Xing

   +-----------------------------------+
   |  NEW WORK SE / XING               |
   |  Founded:   2003 (Hamburg)        |
   |  Rebrand:   XING (2006)           |
   |  Parent:    New Work SE (listed)  |
   |  Users:     22.5M DACH region     |
   |  Focus:     DE · AT · CH          |
   |  Servers:   Germany (EU)          |
   |  Regime:    GDPR-native           |
   +-----------------------------------+

Xing is the EU-native answer to LinkedIn — headquartered in Hamburg, publicly listed in Germany, with servers physically in Germany and data processing under German and EU law. For users in the DACH region (Germany, Austria, Switzerland), it's been the default for two decades. For everyone else, it's worth knowing about specifically because the legal exposure profile is materially different.

section_01 — what is collected

The collection footprint

Xing's profile model is broadly similar to LinkedIn's — work history, education, skills, photo, connections — because the value proposition is broadly the same: find jobs, find people, recruit talent. The delta isn't in what is collected; it's in how the legal and operational frame around that collection is structured.

Identity

Name, profile photo, headline, contact details (visibility configurable)

Employment / education

Full history, dates, institutions, optional salary expectations

Skills / expertise

Self-declared skills, industry tags

Network graph

Contacts and group memberships

Engagement

Posts, comments, news-feed interactions (smaller volume vs. LinkedIn)

Search / job signals

Jobs saved, companies followed, salary expectations if provided

Device / IP

Standard session and device metadata

Inferred attributes

Ad targeting is narrower than LinkedIn — the platform has historically been more conservative about selling behavioral audiences

section_02 — who sees it

Jurisdictional difference matters

Both LinkedIn and Xing process personal data. The practical difference for a European user is which country's courts can compel disclosure of that data, and under what standard.

Xing's primary data controller is New Work SE, a German stock-corporation (SE = Societas Europaea), publicly listed on the Frankfurt Stock Exchange. Servers are located in Germany. German and EU data protection law apply as the primary regime. There is no parent company in the United States. There is no CLOUD Act exposure — the US government cannot subpoena the data directly, because the data is held by a non-US entity on non-US soil.

This does not make Xing immune to lawful access. German, Austrian, and Swiss authorities can and do issue data requests through their own legal processes. But the baseline standard is GDPR's Article 6 lawful-basis requirements plus the procedural protections of the relevant national code.

   ┌──────────────────────────────────────────────────────────────────┐
   │  LINKEDIN vs XING — LEGAL EXPOSURE (EU USER PERSPECTIVE)         │
   ├──────────────────────────────────────────────────────────────────┤
   │                                                                  │
   │                   LinkedIn Ireland            Xing / New Work SE │
   │                                                                  │
   │  Data controller  LinkedIn Ireland UC         New Work SE (DE)   │
   │  Parent entity    Microsoft (US)              None outside EU    │
   │  Primary storage  EU + US (SCCs)              Germany only       │
   │  CLOUD Act risk   Yes (Microsoft-owned)       No                 │
   │  Regulator        Irish DPC (lead)            German DPAs / BfDI │
   │  Largest fine     €310M (Oct 2024)            None of this scale │
   │  AI training      Per updated 2024 policy     Not publicly scoped│
   │                                                                  │
   └──────────────────────────────────────────────────────────────────┘

fig_04 — jurisdictional comparison

section_03 — what it costs in utility

The scale tradeoff

Privacy isn't free. Choosing Xing over LinkedIn means accepting a smaller network. In Germany, LinkedIn overtook Xing by total users in 2025 — LinkedIn reported around 22M German users that year, to Xing's roughly 22.5M (Xing's number is DACH-wide, and the two distributions overlap heavily). On engagement, LinkedIn is already ahead: about 12–13% regular activity vs. Xing's 7%.

That matters because a professional network is only as useful as the people you can find on it. Multinational roles, tech, and English-language positions increasingly list primarily on LinkedIn even in Germany. Xing remains dominant for Mittelstand (mid-sized German industrial companies), regional roles, and traditional industries — engineering, skilled trades, HR, law.

A realistic outcome for a German-speaking professional: maintain both profiles. Use Xing for DACH-focused searching and networking. Use LinkedIn for international-facing work, while keeping its profile minimal and its privacy settings locked down.

section_04 — history

Notable events

2003 — OPEN Business Club AG founded in Hamburg. Renamed XING in 2006.
2012 — Strategic pivot away from global competition with LinkedIn; doubled down on DACH focus.
2016 — Parent rebrand to New Work SE, with Xing as the flagship product alongside kununu (employer reviews) and Honeypot (tech recruiting).
2024 — LinkedIn's €310M GDPR fine renews interest in EU-native alternatives; Xing markets its jurisdictional positioning more explicitly.
2025 — LinkedIn closes the user-count gap in Germany. Xing's competitive position increasingly depends on depth in Mittelstand and trade / industrial sectors rather than raw scale.

No major breaches or privacy incidents of comparable severity to those seen across US-based platforms. No regulatory action rising to the level of LinkedIn's €310M DPC fine. This is a smaller platform with a cleaner track record — both partly a function of lower profile and partly a reflection of a more conservative data-use posture.

section_05 — what to do

If you're evaluating Xing

Use Xing as primary if you work in German-speaking Europe, especially outside Berlin tech
Pair with LinkedIn on low-information mode (minimal profile, strict privacy settings) for international visibility
Take advantage of GDPR rights — access, rectification, and deletion requests on Xing data are straightforward and typically handled within 30 days
kununu (owned by New Work SE) is the German-language counterpart to Glassdoor and is worth knowing for company research
Don't assume "EU jurisdiction" means "no data collection" — Xing still runs an ads business; targeting is narrower but not nonexistent

Risk score: 3/10

22.5M DACH users EU / German jurisdiction No US parent · no CLOUD Act exposure GDPR-native kununu integration for employer reviews Smaller network · weaker outside DACH Lower engagement vs. LinkedIn

Xing is the best-in-class privacy posture among mainstream professional networks, driven primarily by where the company is domiciled and what law applies. It works if your professional geography is actually European. It doesn't work as a drop-in LinkedIn replacement for someone whose opportunities live in US or Anglo tech. Best used in parallel with a locked-down LinkedIn, not instead of it.

← audit_blind next: audit_peerlist → full matrix report