:

HEALTHCARE MARKETPLACES SHARED RACE DATA WITH AD TECH

INDUSTRY DESK2 MIN READ
MON, MAY 4, 2026

■ AI-SUMMARIZED FROM 2 SOURCES ▸ TIMELINE

Virginia and Washington D.C. have paused data collection after Bloomberg revealed their health insurance marketplaces were sharing sensitive citizen and race information with advertising technology companies.

Health insurance marketplaces in Virginia and Washington D.C. transmitted personal data including citizenship status and racial information to ad tech firms, according to a Bloomberg investigation. Both jurisdictions have now suspended the practice. The marketplaces collected this demographic data as part of their standard enrollment processes. Rather than keeping the information private, they shared it with third-party advertising networks and data brokers. This enabled ad tech companies to target users based on their protected characteristics. The data sharing raised significant privacy and discrimination concerns. Healthcare information combined with racial and citizenship data creates detailed profiles that advertisers could use to discriminate against vulnerable populations. Such practices potentially violate federal health privacy laws and state consumer protection regulations. Virginia's marketplace was particularly aggressive in sharing data with multiple ad platforms. Washington D.C.'s system showed similar patterns. Neither jurisdiction had publicly disclosed these data sharing arrangements to consumers prior to the investigation. Following Bloomberg's reporting, both marketplaces halted the collection and transmission of citizenship and race data to third parties. State officials indicated they would review their data practices and implement stronger privacy protections. The incident highlights broader concerns about how government health platforms handle sensitive personal information. While healthcare providers are subject to strict privacy regulations under HIPAA, less clarity exists around how data brokers and ad tech companies can use demographic information obtained through health marketplaces. Healthcare experts and privacy advocates have called for stronger federal guidelines requiring state and federal marketplaces to restrict data sharing. The issue affects millions of Americans who use health insurance marketplaces during annual enrollment periods. Other state health insurance marketplaces have not yet confirmed whether they engage in similar data sharing practices. Congressional scrutiny of the issue is expected.

■ SOURCES

TechCrunchHacker News

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

Grok CLI experienced a critical bug that caused it to upload entire home directories to Google Cloud Storage. The issue sparked significant discussion in the developer community about data handling practices.

JUST NOWIndustry Desk

Aylo, Pornhub's parent company, will restore access to the site in the UK through Apple's device-level age verification system in iOS 26.4. The move requires users to complete age verification before accessing the platform.

1H AGOIndustry Desk

Australia's eSafety Commissioner has identified significant gaps in how major tech platforms address online sexual extortion. Young men are reporting sextortion at higher rates than any other demographic, with over 2,000 complaints filed in just six months.

1H AGOIndustry Desk

Angelo Martino, a ransomware negotiator, was sentenced to 70 months in prison for colluding with attackers to defraud victims. Martino helped orchestrate scams that extracted over $75 million from ransomware victims.

1H AGOSecurity Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.