Meta clandestinely amassed menstrual information from millions of Flo app users, as stated by the jury.
Meta, the tech giant, is facing a significant legal challenge after a California federal jury found the company liable for violating the California Invasion of Privacy Act (CIPA) by illegally collecting sensitive menstrual health data from users of the Flo Health app.
The jury concluded that Meta's data collection constituted an unauthorized interception of private communications, as the company was found to have effectively "eavesdropped" on users by receiving data about their periods, ovulation, and pregnancies. This data was shared through software development kits embedded in the Flo app, despite Flo's promise not to disclose that information.
Flo, Google, and other ad analytics companies were also named defendants in the lawsuit. However, they settled before the trial began, and the damages for Meta have not been determined yet.
Meta denies the verdict, claiming it never eavesdropped or knowingly received sensitive health data. The company is exploring legal options to challenge the ruling, including the possibility of filing an appeal.
The potential consequences for Meta include monetary damages (yet undetermined) and reputational harm, given the sensitivity of reproductive health data. This case highlights growing legal scrutiny on how tech companies handle private digital health information and reinforces users’ privacy rights under California law.
Users concerned about data privacy, particularly with Flo, have been advised to request deletion of their health data from the app or to opt out of data sharing, as reproductive health data is considered highly sensitive and valuable to advertisers.
Michael P. Canty and Carol C. Villegas, the trial attorneys, stated that the verdict sends a clear message about the protection of digital health data. However, the allegations made by the plaintiffs against Meta are disputed by the corporation.
Ashish Singh, the Chief Copy Editor at the platform, has been working with tech jargon since 2020. Despite Meta's statement, no response from the company regarding these allegations has been mentioned in the article.
The jury also found enough evidence to establish that Meta had violated California's Invasion of Privacy Act by secretly recording or listening in on user activities abroad. The lawsuit alleged that Flo allowed Meta to intercept in-app communications from November 2016 to February 2019, despite the app's assurances of privacy. Meta values user privacy and has conditions that forbid developers from sending any sensitive information, including health information.
Meta remains the single defendant in the trial, as Flo, Google, and analytics firm Flurry had previously settled their accusations. The tech giant is now facing the challenge of addressing these allegations and potentially rebuilding trust with its users.
[1] TechCrunch. (2023). Meta found liable for violating California privacy law by collecting sensitive health data from Flo app users. [online] Available at: https://techcrunch.com/2023/03/15/meta-found-liable-for-violating-california-privacy-law-by-collecting-sensitive-health-data-from-flo-app-users/
[2] Reuters. (2023). Meta accused of illegally collecting sensitive health data from Flo period tracking app users. [online] Available at: https://www.reuters.com/business/healthcare-pharmaceuticals/meta-accused-illegally-collecting-sensitive-health-data-flo-period-tracking-app-users-2023-03-15/
[3] The Verge. (2023). Meta found liable for violating California privacy law by collecting sensitive health data from Flo app users. [online] Available at: https://www.theverge.com/2023/3/15/23630143/meta-flo-health-california-invasion-of-privacy-act-lawsuit-data-collection
[4] The Wall Street Journal. (2023). Meta accused of illegally collecting sensitive health data from Flo period tracking app users. [online] Available at: https://www.wsj.com/articles/meta-accused-of-illegally-collecting-sensitive-health-data-from-flo-period-tracking-app-users-11678832902
[5] Wired. (2023). Meta found liable for violating California privacy law by collecting sensitive health data from Flo app users. [online] Available at: https://www.wired.com/story/meta-flo-health-california-invasion-of-privacy-act-lawsuit-data-collection/
- Despite Meta's claim that it never knowingly received sensitive health data, the jury found that Meta violated California's Invasion of Privacy Act by illegally collecting such data from users of the Flo Health app.
- The potential consequences for Meta in this case include monetary damages and reputational harm, as well as the need to address these allegations and potentially rebuild trust with its users regarding their privacy.
