PrivacySignal
Enforcement

Atrium Health Pays Up to $1.8M to Resolve Pixel Lawsuit

HIPAA Journal · · US Federal · Enforcement

Atrium Health has agreed to pay up to $1.8 million to settle a class action lawsuit tied to its use of tracking pixels, which allegedly transmitted patient data to third parties without proper authorization. The settlement resolves claims against the Charlotte-based hospital system under privacy laws governing health information.

Why this matters: Tracking pixels are tiny, invisible pieces of code that hospitals quietly embedded in their websites and patient portals — often without telling anyone. They sent sensitive health data to ad companies and platforms like Meta and Google. Patients had no idea this was happening when they searched for a doctor or logged in to check test results. A $1.8 million settlement sounds significant, but spread across a class of affected patients, it is closer to a cost of doing business. The real accountability question is whether hospitals stop using these tools on pages where people are managing their health, not just whether they pay to make the lawsuit go away.

Who should care: Lawyers · Privacy officers · Compliance · Healthcare professionals

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Enforcement
WIRED — AI · · International

Why Apple Sued OpenAI, New York Takes on Data Centers, and What to Know about Cyclosporiasis

A tech podcast episode covers Apple's reported legal action against OpenAI, New York state scrutiny of data centers, and an unrelated public health topic. The discussion frames OpenAI's legal and reputational troubles in the context of its competitive battle with Anthropic.

Who should care: Lawyers · Privacy officers · Compliance

#enforcement Read original →
Enforcement
DataBreaches.net · · International

Italy fines WINDTRE €1.7 million over data breaches

Italy's data protection authority fined telecom operator WINDTRE €1.7 million after finding serious security failures that led to two separate unauthorized breaches, exposing personal data belonging to more than 365,000 customers. The investigation was triggered by the company's own breach notification.

Who should care: Lawyers · Privacy officers · Compliance · AI governance · General readers · Policy

#enforcement#gdpr#privacy Read original →
Enforcement
The Guardian — Tech · · International

Musk’s xAI sues user who allegedly used Grok to create child sexual abuse material

xAI has sued a South Carolina man, already facing criminal charges for sexually exploiting minors, alleging he used the Grok AI system to generate child sexual abuse material in violation of the company's terms of service. The federal lawsuit, filed in Texas, is among the first of its kind brought by an AI company against a user for this type of alleged misuse.

Who should care: Lawyers · Privacy officers · Compliance · General readers · AI governance · Policy

#enforcement#ai#security Read original →
Enforcement
O Omdia · · International

Omdia: Regulators must shift focus from AI policy design to implementation and enforcement

Research firm Omdia is calling on regulators to move beyond drafting AI policy frameworks and prioritize putting those rules into practice through active enforcement. The argument is that the gap between written policy and real-world accountability has grown wide enough to matter.

Who should care: Lawyers · Privacy officers · Compliance · AI governance · Administrators · General readers · Policy

#enforcement#ai-governance#regulation#ai Read original →
Enforcement
New York Times — Tech · · International

Judge Dismisses Suit Accusing Apple of Failing to Limit Child Sex Abuse Material

A federal judge has dismissed a lawsuit accusing Apple of failing to adequately prevent child sexual abuse material from being stored and shared through iCloud. The suit had centered on claims that Apple's privacy protections inadvertently made the platform a safer environment for illegal content.

Who should care: Lawyers · Privacy officers · Compliance · General readers · Policy

#enforcement#privacy Read original →
Enforcement
R Reuters · · International

Clayton says reporter subpoenas part of 'national security investigation'

U.S. Attorney for the Southern District of New York Jay Clayton has confirmed that subpoenas issued to reporters are connected to what he describes as a national security investigation. The disclosure comes amid broader concerns about the use of legal process to compel journalists to reveal sources or information.

Who should care: Lawyers · Privacy officers · Compliance

#enforcement Read original →