Skip to main content
Download PDF

The future of FemTech ethics & privacy – a global perspective

BMC Medical Ethics volume 24, Article number: 88 (2023) Cite this article

Abstract

We discuss the concept of women’s empowerment in FemTech, considering cultural and legal differences, ethical concerns, and legal consequences. We claim that it is crucial to prioritize privacy, a fundamental right, especially in the case of changes in laws related to women’s health, such as Roe v. Wade in the US.

Peer Review reports

Background

The term ‘FemTech’ denotes technologies that are designed for women’s health. The FemTech industry has seen growth in recent years and is considered a rapidly expanding global market with a large user base [1]. However, studies conducted on FemTech have identified a number of privacy and security concerns related to the collection and use of personal and health data including the potential for unauthorized access, sharing, or misuse of this data, and the need for strong data privacy protection practices [2, 3]. This is of relevance given that FemTech companies must comply with diverging regulations and laws that exist in different countries. Furthermore, women’s health (WH) issues can vary in sensitivity depending on local cultural, religious, or legal factors.

FemTech and empowerment

International human rights guidelines recognize a women’s right to make decisions about their own bodies and reproductive health (RH) [4]. This includes the right to make decisions about her body, the right to access reliable information about RH, and the right to reproductive freedom (RF) [5, 6]. The latter includes the right to access abortion and other RH services and the right to be free from discrimination and coercion when making decisions about RH [2].

FemTech can help women take control of their bodies and make informed decisions about their RH by providing accessible information on RH and convenient ways to track and manage their health. This can include a wide range of products and services, such as apps, devices, and services related to RH, fertility, pregnancy, menopause, and other WH issues [5].

Thus, FemTech has the potential to empower women in exercising their reproductive rights, as the FemTech industry claims repeatedly [7] – exemplarily shown by the FemTech Analytics Report of 2022: “FemTech is a technology that is empowering women” [1]. FemTech services are sold with the claim to give women more control and understanding of their bodies [5]. This supposed empowerment thus enables women to make informed choices about their menstrual, sexual, and RH and overall well-being [7].

The sensitive nature of FemTech data

However, on the flipside of this claim to empowerment are the risks that FemTech may pose to its users. FemTech companies not only collect personal health data in the legal sense but also sensitive and intimate data in a cultural sense [8]. Such data can reveal sensitive and personal information about an individual; e.g., about an individual’s sexual preferences, sexual interactions, number of orgasms, birth control measures, childbearing journey, including miscarriage or abortion, and the associated mood and mental health of those women [2, 8].

If this intimate private data got shared, hacked, or mishandled, the affected women may suffer serious problems [2]. Although FemTech frequently gathers health data, it lacks the safeguards typically provided for health data collected in clinical settings. Because cultural and societal stigmas and taboos have historically relegated women’s health, bodies, and sexuality [5], mishandling this data can have significant implications for an individual’s privacy, safety, reputation, and overall well-being. Depending on the legal situation in the respective country, this could lead to legal surveillance, civil detentions, forced interventions, or criminal prosecution. This is why this data is considered to be highly sensitive and deserves protection – and the alarming level of women’s vulnerability to privacy risks due to the mismanagement and misuse of such data in a sociocultural context is a major concern [3].

Diverse global regulations

Most of the FemTech companies offer their services globally, assisted by the global rise in smartphone usage. This means that they need to comply with a wide range of laws and regulations in different countries [5]. For assessing the consequences of this sensitive nature of FemTech data, we need to look at the diversity of global regulation – not only regarding data protection, but also concerning laws that govern women’s health, including laws around abortion.

In terms of privacy and data protection, FemTech companies must comply with different legal regimes. Some countries have specific laws that apply to health data, including data collected by FemTech, such as The EU General Data Protection Regulation [5]. In other countries, health data may be covered by more general data protection laws not specific to FemTech, such as the Health Insurance Portability and Accountability Act in the US [9]. Yet in other countries, there is even a lack of regulations when it comes to health data privacy [10]. This lack of a uniform privacy framework for health data broadly and FemTech data specifically has led to a wide range of privacy practices within the FemTech industry. This is of particular relevance for FemTech technologies specifically designed for women, who have historically faced oppression by social and legal systems [5].

When looking at differences related to laws that directly affect RF and health, the situation becomes even more complex. Laws and cultural norms around RH vary widely around the world [5]. In some countries, pregnancy outside of marriage is a criminal offense. In other countries, abortion is not legal, and even miscarriages can risk jail time. Countries like Iran have a law that severely restricts access to abortion, contraception, voluntary sterilization services, and related information [11]. Under such conditions, FemTech data may capture information on illegal activities, thus endangering users of FemTech should this data be accessed or shared. An illustrative case is the US, where on June 24, 2022, the Supreme Court overturned Roe v. Wade, ending almost 50 years of federally legal abortion [12, 13]. The overturn of Roe v. Wade allows states to make their own laws around abortion, leading to criminalization in some and liberalization in others. Where abortion is illegal, FemTech and other online data can then become an instrument to criminalize users [14,15,16]. As an example, in April 2017, a woman in Mississippi was accused of second-degree murder after experiencing a miscarriage and seeking treatment at a hospital. Prosecutors used her online search history and the purchase of the drug misoprostol as evidence to suggest that she had intentionally terminated her pregnancy [17]. In another example, the US Federal Trade Commission complaint revealed that the popular fertility tracking software, Premom by Easy Healthcare, shared users’ sensitive health information with third-party advertisers, including Google and the marketing firm AppsFlyer, without their consent since 2018 [18].

Ethical problems

Given the complex nature of global regulations, especially when it comes to WH issues and data regulations, FemTech often fails to recognize that womanhood is not a one-size-fits-all experience, which only exacerbates the problems caused by the maintenance and reinforcement of norms in this area [5]. We suspect that FemTech providers assume that the data their tools collect cannot be used against their users. But this is wrong. Rather, the FemTech industry is confronted with the following three ethical problems that result from this diverse legal landscape.

We call the first ethical problem “deep misinformation” of the users of FemTech. As outlined above, this technology is embedded in a narrative of empowerment and liberation of women by collecting data and providing tools that allow the users to “take back control” and to even exercise a degree of freedom that may be in sharp contrast to the actual socio-cultural context in which the users are living. Users are not made aware that by using FemTech tools they may create “evidence” that can be used against them even in a legal sense.

The providers of FemTech are explicitly building their whole strategy of gaining users on the narrative of liberation and empowerment – maybe even reflecting their own “company philosophy” as well as their socio-cultural background, given that most such services are based in countries with relatively liberal regimes with respect to sexual and RH [7]. But when the promotion of those services does not consider that their users may live in countries whose social and legal systems are in conflict with such empowerment, we have a case of “deep misinformation”. Therefore, from an ethical point-of-view, the first minimal requirement for FemTech companies is to take the cultural context of their users into account in their informed consent policy to avoid this “deep misinformation”, even if this results in a loss of customers.

The second ethical problem concerns the potential “moral blindness” for those issues of the app developers, designers, and managers of the companies that create FemTech. They may indeed act in good faith by creating and promoting those technologies, but their view on the technology and the data collected by the technology is one-sided, neglecting the risk that a legislative change, as the case of overturning Roe v. Wade in the US illustrates, can create or that users living in more repressive legal or socio-cultural environments may bear. The absence of safeguards, such as the possibility to permanently delete data that may become dangerous for their users, engage developers in an ethical dilemma by making them accomplices of a policy that they may oppose. Therefore, from an ethical point-of-view, the second minimal requirement for FemTech companies is to include technological solutions that enable their users to detect that their FemTech device is collecting “dangerous data” and act upon it by creating enhanced safeguards.

The third ethical problem is that FemTech companies may be placed in a position that legally requires them to perform some “surveillance functions” if they want to be present in certain markets (e.g., by either routinely checking user data for suspicious behavior or by providing access to law enforcement authorities). Companies should be aware of this risk and proactively consider potential consequences. This may lead to the conclusion not to enter certain markets (such as Google who pulled its search engine from China in 2010 because of strict government censorship online) or to be prepared that their service may be blocked for users of certain countries not complying with certain law enforcement requests. Such decisions should then be explicitly outlined in the information policy for users from affected countries.

Conclusion

Our considerations demonstrate that the nature of personal and health data collected by FemTech is intimate and deeply private. Furthermore, the legal conditions and regulations in various parts of the world are diverse – which may for example criminalize certain acts such as abortion – and they may become subject to significant changes over time. This contrasts with the global nature of FemTech, which is accessible across borders. Given that studies demonstrate rather poor data privacy and security standards of FemTech by sharing and/or selling data with third parties, we consider the following measures indispensable:

  1. 1)

    FemTech providers should inform the users that local legislation concerning RH may be in tension with the empowerment intention of the apps. They should point to the risk that certain kinds of data could become evidence against the user in criminal proceedings in countries where abortion, certain sexual preferences, or other aspects of reproductive and/or sexual health are criminalized.

  2. 2)

    FemTech providers should generally increase their data privacy and security standards. They should offer options that FemTech users can permanently delete their data if certain circumstances (such as legislative changes) endanger their users. They also should uphold the principle of data minimization and only collect data that is necessary for providing the service.

  3. 3)

    Femtech providers should be very restrictive in sharing any data they collect. Specifically, they should consider the possibility that they may be forced by law enforcement authorities to release data and they should implement preparatory measures to handle such cases to maximize the protection of their users.

Implementing those measures may be supported by creating a shared standard in the industry or may need more restrictive regulation. Nevertheless, we consider those measures necessary to uphold the stated intention of empowering women through FemTech and to protect the safety and security of the women FemTech companies claim to care for, no matter the legal, social, or cultural settings they live in.

Data Availability

Not applicable.

Abbreviations

RF:

Reproductive freedom

RH:

Reproductive health

WH:

Women’s health

References

  1. Analytics F, FemTech Industry Landscape Q. 2022. FemTech Analytics. 2022. https://analytics.dkv.global/FemTech/Report-Q2-2022.pdf. Accessed February 20 2023.

  2. Mehrnezhad M, Almeida T. Caring for Intimate Data in Fertility Technologies. Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems2021. p. 1–11.

  3. Alfawzan N, Christen M, Spitale G, Biller-Andorno N, Privacy. JMIR Mhealth Uhealth. 2022;10(5):e33735. https://doi.org/10.2196/33735. Data Sharing, and Data Security Policies of Women’s mHealth Apps: Scoping Review and Content Analysis.

  4. UN. Convention on the Elimination of All Forms of Discrimination against Women OHCHR. 1979. https://www.ohchr.org/en/instruments-mechanisms/instruments/convention-elimination-all-forms-discrimination-against-women. Accessed 20 September 2023.

  5. McMillan C. Monitoring female fertility through ‘Femtech’: the need for a whole-system Approach to Regulation. Med Law Rev. 2022. https://doi.org/10.1093/medlaw/fwac006

    Article  Google Scholar 

  6. Gurrieri L, Previte J, Brace-Govan J. Women’s bodies as sites of Control. J Macromarketing. 2012;33(2):128–43. https://doi.org/10.1177/0276146712469971

    Article  Google Scholar 

  7. Hendl T, Jansky B. Tales of self-empowerment through digital health technologies: a closer look at ‘Femtech’. Rev Soc Econ. 2021;80(1):29–57. https://doi.org/10.1080/00346764.2021.2018027

    Article  Google Scholar 

  8. Shipp L, Blasco J. How private is your period? A systematic analysis of menstrual app privacy policies. Proc Priv Enhancing Technol. 2020;2020(4):491–510. https://doi.org/10.2478/popets-2020-0083

    Article  Google Scholar 

  9. GREGORY S. How Period-Tracking Apps Won’t Protect Privacy in a Post-Roe v. Wade World. Cosmopolitan 2022 25 JUL, 2022.

  10. UNCTAD. Data Protection and Privacy, Legislation Worldwide UNCTAD. 2023. https://unctad.org/page/data-protection-and-privacy-legislation-worldwide. Accessed 18 September 2023.

  11. UN. Iran death penalty threat for abortion unlawful: UN rights experts2021 16 November 2021.

  12. Dobbs v. Jackson Women’s Health Organization. SUPREME COURT OF THE UNITED STATES; 2022.

  13. CRR. Roe v. Wade - Center for Reproductive Rights. 2022.

  14. Corbin B. The Shifting Data Privacy Landscape For Femtech & Beyond. Med Device Online. 2022. https://www.meddeviceonline.com/doc/the-shifting-data-privacy-landscape-for-femtech-beyond-0001. Accessed January, 10 2023.

  15. Holland M. Roe v. Wade reversal could hinder data privacy rights. TechTarget. 2022 13 May 2022.

  16. Elliott V. Period and Fertility Apps Can Be Weaponized in a Post-Roe World Wired. 2022.

  17. Elliott V. The Fall of ‘Roe’ Would Put Big Tech in a Bind. WIRED. 2022 6 May, 2022.

  18. Page C. Premom fertility app shared sensitive data with Chinese analytics firms, FTC says. TechCrunch. 2023 May 18, 2023.

Download references

Acknowledgements

Not applicable.

Funding

Not applicable.

Author information

Authors and Affiliations

  1. Institute of Biomedical Ethics and History of Medicine, University of Zurich, Winterthurerstrasse 30, 8006, Zürich, Switzerland

    Najd Alfawzan

  2. Markus Christen Institute of Biomedical Ethics and History of Medicine & Digital Society Initiative, University of Zurich, Winterthurerstrasse 30, 8006, Zürich, Switzerland

    Markus Christen

Authors
  1. Najd Alfawzan
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Markus Christen
    View author publications

    You can also search for this author in PubMed Google Scholar

Contributions

N.F. and M.C. wrote and reviewed the manuscript.

Corresponding author

Correspondence to Najd Alfawzan.

Ethics declarations

Ethics approval and consent to participate

Not applicable.

Consent for publication

Not applicable.

Competing interests

The authors declare no competing interests.

Additional information

Publisher’s Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article’s Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article’s Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/. The Creative Commons Public Domain Dedication waiver (http://creativecommons.org/publicdomain/zero/1.0/) applies to the data made available in this article, unless otherwise stated in a credit line to the data.

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Alfawzan, N., Christen, M. The future of FemTech ethics & privacy – a global perspective. BMC Med Ethics 24, 88 (2023). https://doi.org/10.1186/s12910-023-00976-z

Download citation

  • Received:

  • Accepted:

  • Published:

  • DOI: https://doi.org/10.1186/s12910-023-00976-z

Keywords

BMC Medical Ethics

ISSN: 1472-6939

Contact us