You are currently viewing the summary.
View Full TextLog in to view the full text
AAAS login provides access to Science for AAAS members, and access to other journals in the Science family to users who have purchased individual subscriptions.
More options
Download and print this article for your personal scholarly, research, and educational use.
Buy a single issue of Science for just $15 USD.
Summary
Digital health technology companies, such as health-related apps and websites, handle unprecedented amounts of highly sensitive user data, including information about a person's genetics, the timing and duration of her periods, her self-reported mental state, and the dates she sees a given health care provider. Although they collect these intimate data and provide users with health-related information, most digital health tech companies are not actually health care providers; thus, laws and regulations that typically govern the collection and use of health data often do not apply to these companies in the United States. Many of these companies reserve the right to unilaterally change their terms of service (ToS), often without users' consent. Users have little legal recourse if they feel a company has violated their privacy or inappropriately shared their data through unilaterally amending the ToS. We explore how legislators could limit the ability of companies to change key aspects of their ToS unless consumers opt in to adopting the changes. These and similar legislative innovations could offer needed consumer protections in the context of digital health tech—and beyond.
This is an article distributed under the terms of the Science Journals Default License.