HEALTHCARE MARKETPLACES SHARED RACE DATA WITH AD TECH
INDUSTRY DESK■ 2 MIN READ
MON, MAY 4, 2026■ AI-SUMMARIZED FROM 1 SOURCE BELOW
Virginia and Washington D.C. have paused data collection after Bloomberg revealed their health insurance marketplaces were sharing sensitive citizen and race information with advertising technology companies.
Health insurance marketplaces in Virginia and Washington D.C. transmitted personal data including citizenship status and racial information to ad tech firms, according to a Bloomberg investigation. Both jurisdictions have now suspended the practice.
The marketplaces collected this demographic data as part of their standard enrollment processes. Rather than keeping the information private, they shared it with third-party advertising networks and data brokers. This enabled ad tech companies to target users based on their protected characteristics.
The data sharing raised significant privacy and discrimination concerns. Healthcare information combined with racial and citizenship data creates detailed profiles that advertisers could use to discriminate against vulnerable populations. Such practices potentially violate federal health privacy laws and state consumer protection regulations.
Virginia's marketplace was particularly aggressive in sharing data with multiple ad platforms. Washington D.C.'s system showed similar patterns. Neither jurisdiction had publicly disclosed these data sharing arrangements to consumers prior to the investigation.
Following Bloomberg's reporting, both marketplaces halted the collection and transmission of citizenship and race data to third parties. State officials indicated they would review their data practices and implement stronger privacy protections.
The incident highlights broader concerns about how government health platforms handle sensitive personal information. While healthcare providers are subject to strict privacy regulations under HIPAA, less clarity exists around how data brokers and ad tech companies can use demographic information obtained through health marketplaces.
Healthcare experts and privacy advocates have called for stronger federal guidelines requiring state and federal marketplaces to restrict data sharing. The issue affects millions of Americans who use health insurance marketplaces during annual enrollment periods.
Other state health insurance marketplaces have not yet confirmed whether they engage in similar data sharing practices. Congressional scrutiny of the issue is expected.
■ SOURCES
► TechCrunch■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE
■ MORE FROM THE SECURITY DESK
A compromised version of the PyTorch Lightning package on PyPI deployed a credential stealer targeting browser data, environment files, and cloud service credentials. The malicious package has since been removed.
JUST NOW— Industry Desk
Facial and sentiment analysis tools designed to monitor workers' moods are increasingly being deployed in office settings. Privacy advocates and researchers warn the technology raises significant concerns about surveillance, bias, and accuracy.
JUST NOW— AI Desk
Cybersecurity firm Trellix has disclosed a data breach following unauthorized access to a portion of its source code repository. The company is investigating the extent of the breach and its potential impact.
JUST NOW— Security Desk
Fraudsters are exploiting standard credit union lending processes rather than breaching security systems. Stolen identities allow criminals to pass verification checks and secure loans.
JUST NOW— Security Desk