Is Flo private after the FTC settlement?

Flo added an Anonymous Mode and obtained ISO 27001/27701 certifications after the 2021 FTC consent order. However, the app still stores data on its servers, which means it remains subpoena-accessible.

What makes a period tracker truly private?

On-device storage with no account requirement and no third-party analytics SDKs. If the company never has your data, it cannot hand it over.

questionnaires

How Private Is Your Period Tracker?

Audit your current period tracking app's privacy practices with this seven-question self-assessment covering data storage, sharing, and legal exposure.

You downloaded a period tracker. You've been logging cycles for months or years. But do you know where that data actually goes? This audit covers the seven things that determine whether your tracker is private or just says it is. Answer each question about your current app, then check your score. Question 1: Does Your App Require an Account? Did you create a username, email login, or social sign in to use the app? Option A: Yes, an account was required. Your data is tied to an identity the company controls. This is the baseline for server stored, identifiable health data. Option B: Optional account, but I created one. Same exposure as Option A, but the app at least offers an alternative path. Option C: No account needed. The app works without any identity attachment. This is structurally more private. Account creation is the first gate. Once you've attached an email or phone number to your cycle data, that link exists on the company's servers. Question 2: Where Is Your Data Stored? Check your app's privacy policy or settings. Where does cycle data live? Option A: On the company's servers (cloud). Flo, Clue, Ovia, Glow, and most mainstream trackers work this way. Your data exists on