To help you find information quickly on any particular question you might have, we have set out an index below. Just click on the question or issue you are interested in and you will be taken to the relevant section:
With whom might Wemo share my personal data?
Where might Wemo transfer my personal data?
How does Wemo aim to keep my personal data secure?
How long will Wemo keep my personal data?
What rights do I have in respect of my personal data?
Information for California Residents.
How do I contact you about my privacy rights?
Updates to this Privacy Notice.
Please read this Wemo Accounts Privacy Notice (“Privacy Notice”) carefully before completing the registration process and/or using the Wemo service (“Service”). This Privacy Notice is provided as a separate notice of the Wemo Accounts Terms of Service (the “Agreement”). In this Privacy Notice, Belkin International, Inc. (together with its affiliates, "Wemo", “we” or “us”) provides details of how information is handled when you use the Service, including any apps (“Apps”) that facilitate use of the Service. The purpose of this Privacy Notice is to give you information about how Wemo collects, processes, stores and otherwise uses information about you, and your rights in relation to that information. If you are visually impaired, you may access this notice through your browser’s audio reader.
Please ensure you share this Privacy Notice with anybody else on your network using the Service.
In this Notice you will see references to "GDPR" - that refers to the European Union ("EU") General Data Protection Regulation. If you are in the European Economic Area ("EEA"), the GDPR governs your rights in relation to your personal data and how organizations should protect it. You may also see references to “CCPA” – that refers to the California Consumer Privacy Act. If you are in California, the CCPA governs your rights in relation to your personal data and how organizations should protect it.
This Privacy Notice contains important information about your rights and obligations, as well as limitations and exclusions that may apply to you.
We process the data that you enter or upload to the Service in accordance with this Privacy Notice and the Agreement. Certain data collected from the Service, or that you provide or make accessible as part of your use of the Service, is necessary for the essential use and functionality of the Service or to provide associated services as set forth in this Privacy Notice. These are labeled as “Required Data” under the categories of personal data below. Accordingly, you may not be able to opt-out of certain data collection practices without terminating your use of the Service.
What types of personal data does Wemo collect about you when you use the Service and what is the purpose of collection?
“Personal data” or “personal information” means any information relating to you or relating to another identified or identifiable natural person, including where such information is defined under the data protection laws applicable in the jurisdiction in which such person resides to be "personal data" or "personal information" or any other similar term and includes, without limitation, "personal data" as defined in the GDPR in respect of individuals resident in the EEA “personal information” as defined in the CCPA in respect of individuals resident in California, United States, or "personal information" as defined in the Privacy Act 1988 (Cth) in respect of individuals resident in Australia.
Anonymized Information. When information is anonymized, personal data is removed from collected data and the remaining portion of the data is repurposed for internal or external use, such as to determine how many users of a particular Wemo light switch set rules for turning lights on and off. Anonymized information cannot be used to identify you.
Children’s Personal Data. The Service and Wemo Products are not directed to, nor does Wemo knowingly collect personal data from children under the age of 16. If you believe we might have inadvertently collected personal data from or about a child under the age of 16, please contact us here and we will delete it. We do not sell the personal information of minors under 16 years of age.
The following provides examples of the types of information we collect about you and how we use that information.
| Context | Types of Data | Primary Purposes for Collection and Use of Data |
|---|---|---|
| Account Registration/ Authentication Data | We collect your user name. email address, and password when you provide them to us when creating a Wemo account. Your password is only stored in hashed form. We also collect information when you are logged into your account, including your MAC address and the serial number of your Wemo product. Authentication Data is Required Data. |
We have a legitimate interest in providing account related functionalities to our users, including securely authenticating your account with us. Account information can be used to save your preferences and transaction history; to notify you about firmware updates, service downtimes, security issues, new features and other communications about the Service; and to provide you with more efficient customer support. We also use account information to notify you about changes to the Agreement to perform our contract with you. The MAC address and serial number of your Wemo product are collected because we have a legitimate interest in making sure that your Wemo product is working properly and troubleshooting problems that a particular product may have with the Service. |
| Customer Support | If you report a problem or contact us for support, we will collect your name, phone number, email address and information about your use of the Service and Wemo products connected to your home network. If you submit a Return Materials Authorization, we will collect your physical address and credit card number. |
We use your information to perform our contract to provide you with products or services and to honor product warranties. We also have a legitimate interest in providing support to our customers and fixing issues that they bring to our attention, as well as developing new products and improving current products based on your feedback. |
| Marketing List | When you sign up for one of our marketing lists, which you can opt into when you set up your account with us, we collect your email address. |
We share information about our products and services with individuals that consent to receive such information. We also have a legitimate interest in sharing information about our products or services that we feel may interest you. |
| Service Interactions/ Usage Data | We use technology to monitor how you interact with the Service. This may include device and configuration settings and data, crash and “Report a Problem” logs, performance statistics, network statistics and configurations, what App Store you use, when the Service is accessed by you, log in/ log off data, IP address may be included in certain cloud logs. We do not actively collect IP addresses, but they could be included as part of the meta data relating to cloud logs that we collect. This data may be shared with Splunk (see “With whom might Wemo share my personal data” below) and log data will be stored for three months. User configuration data may include MAC addresses of devices in your home network and user defined URLs related to your use of the Service. User configuration data is processed and stored at your request. We do not collect, process or store any other information about your use of the Internet or devices in your home network. User logs and access data may include information about specific devices’ connections to specific URLs that is relevant to the operation of the Service based on user-defined configurations. Usage Data is Required Data. |
We have a legitimate interest in understanding how you interact with our Service to better improve it, to ensure that content is presented in the most effective manner, and to troubleshoot issues to understand your preferences and interests in order to select offerings that you might find most useful. If you consent, user log and access data may also be used during customer support to troubleshoot issues with your use of the Service. We also have a legitimate interest in detecting and preventing fraud and ensuring that your experience on our Service is as secure as possible. |
| Surveys | When you participate in a survey, we collect information that you provide through the survey. If the survey is provided by a third-party service provider, the third party’s privacy policy applies to the collection, use, and disclosure of your information. |
We have a legitimate interest in understanding your opinions and collecting information relevant to our organization and products. |
| Sweepstakes or contests | When you participate in a sweepstakes or contest, we collect information about you which includes contact information to notify you if you are selected and to add your name to a winners list. |
We have a legitimate interest in operating the sweepstakes. In some contexts, we are also required by law to collect information about those that enter our sweepstakes and we have a legitimate interest in complying with those laws. |
In addition to the information that we collect from you directly, we may also receive information about you from other sources, including third parties, business partners, our affiliates, or publicly available sources.
- If you choose not to provide your personal data to us for the purposes set out in this Privacy Notice, or if we do not or are unable to collect the personal data we require, we may not be able to provide you with requested information, products or services, or to effectively conduct our relationship with you.
We may otherwise collect, use or disclose your personal data where the collection, use or disclosure is:
- in accordance with this Privacy Notice or any agreement you enter into with us; or
- required or authorised by applicable law.
With whom might Wemo share my personal data?
Wemo does not rent or sell personal data.
Wemo is part of the Belkin group of companies (“Belkin Group”). In addition, the Belkin Group is owned by Foxconn Interconnect Technology, a Hon Hai company, which includes companies in the Foxconn group of companies (“FIT Group”). Wemo may transfer personal data to third parties, including to entities within and outside the Belkin Group and FIT Group located in any jurisdictions where Belkin Group entities and FIT Group entities are located, for the processing purposes set forth in this Privacy Notice, as follows:
- To companies within the Belkin Group and FIT Group.
- To general service providers. As necessary to provide the Service to you. Below is a non-exhaustive list of service providers that we may share your data with, including the related processing purposes for which it is disclosed to these service providers:
- Splunk – We provide Authentication Data and Usage Data to Splunk for analytics purposes to assist us with improving Wemo Products, including the Service and products connected to the Service.
- Salesforce – We provide Authentication Data to Salesforce to help us process authentication requests and provide Usage Data to Salesforce to help us track your usage of the Service.
- To customer support service providers. As necessary to provide you with customer support if you contact our customer support team:
- Concentrix
- CSS
- Sutherland
- Salesforce
- To regulators, authorities, and other third parties. As necessary to comply with the law or legal process, personal information may be transferred to regulators, courts, and other authorities (e.g., tax and law enforcement authorities), independent external advisors (e.g., auditors), and internal compliance and investigation teams (including external advisers appointed to conduct internal investigations).
- To acquiring entities. Your personal data may be transferred to third parties involved in a reorganisation, restructuring, merger, acquisition or transfer of assets of the Wemo business in whole or in part including the successor entity provided that the receiving party agrees to treat your personal data in a manner consistent with this Privacy Notice.
- With your consent. We may ask if you would like us to share your information with other unaffiliated parties who are not described elsewhere in this policy. Please note that if you consent to the disclosure of your Personal Information to a third party, that third party will apply its own privacy practices. You should carefully review the privacy notice of any third party before you consent to providing them with your personal information.
In addition, we may share aggregated anonymized information, including non-personal usage data, with third parties for a variety of purposes, including to analyze trends about home networking and utility use, to show third parties how their products could work with Wemo products and to generally improve home networking. We've taken steps to ensure that this information cannot be linked back to you and we require third parties to keep all shared information in its anonymized form.
Marketing. You have the right to ask us not to process your personal data for marketing purposes. We will inform you (before collecting your personal data) if we intend to use your personal data for marketing purposes, or if we intend to disclose your personal data to any third party for marketing purposes.
We will give you choices about your personal data. Some choices are presented up front in the form of opt-in notices or acceptance boxes for marketing to you or sharing your personal data with third parties. You always have the choice to opt-out if you later change your mind. One form of opt-out is clicking the Unsubscribe link in a marketing email. This will take you off our marketing email list. Please note that these opt-in/opt-out choices do not apply to the receipt of mandatory Service or Account communications, which you may receive periodically as part of Wemo performing its contract with you and other legitimate interests, unless you cancel the Service in accordance with the Agreement.
If you do not wish to receive direct marketing material from us or a third party, in addition to following the "Unsubscribe" instructions in a marketing email, you can send us a request here.
Where might Wemo transfer my personal data?
Wemo will take all necessary measures to ensure that transfers out of the country where you are located are adequately protected as required by applicable data protection law. The data that we collect from you may be transferred to, and stored at, various locations globally, including the United States, Taiwan, Australia, New Zealand, Canada, the United Kingdom and countries located in the EEA.
If you are located in the EEA, for purposes of the GDPR, transfers of your personal data out of the EEA(if you are a resident of the EEA) will be bound by the EU Standard Contractual Clauses (available here) pursuant to the GDPR, which the European Commission has assessed as providing an adequate level of protection for personal data, to ensure that your data is protected adequately.
By providing your personal data to us, you fully understand that Wemo may transfer, process and store your personal data outside of your country of residence where data protection standards may be different, and may disclose your personal data to overseas service providers who may not fully comply with the particular laws of your country.
If you are located in Australia, you consent to the collection, use, storage, and processing of your personal data outside of Australia as set out in this Privacy Notice. You consent to the collection, use, storage and processing of your personal data in other countries, without us being responsible under the Privacy Act 1988 (Cth) for such use (or for any breach). Where such parties are located outside of Australia, you may have rights to enforce such parties' compliance with applicable data protection laws, but you might not have recourse against those parties under the Australian Privacy Act 1988 (Cth) in relation to how those parties treat your personal data.
How does Wemo aim to keep my personal data secure?
Wemo maintains, and takes reasonable steps to ensure that its service providers maintain, appropriate administrative, technical and physical safeguards designed to protect your personal data against accidental, unauthorized or unlawful destruction, loss, disclosure, and access. Unfortunately, the transmission of information via the Internet is not 100% secure. If you use a computer or device that can be accessed by others, other people may be able to access unencrypted personal data. If you do not want your information to be available to others, exercise caution when using public computers or devices or when using any computer or device to which users unauthorized by you may have access.
We recommend that you take every precaution in protecting your personal data. For example, create strong passwords by using a combination of letters, numbers and symbols, change your passwords often, and make sure you use a secure browser. When creating a password for the Service, make sure you choose a unique password that you do not use for other Internet-based services. If you use the Wemo app associated with the Service, make sure you use the official Wemo app from an authorized market or store, such as Apple’s App Store or Google Play. You should also be aware that names that you give your Wi-Fi-enabled devices, home networks and services (also known as "friendly names") may be detectable by Wemo and by others outside your home, so you should not use personal data as part of your friendly names.
If we are required by law to inform you of a breach to your personal information, we may notify you electronically, in writing, or by telephone, if permitted to do so by law.
How long will Wemo keep my personal data?
We will only retain personal data to fulfil the purposes for which it was collected, as required for legitimate business purposes as described in this Privacy Notice, or as otherwise permitted by applicable laws. We may, for example, keep your personal data for a reasonable time after you have stopped using the Service to ensure that Wemo has the records it needs in the event of a dispute or regulatory investigation and to ensure that any ongoing obligations can be complied with, such as complying with requests from regulators. Where personal data is kept, that period will be determined based on the applicable local law.
What rights do I have in respect of my personal data?
You may have a number of rights in relation to your personal data. These can differ by country and jurisdiction.
If you are located in the EEA, you have the following rights:
- Right of access – You have the right to confirm with us whether your personal data is processed, and if it is, to request access to that personal data including the categories of personal data processed, the purpose of the processing and the recipients or categories of recipients. We do have to take into account the interests of others though, so this is not an absolute right.
- Right to rectification – You have the right to rectify inaccurate or incomplete personal data concerning you.
- Right to erasure (right to be forgotten) – You may have the right to ask us to erase personal data concerning you. If required by law we will grant a request to delete information, but you should note that in many situations we must keep your personal information to comply with our legal obligations, resolve disputes, enforce our agreements, or for another one of our business purposes.
- Right to restriction of processing – You have the right to request that we restrict processing of your personal data, where you believe such data to be inaccurate; where our processing is unlawful; or where we no longer need to process such data for a particular purpose unless we are not able to delete the data due to a legal or other obligation or because you do not wish for us to delete it.
- Right to data portability – You may have the right to receive personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit that data to another entity.
- Right to object – You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data, where the justification for our processing is our legitimate interest. We will abide by your request unless we have compelling legitimate grounds for the processing which override your interests and rights, or if we need to continue to process the data to establish, exercise or defend legal claims.
- Right to withdraw consent – You have the right to withdraw your consent to our processing of your personal data at any time after you have consented, including opting out of receiving marketing materials. The easiest way to do this is by clicking the "Unsubscribe" link in any email you receive from us.
To exercise any of these rights, please contact us as stated below (How do I contact you about my privacy rights?). We will respond to your request promptly upon receipt. For EEA requests, this will be within one month of receipt, or, if further time is required, we will inform you of this and the reason for the delay.
You also have the right to lodge a complaint with the local data protection authority, which may vary depending on your location. Please click here for a list of contact details for the EEA data protection supervisory authorities.
If you are located in Australia, you have the following rights:
(i) Right of access and correction - You are generally entitled to access personal data that we hold about you. If you request access to your personal data, in ordinary circumstances we will give you full access to your personal data. Depending on the nature of the request, we may charge for providing access to this information, however such charge will not be excessive. However, there may be some legal or administrative reasons to deny access. If we refuse your request to access your personal data, we will provide you with reasons for the refusal where we are required by law to give those reasons.
We take all reasonable steps to ensure that any personal data we collect and use is accurate, complete and up-to-date. To assist us in this, you need to provide true, accurate, current and complete information about yourself as requested, and properly update the information provided to us to keep it true, accurate, current and complete.
Please contact us as stated below (How do I contact you about my privacy rights?) , if you believe that the personal data is inaccurate, incomplete or out of date, and we will use all reasonable efforts to correct the information. It would assist us to ensure we properly understand your request, and allow us to respond more promptly, if requests are made in writing and include as much detail as possible.
If you are located in California, you have the following rights:
(i) Right of access. – You may request access to your personal information by contacting us at the address described below. If required by law, upon request, we will grant you reasonable access to the personal information that we have about you. Note that California residents may be entitled to ask us for a notice describing what categories of personal information (if any) we share with third parties or affiliates for direct marketing.
(ii) Right of deletion – You may request that we delete your personal information by contacting us at the address described below. If required by law we will grant a request to delete information, but you should note that in many situations we must keep your personal information to comply with our legal obligations, resolve disputes, enforce our agreements, or for another one of our business purposes.
Please address written requests and questions about your rights here or, if you are in California, call us at 877-460-2323.
We may ask you to verify your identity before we can act on your request. We may conduct an identity verification by phone call or email. Depending on your request, we will ask for information such as your name, the email address connected to your account with us or the date of a support call you made to us. We may also ask you to provide a signed declaration confirming your identity.
In some circumstances, you may designate an authorized agent to submit requests to exercise certain privacy rights on your behalf. We will require verification that you provided the authorized agent permission to make a request on your behalf. You must provide us with a copy of the signed permission you have given to the authorized agent to submit the request on your behalf and verify your own identity directly with us.
If you are an authorized agent submitting a request on behalf of an individual in California, you must attach a copy of the following information to the request:
- A completed Authorized Agent Designation Form, located here, indicating that you have authorization to act on the consumer’s behalf.
- If you are a business, proof that your business is registered with the Secretary of State to conduct business in California.
If we do not receive both pieces of information, the request will be denied.
Information for California Residents.
California law indicates that organizations should disclose whether certain categories of information are collected, “sold” or transferred for an organization’s “business purpose” (as those terms are defined under California law). You can find a list of the categories of information that we collect and share here. If you would like more information concerning the categories of personal information (if any) we share with third parties or affiliates for those parties to use for direct marketing, please submit a written request to us using the information in the "How do I contact you about my privacy rights?" section below. We do not discriminate against California residents who exercise any of their rights described in this Privacy Notice.
How do I contact you about my privacy rights?
Should you have any privacy-related questions or would like to exercise your rights, please contact us here or, if you are in California, by phone at 877-460-2323.
If you are in the EEA, for GDPR purposes, our data controller is:
Belkin Limited
Express Business Park Shipton Way
Rushden, Northants
NN10 6GL United Kingdom
Updates to this Privacy Notice
We may update this Privacy Notice from time to time, so please review it frequently. If we change our Privacy Notice, we will post the revised version here, with an updated revision date. If we make material changes to our Privacy Notice, we will notify you by email or prominently post a notice on the Wemo website.
Last Revised and Updated Effective July 1, 2020