Last Updated: September 4, 2020
Data also refers to the information captured by your Roost device, most of which is reported to you. Your specific information depends on the Roost device you have installed, and may include data such as temperature, humidity, garage door status, battery levels, wireless connectivity, and our core alerts (i.e., smoke alarm and water leak). Reference to personal information, means information about you personally that you provide to us, for which we act as custodian.
2. Information we collect
2.1 Who are “you”?
You opened an account using the Roost mobile app or using an insurance company’s white-label Roost app, which you downloaded on your smartphone. But you have not installed a Roost device yet.
Roost Registered User
You opened an account using the Roost mobile app or using an insurance company’s white-label Roost app, which you downloaded on your smartphone. You have also installed one or more Roost devices using your smartphone and a Wi-Fi network you own or control.
You were requested by someone that you know to be a Monitor for their active Roost devices. You agreed, and then opened an account using the Roost or insurance co-branded mobile app you downloaded on your smartphone. You may or may not have installed your own Roost devices using your smartphone.
You are visiting one of our websites because you are curious about Roost.
A Roost Registered User has referred you to Roost to use the Roost Services.
2.2 Information we collect about you
“Personal Data” means data that allows someone to identify or contact you, including, for example, your name, address, mobile number, e-mail address, as well as any other non-public information about you that is associated with or linked to any of the foregoing data. “Anonymous Data” means data that is not associated with or linked to your Personal Data; Anonymous Data does not, by itself, permit the identification of individual persons. We collect Personal Data and Anonymous Data, as described below.
We collect the following Personal Data and Anonymous Data from users of Roost Services:
Information to Set up a Roost Account
You need a Roost account before you can use Roost Services. When you register for an account, we collect your smartphone number, email address, your name and then provide you with an SMS access number during set up.
If a friend or family member asks you to be a monitor for their roost account, Roost will automatically send you an invitation SMS text, and will store your information for the sole purpose of sending these invitation texts and tracking the success of our referral program.
Information to Purchase a Roost Device
If you purchase a Roost device on our website, we require you to provide your billing details, name, address, email address and financial information corresponding to your selected method of payment (e.g. a credit card number and expiration date). This information is provided to a Roost third-party named Shopify, who processes your payment. Roost does not view or retain any of your personal financial information. We do retain your name, address and smartphone number.
Device and smartphone data
We collect information from the Roost device and smartphone you used to install your Roost device. Device data mainly means the device location and name (which you provide), and the data generated by the device such as temperature, humidity, battery level and alerts. Our servers keep log files that record data each time your device accesses those servers and updates this information. Information we collect about your smartphone includes its make and model and its operating system version.
Wireless network data
When you install a Roost device, you connect the device to your wireless network. With your permission, we store your wireless network name and password in your smartphone so you can easily set up another Roost device. Your wireless network name and password is stored in the internal flash memory of the Roost device so that it can connect to the Roost cloud. We also store your network name (SSID) in the Roost cloud.
Customer support data
If you contact us for support regarding the Roost Services, we may collect your name, e-mail address, phone number, and any communications or correspondence that you send us. Additionally we may ask for your smartphone operating system and version, and shipping address if we need to send a replacement device.
Website referral information
If you arrive at a Roost website from an external source (such as a link on another website or in an email), we record information about the source that referred you to us.
Website usage information
We collect usage information about you whenever you interact with our websites and Services. This includes which Roost webpages you visit, what you click on, when you perform those actions, and so on.
Third Party Websites
Our websites or app may contain links to third party websites. When you click on a link to any other website or location, you will leave our sites or app and go to another site, and another entity may collect Personal Data or Anonymous Data from you. We have no control over, do not review, and cannot be responsible for, these outside websites or their content.
3. How we use the information we collect
We process Personal Data about you either with your consent or in order to fulfill our contractual responsibility to deliver the Roost Services to you. We may also process your data under the rare circumstances when we are legally compelled to do so.
3.1 Personal Data we process with your consent
We use your name and address information, so we can ship you Roost Devices. We may use your email address or smartphone number to send you reminders, product or mobile app updates, provide customer support, and to respond to your inquiries. We might also send you user surveys and marketing information now and then.
More details: We use your email address to send you marketing (newsletters), and for general updates on your account. You can opt out of marketing communications at any time by clicking on the “unsubscribe” link in them or changing your account settings in the Roost app on your smartphone.
Home Wi-Fi information
We store the home Wi-Fi name and password you use in the flash memory of your smartphone. This allows you to easily add new Roost devices to the same Wi-Fi network.
Device set up information
We store the device’s name, type, and location so you can identify the devices data during use. With your permission, the app can save the geolocation of the Roost device at set up in the Roost Cloud. This geolocation is only used with the Roost Smart 9V battery for the snooze feature.
More details: During set up, we ask you to identify the type of device (such as a Water Leak and Freeze Detector), a name for it (such as, Sink 1), and location (such as, Kitchen). You can change the device information anytime in the Roost or white-label insurance app.
Sharing information with third parties
If Roost devices are provided to you directly from your Insurer, they will provide a specific consent request to you that allows us to share your data with them.
Your insurer will also provide your contact information to Roost so we can ship the Roost device to you, as long as you give permission to share this information with us.
More details: It is very common for Roost to provide its products, Services, and white-labeled mobile app to an insurance company, and for the insurance company to provide the Roost products and Services to its policyholders. If you have received a Roost device through your insurance company, Roost will process your personal information only if you have provided consent to the insurance company that provided you the Roost device and Services.
3.2 Personal Data we process to fulfill our responsibilities
We collect the device MAC ID and your smartphone number to send you alerts. We collect the phone numbers of each of your invited monitors. We collect the name and phone number of your designated emergency contact and store this in the Roost cloud.
More details: We use your smartphone number as your unique user ID in our system. You use this number to set up Roost devices, and we use it to send device information to you. The Roost Services do not work without matching the device MAC ID with your smartphone number. We retain the Monitor and Emergency Contact information you provide us.
We record the battery level and Wi-Fi strength of each device. If your device records other data (such as temp or humidity) we record that as well. This data is sent from the Roost cloud to your smartphone.
We also record the day and time your device alerts, and when it stops.
More Details: The Roost 9V Smart Smoke Alarm Monitor sends an alert when your smoke alarm sounds. The Roost Water Leak and Freeze Detector sends an alert when a water leak is detected, or the temperature or humidity thresholds are exceeded. The Roost Garage Door Monitor alerts when the Garage Door moves.
As part of Roost’s efforts to improve our products and Services and to better protect homeowners from risks, we will consolidate and analyze device data on an aggregated basis. We constantly look for alerts our devices might mistakenly send, or for instances when our sensors were too sensitive. We look for patterns in location, temperature, and humidity to find better ways of predicting leaks or freezing pipes.
Because these analyses are performed with aggregated, Anonymous Data, Roost cannot identify you or any other specific Roost user.
3.3 Legal uses of Personal Data
To respond to legal requests, we may need to use and disclose information or data we hold about you. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond.
Information We Share
We do not share your information or data with third parties outside Roost except in the following limited circumstances:
You were provided a Roost product through an insurance company:
Roost will share some or all of your information with your insurance company as long as you have provided them with consent for Roost to do so.
You have identified a monitor:
As part of Roost’s Services, you have the ability to identify a third party and allow them to monitor your Roost devices. These monitors are provided the same device alerts that you receive as part of Roost Services.
Your data is used during data analysis:
From time-to-time, Roost may contract with a third party to help analyze data. However, prior to analysis, Roost aggregates and anonymizes the data so it cannot be used to identify any individual.
We enter into confidentiality and data processing terms with partners to ensure they comply with high levels of confidentiality and best practice in privacy and security standards and we regularly review these standards and practices.
Your data was requested by an enforceable governmental request:
We also have to share information or data in order to meet any applicable law, regulation, legal process, or governmental request. We will also share your data to detect, prevent, or otherwise address fraud or security issues. And lastly, we may have to share your data to protect against harm to the rights, property or safety of our users, the public, or to Roost and/or as required or permitted by law.
You can choose to remove or disable cookies via your browser setting.
5. Data Retention
As long as you have an account with Roost we do not delete the data in your account. You are responsible for the data in your account and how long you retain it. There are controls in your account where you can delete data at the account level (all data in your account) and at the data element level.
And, as long as you have a Roost device set up in your account, we do not delete the data from the device. A Roost device can be deleted any time using the Roost app. When a device is deleted, it no longer provides data to Roost or to your smartphone. Roost will keep historical data from the device for analysis purposes.
6. Safety of Minors
Our Services are not intended for and may not be used by minors who we define as individuals under the age of 13. Roost does not knowingly collect Personal Data from Minors or allow them to open Roost accounts. If it comes to our attention that we have collected Personal Data from a Minor, we will delete this information without notice. If you have reason to believe that this has occurred, please contact Roost customer support.
8. Contact us with questions or concerns
9. Privacy Shield and GDPR (for our EU users)
Roost participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework. Roost is committed to subjecting all personal information and data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov/.
With respect to Personal Data received or transferred pursuant to the Privacy Shield Framework, Roost is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Roost may be required to disclose Personal Data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
9.1 Resolving complaints
In compliance with the Privacy Shield Principles, Roost commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Roost at:
Data Protection Officer
1250 Borregas Ave.
Sunnyvale, CA 94089 USA
Roost has further committed to refer unresolved Privacy Shield complaints to JAMS an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit https://www.jamsadr.com/eu-us-privacy-shieldfor more information or to file a complaint. The services of JAMS are provided at no cost to you.
Under certain conditions, more fully described on the Privacy Shield website; https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
If you are resident in the European Union and you are dissatisfied with how we have managed a complaint you have submitted to us, you are also entitled to contact your local data protection supervisory authority.
9.2 Who is my data controller?
Most of the time, Roost is the data processor. We take data provided to us by you and/or by your insurance company or other third party and process it to deliver the Roost Services. The insurance company or other third-party is the data controller.
When you purchase a product directly from Roost using the Roost website, Roost is the data controller.
In most other instances, Roost is the data processor, only.
9.3 Your GDPR rights
European users have certain legal rights to obtain information about whether we hold personal information about you, to access personal information we hold about you, and to obtain its correction, update, amendment or deletion. Some of these rights may be subject to some exceptions or limitations. We will respond to your request to exercise these rights within a reasonable time, and in all cases within 30 days of receiving a request.
Under the EU’s General Data Protection Regulation (GDPR) the rights which you are entitled to are:
- Data access rights
- Right to restrict processing
- Right of rectification
- Right to erasure (Right to be Forgotten)
- Right to object to processing
- Right to withdraw consent; and
- Data portability rights
When you open and maintain an account with Roost, you are entitled to a copy of all Personal Data, which we hold in relation to you. You are also entitled to request that we restrict how we use your data or object to some aspect of our treatment of your data. You can access a lot of your data in your own account using the Roost app. However, if you want to obtain a full copy of all your data or to request a restriction / limitation in how we use your data, please contact us at the address provided in Section 9.1 above.