedIn. There is no reason to do so.

Also, I don’t recall where this setting is, but make the default behavior such that if someone finds you and tries to connect with you, they actually follow you instead. This cuts down aggressively on spammers because in order to actually connect with you they would have to view your profile, open the … menu, and then click connect. If they aren’t paying attention they’ll just follow you instead of connect which means you can broadcast to them but they can’t broadcast to you.

by ericmay

2/21/2026 at 4:52:17 PM

Why? It's pretty useful for connecting with recruiters in my experience, and I don't think anyone can actually do anything just because they have a connection with you.

I do ignore the connections from random students though tbf.

by IshKebab

2/21/2026 at 6:32:03 PM

Connecting with recruiters is mostly a waste of time, and generally anyone can just fake being a recruiter. Once someone has a connection with you they can see your extended network, they know where you work, they find out all information you have shared with on your profile, &c. The recruiter may be using you to connect with someone else. You also start to consume their content since you are connected. Better to let them follow you and then when it's time to reach out to offer you a job/send an in-mail.

Generally speaking, unless you operate at an elite level or at an elite institution, you're not getting a ton of worthwhile cold intros from recruiters.

by ericmay

2/21/2026 at 9:29:04 PM

> Connecting with recruiters is mostly a waste of time

Probably depends on the field but this definitely isn't always true. I've got my last two jobs through recruiters, and speaking to colleagues a lot of them do too.

> they can see your extended network, they know where you work, they find out all information you have shared with on your profile

This is public anyway though? Isn't that the point of LinkedIn?

> You also start to consume their content since you are connected.

I don't because I don't read LinkedIn. I pretty much only use it to get jobs. Although I have actually started posting technical stuff I've done there because people actually read it (I guess other people do read LinkedIn tbf!)

> Generally speaking, unless you operate at an elite level or at an elite institution, you're not getting a ton of worthwhile cold intros from recruiters.

I'm definitely not elite level and I would say ~20% of the jobs I get from LinkedIn recruiters are of interest. That's pretty good! Almost all of them are at least relevant to my field (silicon verification). Sometimes I get stuff about mechanical engineering validation, or software jobs that aren't relevant but that's pretty rare. It must depend on the field. Maybe the country too?

by IshKebab

2/21/2026 at 10:31:43 PM

> This is public anyway though? Isn't that the point of LinkedIn?

You can limit this. I don't think it's necessarily the point of LinkedIn - i.e. for others to connect with you and then have full visibility into all of the details of everyone you know and whatever you have on your profile. It's a bit naive to assume that operating in this manner doesn't make you a prime target for scammers, social engineers, hackers, &c., or even worse - solicitors.

> My experience is different

Yea, everyone has different experiences. I'm just describing how the platform generally works, as a matter of fact.

by ericmay

2/21/2026 at 11:07:04 AM

From the article:

> Let that sink in. You scanned your European passport for a European professional network, and your data went exclusively to North American companies. Not a single EU-based subprocessor in the chain.

Not sure LinkedIn is a European professional network.

by elAhmo

2/21/2026 at 11:40:58 AM

I think the author was talking about their own professional network being based in Europe, as opposed by LinkedIn, the platform that they're using to contact said network.

by black_puppydog

2/21/2026 at 12:15:33 PM

Their use of LinkedIn is for local and semi-local professional networks. It's like if you use Nextdoor for your street.

And of course those Europeans use LinkedIn for the network effect (even though LinkedIn is just a pathetic sad dead mall now, so most are doing so for an illusion), because other prior waves of Europeans also used LinkedIn, and so on. Domestic or regional alternatives falter because everyone demands they be on the "one" site.

The centralization of tech, largely to the US for a variety of reasons, has been an enormous, colossal mistake.

It's at this point I have to laud what China did. They simply banned foreign options in many spaces and healthy domestic options sprouted up overnight. Many countries need to start doing this, especially given that US tech is effectively an arm of a very hostile government that is waging intense diplomatic and trade warfare worldwide, especially against allies.

by llm_nerd

2/21/2026 at 2:37:53 PM

I would prefer to live in a free country, where I can choose my services from among a couple of options. But the government you appeal to should install and execute laws to protect citizens by forcing foreign players to abide by local rulse or be forced to declare that they are not, in large red letters so no-one can say they did not know (legalese small-print does not suffice as we know).

by jll29

2/21/2026 at 5:28:41 PM

>I would prefer to live in a free country…

Well if you’re in a country Trump has threatened to invade, or already invaded, having a free country might require banning these American companies.

by 1over137

2/21/2026 at 3:36:28 PM

Is there really a choice? Network effect means that the company that sells you cars also owns the road, and only allows its cars to drive on it.

What you want is the social graph, but you are forced to also use FBs shitty app to access it. These social media apps never had a single useful feature besides the graph itself.

by urikaduri

2/21/2026 at 11:35:32 AM

Yeah, he might have wanted to use Xing. Of course, he'd be pretty lonely there.

by guenthert

2/21/2026 at 12:41:24 PM

Viadeo is slightly more popular

by vdfs

2/21/2026 at 3:07:49 PM

>Let that sink in

That's a hallmark of GPT spam, so it's not surprising there's hallucinations.

by 201984

2/21/2026 at 11:09:35 PM

and "That blue badge might not be worth what you’re trading for it. A checkmark is cosmetic. Biometric data is forever."

I like the article, but I think it was nearly wholly LLM-generated. It's a shame that this contrived writing style is becoming so commonplace. Just annoying, more than anything.

by cbeach

2/22/2026 at 12:30:56 AM

GPTZero (not sure how reliable it is) said it was 100% generated.

by 201984

2/21/2026 at 12:20:51 PM

This is the kind of activism in privacy appreciate that we need. I knew I did not want to verify but I did verify on Linkedin recently. The fact that the author also gave an action list if you are concerned about your privacy is just commendable.

by srameshc

2/21/2026 at 9:53:32 AM

Ha. I was reading this and thought "euhhhh, I did not give all of that to verify my account". So I went to LinkedIn to check if I have the shield. I then saw

- that I just have "work email verified" and that there is a Persona thing I was not even aware of

- a post by Brian Krebs at the top of my feed, exactly on that topic: https://www.linkedin.com/posts/bkrebs_if-you-are-thinking-ab...

by BrandoElFollito

2/22/2026 at 4:22:27 AM

> that I just have "work email verified" and that there is a Persona thing I was not even aware of

Good to know that work email verification doesn't involve Persona.

That seems like a reasonable middle ground. Work email is a much lighter ask than handing over government ID and biometrics.

Curious, does your verification status persist after you remove the work email (e.g., if you leave that employer)?

by 8cvor6j844qw_d6

2/22/2026 at 11:03:41 AM

> Curious, does your verification status persist after you remove the work email (e.g., if you leave that employer)?

I guess so. To me this is a mini-identity check so LinkedIn probably assumes that if it was fine so far, it will stay that way later.

by BrandoElFollito

2/21/2026 at 2:48:21 PM

Yep, I clicked verify experimentally and all they wanted was my work email and a code they sent to it.

Of course, that works probably because my work has a linkedin account so they know what the official domain is for it.

I guess they'll spam that email but it's not like I care. I already receive spam offering me subcontracting services so I guess it's published somewhere.

by nottorp

2/21/2026 at 12:30:00 PM

A good reminder of how things actually work, but the article could use some more balancing…

> Let that sink in. You scanned your European passport for a European professional network, and your data went exclusively to North American companies. Not a single EU-based subprocessor in the chain.

LinkedIn is an American product. The EU has had 20 years to create an equally successful and popular product, which it failed to do. American companies don’t owe your European nationalist ambitions a dime. Use their products at your own discretion.

Of course an American company is subject to American law. And of course an American company will prioritise other local, similar jurisdiction companies. And often times there’s no European option that competes on quality, price, etc to begin with. In other words I don’t see why any of this is somehow uniquely wrong to the OP.

> Here’s what the CLOUD Act does in plain language: it allows US law enforcement to force any US-based company to hand over data, even if that data is stored on a server outside the United States.

European law enforcement agencies have the same powers, which they easily exercise.

by csmpltn

2/21/2026 at 12:34:34 PM

> European law enforcement agencies have the same powers.

No they don’t, not in the way that is implied here. A German court can subpoena German companies. Even for 100% subsidiaries in other European or non-European countries, one needs to request legal assistance. Which then is evaluated based on local jurisdiction of the subsidiary, not the parent. Microsoft Germany as operator is subject to US law and access. See Wikipedia “American exceptionalism” for further examples.

by 47282847

2/21/2026 at 3:43:43 PM

>The EU has had 20 years to create an equally successful and popular product, which it failed to do. American companies don’t owe your European nationalist ambitions a dime. Use their products at your own discretion.

I can see not everybody here will agree with me, but I find this take absolutely reasonable. The European space has the capacity and the resources to create a product that replaces something as trivial as Linkedin, and yet it takes the lazy approach of just using American products.

It's the same thing with China's manufactured products, at some point the rest of the world just accepted that everything gets done in China and then keep complaining about how abusive China can be.

The most recent issue is the military question. Europe relied for decades on the "cheap" protection of the USA. Now the USA gave the middle finger to Europe and Europe acts shocked, but Europe is not so shocked when it comes to the military budget it did not spend on self defense during all the time the Americans provided protection.

by lp4v4n

2/21/2026 at 4:00:22 PM

> "The most recent issue is the military question. Europe relied for decades on the "cheap" protection of the USA. Now the USA gave the middle finger to Europe and Europe acts shocked, but Europe is not so shocked when it comes to the military budget it did not spend on self defense during all the time the Americans provided protection."

Fully agree. Europe expects some kids from nowheresville Tennessee to die in a ditch defending Ukraine. The war will be over the second they need to draft 18 year-olds at scale from anywhere in western Europe to go defend "Europe". Nobody in France will die defending Poland, nobody in Greece will die defending Latvia. The EU is such a joke.

by csmpltn

2/21/2026 at 6:09:07 PM

But Britain lost 457 soldiers, Germany 62, France 90, Spain 97, Italy 53, Denmark 43 to aid USA in Afghanistan.

by register

2/21/2026 at 6:18:11 PM

It's okay, in Europe you don't need to fight extreme Islamism. You've fully embraced it.

by csmpltn

2/21/2026 at 4:43:18 PM

Nobody is expecting anyone from Tennessee, but I know that's what the likes of Musk are making you believe.

by holistio

2/21/2026 at 5:06:15 PM

[flagged]

by csmpltn

2/21/2026 at 10:56:55 PM

lol dude seek some help, fast.

by mradonic

2/21/2026 at 1:02:38 PM

The "pull yourselves up by your bootstraps" advice has more weight when the person saying it hasn't taken control of all bootstraps for a good 75 years. This is this toxicity in the toxic relationship between the US and EU. Foot in our faces telling us to pick ourselves up. Ditto South America.

by gib444

2/21/2026 at 3:42:25 PM

Victim mentality? Explain what stops Europe from producing a worthy LinkedIn competitor that challenges LinkedIn's hegemony.

by csmpltn

2/21/2026 at 8:58:23 PM

> Victim mentality

Oh please.

by gib444

2/22/2026 at 3:13:05 AM

He's right though. Blaming someone else for your own failures is victim mentality - regardless of whether they really are the cause or not. Notice how China managed to break free from US tech dominance, no matter how difficult it was, by making itself strong and capable instead of accepting helplessness which is victim mentality.

by foxglacier

2/22/2026 at 4:47:01 AM

>Notice how China managed to break free from US tech dominance, no matter how difficult it was

They did this because in the Chinese narrative Americans are a bunch of hegemonic brutes and self sufficiency was a matter of survival. Europeans don't use LinkedIn because they're victimized, they use American products because there was a belief that the United States is a civilized country whose companies and government can be relied on.

That Americans of all people now adopt the rhetoric of the Chinese about themselves and Europe, which has some terrifying and unflattering implications about their own self image should make people think about what they're saying. Europe didn't go for a different route because of victim-hood, but because the rule of law and the so-called Western values do still mean something on the old continent.

If Americans now openly say, Europe you losers you should have treated us the way the Communist party told you to, fair enough but mind you that's how people talk who are at the end of their own civilization, I'm German I know the attitude very well.

by Barrin92

2/22/2026 at 11:00:26 AM

I will not take the bait. We all know the meaning of victim of mentality and know it doesn't apply in this discussion.

by gib444

2/22/2026 at 12:15:04 PM

> I will not take the bait.

I simply asked you to qualify what makes the EU a victim of the US, and why that's somehow the reason for things never being built or done in the EU.

by csmpltn

2/21/2026 at 1:05:22 PM

That response reeks of astonishing arrogance. It doesn’t surprise me that nearly 50% of Americans voted for Donald Trump he perfectly embodies that mindset. Do you genuinely believe you are superior to the rest of the world? What you call “innovation” or a “better product” is often nothing more than the creation of dominant market positions through massive, capital deployment, followed by straightforward rent extraction. The European Union has every right to regulate markets operating within its jurisdiction, especially when there are credible concerns about anti-competitive practices and abuse of dominance. From what I’ve seen, there may be sufficient grounds to consider collective legal action against LinkedIn at the European level. As for so-called “European nationalist ambitions,” rest assured: Europe does not lack capable lawyers or regulatory expertise. I will be forwarding the relevant material to contacts of mine working within the European institutions in Brussels.

by register

2/21/2026 at 2:43:50 PM

Why can't the EU deploy capital? Regulation doesn't create better products, more aggressive marketing techniques, or deeply entrepreneurial mindsets which favor innovation and growth.

While OP is quite aggressive here, there is a nugget of truth: innovation doesn't happen because "we have the best lawyers" or "the best regulations". Maybe some self-criticism would be warranted to solve the problem.

Also nothing forces Europeans to use LinkedIn. I deleted my account long ago after getting search requests from NSA-adjacent private intel companies.

by Saline9515

2/21/2026 at 3:44:05 PM

Here's another JD Vance who doesn't understand what international rules are and justifies that with (lack of) innovation

Below you can find the relevant GDPR excerpt. But before that, let me add to the coment below that US companies only comply with what EU institutions can enforce and what suits them; which is normal, since China does the same. Well, it couldn’t have been said better: in fact, we’re beginning to view you the same way we view China. And China innovates a lot, right?

"Article 3 – Territorial scope (GDPR)

This Regulation applies to the processing of personal data in the context of the activities of an establishment of a controller or a processor in the Union, regardless of whether the processing takes place in the Union or not.

This Regulation applies to the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to: (a) the offering of goods or services, irrespective of whether a payment of the data subject is required, to such data subjects in the Union; or (b) the monitoring of their behaviour as far as their behaviour takes place within the Union.

This Regulation applies to the processing of personal data by a controller not established in the Union, but in a place where Member State law applies by virtue of public international law."

by register

2/21/2026 at 7:10:44 PM

First I'm not american, I'm simply displeased to see my fellow Europeans seething about the consequences, while refusing to address the causes.

You speak about China: their government is very eager to favor local alternatives, which helps fund the local ecosystem.

In contrast, Euro countries don't generally procure office software from elsewhere than US companies (especially, Microsoft). It's always talk, talk, when the time for action comes, everyone looks at their shoes and signs the contract from the US company.

Even the European commission does the same, and filed a lawsuit against their own regulatory body after it pointed out that MS Office 365 wasn't fully compliant with the EC's own privacy rules! Rules for thee, not for me, as always with the EC.[0]

So yeah, regulations and laws don't replace political will and action. Especially when we talk about the EU, where hypocrisy and lobbying is at its highest.

[0] https://www.freevacy.com/news/official-journal-of-the-europe...

by Saline9515

2/21/2026 at 8:31:17 PM

The point here isn’t that Europe lacks innovation and is too bureaucratic. I have no problem admitting that. The crux of the matter is that, in response to my complaint about the possible failure to comply with a European law, the reply was: LinkedIn answers to American laws, you have no alternative to LinkedIn, and therefore there’s no point in opposing it. You just have to put up with it; it’s your own fault for not innovating.

The scenario being portrayed is one in which the law of the strongest prevails over the rule of law. As a European, coming from the continent that gave birth to the rule of law, I find all of this appalling. And I am sorry to hear that a fellow European thinks along the same lines. I don’t believe this is realism; rather, it is surrender.

by register

2/21/2026 at 9:07:48 PM

The law is just mere words if you don't have an army, the guns, and the will to back it up. It has never been different. Louis XIV's wrote "The last argument of kings" on his cannons, in the 17th century.

Guess who holds the guns that protect Europe right now? So yeah, either comply, leave (what I did), or create an alternative. The EU had Viadeo[0], it could have pushed it to have an alternative. It didn't.

[0]: https://en.wikipedia.org/wiki/Viadeo

by Saline9515

2/21/2026 at 4:25:09 PM

You’d be well served to stop the political name calling, it’s childish.

I view the dynamic from the opposite direction. You might think that that the EU is starting to view America the same way it views china, but in actuality the EU is starting to behave more like China. The wheels of a great firewall for the EU have been turning for some time already.

by rrook

2/22/2026 at 3:08:04 AM

Is LinkedIn established in a place where Member State law applies? I guess not? You can't just go around pretending your law applies to people in other countries because none of the necessary institutions in those countries will respect your law.

by foxglacier

2/22/2026 at 8:06:12 AM

The GDPR applies to the personal data of individuals in the European Union, regardless of where the data is processed. You can easily find the relevant law online.

by register

2/22/2026 at 12:03:44 PM

European governments and institutions have conveniently exempted themselves from GDPR.

And just because it's a law somewhere on earth, doesn't make it reasonable or enforceable or legal.

1. American and European laws have different standards for data processing 2. EU citizens willingly go into a contract with an American company, buying and using American services 3. EU citizens complain American law is different than European law, whilst continuing to use American products 4. EU citizens expect their laws and regulations to apply to American companies

Nobody can reasonably expect American companies to just bend over for whatever the lawmakers in Europe demand. It's an absurd scenario that only the EU can come up with.

by csmpltn

2/22/2026 at 10:43:21 PM

It might say it applies but other countries have their own sovereignty and their residents aren't bound by every extra-territorial law written by every other country in the world.

by foxglacier

2/21/2026 at 1:46:27 PM

Maybe 30% of Americans voted for Donald Trump. This response reeks of ignorance and hubris.

> Do you genuinely believe you are superior to the rest of the world?

This assertion wasn't made, in any way, by the person you're replying to, and it sounds as though it's being asked in anger. This entire conversation has been about data privacy and stewardship. The OP has pointed out, correctly, that there's nothing that has prevented a EU based professional social network from existing in a way that is satisfying for EU based data policy.

If you sign up on an American website, you've decided to do business with Americans in America. Why are you entitled to something that the people you are doing business with are not subject to?

by rrook

2/21/2026 at 2:33:41 PM

It's the law.

by Ylpertnodi

2/21/2026 at 2:14:42 PM

>Maybe 30% of Americans voted for Donald Trump

If you don't vote, you don't count.

by pixl97

2/21/2026 at 2:14:59 PM

Trump received 77,284,118 votes, representing 49.8% of the ballots cast for president. The 30% figure you mention refes to the share of the total voting-eligible population, including those who did not vote. A national poll conducted on February 16–18 found that 42.4% approve of Trump’s job performance, while 54.6% disapprove. Whether you accept it or not and whether you are a Democrat or Republican Trump now is the face of America and most of Europeans are of the same opinion.

Regardless of the fact that LinkedIn is an American company, it is required to comply with the GDPR when operating within the European Union. I am not a lawyer, but I don't believe that there is evidence of full compliance here.

by register

2/21/2026 at 2:34:23 PM

We can have a more detailed discussion around political alignments in America, but you've already agreed that your original statement was false. I mention the 30% figure specifically because you said "nearly 50% of Americans voted for donald trump".

American companies "complying" with is only required insofar as the EU authorities can do anything about it - and that's the same dynamic that exists across all geo boundaries on the internet, that's not specifically American - see China and its great firewall. If an American company is taking steps to be in compliance with GDPR, it's because there is benefit in doing so.

WRT GDPR, I'd ask a clarification before continuing - you said "operating within the EU" - what does that mean? If I deploy a website, from America, onto American servers, and you can reach them from within the EU, am I "operating within the EU"? I'm not trying to be coy by asking this, I actually don't know the extent to which I agree or disagree with you.

by rrook

2/21/2026 at 2:11:34 PM

The strong do what they can, the weak suffer what they must.

by PKop

2/21/2026 at 8:37:25 PM

Indeed. But Americans are told they never use that strength to their advantage. It's all just the working 23 hours a day, determination and chasing the American dream that has resulted in supreme economic success.

Military is just for defence against baddies and liberating countries from dictators etc

by gib444

2/21/2026 at 9:29:12 PM

> Americans are told

Yes or that using strength to one's advantage is necessarily bad.

by PKop

2/21/2026 at 3:30:40 PM

> That response reeks of astonishing arrogance. It doesn’t surprise me that nearly 50% of Americans voted for Donald Trump he perfectly embodies that mindset. Do you genuinely believe you are superior to the rest of the world? What you call “innovation” or a “better product” is often nothing more than the creation of dominant market positions through massive, capital deployment, followed by straightforward rent extraction. The European Union has every right to regulate markets operating within its jurisdiction, especially when there are credible concerns about anti-competitive practices and abuse of dominance. From what I’ve seen, there may be sufficient grounds to consider collective legal action against LinkedIn at the European level. As for so-called “European nationalist ambitions,” rest assured: Europe does not lack capable lawyers or regulatory expertise. I will be forwarding the relevant material to contacts of mine working within the European institutions in Brussels.

This all seems to miss the point, which is: why does the US create so much stuff that Europe doesn't? Turning that useful reflective question into an attack on Americans sounds perfect if you want to refuse to work it out and change accordingly.

by philipallstar

2/21/2026 at 3:41:09 PM

> This all seems to miss the point, which is: why does the US create so much stuff that Europe doesn't? Turning that useful reflective question into an attack on Americans sounds perfect if you want to refuse to work it out and change accordingly.

Because the US had so much venture capital, during the time of the low interest rates it was basically free money so they could afford to throw it to the wall and see what sticks. 90% of them would sink but it didn't matter. That doesn't fly here.

Then, they used that money to subsidise adoption, and then once the users were hooked into rent extraction as the OP mentioned. We call this process enshittification these days, and it's a really predatory business practice.

European companies don't do that as much because we have more guardrails against it, and more importantly we didn't have random cash sloshing up the walls. American could do that especially because of the petrodollar. Once the dollar loses its international status it will be a lot harder to do (and it already is due to the rising interest rates).

It was no surprise that exactly with the rising interest rates all the companies started tightening up their subscriptions. Netflix, amazon, all exploding in cost and introducing ads. Same with meta's platforms.

by wolvoleo

2/22/2026 at 4:31:44 AM

>why does the US create so much stuff that Europe doesn't?

because the "stuff" in question is social networks who live, as the name suggests, off network effects. To have a European LinkedIn would require everyone in Europe to switch at the same time. Which can be trivially arranged, we just would need the courage to ban LinkedIn and every other American social media company. We'd have a clone up and running in a month. You only need to look to China who did exactly this.

by Barrin92

2/22/2026 at 12:07:44 PM

> "We just would need the courage to ban LinkedIn and every other American social media company. We'd have a clone up and running in a month. You only need to look to China who did exactly this."

That's socialist dictatorship. Why do you want the EU to be more like China, instead of the EU being more like the US? It will result in further isolation and decline of Europe which sorely depends both on the US (and China) for survival.

by csmpltn

2/22/2026 at 8:04:28 PM

>Why do you want the EU to be more like China

I don't want to, but if people like you represent how Americans think, with nothing but contempt for Europe and only obsessed with power, then the Chinese were right about who Americans are and we were naive.

Then achieving autonomy quickly is necessary. And it's not about isolationism, just different priorities. The Chinese aren't isolated either. It's the US that's isolating itself right now as other countries see how they're treated.

by Barrin92

2/21/2026 at 3:29:40 PM

Oh no! Not your "relevant material" and your "contacts working within the European institutions in Brussels".

Listen, I'm truly sorry to be so direct but you sound like exactly the kind of person that needs to hear this.

> Europe does not lack capable lawyers or regulatory expertise. I will be forwarding the relevant material to contacts of mine working within the European institutions in Brussels.

Who do you think - between the current US government and the kinds of global, powerful tech behemoths being discussed in this article - gives a single flying fuck about more European lawyers and more European regulation? You literally didn't get the first thing about the point I made. You perfectly played out that classic trope we've all come to know. How about instead of lawyers and regulation Europe actually produces a successful competitor that challenges LinkedIn in any successful manner? What makes you think an army of lawyers and some more regulation are going to change simple, obvious facts about Europe's decline in productivity, innovation, etc?

Listen. The reason not a single worthy competitor has come out of Europe is because Europe just doesn't have what it takes. And it never will have what it takes, because the mindset is exactly what you're demonstrating here: EU is not out to actually build anything useful, it's about hiring armies of lawyers and creating paperwork and regulation nobody has asked for. Your funds and money should go to technology, competitiveness, tech education - not this lawfare nonsense. The EU right now doesn't have the right people, the work ethic, the funds, the innovation, the will to challenge and dream big, the incentives to bet big on tech. You know it, I know it, everybody else knows it. But please, tell us more about how we need a bit more lawyers twiddling their thumbs on the tax payers' bill.

You need to understand something quickly: Europe depends sorely on the US and China. You don't change that through lawyers. Europe is behind on every front.

by csmpltn

2/21/2026 at 3:37:01 PM

Building a site like LinkedIn is really easy. Europe can easily do this. All it is is yet another social media site of which there are tons. There is nothing special about LinkedIn.

The reason we didn't was critical mass. Everyone was already on linkedin and there wasn't really a reason to pick something else until the US started becoming a nuisance. It's marketing, not technical.

I'm sure an EU alternative will come up now that the US is no longer a trustworthy partner. A lot of people like myself now have ethical issues with using american products (especially from big tech) and there's a lot of demand for EU-local stuff that wasn't there before.

by wolvoleo

2/21/2026 at 4:03:01 PM

> I'm sure an EU alternative will come up now that the US is no longer a trustworthy partner. A lot of people like myself now have ethical issues with using american products (especially from big tech) and there's a lot of demand for EU-local stuff that wasn't there before.

This is all hot air. If it's so easy to build, it would've been built by now. I bet you that there won't be a single successful European LinkedIn competitor - not for the past 20 years, not now, and not for the next 20. Europe is fundamentally at a deep state of decay at every level. The only way anything might be built, is by banning the competition. At which point you might as-well just forget about a social network for professionals entirely, because you're probably working at a gulag and there's no job hopping to be done anyways :)

by csmpltn

2/21/2026 at 6:29:46 PM

There _was_ a successfully LinkedIn competitor at least in Germany. Xing. But they made a lot of wrong decision..

by Aldipower

2/21/2026 at 6:35:25 PM

I have an issue with any US-American product.

I guess Americans wouldn't like to buy from Nazi Germany in 1942 and so do I with buying US-American in 2026

by lejalv

2/21/2026 at 3:46:10 PM

Completely agree.

by register

2/21/2026 at 9:43:57 PM

Sure, in fact it's USA that is well behind Europe in happines (World Happiness Ranking) , life expectancy , infant mortality rate, general literacy ( PISA scores ), homicide rate, mass shootings frequency, violent crimes, inequality, democracy ( as reported by the Democracy Index) , press freedom ( World Press Freedom Index), just to name the first indexes that came to my mind.

by register

2/21/2026 at 12:38:47 PM

One detail you might have overlooked: even if you're an American company - if you offer your services in Europe (through the web or otherwise), you're subject to European laws and regulations, including the GDPR.

by kleiba

2/21/2026 at 12:45:54 PM

"Sue me" is what a purely cis-Atlantean company might say.

by rrr_oh_man

2/21/2026 at 3:45:50 PM

Which is of course exactly what is happening with the likes of Google and Meta.

by wolvoleo

2/21/2026 at 4:08:34 PM

Google and Meta don't need to show up to court :)

by csmpltn

2/21/2026 at 4:08:27 PM

...both of which have offices in the EU.

by rrr_oh_man

2/21/2026 at 12:48:45 PM

> In other words I don’t see why any of this is somehow uniquely wrong to the OP.

Did you read the article? It's a dark pattern. It is an act that takes 3 minutes to perform. Yet it takes multiple days of reading legal documents to understand what actually happens. I would argue this feels wrong, to most people who interact with technology.

We have a set of laws here that companies are obliged to follow, regardless of where they are incorporated, so we expect that. We are used to having some basic human rights here, perhaps unlike most Americans these days.

Data processes and ownership of biometric data should be made explicitly clear. It shouldn't take days of reading to understand. It feels wrong to me too.

by birdsongs

2/21/2026 at 1:04:05 PM

I see this sentiment constantly. It is genuinely hilarious to watch Americans lecture the world about the free market while feigning shock that Europe hasn't produced its own tech giants.

Claiming "the EU had 20 years to build an equally successful product" is the geopolitical equivalent of a deeply dysfunctional 1950s household. For decades, the husband insisted he handle all the enterprise and security so he could remain the undisputed head of the family. Then, after squandering his focus on a two-decade drunken military bender in the Middle East, he stumbles home, realizes he's overextended, and screams at his wife for not having her own Silicon Valley corner office, completely ignoring that he was the one who ruthlessly bought out her ventures and demanded her dependence in the first place.

America engineered a digitally dependent Europe because it funneled global data straight to US monopolies. To blame Europeans for playing the exact role the US forced them into is historical gaslighting. And pretending the CLOUD Act's global, extraterritorial overreach is the same as local EU law enforcement is just the icing on the delusion cake.

by poszlem

2/21/2026 at 2:53:35 PM

The US is not just alone, EU governments are fully cooperating, happily.

A Microsoft official explained during a french parliamentary session that he couldn't guarantee that the State data was safe from US requests. It created a shockwave, as everyone discovered what was evident from the start.

Of course, nothing happened, and they renewed every contract since then. We could talk about the F35 procurement.

by Saline9515

2/21/2026 at 3:52:31 PM

They renewed every contract, but the French government is hard at work at replacements for Microsoft stuff, called 'la suite'. The Germans are doing the same under the name 'opendesk' and the suite shares a lot of common tools in fact.

This predates Trump II by the way, they did have more foresight than a lot of EU institutions.

Things have changed for sure but big ships take long to turn.

by wolvoleo

2/21/2026 at 4:24:17 PM

This is sabre rattling and everyone knows it. A municipality in Germany already tried switching to open source. They're back on Office and Sharepoint.

by glitchc

2/21/2026 at 4:32:10 PM

This is a lot bigger than one municipality. And with the Munich thing there was a lot of dodgy lobbying going on. Like Microsoft suddenly moving their HQ there. Then a new mayor came in that was suddenly all pro-Microsoft.

La suite is a lot bigger than that. And parts are actually being used already. They recently started using the meeting component called visio.

by wolvoleo

2/21/2026 at 6:53:19 PM

There are already credible alternatives, from the EU, which do not require rebuilding everything from scratch. OnlyOffice, for instance. The french government's job isn't to write a new office SaaS suite.

by Saline9515

2/21/2026 at 3:56:07 PM

Oh, the EU is a victim now? And the EU's laziness, bloat and uselessness is the US's fault now?

And where's all of this evidence of this hidden extraordinary European talent and ability that just needs to be unleashed given some more lawyers and regulation?

This is a joke.

by csmpltn

2/21/2026 at 3:50:53 PM

Exactly! It's the same with the military dependency.

America wanted a weak Europe, to be dependent on them so they would have geopolitical influence. They basically bought influence. They didn't want us to have nukes to defend ourselves from the Russians (the French are frowned upon and the British don't really have their own, they are beholden to the US). It also gave them a huge market for their products and services (and no there was no imbalance if you take services into account which Trump doesn't).

Then Trump comes and complains that we're not investing equally. Well no, but this was exactly as his predecessors designed. Now we will build it up but of course we will need to build our own nuclear umbrella and we will no longer give the US its influence it previously had, obviously.

We also don't need quite as much military expenditure anyway because we're just looking to defend ourselves, not trample oil-producing countries. The only times we did that were exactly due to the US' bought influence.

by wolvoleo

2/22/2026 at 8:48:37 PM

everything you're pointing out is better explained by "Europe didn't want to spend the money, they'd rather let America spend". This was true right after WWII because Europe needed to dedicate money to rebuild their economies. It remained true as later Europe continued to rely on tariff regimes to protect inefficient home industry sectors, and financed increasingly expensive welfare state programs to appease voters.

The US was only in favor of Europe rebuilding after the war, and rightfully against the rest of it.

the US has never been anything but helpful to Europe, but Europeans need a boogeyman to draw attention away from their own failings. It is very important to the European psyche that they be seen as near perfect on every measure. Americans are much more comfortable with, and benefit from, self criticism.

by fsckboy

2/21/2026 at 8:41:00 PM

> America wanted a weak Europe, to be dependent on them so they would have geopolitical influence

100% in agreement

by gib444

2/21/2026 at 2:28:52 PM

Thank you for your words I couldn't say any better. I agree on everything but one thing. I definetely don't find this hilarious. I find it frightening and disgusting.

by register

2/21/2026 at 8:38:57 PM

Very well said.

> To blame Europeans for playing the exact role the US forced them into is historical gaslighting.

Hear hear

by gib444

2/21/2026 at 2:31:38 PM

> American companies don’t owe your European nationalist ambitions a dime. Use their products at your own discretion.

As a fairly vociferous eu person....I fully agree.

However, gdpr covers all eu residents, so if US companies don't want to obey eu law, that'sa fine, too.

by Ylpertnodi

2/21/2026 at 3:52:57 PM

Nobody is forcing you to use LinkedIn. LinkedIn is an American product, made by an American company in America, subject to American law. When you create an account - you agree to American terms and conditions, arbitrated by American courts.

LinkedIn doesn't need to obey to EU law. It needs to obey to American law, which allows LinkedIn to do business with anybody (other than people from sanctioned countries) whilst complying with US law. EU's laws don't matter in the US. The EU can sue LinkedIn, but LinkedIn can just safely ignore any lawsuits and ignore sanctions, because they are an American company subject to American laws.

EU citizens are willingly subscribing to an American service, then complain the American service doesn't abide by EU laws. That's laughable at every level, to any individual with a modicum of intelligence. If you don't agree to the terms, don't use LinkedIn. You are not entitled to anything.

by csmpltn

2/21/2026 at 5:37:11 PM

> you agree to American terms and conditions, arbitrated by American courts.

"Designated Countries. We use the term “Designated Countries” to refer to countries in the European Union (EU), European Economic Area (EEA), and Switzerland."

"If you reside in the “Designated Countries”, you are entering into this Contract with LinkedIn Ireland Unlimited Company (“LinkedIn Ireland”) and LinkedIn Ireland will be the controller of your personal data provided to, or collected by or for, or processed in connection with our Services."

"If you live in the Designated Countries, the laws of Ireland govern all claims related to LinkedIn's provision of the Services" "With respect to jurisdiction, you and LinkedIn agree to choose the courts of the country to which we direct your Services where you have habitual residence for all disputes arising out of or relating to this User Agreement, or in the alternative, you may choose the responsible court in Ireland."

Source: https://www.linkedin.com/legal/user-agreement

I'm not sure from where you got your information.

by buzer

2/21/2026 at 5:51:37 PM

Nobody cares. They keep a skeleton crew office in the EU for compliance purposes only. Whether they have an office in the EU or not is inconsequential. If they closed it tomorrow, the EU would literally have nothing to go after...

by csmpltn

2/21/2026 at 7:45:26 PM

> They keep a skeleton crew office in the EU for compliance purposes only

According to LinkedIn, they have over 2,000 employees in Dublin alone.

by Supernaut

2/21/2026 at 6:39:26 PM

You're saying they are buccaneers, and validating that as the fundamental working principle of American capitalism.

by lejalv

2/21/2026 at 6:58:05 PM

Call them whatever you want. All I'm saying is that Europeans are hypocrites for fucking over their greatest ally via unenforceable and anti-competitive regulation that's not worth the paper it's written in (and that European institutions have even exempted themselves from). The one ally that they desperately depend on for safety and security, technology, medicine, research, etc.

by csmpltn

2/21/2026 at 4:45:21 PM

> LinkedIn doesn't need to obey to EU law.

Yes, they do.

> If you don't agree to the terms, don't use LinkedIn.

We agree on that.

by holistio

2/21/2026 at 4:37:00 PM

Operator of the LinkedIn Website:

LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland

by loglog

2/21/2026 at 7:05:00 PM

I agree that people should just stay off LinkedIn. Keep your local job boards alive. That being said:

> LinkedIn doesn't need to obey to EU law.

This is false. A company must follow the law of the jurisdictions where it operates.

by yunnpp

2/21/2026 at 11:12:12 PM

> The EU has had 20 years to create an equally successful and popular product, which it failed to do. American companies don’t owe your European nationalist ambitions a dime.

So true.

There's a lot of passive-aggressive anti-US rhetoric and fearmongering on HN at the moment, while America is simply doing what it's always done - innovating and thriving.

As a European, I wish our continent was able to be more like America, as opposed to jealously coveting its outcomes.

by cbeach

2/21/2026 at 5:07:01 PM

I've been getting "Emails aren’t getting through to one of your email addresses. Please update or confirm your email." -- even tho I get messages from them every day. When you press the button to confirm the (working) email it states "Something went wrong".

It happened last week too, I was able to fix it via their chat-help (human). Yesterday, their chat-help (human) was not able fix it and has to open a ticket. I pay for LinkedIn-Premium. So maybe this is just a scam to route me into Verification. Their help documents (https://www.linkedin.com/help/linkedin/answer/a1423367) for verifying emails doesn't match the current user experience.

Then, in a classic tech-paradox, their phone support person told me they would email me -- on the same address their system reports emails are not getting through to. It felt like 1996 levels of understanding.

We need to get back to de-centralised.

by edoceo

2/21/2026 at 6:09:58 PM

I have no proof but I have suspicions that call-center systems are designed like this on purpose. low-level employees are hamstrung in what they can do, so then they have to hand it off to someone else, with varying degrees of ceremony, which either involves submitting a "ticket" or transferring you to some other department who may or may not have higher privileges wrt what they can do to help you.

Then you might hit a wall where nobody can do anything because you're trapped in the gears of some byzantine IT system that decides what can and can't happen at any given time with any given situation.

Then there's the labyrinth of the phone system itself littered low-bit smooth jazz and awful menus not often alleviated by AI voice recognition (which in my experience can sometimes be worse than the older voice systems) and the back and forth from one department to the next either because of the above or because someone or something keeps sending you to the wrong people to get your problems addressed.

If it's not engineered, it's some kinda emergent eldritch abomination that has slowly accreted over the decades.

by b00ty4breakfast

2/21/2026 at 9:37:34 PM

> Emails aren’t getting through to one of your email addresses

Do you block remote image loading? They are probably measuring via tracking pixels.

by 1over137

2/22/2026 at 12:17:22 AM

Good idea -- I've not loaded images since...ever, I still prefer the text/plain part. Like an idiot I assumed they were getting an error message from the MTA. But then what if they deliver but I never open?

by edoceo