- cross-posted to:
- privacy@lemmy.ml
- cross-posted to:
- privacy@lemmy.ml
Twelve of the largest drug stores in the U.S. sent shoppers’ sensitive health information to Facebook or other platforms.
You must log in or register to comment.
I’m yet to find a single thing about leaving facebook that makes me regret it. What a terrible website
The fun thing is that even if you’re not there, they have a shadow profile to track you
How is this not a HIPAA violation?
The article discusses this.
In these cases, a pixel on the pharmacy website is being downloaded by your IP address. I don’t think there’s anything there would constitute PHI (Protected Health Information) under HIPAA.
In isolation, this data means nothing. But these massive companies can easily link an IP address to a person. And each pixel has a different URL, which identifies what page is calling it (eg, the page that says you’ve added an HIV test to your cart).
The results of the test would be covered by HIPAA, as would any test administered by a doctor or in a hospital setting. But in a pharmacy only prescriptions are covered by HIPAA - anything non-prescription is unprotected.
So if you’re privacy conscious and using something like NextDNS to block pixels and other shady tracking mechanisms at the DNS level, all’s good? When I left Facebook back in 2016, I started with Pihole, but I like NextDNS because it’s easier to use when not at home and I can manage profiles for family members easily in case to do find something they “need” to work. Why people willingly want to see ads is beyond me.
It’s hard to say, but basic precautions like a browser based ad blocker would filter out probably 90%+ of this tracking. Firefox and Safari even have this baked in to the browser, you just need to turn it on.
The built in “do not track” features require companies to operate in good faith and honor that. I have zero trust In that.
I’m not talking about “Do Not Track”. I’m talking about features like this:
https://support.mozilla.org/en-US/kb/trackers-and-scripts-firefox-blocks-enhanced-track
It’s a Firefox setting that specifically blocks pixels and cross-site cookies. It’s turned on by default, and you can increase it to “strict” if you value privacy over comparability.
Ah, wasn’t aware of that one. Thanks for the info.
HIPAA requires you to know about it to make a complaint. Also, corporations may not count as healthcare providers, so they sneak through a loophole.
None of this is correct. HIPAA obligations are not contingent on a complaint, and being incorporated absolutely is not incompatible with being a healthcare provider.
They could be? Or of fucking course they are.
Who else except boomers are still using Facebook? Like really?
I use it to sell things, but that’s literally it. Legitimately the only thing it’s good for at this point. And every time I go on there I’m reminded of how terrible it is. Actually nauseating.
Ah yea. There’s a marketplace but why not eBay? Swappa, offer up etc? Much better than FB?
What I know is some craftsmen and small workshops only use Facebook to do their businesses. If you are interested in their work and want to contact them, you can only do that through Facebook. They don’t have websites nor blogs, sometimes don’t show their email to the public. I don’t know why but maybe they want to be selective.
I think for some it is just easier - they don’t need to get their nephew to build a janky website, or cut into their profit by having someone build a decent one.
The older blokes in particular probably aren’t worried or even aware of the issues with Facebook. For them, it’s just a place to share pics of their grandkids visiting and boomer memes etc.
Even with the younger crowd - when I move, which is every few years, I often find new hairdressers on Facebook; few bother with a website. They’re already on there and it’s a great way to show their work to a wide range of potential clients.
Almost no one is going to a website every few weeks to check out updates from their favourite artisans, but they will scroll through a social feed and often interact with the posts.
