When LinkedIn users click the blue checkmark verification button, they're not actually verifying with LinkedIn at all. They're redirected to Persona Identities, Inc., a San Francisco-based company that collects extensive biometric and personal data including passport scans, facial geometry, NFC chip data, and behavioral biometrics like hesitation detection.

For a simple verification badge, Persona gathers everything from your full name and passport photo to your IP address, device fingerprint, and geolocation. The company then cross-references this information against government databases, credit agencies, and utility companies, essentially running a background check on users seeking professional credibility. Most concerning, Persona uses uploaded passport images to train their AI systems under the legal basis of "legitimate interest" rather than explicit consent.

Your data doesn't stay with Persona either. The company shares information with 17 subprocessors including AI giants Anthropic, OpenAI, and Groqcloud, plus AWS, Google Cloud, and various analytics firms. All 16 US-based processors are subject to the CLOUD Act, meaning US law enforcement can access European users' passport data even when stored in German data centers. The verification process that promises professional legitimacy instead exposes users to unprecedented data collection, AI training, and potential government surveillance across multiple jurisdictions.