A federal judge in Minnesota has dismissed a proposed class action lawsuit against a children’s hospital. The lawsuit alleged that the hospital’s website used ad tracking software that disclosed sensitive information about minor patients to companies like Meta Platforms Inc. and Google.
The plaintiffs claimed the hospital’s use of tracking technologies violated the federal Health Insurance Portability and Accountability Act (HIPAA), as well as state privacy laws. However, the judge ruled that the plaintiffs failed to demonstrate a concrete injury, a necessary element for establishing legal standing to sue. The lawsuit was dismissed without prejudice, meaning the plaintiffs could refile the suit if they can establish the necessary requirements.
The lawsuit centered on the use of tracking pixels and other technologies that, according to the plaintiffs, allowed the hospital to share patient data with third-party companies. This data allegedly included information about the pages patients visited on the hospital’s website.
The judge’s decision highlights the ongoing legal challenges surrounding data privacy and healthcare information, especially in the digital age. The ruling signals the importance of demonstrating specific harm when bringing privacy-related lawsuits.
