杨贵妃传媒視頻

Looking for an at-home HIV test on CVS鈥� website is not as private an experience as one might think. An investigation by The Markup and 杨贵妃传媒視頻 Health News found trackers on CVS.com telling some of the biggest social media and advertising platforms the products customers viewed.

And CVS is not the only pharmacy sharing this kind of sensitive data.

We found trackers collecting browsing- and purchase-related data on websites of 12 of the U.S.鈥� biggest drugstores, including grocery store chains with pharmacies, and sharing the sensitive information with companies like Meta (formerly Facebook); Google, through its advertising and analytics products; and Microsoft, through its search engine, Bing.

The tracking tools, popularly called 鈥減ixels,鈥� collect information while a website runs. That information is often sent to social media firms and used to target ads, either to you personally or to groups of people that resemble you in demographics or habits. In previous investigations, The Markup found pixels transmitting information from the , , , and .

Pharmacy retailer websites鈥� pixels send a shopper鈥檚 IP address 鈥� a sort of mailing address for a person鈥檚 computer or household internet 鈥� to social media giants and other firms. They also send cookies, a way of storing information in a user鈥檚 browser that in this case helps track a user from page to page as the user browses a retailer鈥檚 site. Cookies can sometimes also associate individuals on a site with their account on a social media platform. In addition to the IP address and cookies, the pixels often send information about what you鈥檝e clicked or bought, including sensitive items, such as HIV tests.

鈥淗IV testing is the gateway to HIV prevention and treatment services,鈥� said Oni Blackstock, the founder of Health Justice and a former assistant commissioner for the New York City Bureau of HIV/AIDS Prevention and Control, in an interview.

鈥淧eople living with HIV should have control over whether someone knows their status,鈥� she said.

Many retailers shared other detailed interaction data with advertising platforms as well. Ten of the retailers we examined alerted at least one tech platform when shoppers clicked 鈥渁dd to cart鈥� as they shopped for retail goods, a capacious category that included sensitive products like prenatal vitamins, pregnancy tests, and Plan B emergency contraception.

Supermarket giant Kroger, for instance, informed Meta, Bing, Twitter, Snapchat, and Pinterest when a shopper added Plan B to the cart, and informed Google and Nextdoor, a social media platform on which people from the same neighborhood gather in forums, that a shopper had visited the page for the item. Walmart informed Google鈥檚 advertising service when a shopper browsed the page of an HIV test, and Pinterest when that shopper added it to the cart.

A previous investigation from The Markup found that Kroger to track, analyze, and sell an array of data about customers to advertisers.

Using Chrome DevTools, a tool built into Google鈥檚 Chrome browser, The Markup and 杨贵妃传媒視頻 Health News visited the websites of 12 of the U.S.鈥� biggest drugstores and examined their network traffic. This monitoring tool allowed us to see what information about shopping habits and, in some cases, prescriptions, were sent to third parties.

Over the course of the investigation, retailers frequently changed their trackers 鈥� sometimes activating them, sometimes removing them. Some retailers appeared to be taking steps to limit tracking on sensitive items.

For example, Walgreens鈥� website prevented some trackers from activating on the pages of some products, which included Plan B and HIV tests. This code didn鈥檛 prevent all tracking, though: Walgreens鈥� site continued sending Pinterest information about those sensitive items a user added to the cart.

Walgreens shared a new policy after learning of The Markup and 杨贵妃传媒視頻 Health News鈥� findings. Spokesperson Fraser Engerman said that while the chain already had a 鈥渞obust privacy program,鈥� it would no longer share browsing data related to reproductive health and HIV testing. Engerman also told us that 鈥淧interest confirmed that the data will be deleted and that it has not been used for advertising purposes.鈥� Crystal Espinosa, a spokesperson for Pinterest, said the company 鈥渃an confirm that we will be deleting the data Walgreens requested.鈥�

The Pharmacy vs. the Pharmacy Aisle

In the U.S., drugstores and grocery stores with associated pharmacies are only partially covered by the Health Insurance Portability and Accountability Act, or HIPAA. The prescriptions picked up from the pharmacy counter do have this protection.

But in a separate section, sometimes confusingly called the pharmacy aisle, stores also often sell over-the-counter medications, tests, and other health-related products. Consumers might think such purchases have similar protections to their prescriptions, but HIPAA only covers the pharmacy counter鈥檚 clinical operations, such as dispensing prescriptions and answering patients鈥� questions about medication.

This distinction can be confusing enough inside the brick-and-mortar location of a retailer. But the line can become even harder to make out on a website, which lacks the clarifying delineations of physical space.

What鈥檚 more, descriptions about what will happen with retail data are generally in retailers鈥� privacy policies, which can usually be found in a link at the bottom of their webpages. The Markup and 杨贵妃传媒視頻 Health News found them murky at best, and none of them were specific about the parts of the site that were covered by HIPAA and the parts that weren鈥檛.

In the 鈥淧rivacy Notice for California Residents鈥� part of its , Kroger says it processes 鈥減ersonal information collected and analyzed concerning a consumer鈥檚 health.鈥� But, the policy continues, the company does not 鈥渟ell or share鈥� that information. Other information is sold: According to the policy, in the last 12 months, the company sold or shared 鈥減rotected classification characteristics鈥� to outside entities like data brokers.

Kroger spokesperson Erin Rolfes said the company strives to be transparent and that, 鈥渋n many cases, we have provided more information to our customers in our privacy notices than our peers.鈥�

Brokering of general retail data is widespread. Our investigation found, though, that some websites shared sensitive clinical data with third parties even when that information would be protected at a HIPAA-covered pharmacy counter. Users attempting to schedule a vaccine appointment at Rite Aid, for example, must answer a survey first to gauge eligibility.

This investigation found that Rite Aid has sent Facebook responses to questions such as:

• Do you have a neurological disorder such as seizures or other disorders that affect the brain or have had a disorder that resulted from a vaccine?
• Do you have cancer, leukemia, AIDS, or any other immune system problem?
• Are you pregnant or could you become pregnant in the next three months?

The Markup and 杨贵妃传媒視頻 Health News documented Rite Aid sharing this data with Facebook in December 2022. In February of this year, a based on similar findings was filed against the drugstore chain in California, alleging code on Rite Aid鈥檚 website sent Facebook the time of an appointment and an identifier for the appointment location, demographic information, and answers to questions about vaccination history and health conditions. Rite Aid has moved to dismiss the suit.

After the lawsuit was filed, The Markup and 杨贵妃传媒視頻 Health News tested Rite Aid鈥檚 website again, and it was no longer sending answers to vaccination questions to Facebook.

Rite Aid isn鈥檛 the only company that sent answers to eligibility questionnaires to social media firms. Supermarkets Albertsons, Acme, and Safeway, which are owned by the same parent company, also sent answers to questions in their vaccination intake form 鈥� albeit in a format that requires cross-referencing the questionnaire鈥檚 source code to reveal the meaning of the data.

Using the Firefox web browser鈥檚 tool, and with the help of a patient with an active prescription at Rite Aid, 杨贵妃传媒視頻 Health News and The Markup also found Rite Aid sending the names of patients鈥� specific prescriptions to Facebook. Rite Aid kept sharing prescription names even after the company stopped sharing answers to vaccination questions in response to the proposed class action (which did not mention the sharing of prescription information). Rite Aid did not respond to requests for comment, and as of June 23, the pixel was still present and sending the names of prescriptions to Facebook.

Other companies shared data about medications from other parts of their sites. Customers of Sam鈥檚 Club and Costco, for example, can search names of prescriptions on each retailer鈥檚 website to find the local pharmacy with the cheapest prices. But the two websites also sent the name of the medication the user searched for, along with the user鈥檚 IP address, to social media companies.

Many of the retailers The Markup and 杨贵妃传媒視頻 Health News looked at did not respond to questions or declined to comment, including Costco and Sam鈥檚 Club. Albertsons said the company 鈥渃ontinually鈥� evaluates its privacy practices. CVS said it was compliant with 鈥渁pplicable laws.鈥�

Kroger鈥檚 Rolfes wrote that the company鈥檚 鈥渢rackers disclose product information, which is not sensitive health information unless one or more inferences are made. Kroger does not make any inferences linking the product information collected or disclosed by trackers to an individual鈥檚 health condition.鈥�

A Huge Regulatory Challenge

Pharmacies are just one facet of a huge health care sector. But the industry as a whole has been roiled by disclosures of tracking pixels picking up sensitive clinical data.

After an investigation by The Markup in June 2022 on hospital websites, regulatory and legal attention has homed in on the practice.

In December, the Department of Health and Human Services鈥� Office for Civil Rights advising health providers and insurers how pixel trackers鈥� use can be consistent with HIPAA. 鈥淩egulated entities are not permitted to use tracking technologies in a manner that would result in impermissible disclosures鈥� of protected health information to tracking technology or other third-party vendors, according to the official bulletin. If implemented, the guidance would provide a path for the agency to regulate hospitals and other providers and fine those who don鈥檛 follow it. In an interview with an industry publication in late April, the director of the Office for Civil Rights said it would be for pixel use 鈥渉opefully soon.鈥�

Lobbying groups are seeking to confine any regulatory fallout: The American Hospital Association, for example, sent a letter on May 22 to the Office for Civil Rights 鈥渟uspend or amend鈥� its guidance. The office, it claimed, was seeking to protect too much data.

This year the Federal Trade Commission has pursued action against , which offers prescription price comparisons, and , which offers online therapy, for alleged misuse of data from questionnaires and searches. The companies settled with the agency.

Health care providers have disclosed to the federal government the potential leakage of nearly 10 million patients鈥� data to various advertising partners, according to a review by The Markup and 杨贵妃传媒視頻 Health News of breach notification letters and the Office for Civil Rights鈥� online database of breaches. That figure could be a low estimate: A new study in the journal Health Affairs found that, as of 2021, almost contained tracking technologies.

One prominent law firm, BakerHostetler, is defending hospitals in 26 legal actions related to the use of tracking technologies, lawyer Paul Karlsgodt, a partner at the firm, said this year. 鈥淲e鈥檝e seen an absolute eruption of cases,鈥� he said.

Abortion- and pregnancy-related data is particularly sensitive and driving regulatory scrutiny. In the same webinar, Lynn Sessions, also with BakerHostetler, said the California attorney general鈥檚 office had made specific investigative requests to one of the firm鈥檚 clients about whether the client was sharing reproductive health data.

It鈥檚 unclear whether big tech companies have much interest in helping secure health data. Sessions said BakerHostetler had been trying to get Google and Meta to sign so-called business associate agreements. These agreements would bring the companies under the HIPAA regulatory umbrella, at least when handling data on behalf of hospital clients. 鈥淏oth of them, at least at this juncture, have not been accommodating in doing that,鈥� Sessions said. Google Analytics鈥� instructs customers to 鈥渞efrain from using Google Analytics in any way that may create obligations under HIPAA for Google.鈥�

Meta says it has tools that attempt to prevent the transfer of sensitive information like health data. In a to Sen. Mark Warner (D-Va.) obtained by 杨贵妃传媒視頻 Health News and The Markup, Meta wrote that 鈥渢he filtering mechanism is designed to prevent that data from being ingested into our ads.鈥� What鈥檚 more, the letter noted, the social media giant reaches out to companies transferring potentially sensitive data and asks them to 鈥渆valuate their implementation.鈥�

鈥淚 remain concerned the company is too passive in allowing individual developers to determine what is considered sensitive health data that should remain private,鈥� Warner told The Markup and 杨贵妃传媒視頻 Health News.

Meta鈥檚 claims in its letter to Warner have been repeatedly questioned. In 2020, the company itself that the filtering system was 鈥渘ot yet operating with complete accuracy.鈥�

To test the filtering system, Sven Carlsson and Sascha Granberg, reporters for SR Ekot in Sweden, in Swedish, which sent fake, but plausible, health data to Facebook to see whether the company鈥檚 filtering systems worked as stated. 鈥淲e weren鈥檛 warned鈥� by Facebook, Carlsson said in an interview with 杨贵妃传媒視頻 Health News and The Markup.

Carlsson and Granberg鈥檚 work also found European pharmacies engaged in activities similar to what The Markup and 杨贵妃传媒視頻 Health News have found. The reporters caught a Swedish state-owned pharmacy . And a with The Guardian found the U.K.-based pharmacy chain LloydsPharmacy was sending sensitive data 鈥� including information about symptoms 鈥� to TikTok and Facebook.

In response to questions from 杨贵妃传媒視頻 Health News and The Markup, Meta spokesperson Emil Vazquez said, 鈥淎dvertisers should not send sensitive information about people through our Business Tools. Doing so is against our policies and we educate advertisers on properly setting up Business Tools to prevent this from occurring. Our system is designed to filter out potentially sensitive data it is able to detect.鈥�

Meta did not respond to questions about whether it considered any of the information 杨贵妃传媒視頻 Health News and The Markup found retailers sending to be 鈥渟ensitive information,鈥� whether any was actually filtered by the system, or whether Meta could provide metrics demonstrating the current accuracy of the system.

In response to our inquiries, Twitter sent a poop emoji, while TikTok and Pinterest said they had policies instructing advertisers not to pass on sensitive information. LinkedIn and Nextdoor did not respond.

Google spokesperson Jackie Bert茅 said the company鈥檚 policies 鈥減rohibit businesses from using sensitive health information to target and serve ads鈥� and that it worked to prevent such information from being used in advertising, using a 鈥渃ombination of algorithmic and human review鈥� to remedy violations of its policy.

杨贵妃传媒視頻 Health News and The Markup presented Google with screenshots of its pixel sending the search company our browsing information when we landed on the retailers鈥� pages where we could purchase an HIV test and prenatal vitamins, and data showing when we added an HIV test to the cart. In response, Bert茅 said the company had 鈥渘ot uncovered any evidence that the businesses in the screenshots are violating our policies.鈥�

杨贵妃传媒視頻 Health News uses the Meta Pixel to collect information. The pixel may be used by third-party websites to measure web traffic and performance data and to target ads on social platforms. 杨贵妃传媒視頻 Health News collects page usage data from news partners that opt to include our pixel tracker when they republish our articles. This data is not shared with third-party sites or social platforms and users鈥� personally identifiable information is not聽recorded or tracked, per . The Markup does not use a pixel tracker. You can read its full privacy policy .

This article was co-published with聽, a nonprofit newsroom that investigates how powerful institutions are using technology to change our society. Sign up for聽.