Loading…
Loading…
Loading…
Loading…
Loading…
Loading…
Free to get started. No card charged today.
Browse 8,265 companies freeA deep investigation into Practice Fusion's data collection, privacy violations, and surveillance practices. Founded 2005 in San Francisco, California.
Upgrade to SeekerPro for deep-dive reports on every company that touches your data. Members get breach timelines, violation histories, privacy risk scores, and executive contact data before anyone else.
Try SeekerPro →Practice Fusion was a free electronic health records (EHR) system used by thousands of medical practices across the United States, and it stands as one of the most egregious examples of healthcare technology corruption in American history. In January 2020, the Department of Justice announced that Practice Fusion would pay $145 million to resolve criminal and civil investigations for accepting kickbacks from a major opioid manufacturer to implement clinical decision support alerts in its EHR software that pushed doctors to prescribe opioid painkillers to patients. The company embedded alerts in the software that triggered during patient encounters and prompted physicians to prescribe extended-release opioid medications, contributing to the opioid epidemic that has killed hundreds of thousands of Americans. The kickback scheme operated from 2016 to 2019, during which Practice Fusion received payments from the pharmaceutical company in exchange for implementing these prescribing alerts across its network of medical practices. Beyond the opioid scandal, Practice Fusion monetized patient data by selling de-identified but re-identifiable health records to pharmaceutical companies, insurers, and researchers. The free business model was sustained by treating patient medical records as a product to be sold, creating a perverse incentive structure where the users of the software were not the customers but the commodity being traded.
The following is a documented list of data points that Practice Fusion collects from users, customers, and in some cases non-users. This data powers their business model, fuels targeted advertising, and in many cases is shared with or sold to third parties including government agencies.
Upgrade to SeekerPro for deep-dive reports on every company that touches your data. Members get breach timelines, violat...
Try SeekerPro →Run a free privacy and compliance scan on any website in 60 seconds. NexusBro checks cookie consent, hidden trackers, th...
Try NexusBro →Stop spending hours filing DSAR requests and opt-out forms manually. BliniBot automates data deletion requests, cookie c...
Try BliniBot →Below is a timeline of documented privacy violations, regulatory fines, lawsuits, and enforcement actions against Practice Fusion. These events represent only the violations that became public. The true scope of data misuse at any major company is almost certainly larger than what regulators and journalists have uncovered.
DOJ settlement for pharma kickbacks pushing opioid prescriptions via EHR alerts
$145 million
Criminal charges for healthcare fraud and kickback scheme
Deferred prosecution agreement
Multiple state AG investigations into patient data monetization
Ongoing
You do not have to accept Practice Fusion's data practices. These alternatives offer comparable functionality with significantly better privacy protections. Switching reduces the volume of personal data flowing into commercial surveillance systems and sends a market signal that privacy matters.
Run a free privacy and compliance scan on any website in 60 seconds. NexusBro checks cookie consent, hidden trackers, th...
Try NexusBro →Stop spending hours filing DSAR requests and opt-out forms manually. BliniBot automates data deletion requests, cookie c...
Try BliniBot →Build compliant marketing campaigns that convert without invasive tracking. ContentMation generates privacy-respecting f...
Try ContentMation →Start by understanding what data Practice Fusion already has on you. Check your account settings, download your data archive if available, and review what permissions you have granted. Use OpenPublicHub to research the full scope of Practice Fusion's data practices and compare them against industry standards.
Disable unnecessary data collection settings, revoke app permissions you do not actively need, and opt out of personalized advertising where possible. Review connected third-party apps and remove any that you no longer use. Every permission you revoke reduces your attack surface and limits the data available for profiling.
Under GDPR, CCPA, and other privacy laws, you have the right to request access to, correction of, and deletion of your personal data. File a Data Subject Access Request (DSAR) to see what Practice Fusion holds about you. Use BliniBot to automate the process across multiple companies simultaneously.
The most effective protection is to stop using privacy-invasive services entirely. The alternatives listed above offer comparable functionality without the surveillance. Start with the service you use most frequently and work through the list. Every user who switches sends a market signal that privacy is a competitive advantage.
Privacy threats evolve constantly. Follow this expose and related reports on OpenPublicHub to stay updated on Practice Fusion's practices. Share this page with friends and colleagues so they can protect themselves too. Collective action and informed consumers are the most powerful force for changing corporate behavior.
Yes. The DOJ confirmed that Practice Fusion accepted kickbacks from an opioid manufacturer to embed clinical decision support alerts in its EHR software that prompted doctors to prescribe extended-release opioid painkillers. The scheme operated from 2016 to 2019 across thousands of medical practices, contributing to the opioid crisis.
Practice Fusion offered free EHR software to medical practices but monetized patient data by selling de-identified health records to pharmaceutical companies, insurers, and researchers. The company also accepted pharmaceutical company payments to embed prescribing alerts that influenced physician behavior.
Practice Fusion was acquired by Allscripts in 2018 for $100 million, well below its $1.5 billion peak valuation. The platform still operates but under stricter oversight following the DOJ settlement. The opioid kickback alerts have been removed, but the underlying business model of monetizing patient data continues in modified form.
Upgrade to SeekerPro for deep-dive reports on every company that touches your data. Members get breach timelines, violat...
Try SeekerPro →Run a free privacy and compliance scan on any website in 60 seconds. NexusBro checks cookie consent, hidden trackers, th...
Try NexusBro →Stop spending hours filing DSAR requests and opt-out forms manually. BliniBot automates data deletion requests, cookie c...
Try BliniBot →Tools trusted by thousands of privacy-conscious professionals worldwide
No card charged today. Cancel anytime.
Want unlimited access? Explore SeekerPro