Heres more evidence of cutting corners during the development of the Healthcare.gov insurance marketplace: the website appears to be violating its own privacy policy by sending private user information to third parties. Security researcher Ben Simo noticed that Healthcare.gov was sending his user name and password reset code to third party partners including the analytics services Pingdom, DoubleClick, and Google Analytics. However, the oversight may constitute a violation of the sites own privacy policy, which says, No personally identifiable information is collected by these tools. Facebook and Myspace were fined by the Federal Trade Commission (FTC) for similar infractions last year.
Comments are closed.
