Article: A Mobile App for Assisting Users to Make Informed Selections in Security Settings for Protecting Personal Health Data: Development and Feasibility Study

Background: On many websites and mobile apps for personal health data collection and management, there are security features and privacy policies available for users. Users sometimes are given an opportunity to make selections in a security setting page; however, it is challenging to make informed selections in these settings for users who do not have much education in information security as they may not precisely know the meaning of certain terms mentioned in the privacy policy or understand the consequences of their selections in the security and privacy settings.

Objective: The aim of this study was to demonstrate several commonly used security features such as encryption, user authentication, and access control in a mobile app and to determine whether this brief security education is effective in encouraging users to choose stronger security measures to protect their personal health data.

Methods: A mobile app named SecSim (Security Simulator) was created to demonstrate the consequences of choosing different options in security settings. A group of study participants was recruited to conduct the study. These participants were asked to make selections in the security settings before and after they viewed the consequences of security features. At the end of the study, a brief interview was conducted to determine the reason for their selections in the security settings. Their selections before and after the security education were compared in order to determine the effectiveness of the security education. The usability of the app was also evaluated.

Results: In total, 66 participants finished the study and provided their answers in the app and during a brief interview. The comparison between the pre- and postsecurity education selection in security settings indicated that 21% (14/66) to 32% (21/66) participants chose a stronger security measure in text encryption, access control, and image encryption; 0% (0/66) to 2% (1/66) participants chose a weaker measure in these 3 security features; and the remainder kept their original selections. Several demographic characteristics such as marital status, years of experience using mobile devices, income, employment, and health status showed an impact on the setting changes. The usability of the app was good.

Conclusions: The study results indicate that a significant percentage of users (21%-32%) need guidance to make informed selection in security settings. If websites and mobile apps can provide embedded security education for users to understand the consequences of their security feature selection and the meaning of commonly used security features, it may help users to make the best choices in terms of security settings. Our mobile app, SecSim, offers a unique approach for mobile app users to understand commonly used security features. This app may be incorporated into other apps or be used before users make selections in their security settings.

Citing Articles

Summary of the best evidence on self-management support schemes for patients with inflammatory bowel disease based on mobile health systems.

Ren C, Zhou Y, Cai Q, Zhou M Digit Health. 2024; 10:20552076241261906.

PMID: 38868366 PMC: 11168054. DOI: 10.1177/20552076241261906.

Patients' Perspectives on the Data Confidentiality, Privacy, and Security of mHealth Apps: Systematic Review.

Alhammad N, Alajlani M, Abd-Alrazaq A, Epiphaniou G, Arvanitis T J Med Internet Res. 2024; 26:e50715.

PMID: 38820572 PMC: 11179037. DOI: 10.2196/50715.

Patients and Stakeholders' Perspectives Regarding the Privacy, Security, and Confidentiality of Data Collected via Mobile Health Apps in Saudi Arabia: Protocol for a Mixed Method Study.

Alhammad N, Alajlani M, Abd-Alrazaq A, Arvanitis T, Epiphaniou G JMIR Res Protoc. 2024; 13:e54933.

PMID: 38776540 PMC: 11153976. DOI: 10.2196/54933.

Privacy versus Convenience: A Historical Perspective, Analysis of Risks, and an Informatics Call to Action.

Ozeran L, Solomonides A, Schreiber R Appl Clin Inform. 2021; 12(2):274-284.

PMID: 33951741 PMC: 8099487. DOI: 10.1055/s-0041-1727197.

User Preferences for Privacy Protection Methods in Mobile Health Apps: A Mixed-Methods Study.

Zhou L, Parmanto B Int J Telerehabil. 2021; 12(2):13-26.

PMID: 33520091 PMC: 7757650. DOI: 10.5195/ijt.2020.6319.

References

1.

Seto E, Leonard K, Cafazzo J, Barnsley J, Masino C, Ross H . Perceptions and experiences of heart failure patients and clinicians on the use of mobile phone-based telemonitoring. J Med Internet Res. 2012; 14(1):e25. PMC: 3374534. DOI: 10.2196/jmir.1912. View

2.

Dennison L, Morrison L, Conway G, Yardley L . Opportunities and challenges for smartphone applications in supporting health behavior change: qualitative study. J Med Internet Res. 2013; 15(4):e86. PMC: 3636318. DOI: 10.2196/jmir.2583. View

3.

Acquisti A, Brandimarte L, Loewenstein G . Privacy and human behavior in the age of information. Science. 2015; 347(6221):509-14. DOI: 10.1126/science.aaa1465. View

4.

Atienza A, Zarcadoolas C, Vaughon W, Hughes P, Patel V, Chou W . Consumer Attitudes and Perceptions on mHealth Privacy and Security: Findings From a Mixed-Methods Study. J Health Commun. 2015; 20(6):673-9. DOI: 10.1080/10810730.2015.1018560. View

5.

Krebs P, Duncan D . Health App Use Among US Mobile Phone Owners: A National Survey. JMIR Mhealth Uhealth. 2015; 3(4):e101. PMC: 4704953. DOI: 10.2196/mhealth.4924. View

6.

Richardson J, Ancker J . Public Perspectives of Mobile Phones' Effects on Healthcare Quality and Medical Data Security and Privacy: A 2-Year Nationwide Survey. AMIA Annu Symp Proc. 2016; 2015:1076-82. PMC: 4765572. View

7.

Morera E, Diez I, Garcia-Zapirain B, Lopez-Coronado M, Arambarri J . Security Recommendations for mHealth Apps: Elaboration of a Developer's Guide. J Med Syst. 2016; 40(6):152. DOI: 10.1007/s10916-016-0513-6. View

8.

Browning R, McGillicuddy J, Treiber F, Taber D . Kidney transplant recipients' attitudes about using mobile health technology for managing and monitoring medication therapy. J Am Pharm Assoc (2003). 2016; 56(4):450-454.e1. PMC: 4968877. DOI: 10.1016/j.japh.2016.03.017. View

9.

Peng W, Kanthawala S, Yuan S, Hussain S . A qualitative study of user perceptions of mobile health apps. BMC Public Health. 2016; 16(1):1158. PMC: 5109835. DOI: 10.1186/s12889-016-3808-0. View

10.

Kao C, Liebovitz D . Consumer Mobile Health Apps: Current State, Barriers, and Future Directions. PM R. 2017; 9(5S):S106-S115. DOI: 10.1016/j.pmrj.2017.02.018. View

11.

Smith K, Zhou L, Watzlaf V . User Authentication in Smartphones for Telehealth. Int J Telerehabil. 2017; 9(2):3-12. PMC: 5716614. DOI: 10.5195/ijt.2017.6226. View