Lieff Cabraser represents current and former Blue Shield members whose communications, medical information, financial information, and other personal information was improperly shared by Blue Shield with unauthorized third parties through invisible third-party online surveillance and tracking technologies present on Blue Shield websites.

Blue Shield has admitted to disclosing its members’ private communications and other protected information to Google between 2021 and 2024, and acknowledged that the disclosures were inconsistent with permissible use of such protected data. These admissions were memorialized in a Notice of Data Breach that Blue Shield issued to approximately 4.7 million Blue Shield members on or around April 9, 2025.

However, while the Google Data Breach Notice reflects extensive unlawful violations of the plaintiffs’ privacy rights, it omits large swaths of Blue Shield’s misconduct.

Lieff Cabraser’s independent investigation has revealed that Blue Shield also configured its websites to disclose protected communications and data to third parties other than Google, including some of the largest data companies in the world. For example, archived versions of the Blue Shield websites from the past several years showed transmittals from sensitive pages to, e.g., Meta (Facebook), LinkedIn, TikTok, NextRoll, Inc., Verint Systems, Inc., Marketo (now part of Adobe), Adelphic (now owned by Viant Technology LLC (“Viant”)), Dynatrace, and Adobe, who also deploy their third-party website surveillance products for the monetization of user data and user profiling.

As if that weren’t enough, our investigation also reveals that Blue Shield’s unlawful disclosures via its websites commenced in 2017, not four years later in 2021, as Blue Shield suggests.

If you or a family member have used Blue Shield’s website and are concerned that your private personal data has been improperly shared by Blue Shield, please contact us today for a free review of your legal claims and information on potential recovery. There is no charge or obligation for our review of your experience with Blue Shield’s data problems.

Lieff Cabraser’s Cybersecurity and Data Privacy practice group is committed to ensuring that the fundamental right to privacy is respected and maintained as technology evolves to grow ever more powerful, pervasive, and intrusive.

Our Cybersecurity attorneys have the experience and technical expertise necessary to successfully litigate a comprehensive range of privacy claims. We represent individuals in precedent-setting cases against powerful technology, social media, healthcare, and entertainment companies, as we continue to reaffirm and enforce all the privacy protections the law provides to keep secure the most sensitive personal information of citizens in the U.S. and around the world.