US Healthcare Marketplaces Leak Sensitive Data to Ad Tech Giants via AI Trackers

Pixel trackers are AI-enabled systems that collect and analyze user data to optimize advertising. Their deployment on government healthcare sites led to the direct and unauthorized sharing of sensitive personal data with advertising companies, causing harm to individuals' privacy and potentially violating legal rights. The event involves the use and misuse of AI systems (pixel trackers) leading to realized harm (privacy violations, trust erosion, potential discrimination), fulfilling the criteria for an AI Incident. The involvement of AI in data collection and the direct harm caused by this misuse justify this classification.

The event involves the use of AI-powered ad tech systems (pixel trackers) that collect and share sensitive personal data from government healthcare websites. This data sharing has directly led to violations of privacy rights and potentially breaches legal obligations protecting personal and health information. The AI systems' use in profiling and targeted advertising is central to the harm. Therefore, this qualifies as an AI Incident due to violations of human rights and privacy caused by the AI system's use and malfunction (misconfiguration).

The event involves AI systems indirectly through the use of AI-driven advertising platforms (Meta, TikTok, Google, Snap, LinkedIn) that process and exploit sensitive personal data leaked by state health exchanges. The data leakage leads to violations of privacy and potentially discriminatory profiling, which are harms to individuals' rights and communities. The harm is realized, not just potential, as the data has already been transmitted and used for targeted ads. The AI systems' role in analyzing and acting on this data is pivotal to the harm. Thus, this is an AI Incident rather than a hazard or complementary information.