GoodRx facing $1.5M fine over improper sharing of health data
By 
Kyle Brasseur2023-02-01T18:02:00
GoodRx Holdings agreed to pay $1.5 million as part of a settlement reached with the Federal Trade Commission (FTC) addressing allegations the telemedicine and prescription drug discount provider shared personal health data with third parties for advertising purposes.
GoodRx must overhaul its user consent and data retention practices as conditions of the agreement announced Wednesday by the FTC. The agency’s proposed order, which it hailed as being the first of its kind, was filed by the Department of Justice and must be approved by a federal court before taking effect.
GoodRx was faulted for misrepresenting its compliance with the Health Insurance Portability and Accountability Act (HIPAA) in addition to allegedly monetizing personal health data by sharing the information with advertising platforms including Facebook and Google.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefFTC, HHS warn hospitals over use of online tracking tech
The Federal Trade Commission and Department of Health and Human Services sent letters to approximately 130 hospital systems and telehealth providers regarding potential patient privacy violations and security risks stemming from online tracking technologies.
-
News BriefFTC warns businesses to risk assess uses of biometric technologies
Businesses that make false or unsubstantiated claims regarding facial recognition and other biometric technologies could face enforcement from the Federal Trade Commission, the agency warned in a policy statement.
-
News BriefFTC proposes BetterHelp pay $7.8M for sharing health data
The Federal Trade Commission proposed requiring online counseling service BetterHelp to pay $7.8 million as part of a settlement addressing charges it shared clients’ personal health data with Facebook, Snapchat, and other third parties for advertising purposes.
More from Regulatory Enforcement
-
ArticleFormer telemedicine company owner gets 7 years for role in $136M kickback scheme
A former co-owner of two telemedicine companies who helped orchestrate $136 million in Medicare fraud was sentenced to seven years in prison for his role in the nationwide bribery and kickback scheme involving orthotic braces, doctors, and false claims.
-
ArticleEuropean regulators fine banks for compliance failures and warn more investigations will follow
Crédit Agricole and J.P. Morgan were among financial institutions that found themselves in the cross-hairs of the European Central Bank for faulty risk assessments and risk reporting and failing to protect consumers from fraud risks. All of those companies fined also missed compliance deadlines.
-
ArticleFalse Claims Act enforcement themes for 2026
The U.S. Department of Justice touted a record $6.8 billion in False Claims Act (FCA) recoveries in fiscal year 2025, much of that total stems from prior years’ cases and does not necessarily reflect the administration’s current enforcement direction.