Nest X Yale Lock

Nest X Yale Lock


Überprüft am: 9. November 2022


Mozillas Meinung

Abstimmungsergebnis: Ziemlich unheimlich

"Hey Google, let me in!" Get this WiFi smart lock (well, you have to get a Nest Connect or Nest Guard too) and you can unlock your door, check to see if you door is locked, and know if someone has come or gone, from anywhere. Create passcodes to share with the plumber or that friend from high school so they can come and go until you don't want them to anymore. This lock is WiFi only, which means you don't need to worry about a Bluetooth vulnerability leaving you, well, vulnerable. How does this smart lock do when it comes to privacy? Well, Google is gonna Google, so your data won't be sold but it will be used to target you with lots of ads.

Was könnte passieren, wenn etwas schiefgeht?

Smart locks are one of those connected devices that seem to worry lots of people. The pros: They offer a lot of convenience with multiple ways to unlock the door to your home, a way to track who comes and goes from your home, they can allow you to give out a keypad number to people like a babysitter and then revoke that when they no longer need access, and they can help you make sure you locked your front door when your anxiety kicks in on vacation. The cons: They can be vulnerable to any number of things such as power outages, lost or compromised phones, ransomware attacks on the company who made your lock, product security vulnerabilities, WiFi and/or Bluetooth vulnerabilities, home hub vulnerabilities, bad software updates, data leaks, and more.

With all that said, how does Google’s Nest x Yale smart lock stack up? This smart lock doesn’t come with WiFi built-in, meaning it doesn’t connect directly with the internet. Users will need Nest Connect or Nest Guard to connect it to their WiFi and the Nest app. Without that WiFi connection, users can still open the lock using the keypad. We found no known security breaches of Google's smart lock. Overall, Google seems to do a good job with security, with very few security breaches reported over the past three years, but they also aren’t perfect. It’s always good to take precautions like changing pre-existing passcodes and setting up two-factor authentication.

“OK, Google.” That’s pretty much exactly how we think Google does when it comes to privacy. They are OK, if you consider the fact that they are a ginormous data collecting advertising company that makes billions of dollars off your personal information. This is the world we live in now, though, and there are other Big Tech companies doing a worse job than Google at protecting and respecting your privacy (looking at you Meta/Facebook). It’s really unfortunate just how low the bar has gotten when it comes to privacy these days.

That said, you should be aware Google is a huge ad company that needs lots and lots of your data to sell ads. What sorts of data does Google collect on you? Well, there are those voice recordings when you go, “Hey Google, unlock my door for the pizza delivery?” And while Google promises that your voice recordings won’t be used to send you personalized ads, they do say the transcripts of your voice interactions with your Google smart speaker may. Google also collects things like your location, information about things near your devices like wi-fi access points and bluetooth enabled devices, people you communicate with, purchase activity, voice and audio information, your favorite songs on Spotify, what things you search for, what things you ask Google, when you turn your lights on if you have smart lights, when you use it to run your robot vacuum, and so much more.

Of course, Google uses your personal information to sell those targeted, personalized ads you see all over the place like in your Gmail, in your favorite Solitaire app, on partner websites, and on YouTube. Yup, the ads are everywhere. Google does say they won’t use things like your sexual orientation, race, and health to show you ads…although we just have to trust them on that. I’m sure we’ve all seen ads based on sensitive things about us that felt pretty creepy. And Google says they won’t use content from your Google Drive, Email, or Photos to personalize ads. We sure hope not.

We do like that people who use Google’s AI voice assistant are now automatically opted out of Google's human review of voice recordings, because that was super creepy. We also like that Google does try to communicate with users how they collect and use data in their Safety Center. Google does collect a ton of data on you, especially if you don't take the time to adjust your privacy settings to lock down just how much info they can gather. You should absolutely take the time to adjust these privacy settings. Just beware, you will get notifications that some things might not work right if you change settings. That’s annoying, and probably worth it for a little more privacy.

As for Google’s track record at protecting and respecting your privacy, well, it’s a mixed bag. Google does pretty good at the security side of protecting all that heaps of data they collect on your. It is their money making business asset, after all. Unfortunately, Google also has a spotty track record at respecting privacy, as seen in the multitude of fines and lawsuits that have been thrown at them all around the world for violating privacy laws and protections. South Korea fined Google (and Meta) millions of dollars recently for privacy violations. So did France and Spain. And in the US, Google has faced a host of lawsuits and settlements from Texas, California, DC, Illinois, Arizona, the Federal Trade Commission, and more. All this makes it pretty hard to trust what a company says they do with that massive amount of personal information they collect on you.

What’s the worst that could happen? Well, it’s entirely possible you are always asking Google to unlock your door at 8pm, right after you’ve asked Google to order you a ham and pineapple pizza. Based on that, Google decides you don’t have a life and keeps showing you ads for dating apps. You get depressed because you’re actually happily married and those ads remind you of the horrors of dating. Absolutely nobody needs that!

Tipps zu Ihrem Schutz

  • Check out tips to ensure your smart lock safety
  • Maintain a strong door
  • Choose a secure access code
  • Set up two-factor authentication
  • Review Nest privacy tips
  • mobile

Kann es mich ausspionieren? Information


Gerät: Nein

App: Nein


Gerät: Nein

App: Nein

Verfolgt den Standort

Gerät: Nein

App: Ja

Was kann zur Registrierung verwendet werden?

Welche Daten sammelt das Unternehmen?

Wie nutzt das Unternehmen die Daten?

Google does not share data with third parties for their own advertisement purposes. Google does not sell personal data.

Google shares data with its affiliates and business partners: "We provide personal information to our affiliates and other trusted businesses or persons to process it for us, based on our instructions and in compliance with our Privacy Policy and any other appropriate confidentiality and security measures. For example, we use service providers to help operate our data centers, deliver our products and services, improve our internal business processes, and offer additional support to customers and users. We also use service providers to help review YouTube video content for public safety and analyze and listen to samples of saved user audio to help improve Google’s audio recognition technologies."

At the same time, Google uses collected data on its own services. "We use the information we collect to customize our services for you, including providing recommendations, personalized content, and customized search results."

Google may collect data on you from public and third-party sources. "In some circumstances, Google also collects information about you from publicly accessible sources. For example, if your name appears in your local newspaper, Google’s Search engine may index that article and display it to other people if they search for your name. We may also collect information about you from trusted partners, such as directory services who provide us with business information to be displayed on Google’s services, marketing partners who provide us with information about potential customers of our business services, and security partners who provide us with information to protect against abuse. We also receive information from advertising partners to provide advertising and research services on their behalf."

Google also uses personal data for personalised advertisement, if a user allows: "Depending on your settings, we may also show you personalized ads based on your interests. For example, if you search for “mountain bikes,” you may see an ad for sports equipment when you’re browsing a site that shows ads served by Google. You can control what information we use to show you ads by visiting your ad settings."

Google uses location for advertisement, too. It gets location from various sources: "Google’s ad products may receive or infer information about your location from a variety of sources. For example, we may use the IP address to identify your general location; we may receive precise location from your mobile device; we may infer your location from your search queries; and websites or apps that you use may send information about your location to us. Google uses location information in our ads products to infer demographic information, to improve the relevance of the ads you see, to measure ad performance and to report aggregate statistics to advertisers."

Google may combine information about you from their other services or devices. "We may combine the information we collect among our services and across your devices for the purposes described above. For example, if you watch videos of guitar players on YouTube, you might see an ad for guitar lessons on a site that uses our ad products."

Google says they keep video footage, audio recordings, and home environment sensor readings separate from advertising, and they won’t use this data for ad personalization.

Wie können Sie Ihre Daten kontrollieren?

Google provides various privacy controls, accessible via Google Privacy tools. There are several clearly defined ways to delete personal data, including deleting data from Nest app or deleting a whole Google Account. An autotimer can be set up for 3 or 18 months. The retention details are also listed in the Policy.

"When you delete data in your Google account, we immediately start the process of removing it from the product and our systems. First, we aim to immediately remove it from view and the data may no longer be used to personalize your Google experience."

To delete Google Home search history and voice recordings: See the "Data deletion" section of Data security and privacy on devices that work with Assistant.

Google sets various data retention timeframes for different data types: "In some cases, rather than provide a way to delete data, we store it for a predetermined period of time. For each type of data, we set retention timeframes based on the reason for its collection. For example, to ensure that our services display properly on many different types of devices, we may retain browser width and height for up to 9 months. We also take steps to anonymize certain data within set time periods. For example, we anonymize advertising data in server logs by removing part of the IP address after 9 months and cookie information after 18 months."

Wie ist das Unternehmen in der Vergangenheit mit den Daten über seine Verbraucher umgegangen?


Google received plenty of fines from European, American, and Korean authorities in the last few years. The biggest was the $170M fine from New York Attorney General for mishandling the children consent. The other cases include the fine of $100M for violating the Biometric Information Privacy Act in Illinois, $71.8M fine for mishandling consent in South Korea, $57M fine for violating GDPR in France, as well as other fines from local Data Protection Authorities in Ireland, Italy, Spain.

In 2022 Google agreed to a nearly $392 million dollar legal settlement with 40 US states "for charges that it misled users into thinking they had turned off location tracking in their account settings even as the company continued collecting that information".

In August 2019, the company admitted that partners who work to analyze voice snippets from the Assistant leaked the voice snippets of some Dutch users. More than 1,000 private conversations were sent to a Belgian news outlet, some of the messages reportedly revealed sensitive information such as medical conditions and customer addresses.

In December 2018, a bug exposed exposed the data of 52.5 million Google+ users.

Nest Security Bulletin contains details of security vulnerabilities that previously affected Google Nest's devices.

Informationen zum Datenschutz bei Kindern

You can check Google Family Link privacy guide for teens & children for details for different countries and age groups.

You can set up "Include voice and audio activity" option for your child. The "Include voice and audio activity" option under the Web & App Activity setting controls whether voice and audio recordings are stored to your Google Account when you use your voice to interact with Assistant. This option is off by default when creating a Google account, and is not required to use the Assistant.

If your child’s "Include voice and audio activity" option under the Web & App Activity setting is checked, when they interact with the Assistant on a signed-in device, a recording of their interaction, plus a few seconds before, may be stored with their account. Google uses this saved voice and audio activity to develop and improve its audio recognition technologies and the Google services that use them, like Google Assistant. If your child uses Google Assistant with Voice Match and you’ve turned on this voice and audio activity setting, Google may also temporarily process a model of your child’s voice from their saved audio to develop and improve Google’s voice technologies and Google services that use them.

Kann dieses Produkt offline genutzt werden?


Benutzerfreundliche Informationen zum Datenschutz?


Google provides a page with privacy information about Nest.

Links zu Datenschutzinformationen

Erfüllt dieses Produkt unsere Mindestsicherheitsstandards? Information




Encryption in transit and at rest.

Sicheres Passwort




Umgang mit Schwachstellen


Google has a Security Rewards program. Link:



Verwendet das Produkt KI? Information


Google publishes academic papers about its AI research ( and makes several tools available via open source.

Ist diese KI nicht vertrauenswürdig?

Nicht zu bestimmen

Welche Entscheidungen trifft die KI über Sie oder für Sie?

If you use Google Assistant, Google uses natural language processing to understand you and to generate answers to your requests.

Gibt das Unternehmen transparent an, wie die KI funktioniert?


Hat der Benutzer die Kontrolle über die KI-Funktionen?


*Datenschutz nicht inbegriffen

Tauchen Sie tiefer ein

  • 7 Google Assistant settings you should disable or adjust
    Digital Trends Link wird in einem neuen Tab geöffnet
  • All the Ways Google Is Coming Under Fire Over Privacy: QuickTake
    Bloomberg Link wird in einem neuen Tab geöffnet
  • Google Finally Lets You Turn off Targeted Ads Without Breaking Its Apps
    Gizmodo Link wird in einem neuen Tab geöffnet
  • Google settles lawsuit with Illinois residents for $100M after photo app privacy concerns
    USA Today Link wird in einem neuen Tab geöffnet
  • Google, Meta fined $71.8M for violating privacy law in South Korea
    TechCrunch Link wird in einem neuen Tab geöffnet
  • France fines Google $57 million for European privacy rule breach
    Reuters Link wird in einem neuen Tab geöffnet
  • Google Is Fined $170 Million for Violating Children’s Privacy on YouTube
    The New York Times Link wird in einem neuen Tab geöffnet
  • Google Agrees to $392 Million Privacy Settlement With 40 States
    The New York Times Link wird in einem neuen Tab geöffnet
  • Google and YouTube Will Pay Record $170 Million for Alleged Violations of Children’s Privacy Law
    Federal Trade Commission Link wird in einem neuen Tab geöffnet
  • Data privacy alert: Spanish DPA fines Google €10 million
    SC Media Link wird in einem neuen Tab geöffnet
  • Texas Sues Google for Collecting Biometric Data Without Consent
    The New York Times Link wird in einem neuen Tab geöffnet
  • Google Data Breaches: Full Timeline Through 2022
    Firewall Times Link wird in einem neuen Tab geöffnet
  • Alexa records you more often than you think
    Vox Link wird in einem neuen Tab geöffnet
  • Lawsuit claims Google knew its ‘Incognito mode’ doesn't protect users’ privacy
    The Washington Post Link wird in einem neuen Tab geöffnet
  • Can The Nest Yale Lock Be Hacked Easily?
    Smarthome Globe Link wird in einem neuen Tab geöffnet
  • How to use Privacy Mode on the Nest × Yale Lock
    Google Nest Help Link wird in einem neuen Tab geöffnet
  • Can Smart Locks Be Hacked? And How to Prevent It
    DIY Smart Home Solutions Link wird in einem neuen Tab geöffnet
  • Use A Smart Lock? Get In The Sea, 73% Of Security Professionals Say
    Forbes Link wird in einem neuen Tab geöffnet
  • Best Smart Locks of 2021
    Consumer Reports Link wird in einem neuen Tab geöffnet
  • Should I get a smart lock? The pros and cons of going digital on your door
    USA Today Link wird in einem neuen Tab geöffnet


Möchten Sie einen Kommentar loswerden? Schreiben Sie uns.