PrivacySignal
Healthcare

Study of Healthcare Websites Shows Widespread and Risky Use of Tracking and Analytics Tools

HIPAA Journal · · US Federal · Healthcare Privacy

A new study found that most healthcare websites deploy third-party marketing and analytics tools that could expose sensitive patient information to outside companies. The findings point to a systemic gap between what healthcare sites collect and what patients reasonably expect about who sees their data.

Why this matters: When you visit a hospital or clinic website, you probably assume that what you look up stays between you and your provider. It often does not. Marketing trackers do not know you are searching for a cancer specialist or a mental health clinic. They just collect and send the data. Healthcare organizations are bound by HIPAA, but the tools they embed on their websites frequently are not. That mismatch puts real people at risk of having medical interests exposed to advertisers, data brokers, or anyone who buys the feed downstream. The organization running the website is responsible for what it puts on the page.

Who should care: Healthcare professionals · Privacy officers · Compliance · Cybersecurity

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Healthcare
HIPAA Journal · · US Federal

ERMI; McLeod Physician Associates; Centers for Dialysis Care Announce Data Breaches

Data breaches have been announced by the Georgia-based medical equipment company ERMI, McLeod Physician Associates in South Carolina, and the […] The post ERMI; McLeod Physician Associates; Centers for Dialysis Care Announce Data Breaches appeared first on The HIPAA Journal.

Who should care: Healthcare professionals · Privacy officers · Compliance

#healthcare Read original →
Healthcare
HIPAA Journal · · US Federal

HIPAA Security Rule Update Postponed: More Time Given to Implement Major HIPAA Security Rule Changes

Federal regulators have extended the timeline for HIPAA-regulated entities to comply with proposed updates to the HIPAA Security Rule, giving covered organizations additional time to prepare for the changes. The postponement applies broadly to entities subject to HIPAA, including healthcare providers, insurers, and their business associates.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →
Healthcare
HIPAA Journal · · US Federal

Small Practice Owners Guide to HIPAA Compliance Programs

A guide from The HIPAA Journal addresses how small medical practice owners bear direct legal responsibility for HIPAA compliance, even when routine compliance tasks are delegated to staff or third parties. The piece outlines how that personal accountability shapes what a functioning compliance program needs to look like.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →
Healthcare
HIPAA Journal · · US Federal

AdaptHealth Reports Material Cybersecurity Incident and Theft of Patient Data

AdaptHealth, a publicly traded home medical equipment and supplies company, has disclosed a cybersecurity incident it has classified as material, involving the theft of patient data. The breach affects customers who rely on the company for home health products including diabetes supplies and sleep therapy equipment.

Who should care: Healthcare professionals · Privacy officers · Compliance

#healthcare Read original →
Healthcare
HIPAA Journal · · US Federal

Delaware & Florida Women’s Health Centers Announce Data Breaches

Two women's health clinics — one in Delaware, one in Florida — have disclosed separate data breach incidents involving unauthorized access to or retention of patient information. Both providers are covered under HIPAA, which governs the handling of sensitive health data.

Who should care: Healthcare professionals · Privacy officers · Compliance

#healthcare Read original →