Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
The Courts

Court Sides With LinkedIn in Data Scraping Lawsuit vs. hiQ Labs (adweek.com) 12

LinkedIn emerged victorious in a nearly six-year-old lawsuit against hiQ Labs for data scraping. From a report: The U.S. District Court for the Northern District of California ruled in favor of the professional network, with Judge Edward Chen writing, "hiQ relied on LinkedIn for its data primarily by scraping wholly public LinkedIn profiles using automated software. hiQ had continuously attempted to circumvent LinkedIn's general technical defenses since May 2014.

"It experimented and attempted to reverse engineer LinkedIn's systems and to avoid detection by simulating human site-access behaviors. hiQ also hired independent contractors known as 'turkers' to conduct quality assurance while 'logged-in' to LinkedIn by viewing and confirming hiQ customers' employees' identities manually." hiQ Labs wound down its operations in 2018, although its servers continued running into 2019 to deliver on client contracts.

Chen wrote, "In sum, hiQ breached LinkedIn's user agreement both through its own scraping of LinkedIn's site and using scraped data, and through turkers' creation of false identities on LinkedIn's platform."

This discussion has been archived. No new comments can be posted.

Court Sides With LinkedIn in Data Scraping Lawsuit vs. hiQ Labs

Comments Filter:
  • by omnichad ( 1198475 ) on Tuesday November 08, 2022 @10:42AM (#63035705) Homepage

    LinkedIn publishes things publicly using a protocol like HTTP and it is de facto published publicly. Circumventing any technical measures to artificially rate-limit viewing of public information really shouldn't fall under the CFAA or DMCA. The federal court initially actually upheld that.

    On the other hand, by using real LinkedIn accounts to verify the scraped data, they bound themselves to the user agreement. If they had merely relied on public data, that shouldn't have legally applied to them. But it sounds like LinkedIn disguises its rate-limiting by returning fake profile data if you are detected as a bot rather than being denied.

    Meanwhile, the users aren't protected by either entity. LinkedIn still lets search engines like Google index it all without a problem. And it's made clear to the user that the data all belongs to LinkedIn and not the user that generated their content.

    • I recall awhile back there was a LinkedIn data breach. Where lots of personal data was whisked away, to be used by bad actors. But even since then, it seems as if pretty decently targeted spearphishing pops up. Very employee role specific within the same organization. I suppose the public publishing makes it oh so simple.
  • I think every scammer and his grandmother scrapes LinkedIn continuously. The barn door is wide open and the wolves already had a feast.

No spitting on the Bus! Thank you, The Mgt.

Working...