Nest responds to my privacy questions
I had asked Nest/Google support some privacy-related questions about their thermostat. Here is their response (minus the customer service “Your question is important to us” fluff which I deleted). Hotlinks and slightly strange grammar in the original. I’ll analyze it below:
Here’s an excellent read on your Privacy Statement. This will tell you all of the information that’s shared.
There are learning features on the Nest Learning Thermostat that are used in order for the Nest Thermostat to collect data. This takes your preferences and schedule and programs itself so you don’t have to adjust the Nest manually.
Although, you can always turn off these features to use the the Nest manually.
At this time updates will be pushed through when you’re connected to Wi-Fi. Typically customers will not be notified since most updates are small patches to fix bugs. In case there is a heavy update like the 4.3 you’ll be notified.
The only option to opt out as of now is to be disconnected from Wi-Fi.
Question #1. I asked “which information does it send to Google or anybody else, under which circumstances”, and they say the privacy statement tells me. Here is what it says.
(Note that generally, Privacy Policies are not enforceable. In other words, they can say one thing and do the opposite, but nobody can sue them over it. So take the policy for what it is worth.)
- This distinction is important because as soon as personal information is on Google’s servers, it is subject to a lot less legal privacy protections than if it resided in my home.
- It is unclear whether the “Nest Learning Thermostat algorithms” run entirely on the device, or on Google’s cloud.
- They are clear that they “record” certain information whenever they decide is the right time to do so, including “every time your system turns on and off”, as well as all data from all sensors.
- They seem to have fairly strong rules access to the data by third parties, which is good.
- They use the information “to provide, develop and improve Nest Products and services, including information and recommendations about your products or energy use.” This seems to be largely a catch-all for “we can use it for anything internally”, including advertising as long as it is somehow related to products they know I have. It’s unclear whether that is Nest products or Google products.
- They share aggregated information with all sorts of third parties, with the assumption that that makes it anonymous. It’s not very specific what they mean with that, and so we have to assume it can be de-anonymized.
- They take information outside of the country.
- They hand over your information to whatever government agency asks as long as they believe the laws of the land of the country in question requires them to do so.
- The previous two items together seem to make it possible for one government to get its hands on data collected in another country (depending on the particular countries and their laws in question).
- They store personal information indefinitely and never delete it as long as you are a customer. The privacy statement isn’t entirely clear whether they immediately delete it afterwards, or how they decide you’re not a customer any more.
- Apparently you can delete the information they have about you by resetting the device, and through their website.
Question #2: I asked “how to disable such sharing”. While the second link in the response talks about how to turn off the “learning” part, it does not talk about disabling sharing at all. This part of their response seems (intentionally? unintentionally?) unrelated to my questions. Apparently the only option is to turn off WiFi. Either way, the answer seems to be: As long as you use WiFi, you cannot turn off data collection by Nest/Google.
In summary: They collect every piece of data the thermostat can get its hands on, store it indefinitely (unless I stop being a Nest/Google(?) customer), use it for whatever (internal) purpose they want, share it in aggregate with third parties, hand it over to governments, and I cannot limit such sharing.
Sort of what I thought.
P.S. If you think I misinterpreted any of the above, I welcome corrections in the comments.