Kohler's Smart Toilet Camera: Privacy Promises Unravel

Unveiling the Truth: Kohler's Smart Toilet Camera's Encryption Under Scrutiny

Initial Promises: The Dekoda's Health Monitoring and Security Assurances

Kohler introduced its innovative Dekoda smart toilet camera, positioning it as a pioneering health device. This technology was designed to scrutinize various aspects of gut health, hydration levels, and even detect the presence of blood in stool. Given the highly personal nature of such data, Kohler was quick to reassure potential users that their privacy was paramount. They emphasized that the camera's lens was oriented solely downwards and that all collected data would be safeguarded by “end-to-end encryption,” a term typically associated with the highest level of data security.

Expert Skepticism: An Engineer's Investigation into "End-to-End Encryption"

Despite Kohler's assurances, a software engineer and former Federal Trade Commission technology advisor, Simon Fondrie-Teitler, harbored immediate doubts. He noted that “end-to-end encryption” usually implies secure, direct communication between users, as seen in popular messaging applications like WhatsApp or iMessage. This raised a crucial question: if one end of the encryption is the user, who or what constitutes the other end of this supposedly secure channel for the Dekoda system?

Clarifying the “Other End”: Kohler's Role in Data Management

Upon inquiry, Kohler clarified that the “other end” of the encryption involved the company itself. They explained that user data is encrypted when at rest—meaning when stored on the user's mobile device, the toilet attachment, and Kohler's own systems. Furthermore, data in transit is also encrypted, secured as it moves between user devices and Kohler's servers. However, this process involves the data being decrypted on Kohler's systems for processing, a detail that significantly alters the perception of true “end-to-end encryption” as understood by many users.

Standard Practices vs. User Expectations: The Reality of TLS Encryption

The encryption Kohler described is, in essence, standard TLS (Transport Layer Security) encryption, commonly recognized as HTTPS. This is a fundamental security measure for transmitting data over the internet and has been a staple of online infrastructure for over two decades. While essential for general internet security, it differs markedly from the more stringent, user-to-user “end-to-end encryption” where only the sender and intended recipient can read the messages, and not even the service provider can access the content.

Data Access and AI Training: Unveiling Kohler's Intentions

Kohler stated that its systems and processes are meticulously designed to prevent unauthorized access to identifiable images by its health employees through a combination of encryption, technical safeguards, and governance controls. Nevertheless, the fact remains that Kohler can indeed access this sensitive data. This leads to the critical question of how the company utilizes this information. It has come to light that Kohler may be leveraging these images to train artificial intelligence models. When users subscribe to the Dekoda app, they grant permission for the company to use their data to “research, develop, and improve its products and technology, and to de-identify [the user’s] data for lawful purposes.”

The Cost of Smart Health: Dekoda's Pricing Model

The Kohler Dekoda device itself carries a price tag of $599. Beyond the initial purchase, users are also required to subscribe to an app, with annual fees ranging from approximately $70 to over $150, depending on the chosen plan. This ongoing cost, coupled with the clarified privacy policies, presents a comprehensive view of the investment and data considerations involved in adopting Kohler's smart toilet camera system.