sign in sign up
<<
Home , Cellphone surveillance, Mass surveillance

comment

Medicine, Harvard Medical School, Boston, MA, Esch-sur-Alzette, Luxembourg. 9. Sutton, D., Fuchs, K., D’Alton, M. & Gofman, D. N. Engl. J. Med. 36 ✉ ://doi.org/10.1056/NEJMc2009316 (2020). USA. Department of Pulmonary Medicine and e-mail: [email protected] 10. Rossman, H. et al. Nat. Med. 26, 634–638 (2020). Critical Care, Massachusetts General Hospital 11. Drew, D. A. et al. Science https://doi.org/10.1126/science.abc0473 37 (2020). (MGH), Boston, MA, USA. ETH Zurich, Published online: 2 June 2020 Department for Computer Science, Zurich, 12. Menni, C. et al. Nat. Med. https://doi.org/10.1038/s41591-020- https://doi.org/10.1038/s41591-020-0929-x 0916-2 (2020). University Hospital Zurich, Medical Informatics, 13. Dankar, F. K. & El Emam, K. Trans. Data Priv. 6, 35–67 (2013). Zurich and SIB Swiss Institute of Bioinformatics, References 14. King, G. & Lu, Y. Stat. Sci. 23, 78–91 (2008). Zurich and ELLIS Unit, ETH Zurich, Switzerland. 1. Tariq, A. et al. medRxiv https://doi.org/10.1101/ 38Science for Life Laboratory (SciLifeLab), 2020.02.21.20026435 (2020). Acknowledgements Department of Immunology, Genetics and Pathology, 2. Smolinski, M. S. et al. Am. J. Public Health 105, 2124–2130 The CCC is a nonprofit consortium open to anyone who (2015). 39 shares the vision of making data available to help the public Uppsala University, Uppsala, Sweden. Department 3. Tian, H. et al. Science 368, 638–642 (2020). good and fight COVID-19; as of May 2020 participating of Pathology and Laboratory Medicine, Weill 4. Guan, W.-J. et al. N. Engl. J. Med. 382, 1708–1720 (2020). countries are Argentina, Canada, Estonia, Germany, , Cornell Medicine, New York, NY, USA. 40King’s 5. Wu, Z. & McGoogan, J. M. JAMA 323, 1239–1242 (2020). Luxembourg, Macedonia, Slovenia, Sweden, Switzerland, 6. Adalja, A. A., Toner, E. & Inglesby, T. V. JAMA 323, 41 UK and USA. There are no membership fees. Please College, , UK. Science for Life Laboratory 1343–1344 (2020). contact us at [email protected] if you (SciLifeLab), Department of Microbiology, 7. Gudbjartsson, D. F. et al. N. Engl. J. Med. https://doi.org/10.1056/ are interested in joining. Tumor and Cell Biology, Karolinska Institutet, NEJMoa2006100 (2020). 42 8. Mizumoto, K., Kagaya, K., Zarebski, A. & Chowell, G. Stockholm, Sweden. Luxembourg Centre for Eurosurveillance https://doi.org/10.2807/1560-7917. Competing interests Systems Biomedicine, University of Luxembourg, ES.2020.25.10.2000180 (2020). The authors declare no competing interests.

Use of apps in the COVID-19 response and the loss of protection Mobile apps provide a convenient source of tracking and data collection to fght against the spread of COVID-19. report our analysis of 50 COVID-19-related apps, including their use and their access to personally identifable information, to ensure that the and are protected. Tanusree Sharma and Masooda Bashir

ompared with prior infectious-disease available in the Play Store that have the microphone, full network access, the outbreaks (e.g., the ‘Spanish flu’ been developed specifically for COVID-19 Google service configuration, and the ability Cpandemic of 1918 and the ‘Asian (Supplementary Table 1). to change network connectivity and audio flu’ pandemic of 1957), the COVID-19 The most common functionalities of the settings, to name just a few types of access. emergency is occurring in a vastly more apps are as follows: live maps and updates of In addition, some apps explicitly that connected and digital world. Governments confirmed cases; real-time location-based they will collect information about the in multiple countries are pushing for alerts; systems for monitoring and person’s age, email address, phone number location to contain the spread controlling home isolation and quarantine, and postal code; the device’s location, unique of COVID-191. Digital surveillance may be direct reporting to government, and device identifiers, mobile IP address and the most effective way to contain the spread self-reporting of symptoms; and education operating system; and the types of browsers of the outbreak, but how privacy about COVID-19. Some more-advanced used on the mobile device. may be impacted must be considered both services include self-assessment of daily A troubling discovery is that only 16 now and as this crisis moves forward. physiological status; monitoring of vital of the 50 apps indicate that the user’s data and uncertainty often win out over civil parameters, such as temperature, heart rate, will be made anonymous, encrypted and liberties; however, as has been learned from oxygen and blood pressure, through the secured and will be transmitted online past crises, such as the terrorist attacks of use of Bluetooth-enabled medical devices; and reported only in an aggregated 11 September 2001, it can be hard to regain virtual medical consultations (ADiLife format. Our data represent a number of lost liberties2. Thus, it is critical not only Covid-19 in Italy); social science–based government-issued COVID-19 tracing that virus-response opportunities provided interventions based on predictive analysis of apps that are from both developing by technology be embraced but also that diseases in specific locations (OpenWHO); countries and developed countries. technology be used to ensure that the right and community-driven contact tracing Somewhat worryingly, 20 apps from our to privacy is secured (Fig. 1). (TraceTogether and mfineRadar). sample were issued by governments, Some countries, such as , Israel, We found that 30 of the 50 apps require health ministries and other such official and South Korea, have launched permission for numerous types of access to sources. While the US government is not tracking apps to fight the pandemic, users’ mobile devices. For example, some currently requiring citizens to download and many more commercial apps have demand access to contacts, photos, media, any tracking apps, there are apps in the Play been released since the beginning of files, location data, the camera, the device Store that were developed by US healthcare the outbreak. Here we examine 50 apps ID, call information, the WiFi connection, providers (Sentinel Healthcare, 98point6

Nature Medicine | VOL 26 | August 2020 | 1160–1169 | www.nature.com/naturemedicine 1165 comment

USA UK Viet NamCzechia Brazil Canada IndiaSpainGermany Bolivia Pakistan South Africa France ArmeniaKyrgyzstan Nepal GeorgiaNetherlands Algeria Singapore Mexico Chile Italy Portugal Australia Colombia Uruguay Other

Scientific research 8% Countries Assessment tools Information tools 10% 48%

COVID -19 app categories

Tracking tools 34%

036 Number of apps

Fig. 1 | Data dashboards of COVID-19 apps. The distribution of COVID-19 apps (data collected from Store).

and HealthLynked) that have similar in the context of epidemics5. Healthcare providers must absolutely use functionalities. What is not clear is whether In the USA, however, there is no structured whatever means are available to save lives any of the data collected are protected by or legal privacy framework in place. The and confine the spread of the virus. But it any laws or regulations such as the Health only federal agency that oversees digital is up to the rest, especially those in the field Insurance Portability and Accountability Act privacy protections is the Federal Trade of and security, to ask or electronic protected health information. Commission, which addresses mainly the questions needed to protect the right to It is, therefore, no surprise that Albert inconsistent privacy policies from the point privacy. However, it is important to note that Fox Cahn, Executive Director of the of view of consumer protection. there may be no choice but to adopt such Surveillance Technology Oversight In recent weeks, US President Donald measures if this pandemic Project (https://www.stopspying.org/), Trump assembled representatives from a does not go away or if another one comes a nonprofit organization in Manhattan, number of digital-technology companies into existence. Thus, it is crucial to ensure New York, said “We could so easily end to formulate how mobile location data that policies, mathematical models and up in a situation where we empower could be used to track citizens to address technological measures are developed to local, state or federal government to take the pandemic in the USA6. In parallel, protect the data that are being collected and measures in response to this pandemic privacy and security researchers are working used, and transparency must be promoted in that fundamentally change the scope tirelessly to propose protection mechanisms how data can help contain the spread while of American civil rights”3. What is that may be useful. For example, a recent ensuring that civil liberties will still disconcerting is that these apps are publication by Harvard University’s Center be protected. ❐ continuously collecting and processing for identifies tracing protocols that highly sensitive personally identifiable mitigate privacy risks and promotes the Tanusree Sharma 1 ✉ and information, such as health information, use of critical security and privacy controls Masooda Bashir2 ✉ location and direct identifiers (e.g., name, that can accelerate medical responses while 1Illinois Informatics Institute, University of Illinois at age, email address, and voter/national maintaining people’s rights7. Another group Urbana-Champaign, Champaign, IL, USA. 2School identification). Governments’ use of such of researchers has proposed a system for of Information Sciences, University of Illinois at tracking technology — and the possibilities secure and privacy-preserving proximity Urbana-Champaign, Champaign, IL, USA. for how they might use it after the pandemic tracing at large scales through the application ✉e-mail: [email protected]; [email protected] — is chilling to many. Notably, surveillance of anonymous identifiers and functional mapping through apps is allowing requirements of fundamental security and Published online: 26 May 2020 governments to identify people’s travel paths privacy, such as data minimization and https://doi.org/10.1038/s41591-020-0928-y and their entire social networks4. retention8. Other emergency publications References The European Data Protection Board have suggested anonymization with random 1. Ting, D. S. W., Carin, L., Dzau, V. & Wong, T. Y. Nat. Med. 26, 9 issued a statement on the importance of ‘noise’ , artificial intelligence–generated 459–461 (2020). protecting personal data while fighting ‘noise’ or additively homomorphic 2. Kahn, F. S. Tulane Law Rev. 6, 1579–1644 (2002). COVID-195 and flagged articles of the and message-based methods10 to 3. Singer, N. & Choe, S.-H. Te New York Times https://www.nytimes.com/2020/03/23/technology/ General Data Protection Regulation that generalize people’s data while being able to coronavirus-surveillance-tracking-privacy.html (23 March 2020; provide the legal grounds for processing protect users’ privacy. updated 17 April 2020)

1166 Nature Medicine | VOL 26 | August 2020 | 1160–1169 | www.nature.com/naturemedicine comment

4. Te Economist https://www.economist.com/briefng/2020/03/26/ 7. Hart, V. et al. Outpacing the Virus: Digital Response to Containing Competing interests countries-are-using-apps-and-data-networks-to-keep-tabs-on- the Spread of COVID-19 while Mitigating Privacy Risks (Edmond The authors declare no competing interests. the-pandemic (26 March 2020). J. Safra Center for Ethics, 2020). 5. European Data Protection Board. https://edpb.europa.eu/news/ 8. Troncoso, C. et al. https://github.com/DP-3T/documents (2020). news/2020/statement-edpb-chair-processing-personal-data- 9. Cho, H., Ippolito, D. & Yu, Y. W. Preprint at arXiv https://arxiv. context-covid-19-outbreak_en (16 March 2020). org/abs/2003.11511v2 (2020). Additional information 6. Lomas, N. TechCrunch https://techcrunch.com/2020/03/20/ 10. Bell, J., Butler, D., Hicks, C. & Crowcrof, J. Preprint at arXiv Supplementary information is available for this paper at what-are-the-rules-wrapping-privacy-during-covid-19/ (2020). https://arxiv.org/abs/2004.04059 (2020). https://doi.org/10.1038/s41591-020-0928-y.

Mass-surveillance technologies to fght coronavirus spread: the case of Israel As the COVID-19 pandemic escalates, teams around the world are now advocating for a new approach to monitoring transmission: tapping into cellphone location data to track infection spread and warn people who may have been exposed. Here we present data collected in Israel through this approach so far and discuss the privacy concerns, alternatives and diferent ‘favors’ of . We also propose safeguards needed to minimize the risk for civil rights. Moran Amit, Heli Kimhi, Tarif Bader, Jacob Chen, Elon Glassberg and Avi Benov

n 16 March 2020, the Israeli to thwart and . However, tests. Close contacts of patients were put government approved two the agency’s advanced digital surveillance into mandatory quarantine to stop further Oemergency regulations allowing capabilities have been redirected to contagion. One week after the initiation of mass location tracking of citizens as part allow comprehensive epidemiological coronavirus surveillance, the Israeli Ministry of the national effort to slow the pandemic investigation and the digital identification of Health reported that extensive traditional of coronavirus disease 2019 (COVID-19). of people who have come into contact with epidemiological investigations had revealed At that point, the Israeli health system, infected people. Decision-makers explained only one third of known potential spreaders which serves a population of 8.7 million this unprecedented step by citing the acute (6% of whom were infected individuals people, was facing 255 cases of confirmed need to conduct hundreds of investigations and 27% their contacts), while the digital infection with the causative coronavirus in a short period to allow quarantine of surveillance program identified the SARS-CoV-2 and 5 COVID-19-related possibly infected but asymptomatic people remaining contacts (67%)5. Three days deaths. Two weeks later the number of and prevent further contagion. later, the ISA reported that approximately new cases started dropping from nearly The fairly high reproduction number (R0) 40% of overall patients with confirmed 800 per day to approximately 500 per day, of SARS-CoV-2 (1.4–3.9)3 has rapidly SARS-CoV-2 in Israel had been identified and it has continued to decrease, to fewer exhausted the capacities of most through the digital surveillance measures. than 100 new cases per day (as of 2 May public-health systems to perform traditional One month after the implementation of 2020). This was accompanied by plateaus epidemiologic investigations in a timely the mass-surveillance program for contact in the total number of cases and the number fashion4. Owing to the rapid spread of tracing, the Supreme Court of the state of of active cases. As of 9 April 2020, this the virus, along with the limitations of Israel, in response to a petition submitted had led to a near-equilibrium between the human memory (such as recall bias) by organizations, number of newly infected patients and and the inability to identify interactions and others, discussed the need for a middle the number of recovered and discharged with people that one does not know, it is ground to guard against the violation of patients each day1. impossible to monitor with high accuracy basic human rights. During this discussion, The new regulations served two the contacts of an infected person. Hence, Ministry of Health representatives reported purposes: (1) enforcing new social isolation applying intelligence technologies to collect that out of 12,501 confirmed cases in Israel, rules, and (2) tracking the locations of data on the civilian population could be a 4,611 (36.8%) cases had been detected patients infected with the virus. Countries useful measure for lessening the spread of through cellphone tracking6. Given the such as and Singapore have the disease. Nevertheless, the implications number of ‘imported’ cases (i.e., cases authorized law-enforcement authorities of such a move for personal privacy are carried by travelers from overseas rather to monitor quarantine orders remotely. far-reaching and might last long after the than local transmissions), the detection However, Israel is the only country COVID-19 pandemic subsides. rate of cellphone tracking was nearly 50%. to implement ‘digital epidemiological After the regulations allowing Of note, the health officials reported a investigation’ to track down potential digital contact tracing were approved, false-positive rate of 5%; to minimize contacts of infected individuals2. The the ISA started using a cache of the impact of this false-positive rate, the mission was assigned to Israel’s domestic mobile-phone-location data to help system developers added a feature that security agency, the Israel Security Agency identify people who had crossed paths with allows people to appeal if they feel that their (ISA). Usually, the ISA’s primary mission is patients who had positive SARS-CoV-2 localization data were wrong. The Supreme

Nature Medicine | VOL 26 | August 2020 | 1160–1169 | www.nature.com/naturemedicine 1167