Lourdes Turrecha spoke to Tom’s Guide about recent dumps of user data Facebook, LinkedIn, and Clubhouse. The user data recently showed up on internet forums, and the user information was “scraped” from publicly viewable user profiles rather than stolen in a break-in.

“Privacy incidents also include illegitimate use and processing of personal data at any point throughout the entire data lifecycle, from collection and processing, to storage and deletion,” Turrecha said.

“Moreover, data protection laws like Europe’s General Data Protection Regulation (GDPR) do not exclude publicly available personal data from privacy protections,” she added. “As individuals, we don’t lose our privacy rights just because our personal data is available on a public website.”