GoodRx agreed to pay a $1.5 million civil penalty in the first FTC action alleging a violation of the Health Breach Notification Rule among other alleged violations. The FTC complaint alleged that GoodRx’s website and mobile app incorporated third-party trackers from companies like Facebook, Google, and Criteo, typically in the form of Software Development Kits (SDKs) or automated web beacons called tracking pixels. The FTC alleged the trackers sent users information back to those businesses for marketing and other purposes. GoodRx neither admitted nor denied the allegations.