In October, Kohler launched Dekoda, a camera that attaches to a toilet and uses AI to examine your poop. Some say you can't put a price on good gut health, but the Dekoda costs $599 for the device, plus a subscription fee that ranges from $70 to $156 per year.
But after a blog post published this week raised questions about Kohler's data practices for its new toilet gadget, the company was forced to explained what it means by "encrypted" data for customers, and what its policy is for training its algorithms on their... uh... waste information. And it's not as straightforward as it initially appeared to be.
Don't miss any of our unbiased tech content and lab-based reviews. Add CNET as a preferred Google source.
On its website, Kohler says Dekoda "analyzes gut health and hydration and detects the presence of blood in the toilet bowl, providing data for building healthy habits."
On the same webpage, Kohler touts privacy features for the gadget. It says that the camera only ever points down into the toilet bowl, that it offers fingerprint authentication optionally via the Dekoda remote and that, "our technology is designed to keep your personal data personal. It is end to end encrypted."
The blog post published by security researcher Simon Fondrie-Teitler raised questions about what that encryption entails and pointed out that Kohler would likely have access to the data and images collected by Dekoda.
"Responses from the company make it clear that—contrary to common understanding of the term—Kohler is able to access data collected by the device and associated application," he wrote.
Kohler responds to privacy concerns
Kohler itself appeared to confirm this notion in a statement it shared with CNET. It wrote: "The term end-to-end encryption is often used in the context of products that enable a user (sender) to communicate with another user (recipient), such as a messaging application. Kohler Health is not a messaging application. In this case, we used the term with respect to the encryption of data between our users (sender) and Kohler Health (recipient)."
The company went on to say: "We encrypt data end-to-end in transit, as it travels between users' devices and our systems, where it is decrypted and processed to provide and improve our service. We also encrypt sensitive user data at rest, when it's stored on a user's mobile phone, toilet attachment, and on our systems."
... continue reading