California group sues Albertson's over privacy concerns
A dozen of the country's largest drug companies are named in the suit
Computerworld - The Privacy Rights Clearinghouse (PRC), a San Diego-based privacy advocacy group, has filed a lawsuit against supermarket chain Albertson's Inc. and its pharmacy units, SavOn, Osco and Jewel-Osco.
The lawsuit, filed in California Superior Court in San Diego County, alleges that Albertson's violated the privacy rights of its pharmacy customers by illegally using their confidential information to conduct targeted marketing campaigns on behalf of large drug companies.
A spokeswoman for Boise, Idaho-based Albertson's called the allegations "false and totally without merit."
"We highly respect the privacy of our pharmacy customers and do not sell, nor have we ever sold, their private information," she said in an e-mailed statement. She said the company will "vigorously" defend itself against the allegations.
The lawsuit against Albertson's, announced yesterday, was originally filed in May. The announcement corresponds with the completion of service naming all the companies that participated with Albertson's in the marketing campaign, said Jeffrey Krinsk, a lawyer at San Diego-based Finkelstein & Krinsk, the law firm representing the PRC.
Among those named as "co-conspirators" and "abettors" in the case are more than a dozen of the country's largest drug companies.
The case is an "egregious example" of sensitive, personal information being used for profitable purposes by a company without the knowledge or consent of the individuals concerned, said Beth Givens, director of the PRC, at a news conference.
Albertson's was involved in a "deceptive practice that violates California law," she said.
At issue is Albertson's alleged practice of sending targeted marketing messages from drug companies to its pharmacy customers using confidential information gathered during the prescription-filling process.
According to the lawsuit, Albertson's extracts and stores the confidential information in a separate database. The information is used to launch targeted campaigns urging customers to "renew their prescriptions, switch to a successor drug manufactured by the same drug company or switch to an alternative medication," the suit alleges.
The marketing messages were disguised to appear as though they were originating from Albertson's, when in fact they were mostly written and approved by drug companies, the lawsuit says. Albertson's received from the drug companies up to $4.50 for every marketing letter and up to $15 per marketing phone call, according to the suit.
Albertson's' practice is in violation of California's Confidential Medical Information Act because the company didn't inform customers or get their permission to use the confidential information to deliver such marketing messages, Krinsk said. The lawsuit was filed to stop the practice, and it seeks restitution of any money the company may have made by using confidential information in this manner, Krinsk said.
Read more about Privacy in Computerworld's Privacy Topic Center.
- Why Projects Fail CIOs are expected to deliver more projects that transform business, and do so on time, on budget and with limited resources.
- The New Business Case for Video Conferencing: 7 Real-World Benefits Beyond Cost-Savings This whitepaper provides insight into the value of video conferencing in today's business environment, and how organizations are using visual collaboration to find...
- Gartner Magic Quadrant for Client Management Tools The client management tool market is maturing and evolving to adapt to consumerization, desktop virtualization, and an ongoing need to improve efficiency.
- Audit Ready and Asset Optimized: The Solid Promise of an Intelligent Software Asset Management Solution In this paper Frost & Sullivan examines the benefits of enterprise-grade Software Asset Management solutions, and how these solutions serve as the convergence...
- Data Protection and Disaster Recovery with iSCSI and VMware Get this on demand webcast now
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users? All Privacy White Papers | Webcasts