Moodfit

Attention : *confidentialité non incluse avec ce produit

Moodfit

Passé en revue le : 20 avril 2022

|
Mozilla a effectué 8 heures de recherches
|

L’avis de Mozilla :

|
Vote du public : Très flippant

Moodfit is a mood tracking, cognitive behavioral therapy using, mindfulness meditation, breathing, medication and sleep tracking app that users seem to really like. Verywell Mind named it their best mental health app so far in 2022. The app is free to download and use some features. To unlock all features, users will need to pay $10 a month or $40 for a yearly subscription to Moodfit Premium. Their privacy policy is much like their website -- short and relatively straightforward. Their security practices raised our eyeballs pretty high though when we were able to login with the password of "1".

We did really appreciate their blog post discussing how the war in Ukraine can impact mental health (one of your *Privacy Not Included researchers is Ukrainian). Thank you to everyone supporting Ukraine.

Que pourrait-il se passer en cas de problème ?

Moodfit kinda really messed up when they allowed weak passwords like the one number password of "1" to protect all the sensitive personal information you can store in their app. This is a terrible security practices we can't overlook. We did email them multiple times at the email address listed in their privacy policy with questions about their privacy and security practices but received no response. So, yeah, we have concerns about Moodfit's security. Please, if you use this app, use a much stronger password than "1" to protect your personal information.

As for privacy, Moodfit does seem to do a bit better there. Their privacy policy, last updated a good while ago in 2018, says that registration is optional, however, you may not be able to use many of the features offered by the app unless you register with Moodfit. When you register, Moodfit collects data such as email address, app usage information like when you use the app and what features you use, and mood-related data you enter. Moodfit says they can use this data to, among other things, contact you with marketing promotions. Moodfit also collects data such as IP address and your mobile devices unique device ID.

Moodfit does say they can share the personal and app usage information you provide with "our trusted services providers who work on our behalf, do not have an independent use of the information we disclose to them, and have agreed to adhere to the rules set forth in this privacy statement." That's a rather vague statement of who they share your information with and how that information is used. Although it is pretty common to share you data with service providers, it's nice when a privacy policy outlines who those providers are. We really don't like vague statements in privacy policies.

Moodift doesn't specifically state in their privacy policy that they don't sell user data, which is something we like to see stated clearly. They do say only aggregated, anonymized data may be periodically transmitted to external services to help Moodfit improve the app, so hopefully no personal information is being sold. We do have to mention here that it has been found to be relatively easy to de-anonymize user data, especially if location or device ID data is included

What's would happen if something goes wrong with Moodfit? Well, you could use a terrible password to protect all the sensitive, personal information Moodfit can collect. Your 10-year old could easily guess your terrible password and learn you have huge anxiety they'll grow up to be an Instagram influencer. This results in your 10-year old only dreaming of becoming an Instagram influencer. No one wants that. Use a strong password people!

Conseils pour vous protéger

  • Do NOT sign up to Moodfit with your Facebook account
mobile Confidentialité Sécurité avertissement IA

Ce produit peut-il m’espionner ? informations

Caméra

Appareil : Ne s’applique pas

Application : Non

Microphone

Appareil : Ne s’applique pas

Application : Oui

Piste la géolocalisation

Appareil : Ne s’applique pas

Application : Non

Que peut-on utiliser pour s’inscrire ?

Facebook sign-up available

Quelles données l’entreprise collecte-t-elle ?

Comment l’entreprise utilise-t-elle les données ?

Moodfit's privacy policy does not specifically state if they sell users' personal data or not. They do say only aggregated, anonymized data may be periodically transmitted to external services to help Moodfit improve the Application and service. Hopefully this indicates they do not sell user data.

Moodfit may share User Provided and Automatically Collected Information with their trusted services providers who work on their behalf, do not have an independent use of the information Moodfit disclose to them, and have agreed to adhere to the rules set forth in this privacy statement. This statement is rather vague in defining who their "trusted service providers" might be and what they do with your personal information.

You can stop all collection of information by the Application easily by uninstalling the Application.

Comment pouvez-vous contrôler vos données ?

You can stop all collection of information by the Application easily by uninstalling the Application. You may use the standard uninstall processes as may be available as part of your mobile device or via the mobile application marketplace or network. You can also request to opt-out via email, at [email protected]

Moodfit retains User Provided data for as long as you use the Application and for a reasonable time thereafter. They will retain Automatically Collected information in perpetuity.

To delete User Provided Data that you have provided via the Application, Moodfit says to contact them at [email protected] Unfortunately, our emails to that address went unanswered.

Quel est l’historique de l’entreprise en matière de protection des données des utilisateurs et utilisatrices ?

Moyen

No known privacy or security incidents discovered in the last 3 years.

Informations liées à la vie privée des enfants

Moodfit does not use the Application to knowingly solicit data from or market to children under the age of 13.

Ce produit peut-il être utilisé hors connexion ?

Non

Informations relatives à la vie privée accessibles et compréhensibles ?

Non

Liens vers les informations concernant la vie privée

Ce produit respecte-t-il nos critères élémentaires de sécurité ? informations

Non

Chiffrement

Oui

Mot de passe robuste

Non

Allows "1" as a password

Mises à jour de sécurité

Oui

Gestion des vulnérabilités

Impossible à déterminer

Politique de confidentialité

Oui

Le produit utilise-t-il une IA ? informations

Impossible à déterminer

Cette IA est-elle non digne de confiance ?

Impossible à déterminer

Quel genre de décisions l’IA prend-elle à votre sujet ou pour vous ?

L’entreprise est-elle transparente sur le fonctionnement de l’IA ?

Impossible à déterminer

Les fonctionnalités de l’IA peuvent-elles être contrôlées par l’utilisateur ou l’utilisatrice ?

Impossible à déterminer

*confidentialité non incluse

Pour aller plus loin

Commentaires

Vous avez un commentaire ? Dites-nous tout.