Location permissions and you in Holman Home
You do not need to allow any location permission for the app to work, but in denying the permission you won’t be able to use Bluetooth enabled pairing (for devices with a Bluetooth pairing chip) or have your Wi-Fi name pre-fill (you’ll need to manually enter your SSID).
In all devices, regardless of the operating system (Android and iOS), you can change permissions for location as needed.
Android users:
Holman Home uses both precise and approximate location information in the foreground.
Devices using Android 10 or higher have a choice between either denying location or 2 location permission options:
“Allow only while using the app”
and
“Only this time”
Allow only while using the app means your device location is used only when your app is actively in use.
When using this permission, it will be used to understand if you’re in another time zone to your device (and for some devices offer a pop up accordingly), or for Bluetooth (nearby device) and Wi-Fi (SSID) information and pairing.
Only this time means your location is used only this time and you’ll need to grant/deny permission each time you use the app (the pop up will occur when opening the app).
Please note: Users with phones/devices using Android 11 or lower need to allow both ‘nearby devices’ and ‘precise location’ for Bluetooth scanning to work.
Difference between approximate and precise location:
Approximate location is an estimate within 3km of you, but may be further depending on other settings.
Precise location is an estimate which is as accurate as possible, usually within 50m.
Background Location usage:
Isn’t required. This can be accessed via the app settings and is called ‘Allow all the time’ in devices running Android 10 or above.
You would only use this if you wanted an automation such as ‘turn on the garden lights when I get home’ – this would need background access to understand your location in relation to your home.
iOS users:
Holman Home uses both precise and approximate location information in the foreground.
You have a choice between either ‘Never’ or 3 location permission options:
“While using the app”
“Ask next time or when I share”
And
“Always”
Since iOS 13, apps that want to access SSID (Wi-Fi network name) or BSSID (MAC address of the Wi-Fi interface) are required to have the location permission.
The reason behind Apple's decision to protect this information by the location permission is that your Wi-Fi network's SSID and BSSID are specific to your location - you usually keep your router at one place.
Never, prevents access to Location Services information.
Ask Next Time Or When I Share, this allows you to choose Always While Using App, Allow Once, or Don't Allow. Each time you open the app.
While Using the App, allows access to Location Services only when the app or one of its features is visible on screen. If an app is set to While Using the App, you might see your status bar turn blue with a message that an app is actively using your location.
Always, allows background location usage. You would only use this if you wanted an automation such as ‘turn on the garden lights when I get home’ – this would need background access to understand your location in relation to your home.
Please note: With iOS 13 or later, iPadOS 13 or later, and watchOS 6 or later, you can tap 'Allow Once' to let an app access Location Services data only for one session (One Time). If you close and then re-open the app and it tries to access your location again, it will ask for your permission again. Apps won't use your location until they have asked for your permission, and you grant permission.
Difference between approximate and precise location:
Precise Location will be able to locate your exact coordinates.
Approximate location is 4-8km from your real physical location.
From our platform provider - Tuya Smart
There is no risk for users in regard to location permission. Tuya will not use these location data outside of device pairing/ Automation/ Family binding/ Some specific range like robot,air purifier.
Here attached Tuya Smart Information Security White Paper for your reference.
Tuya has passed and certificated data security in some international regulation as below:
The EU General Data Protection Regulation (GDPR) aims to protect the basic privacy rights and personal data security of data subjects in the EU, and raises the standard of personal data privacy protection in an all-round way.
Tuya has completed GDPR validation and optimized internal data security protection and compliance requirements.
TuyaSmartWhitePaperon InformationSecurity&Compliance
Scope
TRUSTe LLC1 has reviewed the Tuya's IoT Product Line, which includes 1) IoT platform; 2)
Tuya Cloud; 3) Tuya Mobile Apps: Tuya Smart App and Smart Life App; 4)Other OEM branded
App and 5) Tuya API/SDK of Tuya Inc., Tuya (HK) Limited., Tuya Smart, Inc., Tuya Global,
Inc., Tuyasmart (India) Private Limited, Tuya GmbH, Tuya Japan Co., Ltd. (ツヤジャパン株氏
会社), Hangzhou Tuya Information Technology Co., Ltd, Zhejiang Tuya Smart Electronics
Co.,Ltd., Guangdong Tuya Smart Information Technology Co.,Ltd. and Hangzhou Tuya
Technology Co., Ltd. (“Organizations” or hereinafter “Tuya”) as of April 12, 2024 against the 44
GDPR Privacy Practices Management Validation Requirements (the “Validation
Requirements”) comprising the TrustArc GDPR Privacy Practices Management Compliance
Validation. A validation review of the Organization’s GDPR Privacy Practices involves a
comprehensive evaluation of practice-level measures and evidence of those measures to
ensure that the processing of personal information conducted by them, or by a third-party
processor on their behalf, is performed in compliance with the EU General Data Protection
Regulation (GDPR).
Inherent Limitations
Because of their nature and inherent limitations, practices-level measures of the Organization
may not always operate effectively to meet the applicable Validation Requirements.
Furthermore, our findings herein are subject to the risk that the Privacy Practices, or any
component of the Organization’s practices, may change or that practice-level measures
implemented by the Organization may become ineffective or fail.
Findings
In our opinion, in all material respects, based on the descriptions and supporting evidence of
practices-level measures identified in Tuya’s GDPR Validation Assessment:
● The applicable practices-level measures as further described in the accompanying
TRUSTe Validation Report have been implemented as of April 12, 2024.
● The measures described in the GDPR Validation Assessment were suitably designed to
provide reasonable assurance that the Validation Requirements would be met if the
practices-level measures operated effectively as of April 12, 2024.
Restricted Use
This summary2 of the Findings Letter and accompanying report is for the intended use of Tuya
as of April 12, 2024.
● This summary provided by TRUSTe may be used by the Organizations until its
expiration date listed below.
● This summary expires on April 12, 2025. It is not intended to be, and should not be
used nor relied upon by anyone other than the Organization and, as determined in the
sole discretion of the Organization, the Organization’s customers, contractors and
other permitted stakeholders.
1 TRUSTe LLC is an independent subsidiary of TrustArc Inc.
2 This summary is solely an abbreviated unofficial version of the full Findings Letter and accompanying report.
It is intended solely for the Organization to display on its website. No modifications to this document are permitted and shall render it invalid. Only the full Findings Letter and report represent the official determination of TRUSTe.
Article verified: WX1TH, WX2TH, WX1, WX2, WX8, KRX8, KRX6, Helios, WS5095W, Zephyr, WS5092W, WS5095, WS5092, CLXRGB60, CLXW60, WX2001, WXRL001, WXSL001, WXPL001, SWC1000, SWC200, SWC4000