Overview
We are investigating whether the website for Sanford health, a healthcare provider, is using tracking tools to send patients’ private information to sites such as Facebook, and other third parties.
A recent article exposed that 33 top US hospitals have been unlawfully misusing sensitive data via Facebook/Meta’s Pixel Tracker. Zimmerman Reed is investigating whether Sanford Health also unlawfully shared private patient health information.
Fill out a case review form to see if you have been impacted.
What is this about?
In 2022, the news website The Markup published a report showing that one-third of the top 100 hospitals in the United States embedded Facebook/Meta’s Pixel tool in their website. This often included adding code to their patient portals and appointment scheduling pages, giving the providers detailed analytics about how people use their websites.
According to a report on the hospital websites, these analytics:
“Could include sensitive health information connected to a patient’s IP address. On one hospital website, clicking the scheduling button sent Facebook a doctor’s name and the condition — ‘Alzheimer’s’ — that the appointment was scheduled for.”
Once Facebook/Meta receives this information, it can then be stored and used by advertisers to target patients based on their confidential health information. For example, advertisers could associate Alzheimer’s Disease with that particular person and target them for advertisements specific to that condition.
Protecting the privacy of everyone’s digital health records is important for several reasons:
- To prevent unauthorized access and potential harm to individuals.
- To maintain public trust and confidence in the healthcare system.
- State and federal laws obligate health care providers to comply with privacy laws.
Am I affected?
Zimmerman Reed is currently working with data privacy experts to investigate practices of health care providers such as Sanford Health to determine if digital health records were unlawfully shared with sites such as Facebook, Google, and others.
Submit a Free Case Review Form to determine if your digital health records may have been compromised or shared with online advertisers.
What has happened since these privacy invasions have been made public?
Some hospitals and health care organizations have discontinued the use of Pixel software in light of these recent disclosures. For example, one operator of hospitals, clinics, and medical facilities, disabled the Pixel on its website and announced that it may have exposed the health records of as many as 1.3 million patients after being contacted by a reporter regarding their disclosure.
Several lawsuits have been filed against hospitals and health care providers, alleging violations of HIPAA over the impermissible collection, disclosure, and use of data collected via Meta Pixel. These lawsuits, which claim that the Pixel has been used to serve patients with targeted adverts related to their medical conditions. HIPAA – The Health Insurance Portability and Accountability Act – is a US federal law enacted in 1996 that sets standards for protecting the privacy and security of individuals’ medical information.
What should I do?
With the growing threats posed by data breaches and cyber-attacks, it’s crucial to protect your personal health information—and to respond if another actor threatens to expose that personal information.
Complete a Free Case Review Form by clicking the button below to determine if your digital health records may have been unlawfully disclosed with online advertisers. Don’t wait—take steps to secure your digital health records today.
