Any thoughts on privacy concerns with collecting this data? Do you think it should have the same requirements as regular patient medical data (eg HIPAA), or should it be treated differently?
I think the intent of HIPAA is good, but in practice, it's a big barrier to a lot of medical advancements. It's less the letter of the law itself, to be honest, and more the penumbra of fear that develops around any complex law. We saw the same thing on healthcare.gov.
There was a great article about this a while ago, but I can't seem to find it now.
Overall, I'm pretty happy with the approach the FDA and other regulatory bodies are taking to digital health -- mostly hands-off, but stepping in to stop pure snake oil apps that really have the potential for harm. That seems like a good balance.
And yes, as someone working in the highly regulated finance industry, I know from personal experience that complex laws directly create a penumbra of fear you can't ignore.
There was a great article about this a while ago, but I can't seem to find it now.
Overall, I'm pretty happy with the approach the FDA and other regulatory bodies are taking to digital health -- mostly hands-off, but stepping in to stop pure snake oil apps that really have the potential for harm. That seems like a good balance.