With a fast-growing number of users, period-tracking apps have opened up a new way for people to track their menstrual cycle and other vital health information. But, are they securely storing and protecting user data? A bill introduced in Congress this week would tighten security standards associated with period-tracking apps, requiring them to comply with privacy laws.
The legislation, known as the Period Tracking and Awareness Through Compliance (PTAC) Act, proposed by Rep. Jackie Speier (D-Calif.) would require period-tracking app providers to comply with existing American privacy laws and adhere to transparency and data security best practices. The bill also calls for the Federal Trade Commission (FTC) to be given authority to investigate compliance violations and build on existing privacy laws.
The introduction of the PTAC Act comes amid bipartisan criticism that current U.S. privacy laws are not robust enough to protect personal data from being misused or compromised. Various high-profile data breaches and abuses over the last few years have raised concerns over data security and privacy, ultimately prompting the need for more stringent legislation.
Period tracking apps store and share highly personal information which can be exposed to potential misuse and abuse. Rep. Speier argued that the data obtained by these apps requires additional safeguards in order to protect the privacy of users. “No matter your gender, you expect the apps you use on your phone to be secure and protect your privacy. Period-tracking apps are no exception,” Speier said in a statement.
The PTAC Act would require app developers to submit regular compliance reports to the FTC and also create a publicly-available website where users can access information about the app’s security measures and data use policies. If the bill is signed into law, it would give the FTC authority to investigate violations and impose civil penalties for any non-compliance.
Legislation like the PTAC Act is necessary to ensure that those using period-tracking apps can remain confident that the data they share is secure and their privacy is protected. Passing this bill would set a standard for other app makers in the digital health industry and help ensure that companies comply with data security and privacy laws.
This Cyber News was published on www.securityweek.com. Publication date: Sun, 22 Jan 2023 10:48:00 +0000