Period-tracking apps store users’ most private data. What will that mean in a post-Roe world?

States that ban abortion could ask period-tracking apps to hand over user information.

Flo Health's period and cycle tracking app

Flo is a popular period-tracking app.

Photo: Flo Health

Period-tracking apps can be a lifesaver for users who want to track their symptoms, view predictions about upcoming cycles and even plan whether they want to conceive or not. In a world in which Roe v. Wade is overturned, privacy experts are concerned that those apps could be forced to hand over some of users’ most private ovulation information.

This isn’t a new worry: Researchers have long waved the privacy flag over the collection of data around people’s sexual lives, medication intake and more. Some period-tracking apps, like FEMM, openly state that third-party platforms could use their data for targeted advertising. Other data has reportedly been used for academic studies and by data analytics providers. But if states outlaw abortion altogether, those apps could be subpoenaed for data on individual users, and that data could then be used as evidence against people who choose to terminate their pregnancies.

It’s a dystopian fear, but not out of the realm of possibility. In fact, it’s happened before: A woman was charged with second-degree murder after a prosecutor used her online searches for abortion pills to imply motive after she lost her pregnancy (although the charges were later dropped). There aren’t many laws preventing period-tracking data from being purchased or requested by police once a user consents to data collection, though some apps limit the collection of information or store it locally on a user’s device.

When users install period-tracking apps and start logging their cycles, they agree to a certain loss of privacy. After all, they have to hand over some information for the apps to effectively predict future cycles, estimate ovulation windows and help monitor their period symptoms. Most users expect that data to remain private, but there’s no guarantee. Most period-tracking apps collect data that can then be shared with advertisers.

“Anything that could be shared with advertisers can be shared with law enforcement,” India McKinney, the director of Federal Affairs at the Electronic Frontier Foundation, told Protocol.

Cycle-tracking apps — and health apps in general, for that matter — aren’t protected by the same privacy protections as patient privacy rules under HIPAA, meaning apps aren’t prevented from sharing this data. McKinney said that makes health-tracking apps of interest to third parties. “Abortion services? Maybe not profitable, but certainly of interest,” she said.

McKinney said in states where restrictive abortion laws have gone into effect, that information could be turned over to a third party if subpoenaed. Say, for example, you live in a state where miscarriages are illegal (there are none, but some state laws are so vague that people have been arrested after pregnancy loss). McKinney said if law enforcement was investigating whether a miscarriage took place and had reason to believe a period-tracking app might have evidence, they could request that data. Even if the app anonymized data, McKinney said it’s easy to re-identify users.

Popular period-tracking apps like FEMM, Flo, Ovia Health and Clue collect a range of personal information, like the length of someone’s period and whether a person had protected and unprotected sex, as well as identifying information like emails and IP addresses. The data is self-reported, but users might not realize that the benefits of tracking their periods might open them up to legal action if abortion is outlawed. Some apps, like Flo, say they don’t hand over any user data to third parties, but McKinney said the fact that they own this user data means it could be requested by law enforcement, and that’s not an uncommon ask. What is unusual is the amount of deeply personal health data that could be exposed if abortion becomes criminalized.

A representative for Clue said health data is “kept private and safe.” The app is required to comply with the EU’s General Data Protection Regulation law, which sets guidelines for collecting and processing personal information, although it’s unclear if those protections extend to U.S. users.

“All our users’ health data is stored on servers in the European Union,” a spokesperson told Protocol.

Representatives for period-tracking apps FEMM and Ovia Health did not return requests for comment.

It’s unclear what kinds of privacy changes these apps might implement if abortion laws become more restrictive.

Evan Greer, deputy director of the nonprofit advocacy group Fight for the Future, said the ability for apps to collect data that could be used by third-party platforms or law enforcement highlights the need for users to better understand consent when using these apps. People may allow an app to collect this sensitive data without realizing it could be used elsewhere.

“Many people just don't actually know what risks are associated with handing over sensitive data to these companies,” Greer told Protocol.

Greer said an important factor is the way an app stores data — some store it in the cloud, where it can be analyzed and shared with advertisers, and some store information locally on a user’s phone. User data in Planned Parenthood’s period-tracking app, Spot On, is stored locally. “No one but you has access to it — not even our developers,” the organization said in 2019. Period-tracking app Euki has the same policy.

At the core of this issue is a lack of federal privacy protections that would require apps to encrypt data and store it locally on a user’s device, said Carrie Baker, a professor of gender, law and public policy at Smith College. The U.S. doesn’t have any singular law that accounts for all types of data collection.

“Our laws around privacy, generally, are not written for the current technological environment,” Baker told Protocol. “They’re not anticipating the kinds of issues with regard to security and privacy that people need to be thinking about today. And I think the abortion issue is just one very frightening example.”


What the economic downturn means for pay packages

The war for talent rages on, but dynamics are shifting back to the employers.

Compensation packages could start to look different as companies reshuffle the balance of cash and equity.

Illustration: Nuthawut Somsuk/Getty Images

The market is turning. Tech stocks are slumping — which is bad news for employees — and even industry powerhouses are slowing hiring and laying people off. Tech talent is still in high demand, but compensation packages could start to look different as companies recruit.

“It’s a little bit like whiplash,” compensation consultant Ashish Raina said of the downturn. Raina, who mainly works with startups that have 200 to 800 employees, previously worked as the director of Talent at Index Ventures and head of Compensation and Talent Analytics at Box. “I do think there’s going to be an interesting reckoning in terms of pay increases going forward, how that pay is delivered.”

Keep Reading Show less
Allison Levitsky
Allison Levitsky is a reporter at Protocol covering workplace issues in tech. She previously covered big tech companies and the tech workforce for the Silicon Valley Business Journal. Allison grew up in the Bay Area and graduated from UC Berkeley.
Sponsored Content

Why the digital transformation of industries is creating a more sustainable future

Qualcomm’s chief sustainability officer Angela Baker on how companies can view going “digital” as a way not only toward growth, as laid out in a recent report, but also toward establishing and meeting environmental, social and governance goals.

Three letters dominate business practice at present: ESG, or environmental, social and governance goals. The number of mentions of the environment in financial earnings has doubled in the last five years, according to GlobalData: 600,000 companies mentioned the term in their annual or quarterly results last year.

But meeting those ESG goals can be a challenge — one that businesses can’t and shouldn’t take lightly. Ahead of an exclusive fireside chat at Davos, Angela Baker, chief sustainability officer at Qualcomm, sat down with Protocol to speak about how best to achieve those targets and how Qualcomm thinks about its own sustainability strategy, net zero commitment, other ESG targets and more.

Keep Reading Show less
Chris Stokel-Walker

Chris Stokel-Walker is a freelance technology and culture journalist and author of "YouTubers: How YouTube Shook Up TV and Created a New Generation of Stars." His work has been published in The New York Times, The Guardian and Wired.


How 'Zuck Bucks' saved the 2020 election — and fueled the Big Lie

The true story of how Mark Zuckerberg and Priscilla Chan’s $419 million donation became the 2020 election’s most enduring conspiracy theory.

Mark Zuckerberg is smack in the center of one of the 2020 election’s multitudinous conspiracies.

Illustration: Mike McQuade; Photos: Getty Images

If Mark Zuckerberg could have imagined the worst possible outcome of his decision to insert himself into the 2020 election, it might have looked something like the scene that unfolded inside Mar-a-Lago on a steamy evening in early April.

There in a gilded ballroom-turned-theater, MAGA world icons including Kellyanne Conway, Corey Lewandowski, Hope Hicks and former president Donald Trump himself were gathered for the premiere of “Rigged: The Zuckerberg Funded Plot to Defeat Donald Trump.”

Keep Reading Show less
Issie Lapowsky

Issie Lapowsky ( @issielapowsky) is Protocol's chief correspondent, covering the intersection of technology, politics, and national affairs. She also oversees Protocol's fellowship program. Previously, she was a senior writer at Wired, where she covered the 2016 election and the Facebook beat in its aftermath. Prior to that, Issie worked as a staff writer for Inc. magazine, writing about small business and entrepreneurship. She has also worked as an on-air contributor for CBS News and taught a graduate-level course at New York University's Center for Publishing on how tech giants have affected publishing.


From frenzy to fear: Trading apps grapple with anxious investors

After riding the stock-trading wave last year, trading apps like Robinhood have disenchanted customers and jittery investors.

Retail stock trading is still an attractive business, as shown by the news that crypto exchange FTX is dipping its toes in the market by letting some U.S. customers trade stocks.

Photo: Lam Yik/Bloomberg via Getty Images

For a brief moment, last year’s GameStop craze made buying and selling stocks cool, even exciting, for a new generation of young investors. Now, that frenzy has turned to fear.

Robinhood CEO Vlad Tenev pointed to “a challenging macro environment” marked by rising prices and interest rates and a slumping market in a call with analysts explaining his company’s lackluster results. The downturn, he said, was something “most of our customers have never experienced in their lifetimes.”

Keep Reading Show less
Benjamin Pimentel

Benjamin Pimentel ( @benpimentel) covers crypto and fintech from San Francisco. He has reported on many of the biggest tech stories over the past 20 years for the San Francisco Chronicle, Dow Jones MarketWatch and Business Insider, from the dot-com crash, the rise of cloud computing, social networking and AI to the impact of the Great Recession and the COVID crisis on Silicon Valley and beyond. He can be reached at bpimentel@protocol.com or via Google Voice at (925) 307-9342.


Broadcom is reportedly in talks to acquire VMware

It hasn't been long since it left the ownership of Dell Technologies.

Photo: Yichuan Cao/NurPhoto via Getty Images

Broadcom is said to be in discussions with VMware to buy the cloud computing company for as much as $50 billion.

Keep Reading Show less
Jamie Condliffe

Jamie Condliffe ( @jme_c) is the executive editor at Protocol, based in London. Prior to joining Protocol in 2019, he worked on the business desk at The New York Times, where he edited the DealBook newsletter and wrote Bits, the weekly tech newsletter. He has previously worked at MIT Technology Review, Gizmodo, and New Scientist, and has held lectureships at the University of Oxford and Imperial College London. He also holds a doctorate in engineering from the University of Oxford.

Latest Stories