A privacy brouhaha has erupted over Kohler Health’s new toilet camera, the Dekota, that scans your poop looking for clues about your gut health.
Specifically, a security researcher is disputing Kohler Health’s claims that data collected by the Dekota, including scans of your fecal matter, are end-to-end encrypted. Kohler Health, meanwhile, is doubling-down, countering that the connection is end-to-end encrypted.
In a blog post, researcher Simon Fondrie-Teitler (as reported by TechCrunch) defines end-to-end encryption as “a method of securing data that ensures only the sender and their chosen recipient are able to view it. Correctly implemented, it prevents other parties, including the developer of the application, from accessing the protected data.”
But as Fondrie-Teitler learned in his research, Kohler Health does have access to data gathered by the Dakota, a $599 device that clips to the side of your toilet and aims an optical sensor at the bottom of your toilet bowl, where it examines your bowel movements and delivers reports about its findings in the Kohler Health app.
Thus, Fondrie-Teitler argues, while the Dakota’s data tunnel may indeed be encrypted, it is not end-to-end encrypted, as are the secure connections between two parties in a WhatsApp call or the “client-side” encryption employed by Apple’s iCloud storage service, which prevents Apple itself from seeing a user’s data.
“What Kohler is referring to as E2EE here is simply HTTPS encryption between the app and the server, something that has been basic security practice for two decades now, plus encryption at rest,” Fondrie-Teitler concluded, while adding that Kohler Health’s privacy policy says it may use data from the Dekota to train AI models.
As Fondrie-Teitler noted, many tech reporters (myself included) parroted Kohler Health’s end-to-end encryption claims about the Dekota toilet camera, so naturally I reached out to the company for more details.
Here is the statement I received:
So, according to Kohler’s logic, Kohler Health counts as a trusted party at the other end of its toilet cam’s encrypted tunnel because Kohler Health is not a messaging service—and thus, it counts as end-to-end encryption.
But there’s also an argument to be made that while Kohler Health isn’t a messaging service, it’s still a company acting as the guardian of our private data, and the term “end-to-end encryption” imples that Kohler will treat that data the same way that Apple does with iCloud—meaning, Apple can’t access it at all.
In this case, however, Kohler does (according to Fondrie-Teitler’s research) have access to its user’s data, including the option to deanonymize the data of willing users for use in AI training. I put this point to Kohler’s spokesperson in a follow-up query, and am awaiting a reply.
In an interview with 404 Media, Fondrie-Teitler argues that Kohler Health’s claims undermine the very meaning of end-to-end encryption—which, according to Cloudflare’s definition, is “a type of messaging that keeps messages private from everyone, including the messaging service.”
“I’d like the term ‘end-to-end encryption’ to not get watered down to just meaning ‘uses https’,” Fondrie-Teitler said in 404 Media’s story. “I think everyone has a right to privacy, and in order for that to be realized people need to have an understanding of what’s happening with their data.”
Author: Ben Patterson
Source: PCWorld
Reviewed By: Editorial Team
