They allow us to see and upload some of our most personal information with the tap of a finger.
But after you read this story, you might second guess whether you trust the ones you use.
Medical apps on all kinds of devices are increasingly being adopted as part of a "connected health" model that has a lot of potential upside for both patients and medical providers.
However, a new study gives these apps a troubling diagnosis.
"We have come to the alarming conclusion that the majority of the analyzed apps do not meet the expected standards for security and privacy, thus endangering their users’ sensitive personal data."
In fact, researchers say many of the apps they reviewed, "Fail to provide even basic protection to privacy."
The study was conducted by several researchers in the Department of Informatics at the University of Piraeus in Greece.
They reviewed 20 medical apps with these parameters:
The researchers set up a proxy to log and analyze information flowing between the app and the servers it was communicating with:
Researchers wanted to answer three main questions with their analysis:
The end result revealed so many privacy and security problems I'm not sure where to start. The full research is dozens of pages. But here are a few low-lights:
I could go on, but these bullet points certainly paint a disturbing picture, don't they?
Read the Medical App Privacy Problems research yourself if this is your area of interest.
Also, I'll report back after I interview Rebecca Herold, The Privacy Professor, about this study. We'll be seeing her as she delivers the keynote presentation at SecureWorld Atlanta on May 30-31.
Lastly, here is the ultimate conclusion of the researchers in this study:
"According to our analysis, a relevant number of popular m-health apps could violate users’ privacy by revealing sensitive information such as health conditions, medical symptoms, photos, location, e-mails and passwords."
And that... is a scary diagnosis.