Mobile Health Applications Jeopardize User Privacy
|
By HospiMedica International staff writers Posted on 12 Feb 2018 |
|
A majority of health applications do not meet the legal requirements meant to prevent inappropriate and uncontrolled data disclosure to third-party companies.
Researchers at the University of Piraeus (Greece) and Rovira i Virgili University (URV; Tarragona, Spain) conducted a study that evaluated 20 popular mobile health apps available for free on Google Play. App criteria included 100,000 to 10 million downloads and a minimum rating of 3.5 out of 5 points. All chosen apps managed, stored, and monitored users’ biomedical data, including health conditions, diseases, or medical agendas. The researchers then conducted static and dynamic analysis of the apps, along with tailored testing of each application’s functionalities.
The results revealed that only 20% of the analyzed applications stored data on users’ smartphones, with half of the apps also sharing personal data--both text data and multimedia such as X-ray images--with third parties. One in two apps requested and then.. managed users’ login passwords without a secure hypertext transfer protocol (HTTPs) connection, transmitting users’ health data through standard URL links, thus making the data accessible to anyone with access to those links.
Some apps required access to geolocation data, microphones, camera, contacts list, an external storage card or Bluetooth communication, although the apps’ functionality did not depend on it. In 20% of the cases, the apps either did not refer users to a privacy policy, or the policy content was not available in English. After informing app developers about their findings, researchers noticed some issues had been corrected, such as unsafe health data transfers; but other issues, such as app usage data leaks, had not been addressed at all. The study was published on January 29, 2018, in IEEE Access.
“Recent advances in hardware and telecommunications have enabled the development of low cost mobile devices equipped with a variety of sensors. As a result, new functionalities, empowered by emerging mobile platforms, allow millions of applications to take advantage of vast amounts of data,” concluded senior author Agusti Solanas, PhD, of the URV department of computer engineering and mathematics, and colleagues. “We strongly support the use of mobile health apps, but users must know that apps’ popularity does not ensure privacy and security. People need to become more aware of the risks they are facing.”
Related Links:
University of Piraeus
Rovira i Virgili University
Researchers at the University of Piraeus (Greece) and Rovira i Virgili University (URV; Tarragona, Spain) conducted a study that evaluated 20 popular mobile health apps available for free on Google Play. App criteria included 100,000 to 10 million downloads and a minimum rating of 3.5 out of 5 points. All chosen apps managed, stored, and monitored users’ biomedical data, including health conditions, diseases, or medical agendas. The researchers then conducted static and dynamic analysis of the apps, along with tailored testing of each application’s functionalities.
The results revealed that only 20% of the analyzed applications stored data on users’ smartphones, with half of the apps also sharing personal data--both text data and multimedia such as X-ray images--with third parties. One in two apps requested and then.. managed users’ login passwords without a secure hypertext transfer protocol (HTTPs) connection, transmitting users’ health data through standard URL links, thus making the data accessible to anyone with access to those links.
Some apps required access to geolocation data, microphones, camera, contacts list, an external storage card or Bluetooth communication, although the apps’ functionality did not depend on it. In 20% of the cases, the apps either did not refer users to a privacy policy, or the policy content was not available in English. After informing app developers about their findings, researchers noticed some issues had been corrected, such as unsafe health data transfers; but other issues, such as app usage data leaks, had not been addressed at all. The study was published on January 29, 2018, in IEEE Access.
“Recent advances in hardware and telecommunications have enabled the development of low cost mobile devices equipped with a variety of sensors. As a result, new functionalities, empowered by emerging mobile platforms, allow millions of applications to take advantage of vast amounts of data,” concluded senior author Agusti Solanas, PhD, of the URV department of computer engineering and mathematics, and colleagues. “We strongly support the use of mobile health apps, but users must know that apps’ popularity does not ensure privacy and security. People need to become more aware of the risks they are facing.”
Related Links:
University of Piraeus
Rovira i Virgili University
New
Gold Member
Handheld Blood Glucose Analyzer
STAT-Site
New
Patient Monitoring System
AlarmSense
New
Radiofrequency Generator
GX1
Channels
Artificial Intelligence
view channel
Machine Learning Approach Enhances Liver Cancer Risk Stratification
Hepatocellular carcinoma, the most common form of primary liver cancer, is often detected late despite targeted surveillance programs. Current screening guidelines emphasize patients with known cirrhosis,... Read more
New AI Approach Monitors Brain Health Using Passive Wearable Data
Brain health spans cognitive and emotional functions and can fluctuate even in adults without diagnosed disease. Detecting early changes remains difficult in routine care and burdens specialty services... Read more
Critical Care
view channel
Automated IV Labeling Solution Improves Infusion Safety and Efficiency
Medication administration in high-acuity settings is often complicated by multiple concurrent infusions, making accurate line identification essential. In a 10-hospital intensive care unit study, 60% of... Read more
First-Of-Its-Kind AI Tool Detects Pulmonary Hypertension from Standard ECGs
Pulmonary hypertension is a progressive, life‑threatening disease that is frequently missed early because symptoms such as dyspnea are nonspecific and diagnostic delays can exceed two years.... Read more
Surgical Techniques
view channel
Continuous Monitoring with Wearables Enhances Postoperative Patient Safety
Postoperative hypoxemia on general surgical wards is common and often missed by intermittent vital sign checks. Undetected low oxygen levels can delay recovery and raise the risk of complications that... Read more
New Approach Enables Customized Muscle Tissue Without Biomaterial Scaffolds
Volumetric muscle loss is a traumatic loss of skeletal muscle that often leads to permanent functional impairment and limited reconstructive options. Current experimental strategies struggle to deliver... Read more
Patient Care
view channel
Wearable Sleep Data Predict Adherence to Pulmonary Rehabilitation
Chronic obstructive pulmonary disease (COPD) is a long-term lung disorder that makes breathing difficult and often disturbs sleep, reducing energy for daily activities. Limited engagement in pulmonary... Read more
Revolutionary Automatic IV-Line Flushing Device to Enhance Infusion Care
More than 80% of in-hospital patients receive intravenous (IV) therapy. Every dose of IV medicine delivered in a small volume (<250 mL) infusion bag should be followed by subsequent flushing to ensure... Read more
Business
view channel
GE HealthCare Leads Major European Initiative to Advance Cardio-Oncology Care
Cardiovascular complications are increasingly recognized among people undergoing or recovering from cancer treatment, driven by pre‑existing disease and the cardiotoxic effects of chemotherapy, radiotherapy,... Read more
