Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

Menstruation cycle tracking app breached users' privacy, B.C. class-action lawsuit alleges

VANCOUVER - A British Columbia Supreme Court judge says a class-action lawsuit can move forward over alleged privacy breaches against a company that made an app to track users' menstrual and fertility cycles.
The ruling published online Friday says the action against Flo Health Inc. alleges the company shared users' highly personal health information with third-parties, including Facebook, Google and other companies.

Rodeo ,

There's not a word in this article about why this breach of privacy matters while others do not. It's not stated whether this was in the terms of service for the app, and whether those terms were ruled against.

All kinds of apps have been selling personal information for a long time, and it's been ruled before that it's allowed if they have the proper legalese in the terms of service. Did this app just not have any terms of service?

Why is it a breach of privacy for this app, but other apps doing the same selling of personal data is not?

CosmicCleric ,
@CosmicCleric@lemmy.world avatar

Why is it a breach of privacy for this app, but other apps doing the same selling of personal data is not?

From the article...

The lawsuit alleges that Flo Health misused users' personal information “for its own financial gain,” claiming breach of privacy, breach of confidence and “intrusion upon seclusion.”

IANAL, but my understanding, after having read the whole article, is that regardless of the fact that there may or may not have been an agreement between the app creator and its users, that they still ran foul of laws that cannot be waived by any sort of TOU/EULA agreement.

Rodeo ,

I read the article too, and those things you quoted sound to me like things every app does.

Hence my question: what is different here?

CosmicCleric ,
@CosmicCleric@lemmy.world avatar

regardless of the fact that there may or may not have been an agreement between the app creator and its users, that they still ran foul of laws that cannot be waived by any sort of TOU/EULA agreement.

It's not a matter of something being different or not. It's no matter what, it's illegal. Law trumps any TOU/EULA.

Rodeo ,

So what are they doing that illegal that other apps aren't doing??

I really don't know how to be any more clear with this question.

CosmicCleric ,
@CosmicCleric@lemmy.world avatar

So what are they doing that illegal that other apps aren’t doing??

I really don’t know how to be any more clear with this question.

From the article…

The lawsuit alleges that Flo Health misused users’ personal information “for its own financial gain,” claiming breach of privacy, breach of confidence and “intrusion upon seclusion.”

Rodeo ,

So for the third time: that sounds like the same thing other apps are doing.

You know what, forget about it. I'm not going in circles with a halfwit anymore.

CosmicCleric ,
@CosmicCleric@lemmy.world avatar

they still ran foul of laws that cannot be waived by any sort of TOU/EULA agreement.

Rodeo ,

So what are they doing that illegal that other apps aren't doing?

CosmicCleric ,
@CosmicCleric@lemmy.world avatar

So what are they doing that illegal that other apps aren’t doing?

You're making an assumption that's not correct, and asking the wrong question.

Multiple apps can have the same legal problem, but the government/lawsuit only goes after one app at a time, the low-hanging fruit first.

As far as what's being done illegally, to cause the lawsuit...

The lawsuit alleges that Flo Health misused users’ personal information “for its own financial gain,” claiming breach of privacy, breach of confidence and “intrusion upon seclusion.”

Cyberbatman ,

Periodical is no wifi, no bs and stored locally on your phone storage. Also is about 5mb in size so pretty minimal. If anyone is interested here's the link https://f-droid.org/packages/de.arnowelzel.android.periodical/

Illogicalbit ,

Result: “sorry we shared your personal data, here’s a check for 38 cents. “

NeoNachtwaechter ,

Come on, it is the 21st century.

Nobody should assume any other reason to create such an app than to harvest and sell personal medical data.

smileyhead ,

Unless:

https://bloodyhealth.gitlab.io/

Life_inst_bad ,

I am glad I finally got my wife use this Foss alternative instated of some garbage that sends your data to a proprietary server.

smileyhead ,

Do you know how well it works?
Maybe I could suggest it to my girlfriend if she would be interested.

Life_inst_bad ,

The App (Drip) gives you after about 3 months acurate times on when the period should start.
If you want accurate fertility tracking your girlfriend will have to measure her basal temperature (ar best daily) and either look out for changing cervical mucus or change in cervix opening/hardness.

CosmicCleric ,
@CosmicCleric@lemmy.world avatar

Unless:

https://bloodyhealth.gitlab.io/

The existence of this app should be spread far and wide for every woman to use, versus the privacy invading ones that are out there.

dangblingus ,

It's 2024. People still assume apps installed on their phones aren't siphoning every single 1 and 0 on your phone including your texts and recordings of your voice calls and then selling that data to a 3rd party advertising firm.

Why in FUCKS name would you put your menstrual cycle data on an app that some stranger made?

lowleveldata ,

It's useful?

Plague_Doctor ,

Agreed. Although I think the usefulness of the apps are aimed at tracking fertility to help people get pregnant. Which is even more scummy that they sell the data.

smileyhead ,

If it's under free licence like MIT, GPL or alike app can be inspected what it does and anything out of place we can remove.

Thorned_Rose ,
@Thorned_Rose@kbin.social avatar

I think you may be way underestimating the number of people who have no idea the software they use is spying on them.

LucidBoi ,
@LucidBoi@lemmy.world avatar

Wow, my girlfriend uses this. Time to get her a FOSS-grown solution. Fuck the corpos!

pewgar_seemsimandroid ,

here's one i found from a comment below

@noodlejetski

SnotFlickerman ,
@SnotFlickerman@lemmy.blahaj.zone avatar

They need to fix their SSL certificate.

DeviantOvary ,

Seems like they didn't set https://dripapp.orgthe main site. If you go to https://dripapp.org it works fine.

yemmly ,

I remember back in my teenage days, I tried to track some menstruations. It didn’t end well.

tias ,

Classic mistake. You weren't rich enough.

macisr ,

Damn man, my gf pays for this app. That's how we track her days. Corpos even know when we're probably having sex now D:.

max ,

Even your car might know.

Tick_Dracy ,
@Tick_Dracy@lemm.ee avatar

For those that aren’t aware: https://www.youtube.com/watch?v=OYcmF9IAJbU

spizzat2 , (edited )

TL;DW: The Nissan privacy policy states stated that they can collect and store information about your sexual activity for some reason.

Note: the page seems to have been updated to remove that wording, but you can see it archived on the Way Back Machine from when the video was released.

Edit: spelling

dangblingus ,

Stop paying for something that could easily be done with a pencil and a regular paper calendar.

huginn ,

Tell me you're a man without telling me you're a man

noodlejetski ,

free, open source, everything stored locally: https://dripapp.org/

Shelena ,

Thanks! Was looking for something more privacy focused. I had not found this one.

aniki ,

Of all the things you most certainly do not need to upload to the cloud....................................................................

Socsa ,

I mean cloud apps are popular because they are convenient. It's just a shame that they are invariably infested with toxic capitalism. And now apparently Christian fascists.

rmstyle ,

I am quite impressed by the funders, German state and Mozilla. Wow.

EdibleFriend ,
@EdibleFriend@lemmy.world avatar

im giggling like an idiot at that name

sturlabragason ,

Here are some privacy focused alternatives (only for android 😕): https://pluja.github.io/awesome-privacy/#menstrual-cycle-trackers

CameronDev , (edited )

I wrote a period tracker app that also encrypts/password protects the data at rest. If you're concerned about someone taking your phone and accessing your data, it may also be worth a look.

https://github.com/cameroncros/PrivatePeriodTracker

https://play.google.com/store/apps/details?id=com.cross.privateperiodtracker

Drip looks better for most people though. But they should add encryption if they dont already have it.

Use drip.

abominable_panda ,

Encryption and password protection is in the changelog for drips first version v0.0.1 - 5 years ago

I couldnt find your app on fdroid btw

CameronDev ,

Huh, thats good. I scanned their website for mentions of encryption and didnt find it.

Mine isnt on fdroid, wasnt worth the effort. May as well remove from Google Play as well tbh, Drips seems all round a better option.

abominable_panda ,

Yep it was a struggle to find. I checked website, issues and then finally made a last attempt at the change logs. It should be advertised more for that added piece of mind.

I didnt mean to shoot your app down by the way, in case it came across that way. Ive never used these apps

Thanks for developing your version though. People like you make this community what it is :)

CameronDev ,

I've never used my app either, I lack the prerequisites :D I wrote it for my partner last time there was a thing about US cops going after the data. But I dont maintain it, so drips is the better option in general.

When drips gets caught selling data I'll revive my app :D

EmperorHenry ,
@EmperorHenry@discuss.tchncs.de avatar

Why the fuck would you ever enter that kind of information into your phone? Did they ever make any promises about it all being end-to-end encrypted?

Are the owners of the app based in a privacy friendly country? What kind of things do they require for passwords?

Worse than betterhelp right there. people that use services like those are fucking sheep.

Katzastrophe ,

Periods are awful to keep track of yourself, it's not a perfect, "every 4 weeks for 5 days" thing. Those apps actually recalculate the beginning and end of a period when something abnormal happens, like stress moving the period back a few days. This way you don't need to keep it in a personal calendar, which mind you, a lot of people don't even have.

Btw, most apps do also more than just regular tracking, they can predict how bad blood flow will be, and if your periods are known to be rather painful, they can keep track and remind you when a day comes on which you'd need to pack a few extra painkillers.

EmperorHenry ,
@EmperorHenry@discuss.tchncs.de avatar

This way you don’t need to keep it in a personal calendar, which mind you, a lot of people don’t even have.

proton unlimited, proton calendar. Completely private and end-to-end encrypted.

But okay, I guess these apps can be helpful. I still think it's a terrible idea to enter information like that into an app that doesn't guarantee privacy. That's sensitive medical data. I don't give a fuck what any ToS says, no one except you should have the power to give away that kind of information about yourself.

JoBo ,

Maybe you could direct your righteous anger at the people misselling the app, not the people who use it to help them get pregnant or to avoid becoming pregnant in a proto-fascist society that has removed their right to an abortion?

reallyzen ,
@reallyzen@lemmy.ml avatar

For Women's Right Day, the android app store featured the lead of Security and Privacy of this very app. A lady BTW. Fuck me sideways how that was a ton of crap, retrospectively. She said in so many words the usual "privacy foremost" and other such obvious shit, then she also said "no selling ever".

I despair of humanity.

aniki ,

So you learned about pandering from two angles on stupid pointless holiday-day.

b3an ,
@b3an@lemmy.world avatar

Right?? Like what is this rage against the users?!

BakerBagel ,

I especially wouldn't recommend anyone in the a red state in the US to use a period tracker. States are serious about prison sentences for people seeking abortions and even miscarriages. If a state like Texas or South Carolina gets ahold of that information it's going to ruin your life.

andros_rex ,

I used these kinds of apps when I was a teenager. I could not keep up with a calendar - I tried but my cycles were too irregular to be predictable based on the calculations I could find in books and the internet. I’m transgender and found the entire experience unpleasant in a fairly intense way.

Those kinds of apps helped me immensely. Most of them offer some sort of discreet icon or password system - my parents were the type to read my diary/calendars. My periods are all over the place, and I was able to safely log a pattern in related pain/duration/quantity… most of them included links to places to find medical information. I found one that wasn’t pastel pink and just treated me like a person keeping track of their medical statistics. I got to feel neutral about a part of my body which I despised.

The problem is not that people are naive enough to hand over the information to a third party they can not trust. The problem is the paucity of information and resources for menstrual health. Periods are complicated and scary. When you’re a teenager, you’re not worried about data security - you’re worried about trying to make sure you know when your next cycle will start so that you don’t experience the hell that is bleeding through your pants in math class.

V0uges ,
@V0uges@jlai.lu avatar

I’ll check my subscription but Im pretty sure Proton doesn’t calculate when I ovulate.

ChapulinColorado ,

Hard to argue with any of those points. Nice of you to kindly elaborate for people trying to blame the victims of the scheme.

Katzastrophe ,

Periods are never properly explained in school, a lot of people simply get taught by their mother, or survive with what little knowledge the biology textbook holds about them.

I cannot blame someone for not knowing how awfully complicated they are, when school at most teaches about the ideal period, not even mentioning how much can affect them, or how awful they can be for some people.

Zagorath ,
@Zagorath@aussie.zone avatar

While the explanation is great, I feel like it shouldn't even be necessary. Like, if people are using an app, can we not just assume that they have a reason for it? A reason that, to them at least, is a good one? Regardless of what the app is about, or which demographic is using it, it seems infantilising not to make that assumption.

dangblingus ,

Right, but the privacy implications trump all of that for me.

EngineerGaming ,
@EngineerGaming@feddit.nl avatar

I dislike the commenter's attitude, but I do agree with parts of the message. I would prefer to treat any closed-source, internet-connected app as "collecting everything it can", just because it has been the logic for a while. I would not trust my messaging or files to a centralized, closed platform - so why would I use something suspicious for health data this sensitive?

mesamunefire ,

That's f'ed up.

Late2TheParty ,
@Late2TheParty@lemmy.world avatar

Man, sometimes I feel like we've lost our spirit. I'm hopeful we can get it back, but these articles tell a different story. I hope for better days.

fogetaboutit ,

Your comment sounds AI generated lmao

  • All
  • Subscribed
  • Moderated
  • Favorites
  • technology@lemmy.world
  • incremental_games
  • meta
  • All magazines
    •