Study Raises Privacy Concerns Related to Health Care Smartphone Apps
the Infectious Disease Advisor take:
The Health Insurance Portability and Accountability Act (HIPAA) established national standards for the protection of patient privacy and healthcare information. However, it was initially enacted before the development and widespread adoption of phone applications to transmit and manage data. Because of this, it is sometimes difficult to determine which apps must be HIPAA-compliant and which are exempt.
Challenges in protecting patient information include the fact that phones and tablets can be stolen, and information stored on them may be compromised. Mobile phone users also may intentionally or unintentionally share personally identifiable information, even if the original intention of the app was not to gain that information. Additionally, the advent of social media makes it easier for users, including healthcare practitioners, to post information that inadvertently breaches HIPAA privacy laws.
Among 65 apps randomly selected by the research team, more than 86% placed tracking "cookies" on users' phones to monitor sensitive health information that could be shared.
HealthDay News -- Privacy policies for health programs -- or "apps" -- designed for smartphones that share highly sensitive medical information between patients and doctors are lacking, and often are completely missing, according to a study published in the Journal of the American Medical Association.
Sarah Blenner, JD, MPH, of the Illinois Institute of Technology Chicago-Kent College of Law in Chicago, and colleagues focused on 211 diabetes-specific apps available for download in mid-2014 on Google Play. Blenner and her associates noted that Google Play mandates that all apps post a point-of-sale list of information-handling "permissions" that consumers must agree to before downloading, whether or not they're actually read.
1. Blenner S, Köllmer M, Rouse A, Daneshvar N, Williams C, Andrews L. Privacy Policies of Android Diabetes Apps and Sharing of Health Information. JAMA. 2016;315(10):1051-1052. doi:10.1001/jama.2015.19426.