mHealth Data Security, Privacy, and Confidentiality: Guidelines for Program Implementers and Policymakers

Lauren Spigel, Samuel Wambugu, Christina Villella

As digital health tools and data platforms proliferate, it’s important to look at how and if they are able to protect client privacy and system security. MEASURE Evaluation, funded by the United States Agency for International Development (USAID), has published the mHealth Data Security, Privacy, and Confidentiality Guidelines and a companion checklist to help mHealth project managers and health information systems (HIS) officials from ministries of health assess their system capacity to address these concerns.

A landscape analysis and literature review showed that digital systems in sub-Saharan Africa are developing fast and a need exists for leadership to establish or improve the existing governance.

Vulnerabilities exist at each point of the mHealth ecosystem, such as lack of policy guidance, hardware and software vulnerable to unauthorized infiltration, or insecure user practices. These guidelines propose ways to proactively address vulnerabilities to reduce possibilities of data breaches and address leadership and governance, user-training, and technology-specific issues.

The guidelines and checklist are global public goods that countries and organizations can use to strengthen their mHealth systems. Like most digital tools, these guidelines will be updated based on new learning and evolving technology.

February 19, 2018
Year of publication
Resource types
Guidelines and Policies, Programmatic guidance
digital health tools, mHealth, confidentiality, health information systems (HIS), privacy

Similar Resources

Timely access to antiretroviral treatment (ART) is vital to ensuring safe motherhood and reducing vertical transmission. Treatment guidance and programming has changed dramatically in recent years.

This document guides countries through the process of collecting and reporting sub-national data on adolescents to inform programme planning and implementation efforts.

Based on privacy, confidentiality and security principles the Assessment Tool below was developed to assess in country the extent that the confidentiality and security of personal health information is protected at facility and data warehouse/repository levels and whether national guidelines…

An important collection of articles focused on infant medical male circumcision as an approach to sustain the HIV prevention gains made from adult voluntary medical male circumcision (VMMC). The ten articles in this collection offer insight into a few country experiences with introduction of…

For prevention of HIV, early infant male circumcision (EIMC) needs to be scaled up in countries with high HIV prevalence. Routine EIMC will maintain the HIV prevention gains anticipated from current adult male circumcision initiatives.

The government of the Kingdom of Swaziland recognizes that it must urgently scale up HIV prevention interventions, such as voluntary medical male circumcision (VMMC). Swaziland has adopted a 2-phase approach to male circumcision scale-up.

The World Health Organization and the Joint United Nations Programme on HIV/AIDS recommend early infant male circumcision (EIMC) as a component of male circumcision programs in countries with high HIV prevalence and low circumcision rates.

Data tell us that the lives of girls today are better in many respects than those of preceding generations. Girls are now more likely to survive childhood, more likely to attend school and complete their education, less likely to be undernourished and less likely to marry as children.

Adolescents (ages 10–19) and youth (ages 15–24) bear a disproportionate share of the HIV burden, especially in sub-Saharan Africa.

In late 2015, the Linkages Across the Continuum of HIV Services for Key Populations (LINKAGES) project established a global acceleration initiative to fast-track and strengthen delivery of a comprehensive package of health services for key populations (KPs) at scale. In this context, “…