Echo Show Privacy Report

The Echo Show has a lot going for it, like strong encryption and multi-factor authentication. They even provide automatic software updates. Their privacy policy is a bit troubling. It allows them to share all their users’ personal information with third parties, including IP addresses, browser information, and web pages visited.
Encryption
In Transit | Yes |
---|---|
At rest? | Yes |
All network communications and capabilities? | Yes |
Security Updates
Automatic, regular software/ firmware updates? | Yes |
---|---|
Product available to use during updates? | Yes |
Passwords
Mandatory password? | Yes |
---|---|
Two-Factor authentication? | Yes |
Multi-Factor authentication? | Yes |
Vulnerability Management
Point of contact for reporting vulnerabilities? | Submit a report |
---|---|
Bug bounty program? | Yes |
Privacy Policy
Link | https://www.alexa.com/help/privacy |
---|---|
Specific to device? | No |
Readable? | Yes |
What data they log | Name, address, email, country, nickname, telephone number, website, company, job title, credit card information, IP address, URL clickstream, browser information, operating system, toolbar service, cookies, web pages visited |
What data they don’t log | n/a |
Can you delete your data? | Yes |
Third-party sharing policies | Shares information with third parties. |
Surveillance
Log camera device/ app footage | No |
---|---|
Log microphone device/ app | No |
Location tracking device/ app | No |
Parental Controls
Are there parental controls? | No |
---|
Company History
Any security breaches/ surveillance issues in past? | Yes |
---|---|
Did they do anything to fix it? | Yes |
Additional Security Features
Anything like privacy shutters, privacy zones, etc.? | No |
---|