In just two months, tracking failures exposed the personal data of more than 10 million people. These incidents didn’t involve sophisticated breaches or firewall failures. They stemmed from tag misconfigurations – common digital tracking tools collecting sensitive information without proper controls.
Blue Shield of California and Covered California both suffered high-profile privacy failures. In each case, MarTech technologies silently sent sensitive data to third parties. These weren’t one-off mistakes. They exposed systemic gaps in how digital teams govern their MarTech infrastructure.
Blue Shield Sent Health Data to Google Ads
From April 2021 to January 2024, Blue Shield used Google Analytics across its websites.
A misconfiguration in the tracking setup sent personal health data to Google Ads. This included names, medical conditions, and contact information.
The issue persisted for nearly three years before anyone detected it.
“The misconfiguration of Google Analytics allowed sensitive member data to be transmitted to Google Ads, which could have been used for targeted advertising campaigns.”
A trusted tool failed quietly. Google Analytics was configured in a way that exposed personal health data for years. No one noticed the outbound flow to Google Ads because there was no system in place to surface it in real time.
Covered California Shared Form Responses with LinkedIn
Covered California installed LinkedIn’s Insight Tag to measure campaign performance. But the tag captured sensitive data entered into on-site forms.
This means that LinkedIn gained access to users’ gender identity, pregnancy status, and indicators of domestic abuse or disability.
“Trackers on the same pages told LinkedIn their answers to questions about whether they were blind, pregnant, or used a high number of prescription medications.”
The tag remained in production until journalists surfaced the exposure. Covered California removed it after the report was published, citing a marketing agency transition.
In this situation, routine tracking crossed a sensitive line. The overcollection wasn’t visible in reports or flagged in QA. It only came to light when an investigative journalist saw what internal teams didn’t.
Tag Misconfigurations Happen All. The. Time.
Before launching Sentinel Insights, our team worked as MarTech consultants inside global brands. We’ve been called in after privacy audits failed. We’ve helped enterprise teams unwind years of inconsistent tracking and improper tag behavior.
Most organizations assume their tags are working as expected. But assumptions don’t stop compliance violations or data leaks. When something breaks, it often takes days (or weeks, or months!) to diagnose.
This is why real-time, real user monitoring is important.
Audits serve a purpose. They check whether a system is configured as intended. But they only capture a single moment. They don’t reflect what’s actually happening in production, across browsers, geographies, or devices. That’s where most data collection issues occur.
A tag may fire correctly in a QA environment but fail in production after a CMS update. A consent tool may appear on desktop but fail to render on Safari mobile. A new deployment might change how data layer values are structured, causing critical parameters to go missing. None of this is visible in static audit reports.
Static scans also miss behavioral triggers. A tag might fire too early, collecting data before consent is granted. Or it might fire too late, missing key form inputs. Event handlers can leak field-level data without teams realizing it. These scenarios don’t register in a pass/fail checklist.
The Reality is that MarTech Stacks are Constantly Changing
Think about it. Does any of this sound familiar?
- MarTech teams working inside the Tag Management System (TMS) add, remove, or reconfigure tags regularly
- Tag vendors release updates to their scripts without notice
- Website development teams make changes that inadvertently shift the structure of your tracking.
In many organizations, these all go unchecked. Without visibility into live user sessions, teams are left reacting to symptoms: misfired campaigns, missing conversion events, inflated analytics costs.
Monitoring closes that gap. It observes what’s happening right now, not what was configured last quarter. It allows teams to detect breakages within hours, not weeks. And it gives both marketing and engineering the clarity to fix issues before they escalate into compliance risks or reporting failures.
Sentinel Insights monitors every user session, across every device, in real time. Our platform alerts your team when:
- A tag sends unexpected data to a third party
- A consent preference is not applied properly
- A sensitive parameter appears in the URL
- A data layer value changes after a code release
You don’t need to guess what changed or wait for your next audit report. Sentinel shows you what is happening, when it happens, and where to act.
These Incidents Are Not Exceptions
Covered California and Blue Shield aren’t alone. These events are part of a growing pattern.
Most enterprise websites run dozens, if not hundreds, of tags. Some were deployed years ago. Others were added by agencies that no longer work with the business. Many operate unchecked, collecting far more than teams realize.
If no one is monitoring this activity continuously, risk is accumulating behind the scenes.
The best time to discover a privacy issue is before it becomes public. Sentinel gives marketing, analytics, and privacy teams full visibility into what is happening on their sites and apps. No waiting for complaints, relying on assumptions, or post-incident scrambling.
Real-time monitoring reduces risk. It also helps your team move faster, make smarter decisions, and protect user trust at scale.
