The creators of air fryers and other smart home devices have introduced new guidelines regarding the information they can gather from users’ homes.
The Information Commissioner’s Office (ICO) published the guidance today following a Which? investigation last December that uncovered certain air fryers, smart TVs, and smartwatches collecting data on their users.
“In our increasingly connected world, we shouldn’t have to choose between enjoying the benefits of smart products and our privacy,” stated Stephen Almond, executive director for regulatory risk at the ICO.
“We all have a rightful expectation of privacy in our homes, and we need to trust that smart products respect our privacy, use our personal data responsibly, and operate within expected norms.”
According to the Which? study, three air fryers from China’s Xiaomi, Tencent, and Aigostar recorded audio from their users’ phones without a clear reason.
The Aigostar and Xiaomi models also transmitted personal data to servers in China, although this was mentioned in the product’s privacy notice.
“Whether it’s an air fryer seeking your precise location or a smartwatch app that listens while you sleep, it is evident that some companies are straying too far into privacy violations,” remarked Andy Laughlin, a tech expert at Which?, in response to the new guidelines.
“The ICO’s much-needed guidance is a significant first step toward restoring consumer confidence in smart home products—this must also be supported by robust enforcement, particularly concerning international companies.”
Read more from Sky News:
First woman to lead MI6
Search for remains of 800 infants commences
Research by TechUK indicates that four out of five individuals in the UK possess at least one smart appliance, and the new guidelines aim to safeguard them from excessive surveillance.
The ICO emphasizes that manufacturers and developers must “implement a data protection by design and default approach.”
This involves considering data protection during the design phase and throughout the product’s lifecycle.
The ICO suggests developers ask a series of questions, including: “Is it necessary to use personal information?”
Smartwatches and fitness trackers are also encompassed in the new guidelines, with the ICO cautioning that data like a user’s BMI or fertility counts as special category data requiring extra diligence.
Which?’s investigation revealed that the Huawei Ultimate smartwatch requested nine “risky” phone permissions—the highest of any device studied.
“Risky” permissions typically involve access to precise user locations, audio recording capabilities, stored file access, or visibility of all installed apps.
Huawei stated that all permissions requested are justified.
There are no allegations of illegal activities by any companies referenced in the investigation.
“We want to assist organizations in getting this right from the outset—but we stand ready to take action if needed to protect individuals from harm,” said Mr. Almond.
“When you welcome a new smart product into your home, rest assured that we are looking out for you.”