21
Feb
2024
The U.S. Food and Drug Administration (FDA) has issued a safety communication advising against the use of smartwatches or smart rings that claim to measure blood glucose levels without piercing the skin. This warning is directed at consumers, patients, caregivers, and healthcare providers, emphasizing that the FDA has not authorized, cleared, or approved any such devices for this purpose. The alert distinguishes these products from smartwatch applications that display data from FDA-authorized devices, such as continuous glucose monitoring devices (CGMs), which do require skin piercing. The FDA's concern stems from the potential for inaccurate blood glucose measurements provided by these unauthorized devices, which could lead to serious errors in diabetes management. Such inaccuracies could result in taking incorrect doses of insulin or other medications, leading to dangerously low glucose levels, mental confusion, coma, or even death.
As the opioid crisis continues to devastate communities across the United States, digital health services have emerged as a beacon of hope for increasing access to essential addiction treatment and recovery support. However, the promise of these digital platforms is marred by significant privacy and security concerns that threaten the very fabric of effective addiction healthcare.
The following provides a summary based on a new investigative report from the Opioid Policy Institute. Their report delves into the critical aspects of privacy and security that individuals should consider when using digital services for the purchase of opioids and seeks to provide guidance on navigating these digital landscapes safely.
In an era where personal data is as valuable as currency, a recent report by The Washington Post has shed light on a concerning practice in America's largest pharmacy chains. The investigation reveals that pharmacies like CVS Health, Kroger, and Rite Aid have been sharing customers' prescription records with police and government investigators without a warrant. This revelation raises significant concerns about medical privacy and the rights of consumers.
The Wired article, "What Doctors Wish You Knew About HIPAA and Data Security," delves into the limitations and misunderstandings surrounding the Health Insurance Portability and Accountability Act (HIPAA) in safeguarding personal health data. It highlights that HIPAA primarily regulates healthcare entities but does not cover consumer-generated data or information shared outside traditional medical settings, such as through personal devices or social media. The piece underscores the importance of individual vigilance in data protection, emphasizing the use of multi-factor authentication and careful sharing of personal health information, especially in non-regulated platforms. This article serves as a crucial reminder of the evolving challenges in health data security and the shared responsibility between healthcare providers and individuals in protecting sensitive health information.
Genetic profiling company 23andMe is currently investigating a data scraping incident where private user information was stolen from its website. The confirmation came five days after an undisclosed entity advertised the sale of private data of millions of 23andMe users on an online crime forum. The alleged stolen data included details like origin estimation, phenotype, health records, photographs, and other identification data. Speculation arose that the CEO of 23andMe knew about this breach two months prior and had kept it under wraps. However, in response, a representative of the company contested that there's no proof of 'health information' being part of the posted data and currently, these are just unverified claims.
In an age where data privacy is a paramount concern, particularly in the realm of personal health information (PHI), consumers and patients can learn valuable lessons from the privacy settings in iOS 17. By adapting strategies used to secure data on smartphones, individuals can take proactive steps to protect their PHI.