FTC Questioning Apple About Health Data Protection Policies

[MacRumors]

The United States Federal Trade Commission has met with Apple representatives several times over the past few months to discuss Apple's privacy practices covering health data collection, reports Reuters. The FTC is reportedly seeking assurance that Apple will prevent health data collected by the Apple Watch and other iOS devices via the Health app from being used without express user consent.

The two people, both familiar with the FTC's thinking, said Apple representatives have met on multiple occasions with agency officials in recent months, to stress that it will not sell its users' health data to third-party entities such as marketers or allow third-party developers to do so.

An Apple spokesperson told Reuters that the company "works closely with regulators around the world" to make its built-in data protections clear. "We've been very encouraged by their support," she said, adding that Apple's new health-focused initiative, HealthKit, had been designed "with privacy in mind."

While the FTC declined to comment, Reuters does not believe that the government agency will launch a formal inquiry into Apple's data protection policies, though it is clearly taking a great interest in the Apple Watch, which collects data like heart rate and movement, and HealthKit, which allows Apple's Health app to aggregate health-related data from various apps and accessories.

Though it hasn't even hit the market, other government officials have also taken an interest in the Apple Watch. In September, Connecticut Attorney General George Jepsen sent a letter to Apple CEO Tim Cook asking for information on what data Apple plans to collect with the device, how the information will be stored, and what Apple's policies are for apps that access health information.

Earlier this year, ahead of the Apple Watch's debut, Apple released new guidelines for HealthKit APIs, which also applies to the Apple Watch. In the document, Apple explains that HealthKit information will not be stored in iCloud and that apps attempting to store health-related data in iCloud will be rejected. It also clearly states that apps will not be able to share data with third parties without express user consent.

In recent months, Apple has attempted to make its privacy policies more transparent, creating a comprehensive new privacy site that details all of its privacy practices. Tim Cook also spoke on privacy in a recent interview, stating that users "have a right to privacy" and that the company "tries not to collect data." "Our business is based on selling [products]," he said. "Our business is not based on having information about you. You are not our product."

Article Link: FTC Questioning Apple About Health Data Protection Policies

 

[farewelwilliams]

don't they have other things to worry about? like comcast?

 

[Sonmi451]

Good. It's gives Apple a chance to brag again about their most important policy - not collecting your data.

 

[brianvictor7]

Gotta be hip with HIPAA ... although they may not strictly apply to a company like Apple. Anyone know? In any case, it is very important that this data not be shared. Nothing like an unscrupulous insurance company (is that phrase redundant?) using that data to jack up your rates.

 

[CFreymarc]

Good. It's gives Apple a chance to brag again about their most important policy - not collecting your data.

They bring up a valid point. I have read business plans with "biometric sensitive ad placement" going into other wearable designs.

Another issue is accuracy of these devices. If any data is collected, how valuable or accurate is it?

 

[Glassed Silver]

I'd trust Apple more than the FTC.

The questioner and questionee should change roles.

Glassed Silver:mac

 

[Z400Racer37]

Oh. Yeah. Because Apple has such a long track record of violating user privacy...

Well done. ###

 

[CFreymarc]

Gotta be hip with HIPPA ... although they may not strictly apply to a company like Apple. Anyone know? In any case, it is very important that this data not be shared. Nothing like an unscrupulous insurance company (is that phrase redundant?) using that data to jack up your rates.

I am sure HIPPA in the loop at Cupertino. Having done several medical device designs, I know all about HIPPA and the liability risk of patient identity tied to measurement storage.

 

[szw-mapple fan]

Meanwhile, the FTC ignores the S Gear...

 

[foodog]

Gotta be hip with HIPPA ... although they may not strictly apply to a company like Apple. Anyone know? In any case, it is very important that this data not be shared. Nothing like an unscrupulous insurance company (is that phrase redundant?) using that data to jack up your rates.

FYI the acronym is HIPAA.

 

[Rogifan]

So is the FTC meeting with Google and Microsoft as well? Why just the Apple call-out?

 

[samcraig]

I am sure HIPPA in the loop at Cupertino. Having done several medical device designs, I know all about HIPPA and the liability risk of patient identity tied to measurement storage.

If this is true - it concerns me that you don't know it's HIPAA.

So is the FTC meeting with Google and Microsoft as well? Why just the Apple call-out?

In before someone else says "it's because no one uses Google products..." or some variant.

 

[Hustler1337]

By the way the Health app has been since iOS 8 released, I think Apple have been losing more data than collecting them.

It's been so unreliable that I've lost trust in their app for logging and monitoring health-related data.

 

[Laird Knox]

to stress that it will not sell its users' health data to third-party entities such as marketers or allow third-party developers to do so.

Sorry CurentC, the FTC will not allow your app in our store.

 

[Kabeyun]

Actually, I wondered immediately why the Health app did not have a Touch ID protection option. If it's appropriate for Dropbox, why not for your personal health information?

 

[tkermit]

So is the FTC meeting with Google and Microsoft as well? Why just the Apple call-out?

Especially considering the fact that, as far as I'm aware, Apple are the only ones not storing your health data in the cloud

 

[RealKrS]

In the meantime our privacy is getting virtually raped from every directions cause the FTC is too ******** busy questioning the one company that made customer's privacy their one priority!..

 

[SonicSoundVW]

Man, this is confusing. Why are they so worried about peoples heart rates, steps taken, and calories burned? better use triple layer security on that stuff. In the wrong hands people may start doing anonymous malicious attacks on you after they steal your identity and find your Facebook profile. Possibly even make fun of you for not making the recommended 10,000 step goal. Unless their is something serious that the Watch records and stores some crazy sensitive stuff, i really don't see the governments interest in what the watch is recording and how secure it is. Celebrities are putting nude photos behind 4 character passwords which i think trumps sensitive data when its put up next to how many steps you took yesterday. The gov probably wants a back door for insurance companies for their next round of health care laws... lol

 

[ProfessorHenry]

Glad to see the US Government looking out for the little guy.

 

[brianvictor7]

FYI the acronym is HIPAA.

Thanks. I can remember that it is the Health Insurance Portability and Accountability Act but can't for the life of me spell the acronym right.

 

[mbh]

So is the FTC meeting with Google and Microsoft as well? Why just the Apple call-out?

If they question Apple they can be sure they get a headline out of it. It has the appearance of doing their jobs and being useful or something.

 

[Black Belt]

It's a show for both the FTC and Apple. It gives the FTC something to make it look like Obama actually cares about privacy which after the Obamacare and NSA fiascos is obvious he doesn't give a rat's ass and it makes Apple look like they are doing something extraordinary compared to the competition which no one uses anyway.

 

[Rogifan]

Especially considering the fact that, as far as I'm aware, Apple are the only ones not storing your health data in the cloud

Exactly my point. Where's the similar concern over Microsoft's health vault and Google Fit?

 

[ziggie216]

Will Samsung go "Me too! Me too!!!" ?

 

[Tech198]

I think the same set of rules, at one stage, also apply to doctors too.

There must of been the same sort of thing regarding privacy with them do initially, but now we are all comfortable with our doctors handling out medical records etc..

The same would apply here.. with the only difference, its technology...

same thing, just different view.