Nest X Yale Lock
Smart Home Smart Locks

Nest X Yale Lock

Google
Wi-Fi

Review date: Nov. 8, 2021

|
Mozilla researched 6 hours
|

Mozilla says

|
People voted: Not creepy

"Hey Google, let me in!" Get this WiFi smart lock (well, you have to get a Nest Connect or Nest Guard too) and you can unlock your door, check to see if you door in locked, and know if someone has come or gone, from anywhere. Create passcodes to share with the plumber or that friend from high school so they can come and go until you don't want them to anymore. This lock is WiFi only, which means you don't need to worry about a Bluetooth vulnerability leaving you, well, vulnerable.

What could happen if something goes wrong?

Smart locks are one of those connected devices that seem to worry lots of people. The pros: They offer a lot of convenience with multiple ways to unlock the door to your home, a way to track who comes and goes from your home, they can allow you give out a keypad number to people like a babysitter and then revoke that when they no longer need access, and they can help you make sure you locked your front door when your anxiety kicks in on vacation. The cons: They can be vulnerable to any number of things such as power outages, lost or compromised phones, ransomware attacks on the company who made your lock, product security vulnerabilities, WiFi and/or Bluetooth vulnerabilities, home hub vulnerabilities, bad software updates, data leaks, and more.

With all that said, how does Google’s Nest x Yale smart lock stack up? This smart lock doesn’t come with WiFi built-in, meaning it doesn’t connect directly with the internet. Users will need Nest Connect or Nest Guard to connect it to their WiFi and the Nest app. Without that WiFi connection, users can still open the lock using the keypad. We found no known security breaches of Google's smart lock. Overall, Google seems to do a good job with security, with very few security breaches reported over the past three years, but they also aren’t perfect. Still, it’s always good to take precautions like changing pre-existing passcodes and setting up two-factor authentication.

On the privacy side of things, Google is Google. They are a huge ad company that needs your data to sell ads. Google promises that your Google Assistant voice recordings won’t be used to send you personalized ads, but they admit transcripts of your voice interactions with your may. So, when you say, “Hey Google, lock my door” to your smart speaker, the voice transcripts could help Google know things about you and then target you with ads.. Google uses your personal information to show you ads all over the place like in your Gmail, in your favorite Solitaire app, on partner websites, and on YouTube.

What’s the worst that could happen? Well, it’s entirely possible you are always asking Google to unlock your door at 8pm, right after you’ve asked Google to order you a ham and pineapple pizza. Based on that, Google decides you don’t have a life and keeps showing you ads for dating apps. You get depressed because you’re actually happily married and those ads remind you of the horrors of dating. Absolutely nobody needs that!

Tips to protect yourself

  • Check out tips to ensure your smart lock safety
  • Maintain a strong door
  • Choose a secure access code
  • Set up two-factor authentication
  • Review Nest privacy tips
mobile Privacy warning Security A.I.

Can it snoop on me? information

Camera

Device: No

App: No

Microphone

Device: No

App: No

Tracks location

Device: No

App: Yes

What can be used to sign up?

What data does the company collect?

How does the company use this data?

Google says that your personal data is never sold to third parties.

Google uses your personal information “to serve you relevant ads in Google products, on partner websites, and in mobile apps.” According to the company, customers own their data and it does not sell this data to third parties. Google does state it gets paid by advertisers for placing ads to you based on your personal information.

Google says to send data outside of the organization only with a user's consent.

How can you control your data?

Google provides various privacy controls, accessible via Google Privacy tools. There are several clearly defined ways to delete personal data, incl. deleting data from Nest app or deleting a whole Google Account. An auto timer can be set up for 3 or 18 month. The retention details are also listed in the Policy.

What is the company’s known track record of protecting users’ data?

Needs Improvement

In August 2019, the company admitted that partners who work to analyze voice snippets from the Assistant leaked the voice snippets of some Dutch users. More than 1,000 private conversations were sent to a Belgian news outlet, some of the messages reportedly revealed sensitive information such as medical conditions and customer addresses.

In December 2018, a bug exposed the data of 52.5 million Google+ users

Can this product be used offline?

Yes

User-friendly privacy information?

Yes

Google provides a page with privacy information about Nest.

Links to privacy information

Does this product meet our Minimum Security Standards? information

Yes

Encryption

Yes

Encryption in transit and at rest.

Strong password

N/A

Security updates

Yes

Manages vulnerabilities

Yes

Google has a Security Rewards program. Link: https://www.google.com/about/appsecurity/programs-home/

Privacy policy

Yes

Does the product use AI? information

Yes

Google publishes academic papers about its AI research (https://ai.google/) and makes several tools available via open source. https://ai.google/tools/

Is this AI untrustworthy?

Can’t Determine

What kind of decisions does the AI make about you or for you?

If you use Google Assistant, Google uses natural language processing to understand you and to generate answers to your requests.

Is the company transparent about how the AI works?

Yes

Does the user have control over the AI features?

Yes

News

Can The Nest Yale Lock Be Hacked Easily?
Smarthome Globe
The Nest Yale/Nest x Yale lock is one of the latest smart door locks that you can control from anywhere using an app or the web. But how secure is the Nest X Yale lock?
How to use Privacy Mode on the Nest × Yale Lock
Google Nest Help
Privacy Mode can give you added control over who can access your home during a certain time. When Privacy Mode is on, it disables Google Nest × Yale Lock’s keypad so it can’t be unlocked by entering a passcode on the keypad.
Can Smart Locks Be Hacked? And How to Prevent It
DIY Smart Home Solutions
Are smart locks really safe? Can smart locks be hacked? These are two very important questions to consider before purchasing a smart lock.
Use A Smart Lock? Get In The Sea, 73% Of Security Professionals Say
Forbes
I decided to take the question of smart lock security to a cross-section of security professionals, including hackers and lock-pickers. The question I asked was a straightforward one: would you use a smart lock to secure your home, office or anything?
Best Smart Locks of 2021
Consumer Reports
Consumer Reports' tests reveal the best models from August, Bosma, Eufy, Kwikset, Wyze, and Yale
Should I get a smart lock? The pros and cons of going digital on your door
USA Today
Charlotte Pfahl, 68, prefers using an old-school mechanical key to access her New York City apartment. So when her landlord modernized the building and installed a smart lock in 2018, she and several other residents over 65 were not thrilled about it.

Related products

Eufy Smart Lock Touch & Wi-Fi

Anker Innovations Technology

Eufy Smart Lock Touch & Wi-Fi
Wyze Lock

Wyze

Wyze Lock
Schlage Smart Locks

Schlage

Schlage Smart Locks
Kwikset Halo Touch WiFi Smart Lock

Kwikset

Kwikset Halo Touch WiFi Smart Lock

Comments

Got a comment? Let us hear it.