Fitbit Privacy Pledge
Our goal is to help people live healthier, more active lives. Our products and services provide instant access to health and fitness data so you can track your progress, push your goals and take control of your health. As we build these tools, we are committed to the principles of respecting your privacy, keeping your data safe, and letting you decide how your information is used and shared. This is our Privacy pledge:
- We will only collect data that is useful to improving Fitbit products, services and your experience.
- We will be transparent about our data practices and will explain them in clear language.
- We will always take the security of your data seriously.
Because we’re always looking for new and innovative ways to help you achieve your fitness goals, this policy may change over time. If any modifications substantially change your rights under this policy, we will send you an email where possible, and always provide notice on the Site.
And remember, we’re here to help. If something in this policy does not make sense or if you have any questions, please contact us.
What Data Does Fitbit Collect?
When You Activate a Fitbit device
When activating a Fitbit device, you will be asked to download the Fitbit App or install Software and enter information about yourself, such as height, weight and gender. We use this information to determine your personalised fitness stats– for example, calories burned and distance travelled. Depending upon the specific Device you use, it can collect the number of steps you take, your weight, measure your sleep quality and transmit this data to Fitbit. To see the full list of data that your Device collects, visit our Product Specifications page.
When You Create a Fitbit Account
If you want to access data collected by your Device from the Fitbit App, you must create a Fitbit account. When you create a Fitbit account, we ask for some personal information, including your email address and date of birth. You will also have the option to create your Fitbit account using a different credential like your Facebook or Google+ account. If you choose to do so, we will ask permission to access basic information from that account, like your name, profile picture and friend list. You can stop sharing that information with us at any time by removing Fitbit’s access to that account. We will access your phone’s contact list for the purpose of letting you identify contacts who are Fitbit users. We do not store your phone’s contact list, and it is deleted immediately after it is used for this purpose.
When You Add Information to Your Account
You can customise your Fitbit experience by adding other types of information to your account, such as by adding a food log or by setting an alarm, personalising your profile with photos, participating in discussion boards, or sending messages to your Fitbit friends. Whenever you add this type of data, we collect it and store it with your other account information.
When You Visit a Site
Fitbit collects some data from everyone who visits our website – even if you don’t have a Fitbit account.
When You Sync Your Device
When you sync your device, data about your activity is transferred from your device to our servers. This data is stored and used to provide the Fitbit Service. Each time a sync occurs, we also log data about the transmission. Some examples of the log data are the sync time and date, device battery level, and the IP address used when syncing.
When You Make Purchases From Our Store
If you are logged into your Fitbit account when you purchase something on our site, we associate that order with your account. We also store your delivery address so we can process your order through our fulfilment partner. We do not, however, view or store your credit card information. This is handled by our third-party payment processor. If you are not logged into your account at the time of purchase, we do not associate that data with your Fitbit account, however, we save the data so that we can provide customer service related to the purchase.
When You Contact Us For Help
Whenever you contact Fitbit for help, we collect your name and email address along with any additional information you provide in your request and store it on our servers in order to provide you with customer service and to improve the Fitbit Service. If you contact us when you are already logged in to your account, the web form automatically pre-fills in certain information, so you don’t have to type it manually. You can also contact Fitbit through public forums such as Twitter or Facebook; however, we cannot maintain the privacy of your communication to us if you contact us through these channels.
When You Add Friends
To help you stay motivated on your fitness journey, Fitbit lets you add friends who are already Fitbit users or invite friends who have not yet joined. You can add friends in several ways, such as by providing their email addresses, by accessing social networking accounts such as Facebook, or from the contact list on your phone. When you share your friends’ contact information with us to add them as a friend, we will only use it for this purpose. We do not store your phone’s contact list, and it is deleted immediately after it is used for this purpose.
When You Activate Location Features
Location features such as mapping are only available if you activate them. When active, Fitbit collects data like GPS signals, device sensors, Wi-Fi access points and cell tower IDs to determine your specific location. We store this information along with your other account information in order to provide you with location features. If you are using a mapping feature, we will send your location information to our mapping service provider so they can display your location on a map. They are contractually prevented from sharing or using this data for any other purpose. You can deactivate these features at any time and Fitbit will stop collecting this type of information.
Fitbit uses your data to provide you with the best experience possible, to help you make the most of your fitness, and to improve and protect Fitbit. Here are some examples:
- Height, weight, gender and age is used to estimate the number of calories you burn.
- Contact information is used to send you account notifications, allow other Fitbit users to add you as a friend, and to inform you about new features or products we think you would be interested in.
- Your data is used for research to understand and improve Fitbit products and services.
- De-identified data that does not identify you may be used to inform the health community about trends; for marketing and promotional use; or for sale to interested audiences. See Sharing of De-identified Data That Does Not Identify You to learn more.
What Data May be Shared With Third Parties?
First and foremost: We don’t sell any data that could identify you. We only share data about you when it is necessary to provide our services, when the data is de-identified and aggregated, or when you direct us to share it.
Data That Could Identify You
Personally Identifiable Information (PII) is data that includes a personal identifier like your name, email or address, or data that could reasonably be linked back to you. We will only share PII data under the following circumstances:
- With companies that are contractually engaged in providing us with services like order fulfilment, email management and credit card processing. These companies are obligated by contract to safeguard any PII they receive from us.
- If we believe, after due consideration, that doing so is reasonably necessary to comply with a law, regulation or valid legal process. If we are going to release your data, we will do our best to provide you with notice in advance by email, unless we are prohibited by a court order from doing so or where the request or legal process is directly related to a regulatory investigation. In the latter case, we will ensure user information we disclosed is treated as confidential.
- If we believe, after an investigation that is reasonable given the circumstances, that doing so is necessary to prevent imminent and serious bodily harm to a person, address fraud, maintain the security of the Fitbit Service and user data, protect our rights or property or the rights or property of a third party, or to enforce our Terms of Service.
Data That Does Not Identify You (De-identified Data)
Fitbit may share or sell aggregated, de-identified data that does not identify you with partners and the public in a variety of ways, such as by providing research or reports about health and fitness or in services provided under our Premium membership. When we provide this information, we take legal and technical measures to ensure that the data does not identify you and cannot be associated back to you.
Data that You Direct Us to Share
Other Ways You Might Share Your Data
Default Visibility Settings
The privacy settings on new Fitbit accounts are set to reveal minimal data about you with the purpose of getting you active and involved with Fitbit. To see what is visible to others use the “Profile viewed by” tool in your account settings. You can adjust your privacy settings at www.fitbit.com/user/profile/privacy.
Fitbit Social Tools
Fitbit provides many ways for you to share data with other Fitbit users, such as with the 7-day Leaderboard, Challenges, or by posting comments to the Fitbit community message boards. When you interact with others in these ways, you will be displaying your data based upon the visibility settings in your User Account privacy settings. Always check specific policies associated with any Challenge to understand what data will be visible to other participants.
To post to Fitbit community message boards, you’ll be asked to create a community username that’s separate from your Fitbit username. This community username will be posted next to any comments you publish on community message boards. Other information, like a profile photo that you’ve added to your Fitbit account may also be visible on message boards, depending on your Fitbit account settings.
Contests and Giveaways
Fitbit may also ask you to participate in surveys that help us understand your use of our products and services. Any PII you provide to Fitbit in these surveys will only be used in relation to that survey and as stated in this Policy.
How Long We Save Your Data
We store your PII for as long as you remain a Fitbit customer.
How To Edit or Modify Data
Any data that you provide to Fitbit through the Site can be modified from your dashboard or preferences. If you remove data from your User Account, it will no longer appear to you or others who use the Service. Backups of that data will remain in association with your User Account and in our archive servers.
How To Deactivate Your Fitbit Account
You can deactivate your Fitbit account by contacting Customer Support. When you do, data that can identify you will be removed from the Service, including but not limited to your email, name, photo(s), friends list and links to sites such as Facebook and Twitter. Backup copies of this data will be removed from our server based upon an automated schedule, which means it may persist in our archive for a short period. Fitbit may continue to use your de-identified data.
Fitbit’s Policies For Children
Fitbit is not directed at persons under the age of 13. We do not knowingly collect any PII from children under 13. If you are aware of a user under the age of 13 using Fitbit, please contact us at firstname.lastname@example.org.
Can I Opt-out Of Receiving Fitbit Emails?
Of course! You can opt-out of receiving weekly summaries, achievement notifications and promotional emails by changing the notification preferences in your account settings or by unsubscribing via the “Unsubscribe” link in any Fitbit email. Opting-out of these emails will not end transmission of important service-related emails that are necessary to your account maintenance.
How Does Fitbit Keep My Data Safe?
Fitbit uses a combination of technical and administrative security controls to maintain the security of your data. If you have a security-related concern, please contact Customer Support.
How Does Fitbit Handle Data From International Visitors?
Fitbit's Services are hosted and operated entirely in the United States and are subject to United States law. Any personal information that you provide to Fitbit is being provided to Fitbit solely in the United States and will be hosted on United States servers. You consent to the transfer of your personal information to the United States. If you are accessing the Fitbit Services from outside the United States, please be advised that United States law may not offer the same privacy protections as the law of your jurisdiction.
Fitbit has further committed to refer unresolved privacy complaints under the Safe Harbour Principles to an independent dispute resolution mechanism, the BBB EU SAFE HARBOUR, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit the BBB EU SAFE HARBOUR website at www.bbb.org/us/safe-harbour-complaints for more information and to file a complaint.
Web beacons and pixel tags are images embedded in a webpage or email for the purpose of measuring and analysing usage and activity. Fitbit, or third-party service providers acting on our behalf, may use web beacons and pixel tags to help us analyse usage and improve our functionality.
We use advertising cookies to present you with opportunities to purchase Fitbit products on our website, and retargeting cookies, to present you with Fitbit advertising on other websites based on your interaction on Fitbit’s site.
Does Fitbit Honour “Do Not Track” Signals
Although we would like to honour the browsers set with a “Do Not Track” signal, we are currently unable to honour those signals. We believe that consumers should exercise choice regarding the collection of this type of data, which is why we disclose the cookies used and provide links to opt-out of those collection practices below.
We use the following cookies and data analytics platforms:
- ApNexus: The ApNexus Cookies page provides information about their cookie and gives you the option to opt out-of this programme.
- DataXu: The DataXu Data Collection for our Platform page explains their privacy practices and gives you the option to opt-out of this programme.
- Google AdWords Conversion: You can adjust the Google Ads Settings and opt-out of this programme.
THIS POLICY WAS LAST UPDATED ON 3 JANUARY 2014.