Download PDFOpen PDF in browser

Privacy in wearable health devices: How does POPIA measure up?

11 pagesPublished: October 25, 2019

Abstract

The market for wearable devices that is used for health monitoring has steadily increased over the past few years. South Africa has also seen an increase in the adoption of these wearable device. This is partly because these devices allow users to monitor their health and wellbeing in real time. However, to be efficient, the devices must collect a large amount of data. Some of the data that is collected include personally identifiable and health information which could be considered sensitive to the user. This study investigated if the Protection of Personal Information Act (POPIA) provides adequate protection to South African users of wearable health devices. The POPIA and the privacy policy of the 2 most popular wearable health devices in South Africa, the Apple watch and Fit- bit, were qualitatively compared making use of Hutton et al’s (2018) heuristic framework. The study found that POPIA protected the users’ privacy when it came to notice, users’ awareness, choice and consent, access and participation. The Act did not cover any privacy matters related to social disclosure of information by users. The study also found that Apple watch and Fitbit did well in protecting users’ privacy with regards to notice and awareness as well as access and participation. The two wearables performed poorest in regards to choice and consent as well as social disclosure controls to protect users’ privacy. The study recommend that users educate themselves in regard to how their data collected by wearable health devices are collected and protected.

Keyphrases: data privacy, Personal protection of personal information act, POPIA, Social disclosure, wearable devices

In: Kennedy Njenga (editor). Proceedings of 4th International Conference on the Internet, Cyber Security and Information Systems 2019, vol 12, pages 112--122

Links:
BibTeX entry
@inproceedings{ICICIS2019:Privacy_in_wearable_health,
  author    = {Munyaradzi Katurura and Liezel Cilliers},
  title     = {Privacy in wearable health devices: How does POPIA measure up?},
  booktitle = {Proceedings of 4th  International Conference on the Internet, Cyber Security and Information Systems 2019},
  editor    = {Kennedy Njenga},
  series    = {Kalpa Publications in Computing},
  volume    = {12},
  pages     = {112--122},
  year      = {2019},
  publisher = {EasyChair},
  bibsource = {EasyChair, https://easychair.org},
  issn      = {2515-1762},
  url       = {https://easychair.org/publications/paper/gdGl},
  doi       = {10.29007/qsp7}}
Download PDFOpen PDF in browser