This paper is in the following e-collection/theme issue:

Mobile Health (mhealth) (2748) Ethics, Privacy, and Legal Issues (456) Personal Health Records, Patient-Accessible Electronic Health Records, Patient Portals (538) Adoption and Change Management of eHealth Systems (670) Security and Privacy of mHealth and uHealth (116) User Needs and Competencies (270)

Published on in Vol 26 (2024)

Preprints (earlier versions) of this paper are available at https://preprints.jmir.org/preprint/50715, first published .
Patients’ Perspectives on the Data Confidentiality, Privacy, and Security of mHealth Apps: Systematic Review

Patients’ Perspectives on the Data Confidentiality, Privacy, and Security of mHealth Apps: Systematic Review

Patients’ Perspectives on the Data Confidentiality, Privacy, and Security of mHealth Apps: Systematic Review

Authors of this article:

Nasser Alhammad1, 2 Author Orcid Image ;   Mohannad Alajlani1 Author Orcid Image ;   Alaa Abd-alrazaq3 Author Orcid Image ;   Gregory Epiphaniou1 Author Orcid Image ;   Theodoros Arvanitis4 Author Orcid Image
Article Authors Cited by Tweetations (9) Metrics

    Review

    1Institute of Digital Healthcare, WMG, University of Warwick, Coventry, United Kingdom

    2Health Informatics, Saudi Electronic University, Jeddah, Saudi Arabia

    3AI Center for Precision Health, Weill Cornell Medicine, Doha, Qatar

    4School of Engineering, University of Birmingham, Birmingham, United Kingdom

    Corresponding Author:

    Nasser Alhammad, MSc

    Institute of Digital Healthcare, WMG

    University of Warwick

    Millburn House

    Coventry, CV47AL

    United Kingdom

    Phone: 66 558885007

    Email: N.alhammad@seu.edu.sa


    Background: Mobile health (mHealth) apps have the potential to enhance health care service delivery. However, concerns regarding patients’ confidentiality, privacy, and security consistently affect the adoption of mHealth apps. Despite this, no review has comprehensively summarized the findings of studies on this subject matter.

    Objective: This systematic review aims to investigate patients’ perspectives and awareness of the confidentiality, privacy, and security of the data collected through mHealth apps.

    Methods: Using the PRISMA (Preferred Reporting Items for Systematic Reviews and Meta-Analyses) guidelines, a comprehensive literature search was conducted in 3 electronic databases: PubMed, Ovid, and ScienceDirect. All the retrieved articles were screened according to specific inclusion criteria to select relevant articles published between 2014 and 2022.

    Results: A total of 33 articles exploring mHealth patients’ perspectives and awareness of data privacy, security, and confidentiality issues and the associated factors were included in this systematic review. Thematic analyses of the retrieved data led to the synthesis of 4 themes: concerns about data privacy, confidentiality, and security; awareness; facilitators and enablers; and associated factors. Patients showed discordant and concordant perspectives regarding data privacy, security, and confidentiality, as well as suggesting approaches to improve the use of mHealth apps (facilitators), such as protection of personal data, ensuring that health status or medical conditions are not mentioned, brief training or education on data security, and assuring data confidentiality and privacy. Similarly, awareness of the subject matter differed across the studies, suggesting the need to improve patients’ awareness of data security and privacy. Older patients, those with a history of experiencing data breaches, and those belonging to the higher-income class were more likely to raise concerns about the data security and privacy of mHealth apps. These concerns were not frequent among patients with higher satisfaction levels and those who perceived the data type to be less sensitive.

    Conclusions: Patients expressed diverse views on mHealth apps’ privacy, security, and confidentiality, with some of the issues raised affecting technology use. These findings may assist mHealth app developers and other stakeholders in improving patients’ awareness and adjusting current privacy and security features in mHealth apps to enhance their adoption and use.

    Trial Registration: PROSPERO CRD42023456658; https://tinyurl.com/ytnjtmca

    J Med Internet Res 2024;26:e50715

    doi:10.2196/50715

    Keywords

    mobile health appsmHealth appsmobile healthprivacyconfidentialitysecurityawarenessperspectivesmobile phone 


    Background

    In recent years, the use of mobile health (mHealth) apps by both the public and health care professionals (HCPs) has significantly increased with the introduction of smartphones [1] and growing interest in the health care industry and research field [2]. The COVID-19 pandemic has further accelerated reliance on digital health [3]. mHealth apps are used by patients to manage diseases, self-monitor, gather health information, supervise behavior changes, manage fitness, and remind them of their medication and rehabilitation schedules [4]. From HCPs’ point of view, mHealth apps help manage health records, provide easy access to health records, and provide a path to conduct mobile consultations and remote monitoring during and after treatment [5]. In addition, mHealth apps provide easy access to HCPs by connecting them to clinical information system resources such as electronic health records [6]. Although mHealth apps could provide evidence-based and cost-effective health data and 2-way communication between patients and their HCPs in a remote setting, a few barriers have blocked the expansion of mHealth apps in the health care industry. Data confidentiality, privacy, and security and the regulatory supervision of the apps are some known barriers that hinder mHealth adoption in the health care field.

    Despite various benefits of mHealth apps, data confidentiality, privacy, and security issues have caused patients or the public to display less interest and low confidence in mHealth app practice [7]. It could be due to the uncertainty about the information gathered or kept in mHealth apps, the function of the stored data, and who can view or access the data [4]. The term “confidentiality” is defined as the responsibility of those who obtain data (app providers) to uphold the concerns of those to whom the information is related (consumers) [8]. The study by Bhuyan et al [9] mentioned that the National Committee on Vital and Health Statistics defined privacy as an individual legal right or freedom to protect or disclose their health information, and security is defined as personal, mechanical, or authority protection tools used to guard health information against unwanted people or access, whereas privacy is defined as the physical, mechanical, or legislative mechanism or tools to shield personal health information from unauthorized disclosure [10].

    Confidentiality, privacy, and security act as challenges in boosting mHealth app adoption. Patients’ perceptions of these issues may influence their adoption of mHealth apps, but such events are context dependent. While users are more likely to raise concerns about privacy or confidentiality issues when probed about mHealth apps, such perceptions may not ultimately influence their behavior regarding the actual use or adoption of such apps. Thus, it is pertinent to explore whether privacy concerns are prioritized by users when they engage with mHealth apps and whether such concerns affect their decision to use the apps or not.

    There are several reasons for data protection in mHealth apps, particularly to address the risk of any unauthorized to keyed-in information and stored data by hackers [9]. In addition, data management and storage, data privacy disclosure, data integration, data encryption, app operability, and authentication are established factors contributing to data breaches [9].

    Several studies have highlighted the connection between patients’ awareness and the risk of data breaches. End users have an obligation for the security and privacy of their data to be maintained [4]. As the main stakeholders of the health care system, patients have a contractual relationship with health care providers as the latter are expected to ensure the safety and confidentiality of patients’ health information. Health care app developers must protect sensitive patient data by complying with data privacy regulations such as the General Data Protection Regulation (GDPR) and HIPAA (Health Insurance Portability and Accountability Act). To ensure data privacy and security, mHealth apps are encouraged to incorporate data encryption, implement secure authentications, and perform regular risk assessments [10]. While HIPAA encompasses physical, administrative, and technical aspects to ensure the security of personal health information, the GDPR requires health centers or organizations to collect detailed consent from users before recording their personal data and giving them the right to access, amend, delete, or restrict the processing of their data. These privacy requirements for app security are known not only by mHealth app providers but also by patients and users [10,11]. This represents another dimension that may influence patients’ perspectives on and adoption of mHealth apps.

    Objectives

    Despite the pivotal role of patients’ views and awareness in the successful implementation of mHealth apps, as demonstrated in several studies, the findings are yet to be summarized to elucidate the barriers and facilitators, which may assist clinicians, HCPs, policy makers, and other stakeholders in their decision-making processes. A previous systematic review on the security and privacy of mHealth apps was conducted almost a decade ago and did not focus on any specific stakeholders [12]. Meanwhile, 2 other reviews related to this topic were a narrative and a scoping review [13,14], which are open to bias as the methods used in retrieving the reviewed articles were not succinctly described. This study aimed to fill the research gap by conducting a systematic review to elucidate patients’ perspectives and awareness of the privacy, security, and confidentiality of mHealth apps, as well as the associated factors.


    This study was conducted using the PRISMA (Preferred Reporting Items for Systematic Reviews and Meta-Analyses) guidelines [15]. This systematic review was retrospectively registered in PROSPERO (CRD42023456658).

    Search Strategy

    The systematic article search was conducted using 3 electronic databases: PubMed, PsycNet, and ScienceDirect. PsycNet was accessed via Ovid as a search interface. These databases were selected given their suitability and specificity for research in health and medical sciences, thus increasing the chances of retrieving articles relevant to the research topic. The first author of this systematic review performed the literature search from February 2022 to April 2022. Articles published between 2014 and 2022 and written in English were considered in the literature search. We focused on studies published from 2014 to 2022 given the growing interest in the use of mHealth apps in the last decade [2].

    Aligning with the objectives of this review, the search terms were broadly categorized into 3 components or groups of keywords. Alternative keywords were permitted for each component as denoted using the Boolean operator “OR.” The separator “AND” was then used to combine each component with other wordings. The search query for each of the databases is presented in Table 1.

    Table 1. The search terms used and the total number of publications retrieved from each database.
    DatabaseSearch string and search termsInitial search results (number of articles)Date of retrieval
    ScopusMain search terms using document title and abstract: (“Mobile health” OR mhealth OR “mobile phone*” OR “Smart phone*” OR Smartphone* OR tablet*) AND (“Perspective OR opinion* OR attitude* OR perception* OR awareness”) AND (Privacy OR confidential* OR security)1277February 20, 2023
    ScienceDirect(“Mobile health” OR mhealth OR “mobile phone”) AND (“Perspective OR opinion OR awareness”) AND (Privacy OR confidential OR security)7156March 21, 2023
    APA PsycNet“Mobile health” OR mhealth OR “mobile phone*” OR “Smart phone*” OR Smartphone* OR tablet* AND “Perspective OR opinion* OR attitude* OR perception* OR awareness AND Privacy OR confidential* OR security”441April 19, 2023

    Study Eligibility Criteria

    The inclusion and exclusion criteria of the review are presented in Table 2. The first inclusion criterion was the document type, whereby only published original articles were considered. Other document types, such as review articles, chapters in books, books, and conference proceedings, were all excluded. The next inclusion criterion was the publication year, whereby only articles published from 2014 to 2022 were selected. The inclusion or exclusion of retrieved articles was based on agreement among the authors. Issues arising during the process were resolved through consensus.

    Table 2. Inclusion and exclusion criteria.
    Consideration factorInclusion criteriaExclusion criteria
    Study designEmpirical studies involving qualitative, quantitative, or mixed methodsReviews (systematic, scoping, narrative, and rapid reviews and meta-analyses)
    Publication typePeer-reviewed journal articlesEditorial letters, protocols, expert opinions, policy briefs, theses or dissertations, and conference papers
    mHealtha appsStudies involving mHealth apps regardless of their aim, target disease, and system type (eg, iOS or Android)Studies involving apps that are not linked to CISsb
    Study participantsStudies involving patients with or without HCPsc, such as physicians, nurses, pharmacists, and care teams, regardless of demographic characteristics (ie, age, gender, and ethnicity)Studies solely involving app developers, HCPs, and telehealth providers
    OutcomesExperience, perceptions, awareness, and knowledge of patients after practical use of mHealth appsDescription of the impact of mHealth apps on the patient-HCP relationship
    LanguageEnglishOther languages
    Year2014 onwardBefore 2014

    amHealth: mobile health.

    bCIS: clinical information system.

    cHCP: health care professional.

    Study Selection

    In total, 2 researchers performed the study selection independently. Articles retrieved from the primary literature search from each database were sent to the researchers’ email repositories and stored for future reference. The screening process was carried out using the filter feature available in all 3 databases. The initial search results were checked for duplicates, which were then identified and removed accordingly. The last screening stage was full-text reading.

    Data Extraction

    The final articles included in this study were assessed, reviewed, and examined upon completing the eligibility process. An Excel (Microsoft Corp) spreadsheet form was created to use in data extraction. The data extracted from the studies were as follows: first author; year of publication; study location; study design; types and purposes of mHealth apps; issues related to the privacy, security, and confidentiality of mHealth apps; and the main findings. Data extraction was performed by the first author, and thus, the intercoder agreement was not assessed.

    Quality Appraisal

    Quality appraisal was not performed in the review due to the heterogeneity of the research objectives, designs, and methodology used in the included studies [16].

    Data Synthesis

    A narrative synthesis was considered in this review due to the heterogeneity of the designs used in the studies. Specifically, thematic analysis was conducted to summarize the findings of the included studies. The data extracted were analyzed thematically. All the authors participated in the discussion to determine the themes that would be synthesized from the analysis. The themes decided on were (1) barriers to and facilitators of using mHealth apps and (2) recommendations to increase the use of mHealth apps by addressing privacy, security, and confidentiality issues. Any further analysis and reassessment of the themes and subthemes was conducted continuously.


    Search Outcomes

    A total of 1696 articles were retrieved from the initial searches on PubMed (n=659, 38.86%), ScienceDirect (n=172, 10.14%), and Ovid (n=865, 51%). Of the 1696 search results, 425 (25.06%) were removed from the list as duplicates (Figure 1), whereas 1121 (66.1%) were considered ineligible upon screening the titles and abstracts. The 150 remaining articles were then subjected to a full-text review, which led to the final selection of 33 (22%) articles for the systematic review based on the inclusion and exclusion criteria (Figure 1).

    Figure 1. PRISMA (Preferred Reporting Items for Systematic Reviews and Meta-Analyses) flow diagram of the study selection process.

    Characteristics of the Studies

    As shown in Table 3, the highest number of studies was published in 2021 (9/33, 27%) and 2019 (7/33, 21%). The included studies were quantitative (13/33, 39%), qualitative (11/33, 33%), and mixed methods (9/33, 27%). In terms of study location, most of the studies were conducted in countries with countries with sufficient resources (26/33, 79%) compared to those undertaken in resource-limited countries (7/33, 21%). While 9% (3/33) of the articles emphasized the general use of mHealth apps for routine health records, 36% (12/33) of the articles focused on specific mHealth apps for collecting patients’ health data and management of various medical conditions, such as chronic obstructive pulmonary disease [17], cancer [18-21], and diabetes [22], and pregnancy care [23,24] (Table 4).

    Table 3. Descriptive information of the articles (N=33).
    VariablesStudies, n (%)
    Year of publication

    		20142 (6)

    		20152 (6)

    		20162 (6)

    		20172 (6)

    		20184 (12)

    		20197 (21)

    		20204 (12)

    		20219 (27)

    		20221 (3)
    Study design

    		Qualitative13 (39)

    		Quantitative11 (33)

    		Mixed methods9 (27)
    Study location

    		High-income countries26 (79)

    		Middle-high–income countries7 (21)

    		Low-income countries0 (0)
    Purpose of mHealtha apps

    		Routine electronic health records3 (9)

    		Specific apps for patient management12 (36)

    		Unspecific18 (55)

    amHealth: mobile health.

    Table 4. Details of author name, publication year, type of intervention, study design, setting, instruments, and findings of the 33 reviewed articles.
    StudyType of interventionStudy designStudy locationData collection methodMain findingsThemes identified
    Wyatt et al [25]PhotoExam apps (EHRsa)QuantitativeUnited StatesApp use and survey(1) Only 3% (2/71) of patients expressed privacy or confidentiality concerns related to the photos taken; (2) 26% (18/70) of patients mentioned that the security features of the apps were explained by the HCPsb; and (3) 16% (11/70) indicated that the security features were not explained, and most of them (41/70, 59%) did not remember and were unsure of whether the security features were explainedConcerns about privacy; concerns about confidentiality
    Zhou et al [4]mHealthc appsMixed methodsUnited StatesQuestionnaire and qualitative analysis (semistructured interview and psychometric analysis)(1) Participants had some level of concern about the privacy of their personal data and wanted to have some specific protections; (2) Participants believed that a level of privacy protection is currently available in mHealth apps; (3) Participants desired to have informed consent, access control, a privacy policy, and remote wiping features in mHealth apps; (4) two-thirds of the users (66.7%) stated that the cost and lack of security features of mHealth apps were the main barriers to adopting the technology.Concerns about data privacy; concerns about data security
    Natsiavas et al [26]eHealth dataQuantitative14 European countriesQuestionnaire(1) 11.96% did not think about possible health data risks, and 36.41% felt informed about these risks; (2) 66.21% of the respondents did not read the “Terms and Conditions,” with >30% declaring that they did not feel that it was worth it given the time required to read them and 19.79% declaring indifference toward them; (3) 26.09% of the respondents felt confident regarding their eHealth data privacy, 38.04% felt concerned but helpless, and 16.3% stated that they avoided using eHealth services due to the lack of confidence regarding their data handling; (4) 20% of the respondents felt that their privacy was fully covered in the “Terms and Conditions” of the apps, and 12.5% declared that they did not understand them; (5) 72.46% of respondents were willing to share their personal data for research purposes, at least under anonymizationAwareness of data privacy and confidentiality; concerns about data privacy
    Alaiad et al [27]mHealth modelQuantitativeJordanQuestionnaire(1) Security and privacy risks have a direct negative effect on the patients’ intention to use mHealth; (2) mHealth patients in lower-income countries are often using mHealth services at their own risk, which makes them prone to data breaches and misuse by unknown partiesData security; data privacy
    Özkan et al [28]EHRsQuantitativeTurkeySurvey(1) Most of the participants (60.9%) stated that they did not know who had the right to access their medical records, and 7.4% believed to have comprehensive knowledge on the topic; (2) the medical records of 9.7% of the respondents had been used or released without their consent; (3) 15.1% stated that they avoided being tested due to violation risks, and 3.5% asked their physicians to enter a less embarrassing health status in their records; (4) most participants (94%) responded that they should have full access to their medical data, whereas 50% of respondents wanted other parties (children, parents, physicians, spouses, and other hospital staff) to have limited access rightsAwareness of data confidentiality and privacy; data confidentiality; data privacy
    Glauser et al [29]NeuroPath (mHealth app)QualitativeUnited StatesApp use and telephone interview14 (63.6%) respondents stated that they waited before trying new technology, and 6 (27.3%) of these respondents were concerned about data security when asked about their readiness to adopt new technologies.Concerns about data security
    Zhou et al [30]SecSim (security simulator)Mixed methods, quasi-experimental study and interview sessionUnited StatesApp use, IBM PSSUQd, and open-ended interview questions(1) The comparison between the pre– and post–security education selection regarding security settings indicated that 21% (14/66) to 32% (21/66) of participants chose a stronger security measure in text encryption, access control, and image encryption; 0% (0/66) to 2% (1/66) of participants chose a weaker measure in these 3 security features; and the remainder kept their original selections; (2) a significant percentage of patients (21%-32%) needed guidance to make an informed selection regarding security settingsConcerns about data security
    Barutçu et al [31]e-Pulse (mHealth app)QuantitativeTurkeySurvey(1) Participants considered mHealth apps as less credible in protecting their personal information; (2) positive relationships were found between user satisfaction level with mHealth apps and ease of use, trust, privacy, usefulness, and information quality of mHealth apps; (3) mHealth apps’ user satisfaction was negatively influenced by the privacy of mHealth apps; (4) perceived ease of use, trust, privacy, perceived usefulness, and information quality were the major factors influencing satisfaction with and intention to adopt mHealth appsConcerns about data privacy; associated factors: satisfaction with mHealth apps
    Bauer et al [32]mHealth platform supporting collaborative careMixed methodsUnited StatesApp use, surveys, and interviews(1) Patients felt that the data they submitted were not entirely secure, but they did not believe that the information reported in the apps was highly personal, and therefore, the potential for a data breach was not a major concern; (2) some patients wished to have a better understanding of who else had access to their health information and the ability to control such access (based on qualitative findings)Data security; awareness of data security and privacy
    Goetz et al [33]PRELAX (eHealth application)Mixed methodsGermanyApplication use, self-administered questionnaire, and semistructured interviews(1) Hospitalized women (6/30, 20%) were worried about unauthorized third-party access to their stored medical data; (2) several women (8/30, 27%) expressed concerns about data security, especially in the field of mobile apps as many free apps make private data easily accessible; (3) data security and personal data storage in pregnancy apps were general causes for concernData confidentiality; data privacy
    Richardson and Ancker [34]herQuantitativeUnited StatesSurvey(1) Approximately three-quarters of individuals believed that storing medical information on a phone would threaten privacy and security (74% in 2013 and 75% in 2014); (2) approximately two-thirds thought that sharing data between a mobile device and a physicianherEHR would threaten privacy and security (69% in 2013 and 67% in 2014); (3) participants expressed greater concern about worsened privacy and security with storing data on mobile phones and mobile herne–EHR communication (74% in 2013 and 69% in 2014) than with the health information exchange between EHRs and physicians (41% in 2013 and 47% in 2014)Data privacy; data security
    Sanger et al [35]Postacute care appsQualitativeUnited StatesSemistructured interviewsParticipants were most concerned about the collection and transmission of particularly sensitive information, such as photos of the groin areaData privacy; data security
    Dang et al [36]Not specificQuantitative surveyChinaSurveyPrivacy concerns among patients were positively enhanced by perceived health information sensitivity (β path coefficient=0.505; P<.001). Patients’ health information disclosure intention decreased significantly with higher concern levels (β path coefficient=–0.338; P<.001). The relationship between perceived health information sensitivity and privacy concerns was negatively moderated (β path coefficient=–0.17; P=.09) by the informational support dimension. A similar moderating effect was observed in the association between privacy concerns and health information disclosure intention (β path coefficient=–0.11; P=.09).Data privacy; data security; associated factors: health information disclosure
    Alwashmi et al [17]Not specificMixed methodsCanadaIn-depth interviews and survey instrumentThe barriers to adoption were technical issues, lack of awareness, potentially limited uptake from older adults, and privacy and confidentiality issues.Awareness of data privacy and confidentiality; associated factors: demographic factors; data privacy issues and confidentiality issues; facilitators and enablers
    Biswas et al [37]ACCU3RATE (a specific AIe-enabled mHealth app rating scale)QuantitativeMultinational studySurvey instrumentPatients provided positive feedback regarding the apps’ features for accessibility, protection, and privacy of patient data.Data privacy
    Casilang et al [38]mHealth for the development of an exclusive breastfeeding toolQualitativeDominican RepublicFocus group discussionBarriers to mHealth use included the cost of internet service, privacy concerns, and perceived credibility of information sourcesFacilitators and enablers; data privacy
    Zhang et al [39]UnspecificQuantitativeUnited StatesWeb-based surveyData type (P=.003), data stage (P<.001), privacy victimization experience (P=.01), and privacy awareness (P=.08) showed positive effects on patients’ privacy concerns. Higher privacy concerns were reported for social interaction data (P=.007) and self-reported data (P=.001) than for biometric data. Privacy concerns were also higher for data transmission (P=.01) and data sharing (P<.001) than for data collection. Privacy concerns affected the attitude toward privacy protection (P=.001), thereby affecting continuous use intention.Privacy concerns; associated factors: data type and stage and victimization experience
    Harris et al [40]Mobile phone health appsMixed methodsPakistan, Tanzania, Kenya, Nigeria, and BangladeshScoping study and analysis of survey dataStakeholder willingness was high provided challenges regarding technology, infrastructure, data security, confidentiality, acceptability, and health system integration were addressed. Mobile consultations can reduce affordability barriers and facilitate care-seeking practices.Data security; data confidentiality
    Moodley et al [18]Mobile phone health appsMixed methodsSouth AfricaSurvey and focus group discussionUsers were interested in the use of mobile phone apps for health intervention in receiving Papanicolau smear results and appointment reminders. However, concerns were raised regarding the confidentiality of SMS text messages, loss or theft of mobile phones, receiving negative results, and the accessibility or clarity of the language used to convey the messages.Data confidentiality
    Li et al [24]mHealth technology for monitoring pregnancy careQualitativeAustraliaIn-depth interviewsThe clinical and technical challenges regarding the introduction of mHealth for pregnancy care were also identified, whereas usability and data privacy were among the main concerns of the participants.Data privacy; facilitators and enablers
    Gill et al [21]mHealth technology to support postabortion careMixed methodsUnited StatesSurvey and semistructured interviewsQualitative analysis revealed that participants preferred a comprehensive website with secured email or SMS text message notifications to provide tools and resources for emotional well-being, contraceptive decision-making, general sexual health, and postprocedural care.Data security; facilitators and enablers
    Bradbury et al [19]Remote real-time videoconferencing for patients with cancerQuantitative and experimentalUnited StatesExperimental designMost patients reported that their privacy was respected after the first (56/57, 98%) and second sessions (40/41, 98%), respectively. Meanwhile, some patients reported concerns that RVCf might increase the risk of a confidentiality breach of their health information—after V1: 14/57 (25%); after V2: 12/41 (29%).Data confidentiality
    Al-Anezi [41]UnspecificQuantitativeSaudi ArabiaSurveyFear of privacy violations, fear of loss of personal data and information, and lack of technical support were highlighted as the main reasons for the lack of motivation to adopt the mHealth systemPrivacy issues
    Ermakova et al [42]Health cloudsQuantitativeGermanySurveyConfidentiality assurance was vital in influencing individuals’ acceptance of health clouds for sensitive medical data, but such an effect was lacking for nonsensitive medical data.Data confidentiality
    Rodrigues et al [43]UnspecificQualitativeSouth IndiaIn-depth interviewsParticipants perceived the risk of unintentional disclosure of their HIV status and the stigma thereof via the intervention and took initiatives to mitigate this risk.Data confidentiality
    de Vries et al [22]UnspecificQualitativeThe NetherlandsFocus group discussions and interviewsThe use of mobile apps for reporting ADRsg was influenced by source of information, app’s security, type of feedback, storage pattern of ADR reports, ease of use, and the type of language.Data security; facilitators and enablers
    Al-Mahrouqi et al [44]UnspecificQualitativeOmanSemistructured qualitative interviewsAlthough clients acknowledged the positive impact of telehealth in improving mental health care services in Oman, primary concerns were related to privacy, the security of telehealth systems, lack of public tele–mental health services, lack of specified tele–mental health guidelines, shortage of trained therapists, and limited access to high-speed internet and electronic devices.Concerns about data privacy; concerns about data security
    Turcotte et al [45]Teleconsultation (AYPh)QualitativeCanadaSemistructured interviewsAlthough both users and nonusers showed positive experiences and perspectives on the AYP platform were mostly positive, concerns were raised regarding patients’ safety.Data security issues
    Hackett et al [23]Mobile phone appsQualitativeTanzaniaSemistructured interviews(1) Perceptions of personal privacy and confidentiality were negatively and positively impacted by the use of new technologies to capture health service user data during pregnancy and childbirth; (2) women’s concerns regarding privacy aligned closely with a belief that pregnancies and expected delivery dates must be kept secret, reflecting fears that pregnancy renders women vulnerable to witchcraft by jealous neighbors; (3) they were also concerned that health workers’ male partners could access their private information.Concerns about data privacy; concerns about data confidentiality; facilitators and enablers
    Morton et al [46]Mobile phone appsMixed methodsMany countriesSurvey and in-depth interviewsConcerns regarding data security were prevalent. Data security, content quality or accuracy, ease of use, and cost were among the prioritized mHealth features. The ability to share data with others was described as vital by less than half of the respondents.Concerns about data security
    Cavazos-Rehg et al [47]mHealth mental health interventionQuantitativeUnited StatesSurveyThe main reasons provided for unwillingness to obtain parental consent to participate in the intervention included the importance of preserving privacy and the feeling that parents lack awareness or understanding of mental health issues.Privacy concerns; awareness of data privacy
    Sangers et al [20]mHealth apps for skincare screeningQualitativeThe NetherlandsSemistructured interviewsThe main barriers to using mHealth apps included privacy concerns, perceived lack of value, perception of untrustworthiness, preference for a physician, a complex user interface, and high costs.Privacy concerns; facilitators and enablers
    Hattingh et al [48]mHealth in pharmacy settingsQualitativeAustraliaIn-depth interviews and focus group discussionConsumers indicated a desire to receive information in a way that respects their privacy and confidentiality in an appropriate space. Important areas were identified that require improved protection of privacy and confidentiality during pharmacy interactions.Privacy, security, and confidentiality issues

    aEHR: electronic health record.

    bHCP: health care professional.

    cmHealth: mobile health.

    dPSSUQ: Post-Study System Usability Questionnaire.

    eAI: artificial intelligence.

    fRVC: remote videoconferencing.

    gADR: adverse drug reaction.

    hAYP: Ask Your Pharmacy.

    mHealth Apps for Specific Interventions

    A total of 36% (12/33) of the studies included in this review reported the use of mHealth apps for patient health data collection and management of specific health conditions. In total, 9% (3/33) of the studies entailed the use of specific mHealth apps for assessing patient treatment progress [25,29,35]. PhotoExam apps [25] entailed the collection of patients’ photos, which were then assessed for patient response to the treatment provided. Glauser et al [29] developed an app named “NeuroPath” with the support of Apple, the Institutional Department of Neurosurgery, and the Department of Information Technology. The areas targeted by the app included patient surgical preparation, prevention of perioperative risk, wound care, activity monitoring, and opioid use management. Meanwhile, Sanger et al [35] focused on mHealth apps for postacute care.

    Regarding specific medical conditions, 9% (3/33) of the studies focused on mHealth apps for pregnancy management, such as a patient engagement pregnancy app (PRELAX) [33], pregnancy care [24], and support for postabortion care [14]. Other studies involved mHealth apps for real-time videoconferencing for patients with cancer [19], mental health interventions [47], support for collaborative care [32], and teleconsultation for pharmaceutical services [43].

    Finally, 6% (2/33) of the studies emphasized the security of mHealth apps without focusing on medical conditions or groups of patients. Zhou et al [30] developed a security simulator named SecSim to reveal the consequences of selecting different security options available in the security settings of mHealth apps. Meanwhile, Biswas et al [37] used a specific artificial intelligence–enabled mHealth app rating scale, ACCU3RATE, to obtain users’ feedback on the security features. The influence of these interventions on patient perception on the security, confidentiality, and privacy of data collected via mHealth apps is presented in the thematic analysis.

    Results of the Thematic Analysis

    The thematic analysis generated four broad themes from the findings of the studies: (1) privacy, confidentiality, and security; (2) awareness of privacy, security, and confidentiality; (3) facilitators and enablers; and (4) associated factors. The following subsections present more detailed information about the synthesized themes.

    Theme 1: Privacy, Confidentiality, and Security

    As expected, all the included studies (33/33, 100%) investigated privacy, confidentiality, and security issues related to patients’ use of mHealth. Different levels of privacy and confidentiality concerns were reflected in the studies. In 15% (5/33) of the studies, less than half of the patients expressed concerns about the privacy or confidentiality of the various data required by mHealth apps [19,25,26,28,33]. Meanwhile, in 6% (2/33) of the studies, >50% of the respondents raised diverse issues regarding the privacy and confidentiality of their data [4,34]. In terms of data security, 9% (3/33) of the studies, which used a quantitative design, revealed that a higher proportion of patients (>50%) acknowledged issues related to data security [29,30,34].

    This theme was also depicted in several qualitative and mixed methods studies [4,20,22-24,37,39,40,45,48]. For instance, patients opined that the privacy protection level in mHealth apps needed to be improved [4,29,38]. Meanwhile, patients felt that their data were not completely secure and were concerned about data breaches [21,32]. In 9% (3/33) of the studies, issues related to privacy, confidentiality, and security were identified as barriers to mHealth use [24,38,40]. Meanwhile, Biswas et al [37] found that respondents were satisfied with the apps’ features for the protection and privacy of patient data.

    Theme 2: Awareness of Privacy, Security, and Confidentiality

    Patients’ awareness of mHealth apps’ privacy, security, and confidentiality was highlighted in 12% (4/33) of the studies [4,25,26,28]. Nevertheless, the awareness level differed across the studies.

    Natsiavas et al [26] found that 12% of patients in their study were unaware of the possibility of health data risks, whereas a higher percentage of participants (61%) in the study by Özkan et al [28] did not know who had the right to access their medical records. Thematic analysis of the data gathered by Bauer et al [32] revealed that patients opted for a better understanding of other parties who have access to their health information and their capacity to regulate such access. Meanwhile, Alwashmi et al [17] and Zhang et al [39] identified awareness of privacy and confidentiality issues as barriers to adopting mHealth apps and raised concerns about data privacy, respectively.

    Theme 3: Facilitators and Enablers

    The third theme synthesized in this systematic literature review is the facilitators of increased use or adoption of mHealth apps among patients based on the perceived benefits of mHealth apps and recommendations to address data privacy, security, and confidentiality issues. In total, 18% (6/33) of the studies reported the perceived benefits of mHealth apps that may reduce patients’ concerns about issues related to data privacy and security, thus improving the adoption rate of such apps [17,21-24,30]. Some of the benefits highlighted by patients included improved health status by reducing the rate of hospitalization [17], increased trust, better patient-HCP relationships [22,23], and exchange of information in real time [21]. Overall, patients viewed mHealth apps installed on smartphones as an added value, which assisted in improving the confidentiality of their data, their trust, and their relationship with health care personnel.

    As for recommendations and facilitating conditions to address data privacy, security, and confidentiality issues related to mHealth, the consistent points raised in the studies were the protection of personal data, ensuring that health status or medical conditions are not mentioned, brief training or education on data security, and assuring data confidentiality and privacy [21,24,30]. Gill et al [21] found that participants prioritized privacy and confidentiality by preferring discrete mHealth designs that did not mention the specific medical condition that prompted them to visit the clinic.

    Theme 4: Associated Factors

    The last theme gleaned from this review was the factors associated with patients’ concerns regarding issues related to data confidentiality, privacy, and security when using mHealth apps. This theme was synthesized from the findings reported in 15% (5/33) of the articles [4,31,36,39,42], which comprised patients’ sociodemographic factors, satisfaction with mHealth, data type and stage, and experience with mHealth apps.

    In terms of sociodemographic factors, Zhou et al [4] found that married patients showed higher information security and privacy concerns and desired more stringent security protection compared to single patients. The weakest concerns about privacy and security were exhibited by users with <US $10,000 in annual income compared to patients who earned >US $75,000 annually. Similarly, patients in the older age group (51-65 years) reflected a higher level of concern about privacy in mHealth apps relative to the younger age group (18-28 years). In terms of experience, participants who had previously used mHealth apps had greater concerns about data security and privacy despite still being interested in continuing to use the technology.

    Only 3% (1/33) of the studies reported the association between satisfaction levels with mHealth apps and privacy concerns [31]. Specifically, a positive relationship was observed between user satisfaction levels with mHealth apps and privacy concerns. Meanwhile, Dang et al [36] found that a higher perceived health information sensitivity heightened the privacy concerns (β path coefficient=0.505; P<.001) raised by patients regarding mHealth apps. The provision of informational support moderated the association between privacy concerns and health information sensitivity.

    Zhang et al [39] revealed the diverse levels of privacy concerns depending on data type, data stage, and privacy victimization experience. For instance, privacy concerns were higher for patients’ social interaction, self-reported, and biometric data. Users were less concerned about privacy issues during data collection compared to the data transmission and sharing stages. These events had negative impacts on the continuous intention to use mHealth apps [39]. Ermakova et al [42] also found that patients’ acceptance of health clouds for nonsensitive medical data was not significantly affected by confidentiality assurance; however, this relationship was significant for sensitive medical data.


    Principal Findings

    This systematic review evaluated patients’ perspectives and understanding of the data confidentiality, privacy, and security of mHealth apps connected to clinical information systems. A total of 33 relevant articles were extracted and included in this systematic review using the PRISMA guidelines. Descriptive analyses revealed that most of the studies (26/33, 79%) were conducted in high-income countries compared to those undertaken in middle- to low-income countries (7/33, 21%). These findings reflect the disparity in the implementation and adoption of mHealth apps in line with different countries’ economic status and infrastructural capacity. This is evident in the use of mHealth apps for the management of specific medical conditions in the United States, the United Kingdom, Australia, and Turkey, whereas the few studies conducted in lower-income countries focused mainly on either the feasibility or introductory stages of general mHealth apps. Notwithstanding the patients’ socioeconomic status, data privacy, confidentiality, and security issues were highlighted in most studies.

    The extensive research on mHealth apps was also reflected in the diverse medical conditions in which the technology was explored, such as chronic obstructive pulmonary disease [17], cancer [19,20], postabortion care [21], diabetes [22], and pregnancy care [24]. Descriptive analyses also revealed the use of various research methods (qualitative, quantitative, and mixed methods) in the reviewed articles, which is not surprising given that the research topic can be explored via interviews, focus group discussions, and surveys.

    Thematic analyses of the qualitative studies revealed 4 main themes, comprising primary concerns about privacy, confidentiality, and security of data; awareness of privacy, security, and confidentiality issues; facilitators and enablers; and associated factors. Regarding the first theme, patients were concerned about data security and privacy, particularly in terms of the collection and transmission of sensitive information such as identity-revealing data and images of body parts [22,33,35]. Some hospitalized patients were even more concerned about unauthorized third-party access to their medical data given that mHealth apps are mostly free and easily accessible [17,33]. In contrast, some patients were indifferent to these issues in the same studies as they were willing to use mHealth apps and share their health data with HCPs. These diverse views could be linked to patients’ consideration of the benefits and risks associated with using mHealth apps for routine health records or managing their health conditions.

    We observed concordant perspectives on the research topic as patients and end users consistently raised concerns about data privacy, security, and confidentiality issues that prevented them from using mHealth apps [18,20,35]. This result aligns with those of a previous review by Nurgalieva et al [13] in which low levels of security and privacy were reported as the main reason for low use among patients and end users. Serious issues may arise from mHealth apps with low levels of security or privacy, and such events may have severe consequences for users and organizations.

    Given the extensive privacy and security issues raised in the reviewed studies, the findings suggest the need for mHealth environments to improve the security of these apps by exploring advances in cyberspace security [4]. Similarly, the reviews both by Martínez-Pérez et al [14] and Nurgalieva et al [13] highlighted security incidents, including vulnerabilities discovered in widely used mHealth apps and malware attacks. The concerns raised by patients are plausible as the proliferation of mobile devices with location sensors has facilitated access to location-based services [14]. These advanced devices transmit the user’s location information to third-party location servers, which are accessible by other service providers. Users aware of this potential data breach may feel that they are continuously tracked. In this review, some patients seemed to be aware of the risk of third-party and unauthorized access to their medical data [4,25].

    For the second theme, both qualitative and empirical findings reflected that patients’ awareness of the privacy and security issues of mHealth apps differed across the studies. For example, more than two-thirds of participants expressed their concerns about personal data security and privacy and requested user authentication and data encryption to protect user data [4,34], and <12% were unaware of the risk of health data breaches [19,31]. Meanwhile, more than half of the respondents in the studies conducted by Özkan et al [28] and Wyatt et al [25] were unsure about the privacy and security information on their mHealth apps. Thus, the different awareness levels among patients may influence their diverse perspectives on the privacy and security of mHealth apps.

    The third theme emerging from the thematic analyses entailed the facilitators for increased use or adoption of mHealth apps based on patients’ perceived benefits of mHealth apps and suggestions to address data privacy, security, and confidentiality issues. Resultantly, improved health status [17], better patient-HCP relationships [22,23], and trust were the main benefits mentioned by patients. On the other hand, personal data protection, ensuring that health status or medical conditions are not mentioned, brief training or education on data security, and assuring data confidentiality and privacy were the consistent recommendations provided by patients [21,24,30]. These findings coincide with the suggestion by Perera [49] regarding the use of an alphanumeric passcode to ensure the protection of mHealth apps rather than using a 4-digit personal identification number, as well as wiping data from the mobile device after a specific number of failed passcode attempts [49,50]. In their review, Nurgalieva et al [13] also emphasized the frequency of notifications and alerts programmed into mHealth apps. Accordingly, discreet or private notifications were advised to prevent any distress to users, particularly in situations in which someone else could accidentally view the app icon. Overall, these recommendations reflect the need for users to have complete control in using their mobile devices for mHealth and avoid any intrusion in their daily life. Training and education as recommended by patients in this review corroborate the report by Lewis and Wyatt [50] as reviewed by Nurgalieva et al [13]. The latter authors suggested that the risk factors for violation of users’ privacy and security in mHealth apps can be categorized into external and internal risks. Appropriate regulation can be used to effectively minimize the internal risk factors, whereas proper education and training are pertinent to eliminate the external risk factors.

    Concerning the fourth theme, information on the factors influencing patients’ views regarding data privacy and confidentiality was obtained from a few of the studies included in this systematic review (5/33, 15%). Examples included sociodemographic characteristics such as age, income level, marital status, previous experience with mHealth apps [30], patients’ satisfaction levels [31], perceived health information sensitivity [36,42], data type, data stage, and privacy victimization experience [39,42]. These findings are consistent with the results of several previous studies [51] and the contextual nature of the theory of privacy [52]. More importantly, certain adjustments to the security and privacy features of mHealth apps need to be incorporated by the app developers upon considering patients’ and users’ demographics. However, given the low number of studies reporting the underlying factors influencing patients’ views on data privacy, confidentiality, and security issues in mHealth apps, more research is needed to elucidate the relationships.

    Implications of the Findings

    The findings of this study have pertinent implications for mHealth app developers, HCPs, and policy makers. Both HCPs and mHealth app developers have a vital role to play in addressing the diverse views exhibited by patients and end users on data privacy, confidentiality, and security issues in mHealth apps.

    While mHealth app developers are primarily responsible for designing security measures and features to ensure their apps’ data privacy and confidentiality, from the perspective of health care provider and patient relationships, the former play a pivotal role in educating patients or end users regarding such measures. This could be discussed during routine consultations, as well as reiterating the need for collecting sensitive data and what they are going to be used for. Regarding unauthorized third-party access and potential data breaches, users may benefit from information on the privacy requirements and meeting of the standards set by the GDPR and HIPAA, which are designed to ensure that such privacy issues and data breaches are prevented.

    Apart from informing patients and end users on the type of data to be collected and the intended use, the aspect of training and educating end users on the available features and measures to ensure data privacy and security cannot be overemphasized. Meanwhile, stakeholders need to gauge the users’ level of awareness and knowledge of these issues as well as the underlying reasons for the diverse views on these issues to tailor educational interventions accordingly. As gleaned from the studies included in this review, users’ lower concern about their data privacy may stem from being completely ignorant, or they may perceive that the benefits of using mHealth outweigh the potential risks.

    This study also has important implications for mHealth app developers given the fact that patients and end users have raised concerns about data privacy, security, and confidentiality issues that end up affecting their use of such apps [18,32]. Nevertheless, accumulated findings reflect that patients’ perceptions on privacy issues and the latter’s influence on patients’ adoption of mHealth apps are context dependent [39,43]. As most of the reviewed studies involved surveys, it is expected that users will raise concerns on privacy or confidentiality issues related to mHealth apps, but further inquiries are required to elucidate whether such concerns influence their behavior and actual use of such apps. These events need to be succinctly explored in future studies, and stakeholders need to understand this gray area to effectively address the issues. In addition, mHealth app developers may evaluate the issues raised by users and strategize on how to improve their current security and privacy measures, particularly ensuring that they meet the requirements of the HIPAA and GDPR. Furthermore, the appropriate actions to be taken by end users in different circumstances should be clarified in the developed security policy and guidelines. In summary, providing suitable awareness in the security guidelines and policies for end users is as pertinent as developing secure mHealth apps.

    For policy makers and researchers, this study highlights the aspects prioritized by patients regarding the adoption of and desired outcomes of implementing mHealth apps, as well as addressing issues related to data privacy and security. Accordingly, better patient-HCP relationships, trust, personal data protection, ensuring that health status or medical conditions are not mentioned, and brief training or education on data security were the consistent recommendations provided by patients [19,23,24]. While most of the aforementioned points can be conveyed to users, trust is a feature that has to be earned, which has to be driven by health care providers and the government. These stakeholders also have to mitigate apprehensions related to patients’ privacy concerns to ensure enhanced trust between patients and service providers, which is crucial for the successful delivery of eHealth services.

    Certain concrete actions can be taken by stakeholders at the government level by considering HIPAA and the European Union Safe Harbor law, which advocates for strict security measures for the exchange and sharing of health data. Failure to comply with such laws entails severe consequences. From health care providers’ perspective, and given the confidentiality and sensitivity of patient data, only authorized users such as medical staff should be given access to stored health data. Nevertheless, confidentiality and availability need to be carefully balanced when structuring this critical security system. Despite the fact that all patients’ health data are made available to be exchanged, shared, and monitored to provide robust health care services, certain aspects of the data may be considered confidential and, for security reasons, must be kept restricted or inaccessible. These goals should be rationalized to ensure that patients receive the best possible care.

    Strengths and Limitations

    This study involved a comprehensive systematic literature search and identification of relevant and recent articles on mHealth apps’ privacy, security, and confidentiality published in the last 8 years. Detailed information on patients’ perspectives and awareness of the privacy and security of mHealth apps were gleaned from this review, thus bridging the current research gap as no systematic review has been conducted on this topic. Thematic and empirical analyses were also conducted to obtain robust data from the various designs used in the studies and triangulate the findings.

    Nevertheless, the limitations of this study are well acknowledged. The literature search was restricted to 3 databases; thus, some important articles on the research topic might have been missed. Only patients and end users were considered as the primary targets in this review, whereas the perspectives of other active stakeholders in mHealth apps, such as HCPs, app developers, and policy makers, were not documented. The issues raised in this study might be better understood if all relevant stakeholders were considered. This also limits the generalizability of the findings as no inference could be made regarding health care personnel and mHealth app developers. The use of 1 reviewer for data extraction is also an important limitation; however, the reviewer was trained on how to perform the data extraction and coding before the study to ensure that the process was reproducible and consistent.

    Meanwhile, a general limitation of the retrieved articles is the need for a clear definition of data privacy and security. Most of the reviewed studies considered security and privacy as a single concept, particularly as part of a general assessment of mHealth app design. Although security and privacy may overlap when ensuring patients’ confidentiality, the 2 concepts are fundamentally different. In addition, only 3% (1/33) of the studies assessed the relationship between patients’ sociodemographic factors and their concerns regarding mHealth apps’ privacy, security, and confidentiality. A more robust assessment of patients’ demographic characteristics, environmental factors, and patients’ antecedents regarding data breaches and leakage to unwanted third parties requires further investigation.

    Conclusions

    This systematic review elucidated patients’ perspectives and awareness regarding mHealth apps’ privacy, security, and confidentiality. Patients showed diverse perspectives on the trio of concepts, ranging from users who were satisfied with the privacy and security features of their current mHealth apps to those who raised pertinent issues affecting technology use. Patients also conveyed specific approaches to improve the use of mHealth apps (facilitators), such as protection of personal data, ensuring the confidentiality of health status or medical conditions, and provision of brief training or education on data security and privacy.

    The aggregation of the empirical and thematic results reflects that these diverse perspectives might be linked to the awareness of the subject matter, which also differed across the studies and was influenced by patients’ sociodemographic characteristics, such as age, income level, and marital status, as well as their experience with mHealth apps, satisfaction levels, data type, and data stage. Thus, the findings of this review may be beneficial to mHealth app developers and other stakeholders in improving patients’ awareness and adjusting current privacy and security features to enhance the use and adoption of mHealth apps for routine health monitoring and management of specific health conditions.

    Acknowledgments

    The authors appreciate the support provided by the Institute of Digital Healthcare, University of Warwick, Coventry, United Kingdom, in developing this manuscript. This study did not receive any funding support. The author is grateful for the support extended by Warwick University in Coventry, United Kingdom, and Saudi Electronic University in Jeddah, Saudi Arabia, in the development of this manuscript.

    Data Availability

    The data sets generated during and analyzed during this study are available from the corresponding author on reasonable request

    Authors' Contributions

    GE, TA, and NA contributed to conceptulization and project administration, whereas NA and MA performed the data curation and formal analysis. GE, TA, and NA were involved in the methodological design and supervision. The original draft was developed by NA while GE, TA, and NA were involved in writing and reviewing the manuscript.

    Conflicts of Interest

    None declared.

    Multimedia Appendix 1

    PRISMA (Preferred Reporting Items for Systematic Reviews and Meta-Analyses) checklist.

    DOCX File , 21 KB
    1. Chen J, Lieffers J, Bauman A, Hanning R, Allman-Farinelli M. The use of smartphone health apps and other mobile health (mHealth) technologies in dietetic practice: a three country study. J Hum Nutr Diet. Aug 2017;30(4):439-452. [CrossRef] [Medline]
    2. Hussain M, Zaidan AA, Zidan BB, Iqbal S, Ahmed MM, Albahri OS, et al. Conceptual framework for the security of mobile health applications on Android platform. Telemat Inform. Aug 2018;35(5):1335-1354. [CrossRef]
    3. Fagherazzi G, Goetzinger C, Rashid MA, Aguayo GA, Huiart L. Digital health strategies to fight COVID-19 worldwide: challenges, recommendations, and a call for papers. J Med Internet Res. Jun 16, 2020;22(6):e19284. [FREE Full text] [CrossRef] [Medline]
    4. Zhou L, Bao J, Watzlaf V, Parmanto B. Barriers to and facilitators of the use of mobile health apps from a security perspective: mixed-methods study. JMIR Mhealth Uhealth. Apr 16, 2019;7(4):e11223. [FREE Full text] [CrossRef] [Medline]
    5. Kao CK, Liebovitz DM. Consumer mobile health apps: current state, barriers, and future directions. PM R. May 2017;9(5S):S106-S115. [CrossRef] [Medline]
    6. Ventola CL. Mobile devices and apps for health care professionals: uses and benefits. P T. May 2014;39(5):356-364. [FREE Full text] [Medline]
    7. Bani Issa W, Al Akour I, Ibrahim A, Almarzouqi A, Abbas S, Hisham F, et al. Privacy, confidentiality, security and patient safety concerns about electronic health records. Int Nurs Rev. Jun 21, 2020;67(2):218-230. [CrossRef] [Medline]
    8. Martin K. Understanding privacy online: development of a social contract approach to privacy. J Bus Ethics. Feb 19, 2015;137(3):551-569. [CrossRef]
    9. Bhuyan SS, Kim H, Isehunwa OO, Kumar N, Bhatt J, Wyant DK, et al. Privacy and security issues in mobile health: current research and future directions. Health Policy Technol. Jun 2017;6(2):188-191. [CrossRef]
    10. Sampat BH, Prabhakar B. Privacy risks and security threats in mHealth apps. J Int Technol Inf Manag. Dec 01, 2017;26(4):126-153. [CrossRef]
    11. Esposito C, De Santis A, Tortora G, Chang H, Choo KK. Blockchain: a panacea for healthcare cloud-based data security and privacy? IEEE Cloud Comput. Jan 2018;5(1):31-37. [CrossRef]
    12. Fernández-Alemán JL, Señor IC, Lozoya PÁ, Toval A. Security and privacy in electronic health records: a systematic literature review. J Biomed Inform. Jun 2013;46(3):541-562. [FREE Full text] [CrossRef] [Medline]
    13. Nurgalieva L, O'Callaghan D, Doherty G. Security and privacy of mHealth applications: a scoping review. IEEE Access. 2020;8:104247-104268. [CrossRef]
    14. Martínez-Pérez B, de la Torre-Díez I, López-Coronado M. Privacy and security in mobile health apps: a review and recommendations. J Med Syst. Jan 2015;39(1):181. [FREE Full text] [CrossRef] [Medline]
    15. Page MJ, McKenzie JE, Bossuyt PM, Boutron I, Hoffmann TC, Mulrow CD, et al. The PRISMA 2020 statement: an updated guideline for reporting systematic reviews. BMJ. Mar 29, 2021;372:n71. [FREE Full text] [CrossRef] [Medline]
    16. Grant MJ, Booth A. A typology of reviews: an analysis of 14 review types and associated methodologies. Health Info Libr J. Jun 2009;26(2):91-108. [FREE Full text] [CrossRef] [Medline]
    17. Alwashmi MF, Fitzpatrick B, Farrell J, Gamble JM, Davis E, Nguyen HV, et al. Perceptions of patients regarding mobile health interventions for the management of chronic obstructive pulmonary disease: mixed methods study. JMIR Mhealth Uhealth. Jul 23, 2020;8(7):e17409. [FREE Full text] [CrossRef] [Medline]
    18. Moodley J, Constant D, Botha MH, van der Merwe FH, Edwards A, Momberg M. Exploring the feasibility of using mobile phones to improve the management of clients with cervical cancer precursor lesions. BMC Womens Health. Jan 07, 2019;19(1):2. [FREE Full text] [CrossRef] [Medline]
    19. Bradbury A, Patrick-Miller L, Harris D, Stevens E, Egleston B, Smith K, et al. Utilizing remote real-time videoconferencing to expand access to cancer genetic services in community practices: a multicenter feasibility study. J Med Internet Res. Feb 01, 2016;18(2):e23. [FREE Full text] [CrossRef] [Medline]
    20. Sangers TE, Wakkee M, Kramer-Noels EC, Nijsten T, Lugtenberg M. Views on mobile health apps for skin cancer screening in the general population: an in-depth qualitative exploration of perceived barriers and facilitators. Br J Dermatol. Nov 05, 2021;185(5):961-969. [FREE Full text] [CrossRef] [Medline]
    21. Gill R, Ogilvie G, Norman WV, Fitzsimmons B, Maher C, Renner R. Feasibility and acceptability of a mobile technology intervention to support postabortion care in British Columbia: phase I. J Med Internet Res. May 29, 2019;21(5):e13387. [FREE Full text] [CrossRef] [Medline]
    22. de Vries ST, Wong L, Sutcliffe A, Houÿez F, Ruiz CL, Mol PG. Factors influencing the use of a mobile app for reporting adverse drug reactions and receiving safety information: a qualitative study. Drug Saf. May 29, 2017;40(5):443-455. [FREE Full text] [CrossRef] [Medline]
    23. Hackett KM, Kazemi M, Sellen DW. Keeping secrets in the cloud: mobile phones, data security and privacy within the context of pregnancy and childbirth in Tanzania. Soc Sci Med. Aug 2018;211:190-197. [FREE Full text] [CrossRef] [Medline]
    24. Li J, Silvera-Tawil D, Varnfield M, Hussain MS, Math V. Users' perceptions toward mHealth technologies for health and well-being monitoring in pregnancy care: qualitative interview study. JMIR Form Res. Dec 02, 2021;5(12):e28628. [FREE Full text] [CrossRef] [Medline]
    25. Wyatt KD, Finley A, Uribe R, Pallagi P, Willaert B, Ommen S, et al. Patients' experiences and attitudes of using a secure mobile phone app for medical photography: qualitative survey study. J Med Internet Res. May 12, 2020;22(5):e14412. [FREE Full text] [CrossRef] [Medline]
    26. Natsiavas P, Kakalou C, Votis K, Tzovaras D, Koutkias V. Citizen perspectives on cross-border eHealth data exchange: a European survey. Stud Health Technol Inform. Aug 21, 2019;264:719-723. [CrossRef] [Medline]
    27. Alaiad A, Alsharo M, Alnsour Y. The determinants of m-health adoption in developing countries: an empirical investigation. Appl Clin Inform. Oct 30, 2019;10(5):820-840. [FREE Full text] [CrossRef] [Medline]
    28. Özkan Ö, Son YA, Aydinoğlu AU. Security and privacy concerns regarding genetic data in mobile health record systems: an empirical study from Turkey. bioRxiv. Preprint posted online June 23, 2019. [CrossRef]
    29. Glauser G, Ali ZS, Gardiner D, Ramayya AG, Pessoa R, Grady MS, et al. Assessing the utility of an IoS application in the perioperative care of spine surgery patients: the NeuroPath Pilot study. Mhealth. 2019;5:40. [FREE Full text] [CrossRef] [Medline]
    30. Zhou L, Parmanto B, Alfikri Z, Bao J. A mobile app for assisting users to make informed selections in security settings for protecting personal health data: development and feasibility study. JMIR Mhealth Uhealth. Dec 11, 2018;6(12):e11210. [FREE Full text] [CrossRef] [Medline]
    31. Barutçu S, Barutçu E, Adigüzel DU. A technology acceptance analysis for mHealth apps: the case of Turkey. Balkan Near Eastern J Soc Sci. 2018;4(4):104-113.
    32. Bauer AM, Iles-Shih M, Ghomi RH, Rue T, Grover T, Kincler N, et al. Acceptability of mHealth augmentation of collaborative care: a mixed methods pilot study. Gen Hosp Psychiatry. 2018;51:22-29. [FREE Full text] [CrossRef] [Medline]
    33. Goetz M, Müller M, Matthies LM, Hansen J, Doster A, Szabo A, et al. Perceptions of patient engagement applications during pregnancy: a qualitative assessment of the patient's perspective. JMIR Mhealth Uhealth. May 26, 2017;5(5):e73. [FREE Full text] [CrossRef] [Medline]
    34. Richardson JE, Ancker JS. Public perspectives of mobile phones' effects on healthcare quality and medical data security and privacy: a 2-year nationwide survey. AMIA Annu Symp Proc. 2015;2015:1076-1082. [FREE Full text] [Medline]
    35. Sanger P, Hartzler A, Lober WB, Evans HL, Pratt W. Design considerations for post-acute care mHealth: patient perspectives. AMIA Annu Symp Proc. 2014;2014:1920-1929. [FREE Full text] [Medline]
    36. Dang Y, Guo S, Guo X, Wang M, Xie K. Privacy concerns about health information disclosure in mobile health: questionnaire study investigating the moderation effect of social support. JMIR Mhealth Uhealth. Feb 08, 2021;9(2):e19594. [FREE Full text] [CrossRef] [Medline]
    37. Biswas M, Tania MH, Kaiser MS, Kabir R, Mahmud M, Kemal AA. ACCU3RATE: a mobile health application rating scale based on user reviews. PLoS One. Dec 16, 2021;16(12):e0258050. [FREE Full text] [CrossRef] [Medline]
    38. Casilang CG, Stonbraker S, Japa I, Halpern M, Messina L, Steenhoff AP, et al. Perceptions and attitudes toward mobile health in development of an exclusive breastfeeding tool: focus group study with caregivers and health promoters in the Dominican Republic. JMIR Pediatr Parent. Aug 21, 2020;3(2):e20312. [FREE Full text] [CrossRef] [Medline]
    39. Zhang D, Lim J, Zhou L, Dahl AA. Breaking the data value-privacy paradox in mobile mental health systems through user-centered privacy protection: a web-based survey study. JMIR Ment Health. Dec 24, 2021;8(12):e31633. [FREE Full text] [CrossRef] [Medline]
    40. Harris B, Ajisola M, Alam RM, Watkins JA, Arvanitis TN, Bakibinga P, et al. Mobile consulting as an option for delivering healthcare services in low-resource settings in low- and middle-income countries: a mixed-methods study. Digit Health. Aug 19, 2021;7:20552076211033425. [FREE Full text] [CrossRef] [Medline]
    41. Al-Anezi FM. Evaluating the readiness of mobile technology with respect to e-heath for medication in Saudi Arabia: an integrative perspective. J Multidiscip Healthc. Jan 2021;Volume 14:59-66. [FREE Full text] [CrossRef]
    42. Ermakova T, Fabian B, Zarnekow R. Improving individual acceptance of health clouds through confidentiality assurance. Appl Clin Inform. Dec 18, 2017;07(04):983-993. [FREE Full text] [CrossRef]
    43. Rodrigues R, Poongulali S, Balaji K, Atkins S, Ashorn P, De Costa A. 'The phone reminder is important, but will others get to know about my illness?' Patient perceptions of an mHealth antiretroviral treatment support intervention in the HIVIND trial in South India. BMJ Open. Nov 02, 2015;5(11):e007574. [FREE Full text] [CrossRef] [Medline]
    44. Al-Mahrouqi T, Al-Alawi K, Al-Alawi M, Al Balushi N, Al Ghailani A, Al Sabti H, et al. A promising future for tele-mental health in Oman: a qualitative exploration of clients and therapists' experiences. SAGE Open Med. Mar 29, 2022;10:20503121221086372. [FREE Full text] [CrossRef] [Medline]
    45. Turcotte V, Chagnon A, Guénette L. Experience and perspectives of users and non-users of the Ask your pharmacist teleconsultation platform. Explor Res Clin Soc Pharm. Jun 2021;2:100031. [FREE Full text] [CrossRef] [Medline]
    46. Morton E, Nicholas J, Lapadat L, O'Brien HL, Barnes SJ, Poh C, et al. Use of smartphone apps in bipolar disorder: an international web-based survey of feature preferences and privacy concerns. J Affect Disord. Dec 01, 2021;295:1102-1109. [CrossRef] [Medline]
    47. Cavazos-Rehg P, Min C, Fitzsimmons-Craft EE, Savoy B, Kaiser N, Riordan R, et al. Parental consent: a potential barrier for underage teens' participation in an mHealth mental health intervention. Internet Interv. Sep 2020;21:100328. [FREE Full text] [CrossRef] [Medline]
    48. Hattingh HL, Knox K, Fejzic J, McConnell D, Fowler JL, Mey A, et al. Privacy and confidentiality: perspectives of mental health consumers and carers in pharmacy settings. Int J Pharm Pract. Feb 2015;23(1):52-60. [FREE Full text] [CrossRef] [Medline]
    49. Perera C. Principles of security for the use of mobile technology in medicine. J Mobile Technol Med. Jun 01, 2012;2:5-7. [CrossRef]
    50. Lewis TL, Wyatt JC. mHealth and mobile medical apps: a framework to assess risk and promote safer use. J Med Internet Res. Sep 15, 2014;16(9):e210. [FREE Full text] [CrossRef] [Medline]
    51. Atienza AA, Zarcadoolas C, Vaughon W, Hughes P, Patel V, Chou WY, et al. Consumer attitudes and perceptions on mHealth privacy and security: findings from a mixed-methods study. J Health Commun. 2015;20(6):673-679. [CrossRef] [Medline]
    52. Nissenbaum H. Privacy as contexual integrity. Wash Law Rev. 2004;79(1):119.

    GDPR: General Data Protection Regulation
    HCP: health care professional
    HIPAA: Health Insurance Portability and Accountability Act
    mHealth: mobile health
    PRISMA: Preferred Reporting Items for Systematic Reviews and Meta-Analyses

    Edited by G Eysenbach, T Leung, T de Azevedo Cardoso; submitted 10.07.23; peer-reviewed by K Wyatt, H Abu Serhan, B Salam; comments to author 02.08.23; revised version received 03.09.23; accepted 25.01.24; published 31.05.24.

    Copyright

    ©Nasser Alhammad, Mohannad Alajlani, Alaa Abd-alrazaq, Gregory Epiphaniou, Theodoros Arvanitis. Originally published in the Journal of Medical Internet Research (https://www.jmir.org), 31.05.2024.

    This is an open-access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/), which permits unrestricted use, distribution, and reproduction in any medium, provided the original work, first published in the Journal of Medical Internet Research, is properly cited. The complete bibliographic information, a link to the original publication on https://www.jmir.org/, as well as this copyright and license information must be included.