Privacy Policy - SCI App
mHealth Research Group Privacy Policy - Spinal Cord Injury Study
Last modified: February 28th, 2023
The mHealth Research Group and its collaborators understand the importance of protecting the privacy of personal information. SCI JITAI is a scientific research project related to personal health informatics using mobile and wearable technologies to improve physical activity levels among individuals with spinal cord injury (SCI). The project requires recruiting human subject volunteers and collecting and analyzing data collected while those individuals use the mobile/wear devices and our custom software. The project is approved by an institutional review board (IRB) at Northeastern and/or our collaborating institutions, and participants in the experiments must provide informed consent. The IRB is responsible for the protection of the rights and privacy of human subjects who participate in the study.
Our Privacy Policy explains:
For the goal of the SCI study, we plan to collect the following information.
How we use information we collectWe will use the collected information for scientific research purposes only, which are described in the informed consent document that all people using the software must agree to.
This app was created by non-profit institutions for non-profit research purposes.
The data collected are strictly controlled and limited to trained personnel on the research teams and our collaborators at Personal Health Informatics & Rehabilitation Engineering (PHIRE) Lab at Temple University, all of whom have undergone special research training in the protection of human subjects and their data.
The data collected are analyzed using various research methodologies, and the results of our work will eventually be published in scientific presentations and papers.
Data is always deidentified before presentation.
Transparency and choice
All users of this application must consent to the use of the application. Those consent forms are study-specific and overseen by our institutional review board (IRB). The consent forms provide additional detail about the nature of data collected and how it is used.
Although typically a protocol does not change during a study, if the protocol does change, it is only with additional approval from the IRB and re-consenting of the users of the application. At that time, they can choose whether to continue participating in the study or not.
All collected user data are stored as encrypted files on the phone. Consent forms specify the rights of subjects with regard to data access. Participants always have the right to have their data deleted, should they change their mind about participation in a study.
Information we share
Data is not shared with anyone outside of the trained research team, unless those data are completely deidentified, in compliance with procedures mandated by our IRB.
Aggregated, de-identified data will be presented in research publications in scientific journals and conferences.
Information security
We work hard to protect the users of this app from unauthorized access to or use of the data collected. In particular:
Our Privacy Policy may change from time to time. We will not reduce your rights under this Privacy Policy without a user’s explicit consent. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice (including, for certain services, email notification of privacy policy changes). We will also keep prior versions of this Privacy Policy in an archive for your review.
If you have questions or concerns about this Privacy Policy, please contact us.
Last modified: February 28th, 2023
The mHealth Research Group and its collaborators understand the importance of protecting the privacy of personal information. SCI JITAI is a scientific research project related to personal health informatics using mobile and wearable technologies to improve physical activity levels among individuals with spinal cord injury (SCI). The project requires recruiting human subject volunteers and collecting and analyzing data collected while those individuals use the mobile/wear devices and our custom software. The project is approved by an institutional review board (IRB) at Northeastern and/or our collaborating institutions, and participants in the experiments must provide informed consent. The IRB is responsible for the protection of the rights and privacy of human subjects who participate in the study.
Our Privacy Policy explains:
- What personal data we collect and why we collect it.
- How we use personal data collected.
- How we secure data.
For the goal of the SCI study, we plan to collect the following information.
- Device usage information, such as when a user interacts with a device, what apps are installed and uninstalled, when calls and messages are made/received, when WiFi is switched on and off, and when the mobile device is charged or discharged.
- Device-specific information (such as the phone’s hardware model, operating system version, unique device identifiers, WiFi status, Bluetooth status, data network usage and carrier, remaining battery and mobile network information).
- App log information. The deployed devices will automatically collect and store study-specific information from the installed research application or the operating system in log files. This includes:
- Details of how the application was used, such as when the app was running and not running, and when user data was uploaded to our research server by the app.
- Device event information such as app crashes and system activity.
- Sensor information. We will collect and upload internal sensor readings from the smartwatch’s accelerometer sensors, to determine the physical activity level of the users.
- Survey information. The wear app will prompt the user to fill out surveys and messages on the watch that relate to the goals of the study.
How we use information we collectWe will use the collected information for scientific research purposes only, which are described in the informed consent document that all people using the software must agree to.
This app was created by non-profit institutions for non-profit research purposes.
The data collected are strictly controlled and limited to trained personnel on the research teams and our collaborators at Personal Health Informatics & Rehabilitation Engineering (PHIRE) Lab at Temple University, all of whom have undergone special research training in the protection of human subjects and their data.
The data collected are analyzed using various research methodologies, and the results of our work will eventually be published in scientific presentations and papers.
Data is always deidentified before presentation.
Transparency and choice
All users of this application must consent to the use of the application. Those consent forms are study-specific and overseen by our institutional review board (IRB). The consent forms provide additional detail about the nature of data collected and how it is used.
Although typically a protocol does not change during a study, if the protocol does change, it is only with additional approval from the IRB and re-consenting of the users of the application. At that time, they can choose whether to continue participating in the study or not.
All collected user data are stored as encrypted files on the phone. Consent forms specify the rights of subjects with regard to data access. Participants always have the right to have their data deleted, should they change their mind about participation in a study.
Information we share
Data is not shared with anyone outside of the trained research team, unless those data are completely deidentified, in compliance with procedures mandated by our IRB.
Aggregated, de-identified data will be presented in research publications in scientific journals and conferences.
Information security
We work hard to protect the users of this app from unauthorized access to or use of the data collected. In particular:
- We store all collected data in encrypted files using AES 256 algorithm.
- We use https for data uploading.
- We use firebase (operated by Google) and our own secure server (operated by Northeastern university) to store uploaded files; identifiable information is always stored in an encrypted format.
- We review our information collection, storage and processing practices, including physical security measures, to guard against unauthorized access to our systems and the data stored on them.
- We restrict access to personal information to the core research team, all of whom are trained in the protection of human subjects in experiments. These individuals are trained and certified to be able to understand the sensitivity of personal information.
Our Privacy Policy may change from time to time. We will not reduce your rights under this Privacy Policy without a user’s explicit consent. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice (including, for certain services, email notification of privacy policy changes). We will also keep prior versions of this Privacy Policy in an archive for your review.
If you have questions or concerns about this Privacy Policy, please contact us.