Class Actions Lawsuits
Data Breach

Meta (Facebook) Pixel Healthcare Data Privacy Litigation

Data Breach class action lawsuit

Case Overview

Meta's 'Pixel' is a piece of tracking JavaScript code that website operators embed to measure advertising performance. However, investigations by The Markup and subsequent lawsuits revealed that hundreds of major U.S. hospitals — including those affiliated with UCSF, Dignity Health, and others — had embedded the Meta Pixel on their patient-facing portals, including appointment scheduling and symptom checker pages. This allegedly allowed Meta to receive deeply sensitive health data — such as specific medical conditions searched, doctors contacted, and appointment details — without patients' knowledge or HIPAA-compliant authorization. Plaintiffs allege violations of HIPAA, the Electronic Communications Privacy Act, California's Confidentiality of Medical Information Act, and various state wiretapping statutes.

The federal class action MDL, consolidated in the Northern District of California, represents potentially millions of patients nationwide. In July 2024, Meta agreed to a landmark $1.4 billion settlement with the Texas Attorney General over related state privacy claims — one of the largest privacy settlements ever with a single state — though the federal class action litigation continues. Numerous hospital systems have also been named as co-defendants in related suits for deploying the Pixel on their platforms. The case has prompted widespread removal of tracking pixels from healthcare websites and significant regulatory scrutiny from the HHS Office for Civil Rights.

Who May Qualify

Individuals who used the patient portal, appointment scheduling system, or health information pages of a U.S. hospital or healthcare provider that had the Meta Pixel installed, and whose sensitive health information was thereby transmitted to Meta without their consent, may be eligible to participate. Affected patients may have received notice from their healthcare provider about the data exposure.

Frequently Asked Questions

Was my health data sent to Facebook without my permission?

Potentially. If you used an online patient portal, appointment booking page, or symptom checker at a hospital or clinic that installed Meta's tracking Pixel, your health-related data may have been transmitted to Meta. Hundreds of hospitals across the U.S. were found to have used the Pixel on sensitive health pages.

How much did Meta settle the health data privacy lawsuit for?

Meta agreed to a $1.4 billion settlement with the Texas Attorney General in 2024 over related health and biometric data privacy claims. The separate federal class action MDL in the Northern District of California is still ongoing and has not yet reached a final settlement.

Can I join the Meta Pixel healthcare lawsuit?

If you are a U.S. patient who used a hospital's online portal or scheduling system and your data was shared with Meta without consent, you may qualify for the class action. Contact a data privacy attorney or monitor the federal MDL proceedings for class certification and claims filing updates.