> It seems like we can’t just necessarily leave it up to companies – or their ragtag teams of crackpot lawyers rewriting privacy policies every few months – to keep our private data private.
It's not a medical requirement from a doctor, so just keep a diary if you want to. Not everything needs to be an app. All the money spent on regulations and regulators to cover increasingly niche opt-in services that are entirely unnecessary is a waste.
What does thumbing their noses mean? They have been paying while continuing their behavior, or not paying at all?
The first seems like it could be resolved with an escalating fine schedule, and the second could be mitigated by requiring Apple/Google to remove it from the app store (one of the rare cases walled gardens are on consumers' side).
"While Apple implemented App Store policies to allow developers to link to alternative payment options, the policies still required the developer to provide a 27% revenue share back to Apple, and heavily restricted how they could be shown in apps. Epic filed complaints that these changes violated the ruling, and in April 2025 Rogers found for Epic that Apple had willfully violated her injunction, placing further restrictions on Apple including banning them from collecting revenue shares from non-Apple payment methods or imposing any restrictions on links to such alternative payment options. Though Apple is appealing this latest ruling, they approved the return of Fortnite with its third-party payment system to the App Store in May 2025."
They need to make an example out of these companies. If your whole business model is built around handling sensitive data, and you are caught shipping off that data to brokers, you should be liquidated or at least fined to within an inch of bankruptcy, as basically all of your profits are a sham.
There needs to be penalties that piece the "limited liability" because otherwise it's just "pay to get away with it" as we currently have.
I've been for a "corporate death penalty" (if companies are people, they can be executed) which would result in the shareholders losing everything along with executives being perp-walked.
Why is it a waste? If you want to provide an app, one should follow the law and the regulations. It isn't the wild west (and even that had regulations).
Nobody is blaming victims, please stop these wild fabulations. OP meant that you can't trust app owners especially long term, as you write its worse than wild west, literally nobody.gives.a.fuck. till they are dragged to the court, then they fight, dissolve company, still sell the data, start a new one and rinse and repeat. People are simply way more greedy than moral on average if there is any lesson in current times.
Look at say zuckenberg - a typical sociopath lying again and again through his nose with big grin just to get what he wants (ie scandals how FB employees go to DB to spy on their exes or enemies is popping up for 10 years at least and there is no stop, every time there is another assurance how it can't be done now blablabla... and thats just specific meta employees).
Nobody likes that, but just sitting and waiting for almighty regulators while blindly trusting apps in good faith to do their jobs is... not working much, is it. Be smart, adapt to real environment out there, not some wishful thinking. In parallel push for change as much as you can, vote with wallet and your time. Once sought-for paradise comes then feel free to use anything anyhow. At least that seems like smarter approach to me.
So add liability for the buyers of the data or any services derived from the data (e.g. targeted ads). Make it so large advertisers demand audits showing privacy laws are being followed. Also have personal criminal liability for people building and maintaining systems that collect, store, or process data for illegal purposes. Executives, PMs, engineers, the whole lot. Put them in prison if they continue.
I've never used Flo specifically, so I don't know what kind of data analysis it has available, but period data is the #1 most useful health data to have an app crunch for you, and "your period starts tomorrow" is a pretty darn useful notification to get.
We're using Flo specifically, mostly for sharing stuff like "her period starts tomorrow" to the both of us, she doesn't really need a notification for that :)
I'm not sure I understand your argument. It's important enough that she has it set up to share that data to both of you, but it's so unimportant she doesn't need a notification for it?
Yes, it is useful for me as a partner to know, ideally without having to ask her, and not important for her to be notified, since without the notification she'll notice it anyways sooner or later...
I'm sorry but this is bordering on parody to me. The way she would notice it "sooner or later" is by her bleeding on her clothes and possibly even furniture. In what world is it important for you to just know about it and somehow not important for her to avoid that?
> The way she would notice it "sooner or later" is by her bleeding on her clothes and possibly even furniture.
No, many can feel it beforehand, and you notice it when you go to the bathroom before as well, as certain things change their properties slightly, it's not a "nothing" phase and then "floods out of your body".
It's borderline parody how little education there is for males when it comes to things like this.
Most of the women I know well enough to know this about them track and predict the onset of their next period without needing an application. It isn't exactly rocket science.
1-2 generations? give an advanced anything to anyone with no true knowledge of how to do it without the tool and you'll have people fully dependent in hours.
kids today cannot navigate without turn-by-turn. nobody looks at the map to get names of major streets, they just blindly follow the directions. I learned how to navigate as a kid just by being bored and staring out the window and being able to recognize things. Now, kids don't even look out the window as they keep their heads down and eyes glued to a screen.
This is a strawman argument. Nobody is arguing that period apps are a necessity. Women have been tracking our periods without computers since prehistoric times. Women were doing rocket science calculations before computers, for that matter. Of course we can do without period apps. But they're more useful than any other health tracking device or app that I can think of.
Even if it was a requirement, doctors do not generally have legal authority to compel action. Hell, the average doctor would probably agree that the average patient hardly ever does what they’re told…
> All the money spent on regulations and regulators to cover increasingly niche opt-in services that are entirely unnecessary is a waste.
That isn't what's happening. The regulations don't get little niche cases added to them, they're writen to be generally applicable to all niches.
> It's not a medical requirement from a doctor, so just keep a diary if you want to.
"Just don't use the computer if you don't want companies to rat you out to the fascist government that'll imprison or kill you for having a miscarriage" is a ridiculous victim-blaming position.
It's the practical reality of a fascist government that they won't enact privacy laws. And yes, women really shouldn't be using period tracking apps in the US, or made by the US. But that doesn't mean privacy laws are some "silly waste of my tax money".
It's not a "medical requirement" except for the many many many cases where it is. Similarly, this position extends to literally everything. Nothing "needs to be an app". But unless we want to pack up and discard the entire software industry, it really ought to be better about privacy like this.
I'll make a period tracker for you for 5 bucks a month. You won't buy it, because it costs 5 bucks a month. So I'll have to find alternative monetisation strategies.
Why would me giving you 5 bucks a month assure you didn't also sell all of the data from the period tracker app? That's money you'd just be leaving on the table.
I think that kind of thinking is similar to the "both sides" stuff in politics. There's a meaningful difference in trustworthiness between different options.
For instance, if you need to track your period, the built in iOS apps are secure, especially if you're using advanced icloud encryption.
The trouble is that it's literally impossible to tell what applications are trustworthy and what applications are not, or whether they'll remain trustworthy over time. So you have to treat them all as untrustworthy. It's a fair rule of thumb because the majority of them can't be trusted.
I don’t have the right configuration of equipment to use an app like this, but does anyone know why this needs to be a service-driven app? What piece of functionality requires a server to track your health?
An error? It's useful to know if/when an app wants to access the Internet. So if an app says it's local only you can disable network permissions. Trust but verify.
Better revenue model? Pushing some data to the server, serving ads to the app, reselling demographic data, etc all allow for more revenue than just the price of installation.
There are almost certainly other apps in the space that don’t need a server, don’t phone home to Meta, and are lower priced, but they probably aren’t as good at marketing.
From my experience in the startup world, I would wager that this developer probably wanted to track marketing campaign installs (Meta library is required to close the loop on Facebook/Instagram ad conversions after app install) or wanted a feature from some Meta library they integrated but didn’t realize or care about the consequences.
I'm assuming the question should be further refined to "why does the service need to know the data". The things that you mention could be done with the service only having the encrypted blob.
Encryption is more work than not-encryption, and most software is optimally lazy and barely functional. The main goal of the developers is to make the app almost work most of the time, and not crash too much or be so inconvenient that users delete it. Anything past that is extra, and businesses don't pay for extra.
I have actually been playing around with scoping a privacy first version of these tracking apps that store all the data locally with optional sync. It's technically possible, but there's very little in the way of revenue generation there. So it's same issue as always, capitalism corrupts.
My partner uses the app this article is about (Flo) and I have an account there too in order for her to share the data with me.
I guess you could do it with some sort of P2P sync with cryptography involved locally instead, and/or E2E for stuff sent via the servers. Kind of surprised me they didn't have E2E already, but I guess I shouldn't be surprised anymore.
Computers are useful tools that do useful things for people. It is reasonable for people to want to use them to do things they find useful. They don't have to function like spy devices, but we've chosen to highly reward the people who have turned them into spy devices, so they do. We could choose to do something else with them instead. For example we could pass & enforce privacy regulations so they cannot function as spy devices. Or we could wheel out the guillotines so there are appropriate consequences for the creeps and sociopaths who choose to build and work at places like Facebook. Whichever, I'm flexible.
Not being a women, I've always wondered what insight the app gives regardless of data traveling to a server... does it do anything you can't do with a simple notebook app (like Apple's default Notes)?
If you have an irregular period, does this app help "guess" when it's going to start/end?
If you have a regular period, why do you need an app at all?
Like most data entry software there’s nothing that unstructured notes (or paper) can’t handle.
The main useful feature of the apps (or Apple Health’s tracker which is entirely adequate) is that it sends reminders on the estimated period start date, and then a few days afterwards if you haven’t recorded the end date.
Even “regular” periods often aren’t perfectly regular, or can become irregular when they were regular. (Which is often very important health information.)
It also automatically calculates median period length and typical variation/range.
All unnecessary for some people but very useful for others.
> median period length and typical variation/range.
This was what my partner found useful to share with her doctor while trying to figure out a medical issue. Of course it could have been done typing dates and notes into excel, and manually creating charts, but the chance that she (or most people) would consistently follow that workflow (pun not intended, but I like it) is nil.
Like notes apps, reminder apps, etc, data from almost everything we do on phone is saved in cloud.
That data is their business fundamental. Same with this app also.
It doesn’t? You could easily install the tracker on the client app, no need to do it server side. In fact I bet the app in question (Flo) was doing the upload to Meta client-side.
I'm guessing P2P technology isn't really sufficiently easy for developers yet, so when you have two users using an app that are supposed to share something between the two, most of us default to building server-side services. That + the "dynamic" list of articles and "help" Flo offer I'm guessing is the main reason for them having servers in the first place.
Why would anyone think that a non-HIPPA compliant app would keep medical information private to the level of security needed for medical data? Flo has definitely breached user trust, but that trust seems misplaced from the get-go.
>Why would anyone think that a non-HIPPA compliant app would keep medical information private to the level of security needed for medical data?
because lots of people dont know what HIPPA is, and (naively to us more familiar with tech) assume that a medical-related app on a curated app store would be safe for medical-related stuff.
You're right, though; it's much more limited than people think. During COVID people claimed everything violated HIPAA (masks, vaccine requirements, testing), but it only applies in a very narrow subset of patient/provider relationships.
Very much so. Also ironically, as a healthcare provider (paramedic), HIPAA expressly allows me to get your healthcare information without your consent (as needed for your care). A lot of facilities have you sign paperwork to explicitly authorize sharing, but that's really just a CYA.
"Does the HIPAA Privacy Rule permit doctors, nurses, and other health care providers to share patient health information for treatment purposes without the patient’s authorization? Answer: Yes. The Privacy Rule allows those doctors, nurses, hospitals, laboratory technicians, and other health care providers that are covered entities to use or disclose protected health information, such as X-rays, laboratory and pathology reports, diagnoses, and other medical information for treatment purposes without the patient’s authorization."
100% reasonable (and often necessary - pill shopping, psychiatric concerns, etc. And not irony in the Act itself, more people's perception of its intent.
People are used to living in highly regulated markets. When they go to a grocery store to buy lettuce, people don't stop to ask "what regulatory regime is this lettuce being sold under?". They just trust that food being sold in a food store will meet our societal standards for food. I can go to Amazon and order a raw steak for delivery, and still trust it will meet standards.
The situation with wellness apps is that they are a product that are designed specifically to exist outside of the regulatory regime that people associate with them.
People just wanna track stuff, they don't really look into is something HIPPA compliant or read the ToS. App store push, recommendation, word of mouth are what makes the app like this spread, not really details HIPPA compliance.
its crazy to me that Flo is used so widely, as its started by Russian men and their treatment of data has bee public for a while, it just hasnt spread fast enough. I know theres at least one other option called Calessa (http://Calessa.app)
Less a f-u-view, more a f-u-world, the above is pragmatic advice about the actual IRL challenges of keeping data secure.
Further, a view that ignores many real world digital data risks faced by those considered to be useful targets; eg: compromised supply chains delivering "pre hacked" hardware with discreet wifi chips or hidden out of band comms, etc.
There are four open source period tracking apps on F-droid. I didn't do a full investigation of the source code, but unless your data is being uploaded outside the app (e.g. for backups), I feel safe assuming it will stay local only.
It sounds like the real solution to this is to be able to control permissions at an OS level for network per app, as you would be able to do if you had root access. I have no idea why regular Android distros don't allow you to do this, it seems like a really sensible thing to expose in app settings given the permissions model of Android.
If you're paying for a subscription, the company might sell your data. If you're using a commercial service for free, they are certainly selling your data.
Having said that, you're right to be suspicious of commercial services, even that you pay for. Someone can found a startup with a strong commitment to customer privacy and the best of intentions, but a few acquisitions or near bankruptcies later, those commitments will go out the window.
Relevant to this case, since they have a free version and premium one, they would probably just sell data from both sets of customers. It would be leaving money on the table otherwise, right?
The small chance that they might go out of their way to not sell premium users data doesn't seem worth much.
People in power want the information to identify a narrower set of people who may have been pregnant and then did not have a child and so may have had an abortion.
And facebook doesn't care about people's rights when those people in power are able to block Facebook from acquiring some new startup they want to buy, so facebook is willing to share the information.
Are we assuming the lack of a recorded period is the criteria? If yes, what if you just forgot to add it that month, or have hormonal issues, or abnormal BMI?
When Dobbs v. Jackson Women’s Health first overturned long-standing precedent protecting a woman's fundamental right to abortion, pro-choice leaders issued warnings about the possibility of prosecuting women for abortions. These concerns were dismissed as hysterical or as political theatrics because, in the past, women were rarely prosecuted for their own abortions. This note analyzes the history of illegal abortion before the Supreme Court’s ruling in Roe v. Wade to demonstrate that women were targeted, used as leverage against abortion providers, and sometimes arrested for their roles in the procedure."
https://scholarship.law.slu.edu/lj/vol69/iss4/11/
Texas & West Virginia is one of those states that prosecute women for having miscarriages. Texas offers a $10k bounty for turning in any woman who leaves the state and somehow returns without that pregnancy.
> Nationally, about 20% of pregnancies end in a loss, which includes miscarriage or spontaneous abortion, ectopic pregnancy, stillbirth or fetal death, according to federal data. Only a small number are investigated as crimes. But advocates say the growing number of laws in some states place people’s actions following pregnancy loss under greater scrutiny from law enforcement.
> Women in South Carolina, Georgia, Ohio, Arkansas, Texas, Mississippi, Oklahoma and several other states have faced criminal charges after a miscarriage or stillbirth for failing to seek immediate medical treatment, not pursuing prenatal care or disposing of the fetal remains in a way that law enforcement or prosecutors considered improper.
Many states prosecute black women who miscarry and one of their claims is that the woman took some (illegal - allegedly) drug that caused the miscarriage.
> In the year after the U.S. Supreme Court dismantled the constitutional right to abortion in June 2022, more than 200 pregnant women faced criminal charges for conduct associated with their pregnancy, pregnancy loss or birth, according to a new report.
Lots of reasons why you would miss a period that aren't pregnancy related. But that's not the point. Missing a period opens you up to further scrutiny and investigation by the state. Now they will start seeing if you've made out of town trips or perhaps subpoena your chat log to see what you've said to friends and family. It's not enough to prosecute, it is enough to start an investigation.
Does what actually happen? Prosecutions for abortions? Yes. Warrants related to people getting an abortion? Yes. A period tracker being used as the jump off point for those prosecutions/investigations? Hard to say, maybe? If the data is being sold it isn't hard to imagine that prosecutors and busybodies aren't currently mining that data.
mainly because I have no idea whether it's realistic to imagine what prosecutors do. I can also easily imagine it to be illegal and wildly unrealistic behaviour for a prosecutor, in my ignorance.
> Warrants related to people getting an abortion?
The question here isn't whether abortion is illegal in some states, but about period tracking data could be used as evidence, or justify an investigation - especially data that is seemingly illegally obtained. AFAIK, illegally obtained evidence is normally not valid grounds for investigation, and might actually weaken the case based on "fruit of the poisonous tree" doctrine.
Is there any precedent of subpoena-ing chat logs, or locale information, based on (illegally obtained information of) a missed period; or is this Handmaid's-Tale-fantasy territory?
>People in power want the information to identify a narrower set of people who may have been pregnant and then did not have a child and so may have had an abortion.
And what will people in power do with this information?
Do you really have to ask that question? They've criminalized health care. There's motive, history and current events to explain what they'll do with this information.
Presumably try to get those women arrested, or at least investigate them.
It's actually quite difficult to investigate an abortion, though. Abortion isn't "real", in the sense that there's no obvious difference between a natural abortion (read: miscarriage) and a purposeful one.
The thing that means abortion abortion colloquially is the purposeful-ness of it. If you knowingly terminate a pregnancy, that's an abortion. If your body terminates its own pregnancy, for a variety of reasons because the human body is very complicated, that's not an abortion.
Generally trusting people with that nuance is, I think, asking for trouble.
Are you not American? We have literal abortion bounty programs[1] in some states. There is definitely a desire to find women who have had abortions and punish them for it.
If you stop having a period for a few months and then start again, it may be worth buying some location data during that time to see if you were near any medical offices that may have offered illegal abortion services.
Parallel construction like that is unambiguously fruit from the poison tree. It should never be allowed, and the fact that it is used routinely is one of the many ongoing travesties in the US.
My understanding is that it would be, if admitted to. That's where the parallel comes in: establish an evidentiary trail that's plausible enough to withstand defense scrutiny, and count on the court itself (ie, judge) not to dig any deeper.
It's not a medical requirement from a doctor, so just keep a diary if you want to. Not everything needs to be an app. All the money spent on regulations and regulators to cover increasingly niche opt-in services that are entirely unnecessary is a waste.
The first seems like it could be resolved with an escalating fine schedule, and the second could be mitigated by requiring Apple/Google to remove it from the app store (one of the rare cases walled gardens are on consumers' side).
Malicious compliance. For example: https://en.wikipedia.org/wiki/Epic_Games_v._Apple
"While Apple implemented App Store policies to allow developers to link to alternative payment options, the policies still required the developer to provide a 27% revenue share back to Apple, and heavily restricted how they could be shown in apps. Epic filed complaints that these changes violated the ruling, and in April 2025 Rogers found for Epic that Apple had willfully violated her injunction, placing further restrictions on Apple including banning them from collecting revenue shares from non-Apple payment methods or imposing any restrictions on links to such alternative payment options. Though Apple is appealing this latest ruling, they approved the return of Fortnite with its third-party payment system to the App Store in May 2025."
Or https://developer.apple.com/support/dma-and-apps-in-the-eu/
"UPDATE: Previously, Apple announced plans to remove the Home Screen web apps capability in the EU as part of our efforts to comply with the DMA."
(This one resulted in enough fuss they backed down.)
I've been for a "corporate death penalty" (if companies are people, they can be executed) which would result in the shareholders losing everything along with executives being perp-walked.
Just like banning drugs and murder did!
Also: Why blame the victims, not the perp?
Look at say zuckenberg - a typical sociopath lying again and again through his nose with big grin just to get what he wants (ie scandals how FB employees go to DB to spy on their exes or enemies is popping up for 10 years at least and there is no stop, every time there is another assurance how it can't be done now blablabla... and thats just specific meta employees).
Nobody likes that, but just sitting and waiting for almighty regulators while blindly trusting apps in good faith to do their jobs is... not working much, is it. Be smart, adapt to real environment out there, not some wishful thinking. In parallel push for change as much as you can, vote with wallet and your time. Once sought-for paradise comes then feel free to use anything anyhow. At least that seems like smarter approach to me.
So add liability for the buyers of the data or any services derived from the data (e.g. targeted ads). Make it so large advertisers demand audits showing privacy laws are being followed. Also have personal criminal liability for people building and maintaining systems that collect, store, or process data for illegal purposes. Executives, PMs, engineers, the whole lot. Put them in prison if they continue.
No, many can feel it beforehand, and you notice it when you go to the bathroom before as well, as certain things change their properties slightly, it's not a "nothing" phase and then "floods out of your body".
It's borderline parody how little education there is for males when it comes to things like this.
The trick is to "give a tool for 1-2 generations of customers" , and then they'll be fully dependent on the tool.
kids today cannot navigate without turn-by-turn. nobody looks at the map to get names of major streets, they just blindly follow the directions. I learned how to navigate as a kid just by being bored and staring out the window and being able to recognize things. Now, kids don't even look out the window as they keep their heads down and eyes glued to a screen.
That isn't what's happening. The regulations don't get little niche cases added to them, they're writen to be generally applicable to all niches.
> It's not a medical requirement from a doctor, so just keep a diary if you want to.
"Just don't use the computer if you don't want companies to rat you out to the fascist government that'll imprison or kill you for having a miscarriage" is a ridiculous victim-blaming position.
It's the practical reality of a fascist government that they won't enact privacy laws. And yes, women really shouldn't be using period tracking apps in the US, or made by the US. But that doesn't mean privacy laws are some "silly waste of my tax money".
It's not a "medical requirement" except for the many many many cases where it is. Similarly, this position extends to literally everything. Nothing "needs to be an app". But unless we want to pack up and discard the entire software industry, it really ought to be better about privacy like this.
https://help.flo.health/hc/en-us/articles/4411278780564-What...
For instance, if you need to track your period, the built in iOS apps are secure, especially if you're using advanced icloud encryption.
If you use GrapheneOS, you can enable or disable internet access for each app.
Not sure what information you're expecting the app in question to surface if you disable internet access for it.
There are almost certainly other apps in the space that don’t need a server, don’t phone home to Meta, and are lower priced, but they probably aren’t as good at marketing.
From my experience in the startup world, I would wager that this developer probably wanted to track marketing campaign installs (Meta library is required to close the loop on Facebook/Instagram ad conversions after app install) or wanted a feature from some Meta library they integrated but didn’t realize or care about the consequences.
I guess you could do it with some sort of P2P sync with cryptography involved locally instead, and/or E2E for stuff sent via the servers. Kind of surprised me they didn't have E2E already, but I guess I shouldn't be surprised anymore.
If you have an irregular period, does this app help "guess" when it's going to start/end?
If you have a regular period, why do you need an app at all?
The main useful feature of the apps (or Apple Health’s tracker which is entirely adequate) is that it sends reminders on the estimated period start date, and then a few days afterwards if you haven’t recorded the end date.
Even “regular” periods often aren’t perfectly regular, or can become irregular when they were regular. (Which is often very important health information.)
It also automatically calculates median period length and typical variation/range.
All unnecessary for some people but very useful for others.
This was what my partner found useful to share with her doctor while trying to figure out a medical issue. Of course it could have been done typing dates and notes into excel, and manually creating charts, but the chance that she (or most people) would consistently follow that workflow (pun not intended, but I like it) is nil.
I'm guessing P2P technology isn't really sufficiently easy for developers yet, so when you have two users using an app that are supposed to share something between the two, most of us default to building server-side services. That + the "dynamic" list of articles and "help" Flo offer I'm guessing is the main reason for them having servers in the first place.
because lots of people dont know what HIPPA is, and (naively to us more familiar with tech) assume that a medical-related app on a curated app store would be safe for medical-related stuff.
Ironically, it's HIPAA.
You're right, though; it's much more limited than people think. During COVID people claimed everything violated HIPAA (masks, vaccine requirements, testing), but it only applies in a very narrow subset of patient/provider relationships.
"Does the HIPAA Privacy Rule permit doctors, nurses, and other health care providers to share patient health information for treatment purposes without the patient’s authorization? Answer: Yes. The Privacy Rule allows those doctors, nurses, hospitals, laboratory technicians, and other health care providers that are covered entities to use or disclose protected health information, such as X-rays, laboratory and pathology reports, diagnoses, and other medical information for treatment purposes without the patient’s authorization."
Source: https://www.hhs.gov/hipaa/for-professionals/faq/481/does-hip...
The situation with wellness apps is that they are a product that are designed specifically to exist outside of the regulatory regime that people associate with them.
If you put data onto a networked device it may be sent to some place else.
If you don't want your data being shared:
Use a device that does not have any networking capability (both hardware and software wise)
Use a pen and paper, you can shred and destroy as you see fit.
If you're using an application on a mobile device with mobile data/wifi, the chances are, your data is being uploaded.
Further, a view that ignores many real world digital data risks faced by those considered to be useful targets; eg: compromised supply chains delivering "pre hacked" hardware with discreet wifi chips or hidden out of band comms, etc.
Having said that, you're right to be suspicious of commercial services, even that you pay for. Someone can found a startup with a strong commitment to customer privacy and the best of intentions, but a few acquisitions or near bankruptcies later, those commitments will go out the window.
The small chance that they might go out of their way to not sell premium users data doesn't seem worth much.
| I don't actually see this as a problem
Okay, go on, perhaps you have an interesting point
| and instead it's a PSA everyone needs to internalize
If it's not a problem, it's not a PSA because nobody needs to know or care. If it's something worthy of a PSA, then it must stem from a problem.
And facebook doesn't care about people's rights when those people in power are able to block Facebook from acquiring some new startup they want to buy, so facebook is willing to share the information.
The people prosecuting women for abortions aren't looking for reasons not to arrest and prosecute them.
Who are these people doing this?
https://www.newsweek.com/texas-gop-meeting-death-penalty-wom...
https://www.theguardian.com/us-news/2025/sep/30/pregnancy-us...
https://www.pbs.org/newshour/show/after-overturn-of-roe-more...
"Abstract
When Dobbs v. Jackson Women’s Health first overturned long-standing precedent protecting a woman's fundamental right to abortion, pro-choice leaders issued warnings about the possibility of prosecuting women for abortions. These concerns were dismissed as hysterical or as political theatrics because, in the past, women were rarely prosecuted for their own abortions. This note analyzes the history of illegal abortion before the Supreme Court’s ruling in Roe v. Wade to demonstrate that women were targeted, used as leverage against abortion providers, and sometimes arrested for their roles in the procedure." https://scholarship.law.slu.edu/lj/vol69/iss4/11/
> Nationally, about 20% of pregnancies end in a loss, which includes miscarriage or spontaneous abortion, ectopic pregnancy, stillbirth or fetal death, according to federal data. Only a small number are investigated as crimes. But advocates say the growing number of laws in some states place people’s actions following pregnancy loss under greater scrutiny from law enforcement.
> Women in South Carolina, Georgia, Ohio, Arkansas, Texas, Mississippi, Oklahoma and several other states have faced criminal charges after a miscarriage or stillbirth for failing to seek immediate medical treatment, not pursuing prenatal care or disposing of the fetal remains in a way that law enforcement or prosecutors considered improper.
https://www.themarshallproject.org/2024/10/31/stillbirth-okl...
Many states prosecute black women who miscarry and one of their claims is that the woman took some (illegal - allegedly) drug that caused the miscarriage.
> In the year after the U.S. Supreme Court dismantled the constitutional right to abortion in June 2022, more than 200 pregnant women faced criminal charges for conduct associated with their pregnancy, pregnancy loss or birth, according to a new report.
https://missouriindependent.com/2024/10/01/200-women-faced-c...
mainly because I have no idea whether it's realistic to imagine what prosecutors do. I can also easily imagine it to be illegal and wildly unrealistic behaviour for a prosecutor, in my ignorance.
> Warrants related to people getting an abortion?
The question here isn't whether abortion is illegal in some states, but about period tracking data could be used as evidence, or justify an investigation - especially data that is seemingly illegally obtained. AFAIK, illegally obtained evidence is normally not valid grounds for investigation, and might actually weaken the case based on "fruit of the poisonous tree" doctrine.
It's not [1]. There's no safeguards on information available for purchase like this. The US has very little in the way of digital privacy laws.
> especially data that is seemingly illegally obtained.
That's the thing, it's not illegal to sell private data. It's not illegal for prosecutors and cops to buy private data.
It definitely feels like it should be, so I get why you'd think that. Feels aren't the legal code.
[1] https://www.npr.org/2026/03/25/nx-s1-5752369/ice-surveillanc...
It's not illegal to purchase bulk data without a warrant. [1]
It should be.
So yes, there is precedent of prosecutors buying bulk data and using it in prosecutions.
In fact, that's basically a huge part of the "value add" of palantir.
[1] https://www.npr.org/2026/03/25/nx-s1-5752369/ice-surveillanc...
And what will people in power do with this information?
It's actually quite difficult to investigate an abortion, though. Abortion isn't "real", in the sense that there's no obvious difference between a natural abortion (read: miscarriage) and a purposeful one.
The thing that means abortion abortion colloquially is the purposeful-ness of it. If you knowingly terminate a pregnancy, that's an abortion. If your body terminates its own pregnancy, for a variety of reasons because the human body is very complicated, that's not an abortion.
Generally trusting people with that nuance is, I think, asking for trouble.
[1] https://www.npr.org/2022/07/11/1107741175/texas-abortion-bou...
NO, that's why I asked. As per John Oliver's last week tonight, "Did you know there are countries that are not America?"
This whole data economy has significantly undermined privacy, including 4th amendment protections.