Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Privacy The Internet United States

96% of US Hospital Websites Share Visitor Info With Meta, Google, Data Brokers (theregister.com) 21

An anonymous reader quotes a report from The Guardian: Hospitals -- despite being places where people implicitly expect to have their personal details kept private -- frequently use tracking technologies on their websites to share user information with Google, Meta, data brokers, and other third parties, according to research published today. Academics at the University of Pennsylvania analyzed a nationally representative sample of 100 non-federal acute care hospitals -- essentially traditional hospitals with emergency departments -- and their findings were that 96 percent of their websites transmitted user data to third parties. Additionally, not all of these websites even had a privacy policy. And of the 71 percent that did, 56 percent disclosed specific third-party companies that could receive user information.

The researchers' latest work builds on a study they published a year ago of 3,747 US non-federal hospital websites. That found 98.6 percent tracked and transferred visitors' data to large tech and social media companies, advertising firms, and data brokers. To find the trackers on websites, the team checked out each hospitals' homepage on January 26 using webXray, an open source tool that detects third-party HTTP requests and matches them to the organizations receiving the data. They also recorded the number of third-party cookies per page. One name in particular stood out, in terms of who was receiving website visitors' information. "In every study we've done, in any part of the health system, Google, whose parent company is Alphabet, is on nearly every page, including hospitals," [Dr Ari Friedman, an assistant professor of emergency medicine at the University of Pennsylvania] observed. "From there, it declines," he continued. "Meta was on a little over half of hospital webpages, and the Meta Pixel is notable because it seems to be one of the grabbier entities out there in terms of tracking."

Both Meta and Google's tracking technologies have been the subject of criminal complaints and lawsuits over the years -- as have some healthcare companies that shared data with these and other advertisers. In addition, between 20 and 30 percent of the hospitals share data with Adobe, Friedman noted. "Everybody knows Adobe for PDFs. My understanding is they also have a tracking division within their ad division." Others include telecom and digital marketing companies like The Trade Desk and Verizon, plus tech giants Oracle, Microsoft, and Amazon, according to Friedman. Then there's also analytics firms including Hotjar and data brokers such as Acxiom. "And two thirds of hospital websites had some kind of data transfer to a third-party domain that we couldn't even identify," he added. Of the 71 hospital website privacy policies that the team found, 69 addressed the types of user information that was collected. The most common were IP addresses (80 percent), web browser name and version (75 percent), pages visited on the website (73 percent), and the website from which the user arrived (73 percent). Only 56 percent of these policies identified the third-party companies receiving user information.
In lieu of any federal data privacy law in the U.S., Friedman recommends users protect their personal information via the browser-based tools Ghostery and Privacy Badger, which identify and block transfers to third-party domains.
This discussion has been archived. No new comments can be posted.

96% of US Hospital Websites Share Visitor Info With Meta, Google, Data Brokers

Comments Filter:
  • Come on! You can do it! Try slightly harder you and can reach that 100%

    Go go go go!

  • So? (Score:2, Insightful)

    by markdavis ( 642305 )

    >"Hospitals -- despite being places where people implicitly expect to have their personal details kept private -- frequently use tracking technologies on their websites[...] and their findings were that 96 percent of their websites transmitted user data to third parties. "

    So? That just means it is a typical a public website. I think you will find that almost all large websites have such tracking stuff on them. Marketing always wants to know as much as they can about who is visiting and why, and also l

    • I don't understand the thrust of this "study."

      To call attention to the problem. This happens because web devs take the easy approach, and the executives who should be putting a stop to it aren't savvy enough or just don't care.

      A study like this, and subsequent publicity, could potentially enlighten those executives or maybe generate a little public outcry.

    • A hospital is hardly a "typical" website. By knowing who visited which pages, you fan deduce information about their health. In most countries - even in the US, which otherwise doesn't protect privacy - health information us legally protected.
    • Re: (Score:2, Insightful)

      by Anonymous Coward

      >"Hospitals -- despite being places where people implicitly expect to have their personal details kept private -- frequently use tracking technologies on their websites[...] and their findings were that 96 percent of their websites transmitted user data to third parties. "

      So? That just means it is a typical a public website. I think you will find that almost all large websites have such tracking stuff on them. Marketing always wants to know as much as they can about who is visiting and why, and also link into social crap. Why would anyone think it would or should be less for "hospital" websites? This has nothing to do with protected or sensitive health information.

      I hate all this tracking, and use active methods to block it, but I don't understand the thrust of this "study."

      What do you think people search for and use on health websites? Nothing sensitive? Ever? What do you think they do with all that data they collect? Never sell it? Ever? Seriously. Wake up a bit as to WHY they do what they do, or better yet force them to turn off all tracking and listen to the excuses first. You might then better understand the motive behind the privacy scraping,

      There isn’t anything “typical” about buying and selling the data that drives insurance rates and poisons

      • >"What do you think people search for and use on health websites?

        This isn't "health websites", it is only "hospital websites." Probably typical things: Address, visiting hours, mission, donations, events, employment, phone numbers and other contact info, directions, history, parking, staff, policies, newsletter, services, so many things.

        >" Nothing sensitive? Ever?""

        Pretty darn rare, probably. People are far, far more likely to use a general search engine for that (and for most people that is probab

  • I keep getting ads offering me solutions for men with overly large penises.

    Good to know.

  • Americans are so funny. They will buy a phone that costs 2x or 3x more than other phones because it is the most secure one available, but they will hardly bat an eye at something like this. And it's all about the success of corporations that will never even throw a penny your way.
  • What else would you expect from a for profit business ?

Ocean: A body of water occupying about two-thirds of a world made for man -- who has no gills. -- Ambrose Bierce

Working...