Sanford Health Class Action Lawsuit – Patient Privacy Violations Featured
Sensitive Medical Data Secretly Shared With Big Tech Companies
Sanford Health, one of the largest rural health systems in the United States, is facing a class action lawsuit for allegedly violating patient privacy by secretly sharing sensitive health information with third-party companies like Meta (Facebook), Google, Snapchat, and Microsoft. The case, filed in federal court, claims that Sanford used hidden tracking tools on its website to capture and transmit patients’ private medical data without their knowledge or consent.
What Happened?
According to the lawsuit, Sanford Health embedded tracking technologies—including the Meta Pixel, Google Analytics, Snapchat’s Snap Pixel, and session replay code from Microsoft and Mixpanel—on its website. These tools allegedly intercepted what patients typed, clicked, and viewed, including searches for doctors, medical services, symptoms, and treatments.
Instead of keeping this private, the complaint alleges Sanford allowed the data to be sent to outside tech companies. That means browsing Sanford’s site could expose details about your health conditions, medications, or even upcoming surgeries to social media platforms and advertisers.
What Information was Shared?
The lawsuit claims Sanford’s tracking tools captured and disclosed:
- Names of doctors searched
- Patient status (showing someone was seeking care)
- Health symptoms and conditions
- Treatments, medications, and medical services explored
- IP addresses, device details, and unique identifiers linking users to social media accounts
This data could allegedly be tied back to individuals’ Facebook or Snapchat profiles, making it easy for advertisers to target patients with highly personal ads related to their medical concerns.
Who is Affected?
Sanford Health serves more than 1.4 million patients across 15 states, including Minnesota, North and South Dakota, Iowa, Wisconsin, Michigan, and Wyoming. The lawsuit alleges that anyone who used Sanford’s website, patient portal, or apps may have had their private information shared without consent.
If you visited the Sanford Health website to look up a doctor, schedule care, or research medical services, your data may have been exposed.
What Should You Do Now?
If you’re concerned your information was compromised:
- Monitor your online accounts for unusual targeted ads related to your health.
- Be alert to potential identity theft or unauthorized use of your personal data.
- Save any notifications or ads you believe are linked to your medical history.
Most importantly, know that you may have the right to participate in this lawsuit and seek compensation for privacy violations.
Know Your Legal Rights – Join the Class Action
The lawsuit against Sanford Health accuses the provider of violating federal and Minnesota privacy laws, the Electronic Communications Privacy Act, and patients’ rights under HIPAA. Plaintiffs seek damages for invasion of privacy, unauthorized disclosure of health records, and unjust enrichment by Sanford and its technology partners.
If you were a patient or visitor to Sanford’s website, you may be eligible to join this class action. By coming forward, you can help hold Sanford accountable and potentially recover compensation for the misuse of your sensitive health information.
If you believe your information may have been shared without your consent, fill out the form below. A privacy attorney will review your situation at no cost to you and contact you to discuss your legal options.