Lexology February 8, 2023
Frankfurt Kurnit Klein & Selz PC

GoodRx, a popular drug discount website and application used by millions of Americans, entered into a $1.5 million settlement with the Federal Trade Commission for allegedly unfairly and deceptively sharing users’ personal health information with advertisers, including Facebook and Google. According to the FTC, GoodRx’s data handling practices violated both Section 5 of the FTC Act, and, in a “first of its kind” action, the 2009 Health Breach Notification Rule (HBNR), which requires vendors of personal health records to report data breaches, even if neither the entity nor the data in question is subject to HIPAA. The case highlights the growing concerns over the sharing of personal health information and the FTC’s increased efforts to regulate companies in the digital...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Healthcare System, HIPAA, Patient / Consumer, Pharma, Pharma / Biotech, Privacy / Security
Related Articles:
DHS intros framework for AI safety and security, in healthcare and elsewhere
Why Modern Developers Must Master The Balance Of Privacy And Functionality In Mobile Apps
Navigating Security and Privacy Challenges in Healthcare IT: A Strategic Approach
Balancing Personalized Targeting with Protecting Consumer Privacy
Data Protection And Consumer Privacy In Financial APIs

Share This Article