, , , , , , , ,

FTC slaps $1.5M fine on GoodRx for sharing users’ health data with Facebook and Google

Online pharmacy GoodRx has agreed to pay $1.5 million in civil penalties for years of sharing the health information of consumers with third parties like Facebook, Google, and Criteo for advertising purposes, the Federal Trade Commission said Wednesday.

In a complaint filed in a California federal court, the FTC accused the healthcare and telemedicine giant of failing to notify consumers that their personal health information — collected while using its website and services — would be shared with third parties.

The FTC said GoodRx “deceptively promised its users that it would never share personal health information with advertisers or other third parties,” but “repeatedly violated this promise,” including by monetizing the data it collected to target its own users with targeted health and medication-specific ads. The FTC said that GoodRx has been doing this “for years.”

TechCrunch reached out to GoodRx for comment and will update this story as and when we get a response.

This is the first enforcement action taken under the FTC’s Health Breach Notification Rule — a decade-old guideline that had not been previously used until today.

GoodRx is a prime example of how the rules might be violated, but with the proliferation of online healthcare services in recent years — which got a boost in particular with the arrival of the COVID-19 pandemic — there are signs that we may start to see more enforcements of the rule.

The FTC warned as recently as 2021 (and laid out that warning more formally a year ago) that the rule also applies to app developers and fitness device makers, and that it would take action against companies that fail to tell consumers that their health data would be shared for advertising or user analytics.

The rule is particularly important in light of the fact that there are ever more healthcare services coming online. Just last week, Amazon launched RxPass, a Prime add-on that lets people fill all of their prescriptions for a set of conditions using generic prescription drugs for one flat monthly fee. TechCrunch reached out to Amazon to specify its own policies with customer data and will update this post with any responses.

‘Do not cash in on extremely sensitive health information’

According to the FTC’s complaint, GoodRx was sharing the names of medications and associated health conditions that users were searching on GoodRx with adtech players like Meta, Google and Criteo, which manage billions of dollars of advertising not just on platforms like Google.com, Facebook and Instagram, but on other sites and apps as well.

An FTC official told reporters on a call Tuesday that some of this information contained sensitive details about people’s health conditions.

The FTC also said GoodRx compiled lists of its users who bought certain medications — heart disease and blood pressure, specifically — and uploaded their email addresses, phone numbers, and pseudonymized device advertising IDs to Facebook so that GoodRx could identify who they were and target them with health-related advertisements.

The agency also accused GoodRx of “falsely suggesting” to consumers that the company was compliant with the U.S. health privacy law, Health Insurance Portability and Accountability Act, or HIPAA. The FTC official said consumers were misled into thinking their data was protected when much of GoodRx’s business was not covered by the law.

Under the order, GoodRx will be banned from disclosing users’ health information with third parties for advertising purposes. It will also be required to limit how long it can retain personal and health information “according to a data retention schedule” and it needs to detail to users what it collects and why. It also needs to implement a privacy program to protect consumers’ data in the future.

The FTC will also require GoodRx to seek the deletion of data by contacting the companies it shared users’ data with. But the FTC official conceded that its enforcement action binds GoodRx, and does not compel the companies who received the data to comply with the deletion request. GoodRx must also establish a comprehensive privacy program and “conspicuously” detail what data it will disclose to third-parties.

“Digital health companies and mobile apps should not cash in on consumer’s extremely sensitive and personally identifiable health information,” said Samuel Levine, the director of the FTC’s consumer protection bureau, in a statement. “The FTC is serving notice that it will use all of its legal authority to protect American consumers’ sensitive data from misuse and illegal exploitation.”

Some 55 million consumers have visited GoodRx’s website since 2017.

The FTC’s order is subject to approval by the federal court.

FTC slaps $1.5M fine on GoodRx for sharing users’ health data with Facebook and Google by Zack Whittaker originally published on TechCrunch

https://techcrunch.com/2023/02/01/ftc-slaps-online-pharmacy-goodrx-for-sharing-users-health-data-with-facebook-and-google/


December 2024
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

About Us

Welcome to encircle News! We are a cutting-edge technology news company that is dedicated to bringing you the latest and greatest in everything tech. From automobiles to drones, software to hardware, we’ve got you covered.

At encircle News, we believe that technology is more than just a tool, it’s a way of life. And we’re here to help you stay on top of all the latest trends and developments in this ever-evolving field. We know that technology is constantly changing, and that can be overwhelming, but we’re here to make it easy for you to keep up.

We’re a team of tech enthusiasts who are passionate about everything tech and love to share our knowledge with others. We believe that technology should be accessible to everyone, and we’re here to make sure it is. Our mission is to provide you with fun, engaging, and informative content that helps you to understand and embrace the latest technologies.

From the newest cars on the road to the latest drones taking to the skies, we’ve got you covered. We also dive deep into the world of software and hardware, bringing you the latest updates on everything from operating systems to processors.

So whether you’re a tech enthusiast, a business professional, or just someone who wants to stay up-to-date on the latest advancements in technology, encircle News is the place for you. Join us on this exciting journey and be a part of shaping the future.

Podcasts

TWiT 1010: The Densest State in the US – TikTok Ban, Drones Over Jersey, GM Quits Robotaxis This Week in Tech (Audio)

So You Want to Solve the NJ Drone Mystery? Our Expert Has Some Ideas Infowars Sale to The Onion Rejected by Federal Bankruptcy Judge Federal appeals court declines to temporarily block ban on TikTok, teeing up showdown at SCOTUS over controversial law WordPress parent company must stop blocking WP Engine, judge rules Crypto's Legacy Is Finally Clear Tech Industry and CEOs Curry Favor With Trump Ahead of His Inauguration AI Is Detecting More Breast Cancer Cases, Study Suggests Huge randomized trial of AI boosts discovery — at least for good scientists GM Calls It Quits on Mary Barra's $50 Billion Robotaxi Dream You Can Buy a Car on Amazon Now Host: Leo Laporte Guests: Cathy Gellis, Mike Elgan, and Emily Forlini Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: mintmobile.com/twit shopify.com/twit
  1. TWiT 1010: The Densest State in the US – TikTok Ban, Drones Over Jersey, GM Quits Robotaxis
  2. TWiT 1009: Andy Giveth & Bill Taketh Away – Trump's Tech Titans, Crypto Boom, TikTok's US Ban, Intel CEO Exits
  3. TWiT 1008: Internet Legal – Australia's Social Media Ban for Kids, Smart Home Nightmare, Bluesky's Ascent
  4. TWiT 1007: All the Hotdogs in the World – China's "Salt Typhoon" Hack, Google on the Chopping Block, Recall AI
  5. TWiT 1006: Underwater Alien Civilizations – Bluesky Growth, Tyson Vs. Paul, AI Granny