With a December 2019 update from Consumer Reports
Subjective: An abstract from the McClatchy article: "In the age of Facebook and Google, consumers seem comfortable surrendering their personal information to corporations that aggregate it and monetize it. But Ancestry and other DNA testing...
Medical Devices May Allow a Backdoor for Attackers
Medical devices with networking capabilities are critical technologies in patient care today. This article explains what their potential security vulnerabilities mean for the average consumer.
An article from the JAMA Open Network
An article posted in the Journal of the American Medical Association identified that some of the highest-ranking health apps used to assist people with mental health conditions (e.g. depression) and smoking cessation were sharing data with...
An article from the Cybersecurity and Infrastructure Security Agency (CISA)
This is based on an article from the Cybersecurity and Infrastructure Security Agency (CISA). CISA is the Nation’s risk advisor, working with partners to defend against today’s threats and collaborating to build a more secure and...
Guidance from the Office for Civil Rights on your right to access your health records
From the HHS Office for Civil Rights website: Ask your doctor. You have the right to see and get copies of your health information - PDF. In most cases, you can get a copy the way you want it, such as by e-mail. While your doctor...
Responsible Terms, Conditions, and Agreements for Consumer Health Apps
Since one goal of cMHAFF is consumer protection, including their privacy and security, guidance in the area of “Conditions and Agreements” ( CnA ) is offered. CnA is not a formal or legal term, but an umbrella under which can be...
Managing Health App Notifications and Alerts
This category is about notifications and alerts, which may be used to inform consumers of important situations that they should know about. This includes, but is not limited to, information about the app itself (e.g., important updates) or about...
Security for Data at Rest
This category is about providing assurance that the consumer’s stored data is secure, regardless of whether it is stored on the consumer’s devices or elsewhere (e.g., in cloud-based servers for an app).
Security for Data in Transit
This category is about providing assurance that consumer data is secure when it is moved between the consumer’s device(s) and other locations.
Data Authenticity, Provenance, and Associated Metadata
This category is about the attribution of sources of data (provenance) and assurance of data authenticity.