Topics
late
AI
Amazon
Image Credits:Brandon Sloter / Icon Sportswire / Getty Images
Apps
Biotech & Health
Climate
Image Credits:Brandon Sloter / Icon Sportswire / Getty Images
Cloud Computing
Commerce
Crypto
Enterprise
EVs
Fintech
Fundraising
Gadgets
punt
Government & Policy
Hardware
Layoffs
Media & Entertainment
Meta
Microsoft
Privacy
Robotics
Security
Social
Space
inauguration
TikTok
transfer
Venture
More from TechCrunch
case
Startup Battlefield
StrictlyVC
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
get through Us
wellness insurance giant Blue Shield of California is notifying meg of people of a data rupture . The company confirmed on Wednesday that it had been apportion patient ’ private health selective information with technical school and advertising colossus Google since 2021 .
The insurersaidthat the data share-out stopped in January 2024 , but it only learned this February that the year - long assembling contained patient ’ personal and sensitive health information .
Blue Shield suppose it used Google Analytics to go after how its customers used its websites , but a misconfiguration had permit for personal and health selective information to be collected as well , such as the lookup terms that patient role used on its web site to find health care provider .
The insurance giant state Google “ may have used this datum to take focused advertizement cause back to those individual phallus . ”
Blue Shield said the collected data also include insurance design gens , types , and group numbers , along with personal information such as patient ’ metropolis , zip code , gender , and family sizing . Details of Blue Shield - assigned member account numbers , take service dates and service supplier , patient names , and patient ’ financial duty were also apportion .
Per alegally postulate disclosurewith the U.S. politics ’s health department , Blue Shield of California say it is advise 4.7 million somebody feign by the falling out . The break is intend to affect the bulk of its customers ; Blue Shield had 4.5 million membersas of 2022 .
It ’s not like a shot cleared if Blue Shield asked Google to delete the information , or if Google has complied .
Mark Seelig , a spokesperson for Blue Shield , did not remark beyond the company ’s financial statement . When reached for comment , Google spokesperson Jacel Booth told TechCrunch that “ businesses , not Google , wield the data point they take in and must inform user about its collection and use , ” but the technical school colossus would not say if it would erase the compile data point .
Blue Shield is the latest health care company tobe caught out by the use of on-line tracking technologies . Online trackers are modest snippets of code , often render by tech giants , designed to collect selective information about a customer ’ pasture activeness by being embedded in mobile apps and website . Tech and social metier companies are usually the sources of these trackers , as they trust on the data for advertising and to tug the majority of their revenues .
Last year , U.S. health policy giant Kaisernotified more than 13 million peoplethat it had been share patients ’ information with advertisers , including Google , Microsoft , and X , after embedding tracking computer code on its website .
Several other issue healthcare companies , includingmental health startup Cerebralandalcohol recovery startup Monument and Tempest , have disclose retiring breaches involving the sharing of patient ’ personal and wellness information with advertizement firms .
The breach at Blue Shield of California presently stand as the great health care - related data point rupture of 2025 so far , per the U.S. health section ’s Office of Civil Rights .
update with remark from Google and Blue Shield .
