Saved in:
Bibliographic Details
Main Authors: Cory, Thomas, Rieder, Wolf, Huynh, Thu-My
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2405.17971
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866910460955066368
author Cory, Thomas
Rieder, Wolf
Huynh, Thu-My
author_facet Cory, Thomas
Rieder, Wolf
Huynh, Thu-My
contents Mobile Health (mHealth) applications have become a crucial part of health monitoring and management. However, the proliferation of these applications has also raised concerns over the privacy and security of Personally Identifiable Information and Protected Health Information. Addressing these concerns, this paper introduces a novel framework for the qualitative evaluation of privacy practices in mHealth apps, particularly focusing on the handling and transmission of sensitive user data. Our investigation encompasses an analysis of 152 leading mHealth apps on the Android platform, leveraging the proposed framework to provide a multifaceted view of their data processing activities. Despite stringent regulations like the General Data Protection Regulation in the European Union and the Health Insurance Portability and Accountability Act in the United States, our findings indicate persistent issues with negligence and misuse of sensitive user information. We uncover significant instances of health information leakage to third-party trackers and a widespread neglect of privacy-by-design and transparency principles. Our research underscores the critical need for stricter enforcement of data protection laws and sets a foundation for future efforts aimed at enhancing user privacy within the mHealth ecosystem.
format Preprint
id arxiv_https___arxiv_org_abs_2405_17971
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle A Qualitative Analysis Framework for mHealth Privacy Practices
Cory, Thomas
Rieder, Wolf
Huynh, Thu-My
Computers and Society
Mobile Health (mHealth) applications have become a crucial part of health monitoring and management. However, the proliferation of these applications has also raised concerns over the privacy and security of Personally Identifiable Information and Protected Health Information. Addressing these concerns, this paper introduces a novel framework for the qualitative evaluation of privacy practices in mHealth apps, particularly focusing on the handling and transmission of sensitive user data. Our investigation encompasses an analysis of 152 leading mHealth apps on the Android platform, leveraging the proposed framework to provide a multifaceted view of their data processing activities. Despite stringent regulations like the General Data Protection Regulation in the European Union and the Health Insurance Portability and Accountability Act in the United States, our findings indicate persistent issues with negligence and misuse of sensitive user information. We uncover significant instances of health information leakage to third-party trackers and a widespread neglect of privacy-by-design and transparency principles. Our research underscores the critical need for stricter enforcement of data protection laws and sets a foundation for future efforts aimed at enhancing user privacy within the mHealth ecosystem.
title A Qualitative Analysis Framework for mHealth Privacy Practices
topic Computers and Society
url https://arxiv.org/abs/2405.17971