2. Privacy Summary Written for Humans
3. Note That Privacy Depends on Security
It is impossible to have privacy without security. Security prevents malicious people from breaking through the access controls – whether curtains, doors, digital permissions or encryption – that provide other people’s privacy.
Nest reminds people of this connection using more everyday language like “same…tools that banks use” and “double-bolt the doors.” They also reinforce the human connection with another picture of a woman, her husband, and their young family.
4. Buyer Controls Sharing and Retention
Two of the critical concepts in IoT privacy are who can see your data (sharing) and how long can they use it (retention). Nest tackles both issues in their human-readable policy.
- Sharing: “We only share personal info when you ask us to connect a Nest product to another device in your home. We also let you know what we’re sharing and why. And you can stop sharing your information at any time.”
- Retention: “We have a Delete My Account feature that removes your personal information from our servers.”
5. Separate Web and Device Privacy Polices
6. Data Is Made Anonymous Before Publication
“Big data” got a scare in 2014 when a researcher used a complete set of obfuscated taxi route data to figure out the personal travel habits of an entire city. With that in mind, data providers have been been more careful to only release data that hides the individual identity and behaviors of individual consumers.
7. A Real Privacy Contact
Finally, Nest provides a catch-all contact, in this case an email address, in case their buyers have any questions.
How Are Others Doing?
Like Nest, we would also love to hear suggestions about how well other IoT companies are doing with privacy, or which other companies you would like us to evaluate. To contact us about either topic, please send email to “firstname.lastname@example.org“