Kasa Privacy Policy(Global)

Privacy Policy

Last Updated on: Sep 26, 2024.

 

General rules and definitions

TP-Link Systems Inc. (collectively, “TP-Link” “we” “us” or “our”) takes your privacy seriously. We abide by applicable privacy laws and regulations to protect your personal data. Accordingly, we developed this privacy policy ("Policy”) in order for you to understand what types of personal data we collected, how we use it, for what reason do we need to process your personal data, who we share it with, when and how we delete it, what rights do you have concerning your personal data and what measures we take to protect it.

TP-Link provides:

(1) software that may be downloaded to your smartphone or tablet to access services (“Mobile Apps” such as Tether, Deco, Tapo etc.), 

(2) services, including technical support and services accessible through the Site(s) (“Support”),

(3) subscription services, including services that can be accessed using the Support and Mobile Apps (“Subscription Services”, such as HomeShield, TapoCare/KasaCare). The term “Services” means the Sites, Support, Mobile Apps, and Subscription Services, which may be used in conjunction with hardware products provided by TP-Link affiliates and in other ways provided by TP-Link. Some Services of TP-Link can be used together or in ways that integrate with Services from third parties.

The Sites mentioned in (2) do not include pages linked from the Websites which are operated by local partners, such as https://www.tp-link.com/us. Supplemental data protection information is available where our partners (including affiliates) operate or provide TP-Link branded web pages or products. 

You accept and consent to the practices and policies outlined in this Privacy Policy. This Privacy Policy incorporates herein the Terms of Use; both statements should be read in conjunction with each other. This Privacy Policy may change from time to time. Your continued engagement with our Services after such revisions indicates that you accept and consent to them, so please check the Privacy Policy periodically for updates. Your use of the Products is governed by the applicable privacy policy made available to you when you download or access such Products, including on any page where you log in to a cloud account which may be linked from the Websites. For further information regarding our partners’ data protection practices in a specific country and/or region, please refer to the privacy policy tailored for that specific country and/or region via https://www.tp-link.com/en/choose-your-location/. You may consult the respective privacy policy for your country/region of residence or check the policy posted on the page you are viewing to read the data protection practices that apply.

1. Personal Data We Collect

We collect and use different types of data from and about you, including:

1.1 Personal Data You Provide to Us

You provide information to us when you:

(1) search for products or services in our websites;

(2) place order in our stores;

(3) download, stream, view, or use content on a device, or through a service or application on a device (only for the maintenance of our service, not to monitor your behavior);

(4) provide personal data in Your Account (and you might have more than one if you have used more than one e-mail address or mobile number when you register and use our TP-Link brand Services) or Your Profile;

(5) configure your settings on, provide data access permissions for, or interact with a TP-Link device or service;

(6) communicate with us by phone, e-mail, livechat or otherwise;

(7) complete a questionnaire, a contest entry form or beta testing application;

(8) upload or stream images, videos or other files to the cloud Services;

As a result of those actions, you might supply us with information as:

(1) identifying information such as your name, address, and phone numbers;

(2) subscription payment information;

(3) your location information;

(4) people, addresses and phone numbers listed in your Addresses;

(5) email address;

(6) content of livechats, posts, and emails to us;

(7) personal description and photograph in Your Profile;

(8) images and videos collected or stored in connection with cloud services;

(9) device log files and configurations, including Wi-Fi credentials, if you choose to automatically synchronize them with your other devices or third-party accounts.

1.2 Automatic Information Collection

We automatically collect information about you when you access or use our Services. For example, when you connect hardware devices or third-party services to your account, those hardware devices may report usage information to the Services, and the Services may read, process, and store this information for the purposes described in this Privacy Policy. Such information is usually associated with the usage of the particular hardware device or third-party service, such as when a motion sensor senses motion. The Services will receive information about the device activation, as well as the information that you have chosen to associate with the Product or Service such as device name, group name, and location name. The type of the Product or Service from which information is received will change the types and quantities of information that is received.

We also collect the information about how you interact with our Site and Services, which may include the pages accessed and links clicked on our site, your Internet Protocol (IP) address, MAC address, access times, location, mobile device information, operating system, browser type, certain demographic information, application information, and other information associated with how you interact with the Site and Services. We will collect a device’s browser history and access time when the device is under the control of the Parental Control feature, such as the Parental Control feature on the Deco Products, in order to better monitor the device which is under control. We will record and analyze a device's attempted URL connections and block access to malicious websites (such as phishing / fraud / fake websites) only when the device has the Real-Time Protection feature enabled. Data will no longer be collected after you turn off this feature.

When you join our User Experience Improvement Program, we collect and process your general information of the mobile phone, including IMEI number (MEID number), system version number, SDK version number, system information, etc. and the usage status of the product functions based on your consent. If you wish to withdraw your consent, please go to Section 8 7) Right to withdraw your consent. You can also disable the function in “APP Settings-About-User Experience Improvement Program”, disabling the function means you opt out of the program.

1.3 Information from Other Sources

We may receive data from other sources including, but not limited to, third-party service providers which you have integrated into our Services and/or voluntarily have provided with data and/or from our authorized partners, or others that we use to fulfill our obligations to you as a customer. You should carefully and diligently review the terms and conditions and privacy policies of those third-party Services, and we will consider your decision to use those third-party Services with our Services to be a representation to us that you have consented to the third parties’ terms and practices.

2.How We Share and Use Your Personal Data

We may share your Personal Data internally and externally with suppliers, advisors, or Partners for our legitimate business purposes, and only on a need-to-know basis. When sharing Personal Data, we implement appropriate checks and controls to confirm that the information can be shared in accordance with the applicable law. Here’s more detail about who we may share your information with and in what kind of situations:

(1) With Our Authorized Partners: We may share your information with our authorized partners. We share information with our authorized partners to

  • promote safety, security and integrity and comply with applicable laws;
  • personalize offers, ads and other sponsored or commercial content;
  • develop and provide features and integrations;
  • understand how customers use and interact with our Services.

(2) Service Providers: To assist in our business operations and better provide Services (e.g. for software maintenance services, advertising serving technologies, e-mail services, delivery services, database management services, web analytics, and other services), we may share your information with such service provider.

(3) Other Entities with Your Consent: You may choose to integrate certain third-party services with our Services. By doing so, you authorize us to transmit your Personal Data to third parties when you choose to integrate their services with our Services. Information collected by such third-party services is subject to their own terms and policies, all of which you should carefully and diligently review.

(4) Marketing: We may aggregate anonymized user information and provide it to our third-party marketing service providers only for our promotional and/or marketing practices.

(5) Change of Control: We may be required to share your information as part of a merger, acquisition, asset sale, asset purchase, financing, bankruptcy, or other change of control.

(6) Responding to Legal Requests: We may share information where we have a good faith belief that such disclosure is necessary to (a) comply with applicable law or legal process or (b) respond to actual or potential complaints or legal claims, like search warrants, court orders, production orders or subpoenas. These requests come from third parties such as civil litigants, law enforcement and other government authorities. or (c) where otherwise necessary to protect our rights, interests, and/or property (including, without limitation, to enforce our agreements), or the rights, interests, and/or property of our agents, independent contractors, customers, and others.

3.How We Store and Process Your Personal Data

Your information will be transferred or transmitted to, or stored and processed in the following circumstances in accordance with the purposes stated within this Privacy Policy:

  • Places we have infrastructure or data centers on AWS, including the United States, Ireland, and Singapore, among other Countries where TP-Link Services are available. Typically, the primary storage region is the region that is closest to the customer’s region, often with backups to data centers in another region. The storage location(s) are chosen in order to operate efficiently, to improve performance, and to create redundancies in order to protect the data in the event of an outage or other problem.
  • Other countries where our Partners, vendors, service providers and third parties are located outside of the country where you live, for purposes as described in this Privacy Policy.

These countries may have different privacy standards that differ from where you are. Please note that data processed in another country may be subject to different laws and may be accessible to government, judicial, law enforcement, and regulatory agencies in those countries. However, we will take appropriate measures to guarantee an adequate level of data protection even if your personal data are transferred to these countries.

4. Security of Personal Data

When you browse community or other websites, you may need to register a TP-Link ID to get all features.

We have implemented measures, including encryption and TLS technology, designed to secure your personal data from accidental loss and from unauthorized access, use, alteration, and disclosure. In addition, we restrict the number of staff in charge with access to your personal data to the minimum level and frequently conduct training and education so that they comply with the confidentiality obligations with respect to your personal data.

Your account’s privacy and security are protected by your password. In order to prevent unauthorized access to your account and personal data, you should select a strong password and protect it by limiting access to your computer, device, browser, or application and by signing off after you have finished accessing your account. If you use a third-party service to sign into your account, you should protect that account accordingly as well.

While we strive to always protect the privacy of your account and personal data in our records, we cannot always guarantee it will be completely secure. The security of your personal data may be compromised by unauthorized entry, unauthorized use, hardware failure, software failure, and other factors at any time.

Here are some best practices to protect your TP-Link ID account:

  • Use complex passwords (a mixture of upper and lower letters, numbers, and symbols) when signing up.
  • Use a unique password different from other website accounts to avoid being involved in their accidental data breaches.
  • Change your passwords regularly.
  • Use 2 Factor Authentication (2FA) if possible.

5.Cookies Policy

Cookies are small pieces of text used to store information on web browsers. Cookies are used to store and receive identifiers and other information on computers, phones and other devices. Other technologies, including data that we store on your web browser or device, identifiers associated with your device and other software, are used for similar purposes. In this policy, we refer to all of these technologies as “cookies”.

We use cookies to distinguish you from other users. This help us deliver a better and more personalized service when you use our Services. It also allows us to improve our Services by enabling us to:

(1) estimate our audience size and usage patterns.

(2) store your preferences so we may customize our Services according to your individual interests.

(3) speed up your searches.

(4) recognize you when you return.

(5) keep your account, data and our Services safe and secure.

(6) promote the products or services to you that you may be interested in.

(7) measure the performance of cooperating third-party sellers.

You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting, certain parts of our Website may become inaccessible and certain features may not work correctly. Unless you adjust your browser settings to refuse cookies, our system will issue them. For detailed information on the cookies we use and the purposes for which we use them, see our Cookie Policy.

6.Third Parties

The Services may include links to third-party services whose privacy practices may differ from ours. Your usage of any such websites are governed by the privacy policies of those websites and not this Privacy Policy. You should carefully review the privacy policy of any website you visit. We will consider your decision to use those third-party Services with our Services to be a representation to us that you have consented to the third parties' terms and practices.

7.Your Choices

We offer you a variety of tools to view, manage, download and delete your information below. You can also manage your information by visiting the settings of the Products you use. You may also have other privacy rights under applicable laws. To exercise your rights, visit your settings. For example, you can:

(1) Update your account information and settings at any time by accessing your Mobile Apps, Subscription Services, or Web Apps.

(2) Control how and when you want to receive notifications from us in the Mobile Apps.

(3) Opt-out of our email service by clicking the “unsubscribe” link at the bottom of our emails.

(4) Not use features and Services that require you to provide your information and data, such as our community or video storage.

(5) Request data deletion at https://account-delete.tplinkcloud.com/.

(6) You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies.

You may also send us an email at privacy@tp-link.com to request access to, correct, or delete personal data that you have provided to us. However, with respect to the administrative emails for your registered account (e.g., emails about your transactions, policy changes, forgot password, and confirmation emails), we cannot delete them except by also deleting your user account. We may not accommodate a request to change or delete information if we believe the change or deletion would violate any law or legal requirement or negatively impact the information's accuracy.

8. Children’s Privacy

Our Services are not directed to, or intended for, children as defined by local legal requirements, and we do not knowingly collect Personal Data from children. If you believe that we have any such information, please notify us immediately using the contact information provided in Section above and we will delete the information as quickly as possible.

9. California Consumer Privacy Act

Click here to read additional disclosures required under the California Consumer Privacy Act.

10. Notice Concerning Do Not Track 

“Do Not Track” is a privacy preference that users can set in certain web browsers. We do not currently recognize or respond to browser-initiated Do Not Track signals. Learn more about Do Not Track

11. Updates To Our Privacy Policy

This Privacy Policy may change from time to time, and we may notify you by updating the Privacy Policy’s effective date above. If there are material changes, we will place a prominent notice on this website or provide notice through other means. We encourage all users to occasionally refer to this Privacy Policy so that they can remain aware of our current practices. If you do not agree with the terms of the updated Privacy Policy, you must stop using the Services. Your continued use of the Services after any Privacy Policy changes means that you agree to the updated Privacy Policy.

12. Contact Us

If you have any questions or need further assistance, please email us at privacy@tp-link.com 

TP-Link Systems Inc.

10 Mauchly, Irvine, CA 92618