Kaiser Permanente agreed to a $47.5 million settlement to resolve a class action alleging that the health insurance giant secretly shared members private health data with Google, Microsoft, and Twitter/X through tracking pixels embedded in its member-facing websites and mobile apps. Current and former Kaiser members across nine states and Washington D.C. may be eligible to file a claim at kaiserprivacysettlement.com.
Status: Claims Open | Official Site: kaiserprivacysettlement.com
What Did Kaiser Permanente Do?
Kaiser Permanente embedded tracking pixels and analytics tools from Google, Microsoft Bing, and Twitter into its authenticated member portal and mobile app. When members logged in to check lab results, manage prescriptions, or schedule appointments, these trackers silently collected data about what members were viewing and transmitted it to third-party tech companies whose business model is building advertising profiles of individuals.
The critical issue is that this happened inside the private, password-protected portion of Kaiser websites and apps. Members reasonably expected that what they accessed behind their login was confidential. Instead, their health-related browsing activity was being shared with advertisers. Under HIPAA and state health privacy laws, sharing this type of information with advertisers without member consent is prohibited.
Who Is Eligible?
You may be eligible if you are a current or former Kaiser Permanente member in any of the following states who accessed Kaiser authenticated member websites or mobile apps between November 2017 and May 2024:
- California
- Colorado
- Georgia
- Hawaii
- Maryland
- Oregon
- Virginia
- Washington
- Washington, D.C.
Kaiser Permanente serves over 12 million members, making this one of the largest healthcare privacy cases in U.S. history by the number of people affected.
What Data Was Shared?
- IP addresses that can be used to identify individual users
- Search terms entered in the Kaiser member portal, including symptoms, conditions, or medications
- Page URLs visited, which could reveal health topics like mental health resources, cancer screenings, or prescription refills
- Appointment information revealing what types of doctors or specialists members were seeing
How to File a Claim
Visit kaiserprivacysettlement.com to file your claim. Confirm your Kaiser membership and that you accessed Kaiser online services during the class period. You do not need to have suffered specific documented harm to file a claim.
Why Tracking Pixels in Healthcare Are Illegal
Tracking pixels are tiny invisible image files embedded in web pages. When your browser loads the page, it contacts the server hosting that pixel and sends identifying information like your IP address. When deployed on authenticated health portals, this almost certainly violates HIPAA. In December 2022, the Department of Health and Human Services issued guidance explicitly warning that using tracking technologies on authenticated patient portals likely violates federal health privacy law.
Case Details
| Defendant | Kaiser Foundation Health Plan, Inc. |
| Allegation | Sharing members private health data with Google, Microsoft, Twitter via tracking pixels |
| Settlement Amount | $47.5 million |
| Class Period | November 2017 to May 2024 |
| Who Qualifies | Kaiser members in CA, CO, GA, HI, MD, OR, VA, WA, DC who used Kaiser online services |
| Official Website | kaiserprivacysettlement.com |
| Status | Claims open |
See the Kaiser Permanente privacy settlement details on OpenClassActions.com.
By Steve Levine | Published: February 24, 2026
Legal Disclaimer
This article is for informational purposes only and does not constitute legal advice. OpenClassActions.org is not a law firm. Settlement terms and deadlines are subject to court approval. Visit kaiserprivacysettlement.com for official information.