Ask HN: E2E Encrypted Period Trackers?
One sentiment from the recent Roe v Wade decision is that women should be careful about their data as law enforcement could use it to determine if they had an abortion.
Period tracker apps are quite popular, and even a form of contraception [1]. They technically don't need to access the data (although they may wish to for analytics/monetisation), so it seems to me like a perfect candidate for E2E encryption. But I can't find any that advertise they use E2E encryption (just a vague "we encrypt your data" in their privacy statement).
Is anyone working on this?
[1]: https://www.naturalcycles.com
Disclaimer: I'm a man, and I don't live in the US. My wife and I are just concerned onlookers.
22 comments
[ 4.2 ms ] story [ 62.2 ms ] thread"Health data can be stored in iCloud. End-to-end encryption for Health data requires iOS 12 or later and two-factor authentication. Otherwise, the user’s data is still encrypted in storage and transmission but isn’t encrypted end-to-end. After the user turns on two-factor authentication and updates to iOS 12 or later, the user’s health data is migrated to end-to-end encryption."
https://support.apple.com/en-gb/guide/security/sec88be9900f/...
No security in paper notebook? So why does this topic exist? No privacy? Tell me name of that paper notebook who sells your data?
Avaible not from home only? How many looks at this kind of data is required daily?
Ability to mark whenever? Why if precision of calendar of periods anyway is limited to days?
Track trendns and make predictions? This is an EXACT goal of using tracker, no matter paper or digital.
Can make historical data available? This is a pure lie, you are going to change several devices and versions of OS w/o ability to import that history (for example) from Android 4 to Android 14. Paper can serve you since your the first period ever upto the last one.
Side channels aside, this would avoid data leaks.
(a) Company that wants to make as much money as possible from the use of their app. They will use tracker SDKs, sell data directly, sell data through aggregators, etc. And they’ll cooperate with subpoenas (but probably try to charge for it). And they might even cooperate with Texans who want to sue people under their bizarre law.
(b) Apple, which makes money off hardware, iCloud services, and to a limited extent, advertising. They will cooperate with subpoenas, but they also have the legal resources to fight them. And, for something like their customers’ health data, they quite likely will fight.
With choice (a), law enforcement and anyone else who wants to pay gets the data. With choice (b), law enforcement might get the data. I know what I would choose.
Obviously I would prefer (c), the hypothetical version of Apple with stronger iCloud backup encryption.