The lawsuit — filed by the plaintiff “A.H.” in U.S. District Court in Central California — levels allegations against Medtronic and its MiniMed and InPen devices. It addresses MiniMed’s transmission and disclosure of personally identifiable information and protected health information to Google and other third parties.
Per the lawsuit, the data was transmitted via tracking and authentication technology, including Google Analytics, Crashlytics, Firebase Authentication and related tools. A.H. says these technologies, installed on the website and/or mobile applications, include the InPen iOS and Android applications.
“Information about a person’s health is among the most confidential and sensitive information in society, and its mishandling can have serious consequences, including embarrassment, discrimination, and denial of insurance coverage,” the lawsuit reads.
A Medtronic spokesperson issued the following statement via email:
“Medtronic has not been served and will review the complaint once we receive it. It’s important to note that protecting patient information is critically important to Medtronic. We have strong processes, technologies, and people in place to safeguard and protect our information and systems, the information of our business partners, and most importantly, the privacy and safety of the patients and healthcare providers that use our products.”