Fitness Equipment Companies Under Scrutiny for Harvesting Sensitive User data
The pandemic spurred a fitness revolution, with millions trading gym memberships for home workout equipment.Brands like Peloton and NordicTrack soared in popularity, but a recent investigation by Consumer Reports reveals a darker side to this trend: the extensive harvesting of sensitive user data.The consumer watchdog’s investigation into 10 fitness companies uncovered alarming practices. beyond basic details like height and age, these companies may be collecting deeply personal facts, including pregnancy status, dietary habits, and even olfactory data—essentially, the user’s smell.
“The concern is that medical information would be treated the same as anything else, like shopping habits,” said Steven Blair, the security test program leader for Consumer Reports. “The policies are written in a very, very broad way.”
While companies often use this data for targeted advertising, Blair emphasized that it’s not always clear who has access to the information or how secure the servers are. “To be fair, some brands we looked at do say that they adhere to privacy laws, but that’s the absolute minimum, right? That’s what they’re forced to,” he added.
Key Findings from the Investigation
Table of Contents
| Company | Data Collected | Privacy Concerns |
|——————–|———————————————————————————–|————————————————————————————-|
| Peloton | Height, age, workout metrics, marketing data | May use data for marketing; claims not to sell to data brokers |
| NordicTrack | Height, age, workout metrics, dietary habits | broad privacy policies; unclear data-sharing practices |
| BowFlex | Height, age, olfactory data (smell) | Privacy contract allows collection of olfactory data; unclear if implemented |
| Hydrow | Height, age, workout metrics | Claims to fully adhere to data privacy regulations |
| Tonal | Height, age, workout metrics, video recordings | Stores user videos; allows deletion upon request |
What Can Users Do?
Blair recommends users review their apps’ privacy settings to ensure information isn’t being shared publicly.In certain specific cases, customers can’t delete their data directly thru the app but must contact the company to request removal.Consumer Reports also offers a tool called Permission Slip, which directs companies to delete a user’s personal data.
Peloton has stated it doesn’t sell members’ information to data brokers, though its privacy policy allows for data use in marketing. similarly, Hydrow claims to “fully adhere to all applicable data privacy regulations.” Simultaneously occurring, Tonal, which stores user videos, clarified that it only saves recordings users choose to keep and allows them to delete these at any time.
The Bigger Picture
The lack of robust consumer privacy laws in the U.S. leaves users vulnerable. As fitness equipment becomes more advanced, the data it collects grows increasingly personal—and possibly exploitable.
“Members can review their videos to assess their form and refine their movements,” Tonal told Consumer Reports. “If desired, they can delete their recordings at any time.”
While companies like Tonal offer some control, the broader issue remains: how much of our personal data is being collected, shared, and stored without our full understanding?
For now, users are advised to stay vigilant. Review privacy policies, adjust app settings, and consider tools like Permission Slip to take control of your data.
Stay informed about breaking news and daily headlines by signing up for our newsletter here.
Headline:
Revealing the Hidden Cost of Home Workouts: An Interview with Data Privacy Expert, Steven Blair
Introduction:
The global pandemic has sparked a fitness boom, with consumers investing in home workout equipment like Peloton and NordicTrack. However, a recent inquiry by Consumer Reports has uncovered alarming data harvesting practices by these companies, raising serious concerns about user privacy. In this interview, Senior Editor at world-today-news.com sits down with Steven Blair, Security Test Program Leader at Consumer Reports, to discuss the key findings and implications of their investigation.
What Types of Data Are Fitness Companies Collecting?
Blair: “Beyond basic details like height and age, some companies are collecting much more sensitive details. As a notable example, BowFlex is collecting olfactory data, essentially, the user’s smell. Other companies are collecting dietary habits and even pregnancy status.”
Why Should Users Be Concerned about This Data Collection?
Blair: “The problem is that these sensitive medical details could be treated like any other consumer data, used for targeted advertising. But it’s not always clear who has access to this information, or how secure the servers are. Companies might say they adhere to privacy laws,but that’s the bare minimum.”
What Can Users Do to Protect Their Privacy?
Blair: ”Users should review their apps’ privacy settings to ensure information isn’t being shared publicly. In certain cases,they might not be able to delete their data directly,but they can contact the company to request removal. There are also tools like Consumer Reports’ ‘Permission Slip’ that can help users control their data.”
What Are the Broader implications of This Data Harvesting?
Blair: “The lack of robust consumer privacy laws in the U.S. leaves users vulnerable. As fitness equipment becomes more advanced, the data it collects grows increasingly personal—and possibly exploitable. It’s crucial for users to stay vigilant and for policymakers to strengthen privacy laws.”
Stay Informed with Our Newsletter
Stay up-to-date with breaking news and daily headlines by signing up for our newsletter here.
