Safebaze Label Ratings


Our ratings are based on Security and Privacy settings for the device discovered on the network. Our evaluation process is designed for consumer's IOT device as they make informed choices about the media and technology used at their homes. Our expert reviewers review the default security settings and the privacy policies and terms of use for products in order to evaluate those tools across key concerns. We provide recommendations for users to access various configurations and settings that they can manage to elevate the security and privacy of their devices.

Our 5 rating levels are below :


Best
Highly Satisfiable - Best
This rating is assigned to devices that have best default security and privacy settings enabled for the users.
Better
Satisfiable - Good
This rating is assigned to devices that have best default security and privacy settings enabled for the users.
Better
Satisfiable - Ok
This rating is assigned to devices that have best default security and privacy settings enabled for the users.
Better
Not satisfiable - Bad
This rating is assigned to devices that have best default security and privacy settings enabled for the users.
Better
Least Satisfiable - Poor
Does not have security or privacy settings and is not a recommended product..

Products that score a "poor" are not necessarily unsafe, but they have a higher number of security and privacy problems than the "average" product.

Similarly, products that score "best" are not necessarily problem-free, but had relatively fewer problems compared with other products.

Scores :

  1. Best (8-10)
  2. Good (6-8)
  3. OK (4-6)
  4. Bad (2-4)
  5. Poor (0-2)

Evaluation Concerns :

    Security :
  • OS vulnerabilities : Patch release and updates options
    1. Does the product get security patches and updates for reported vulnerabilities?
    2. Does the product offer various options for users to update?
    3. Does the product support automatic updates?
    4. Does the product notify users when severity patches are released and require an update?
  • Access control
    1. Does the product enforce stricter password checks?
    2. Does the product offer multi-factor authentication?
    3. Does the product provide mechanisms to protect from repudiation?
    4. Does the product inform users on leaked or compromised passwords?
    5. Does the product use default passwords with enforcement to change the defaults?
  • Security mechanisms
    1. What identification and authentication mechanism product supports?
    2. What Confidentiality, Integrity and Availability features the product provides?
    3. What additional features product provides that can lead to security issues?
    4. What security vulnerabilities have been reported for the product?
    5. How can the administrators access and set up the product?
    6. What security awareness and guidance is provided in the documentation and what defaults are configured for the user?
    7. Does the product provide all hardware and software details with transparency to any supply chain risks?
  • Data Security : Encryption
    1. Does the product offer encryption?
    2. Is the offered encryption stronger enough?
    3. Is data at rest encrypted?
    4. Is data in motion encrypted?
    Privacy :
  • Data Collection
    1. Does the product collect user data?
    2. Does the product collect data for adults as well as children under 16?
    3. Does the product offer visibility to data being collected?
    4. Does the product details to all data collection and how long this data is being retained locally or on cloud?
  • Data Sharing
    1. Does the product share data with third parties?
    2. Does the product offer details to which third parties data is being shared with?
    3. Does the product provide business requirements for data sharing?
    4. Does the product share what data is being shared and how frequently?
  • Individual Control
    1. Does the product offer all options to stop data collection as the user desires?
    2. Does the product provide guidance, documentation and awareness to the configuration to stop data collection for consumers?
  • Data Sold
    1. Is the data being sold to third parties?
    2. Are the privacy terms transparent to which third parties data is being sold and for what purpose?
  • Data Safety
    1. Does the product offer options for customers to raise issues and concerns for data safety?
    2. Does the product offer best options to protect visibility of user’s data to any third parties on their platform?
  • Ads & Tracking
    1. Does the product limit the use of third-party marketing, targeted advertising, or tracking?
  • Parental Consent
    1. Does the product offer parental consents for use by children under 13?