Philips Sonicare Privacy Notice

This Privacy Notice was last updated on 19th January 2021.

The Philips Sonicare App (“App”) advises users around the world on how to improve their brushing and oral hygiene habits ("Services"). The App uses personal data collected or processed by the Philips Sonicare connected toothbrush ("Device") and/or the App.

The purpose of this Privacy Notice is to help you understand our privacy practices when you use our Services, including what information and personal data we collect, why we collect it and what we do with it, as well as your individual rights. The controller of your personal data under this Privacy Notice is Philips Oral Healthcare, LLC with address at 22100 Bothell Everett Highway, Bothell WA 98021, USA ("Philips", "our", "we" or "us").

Please also read our Analytics Notice and Terms of Use, which describe the terms under which you use our Services.

What Information and Personal Data do we collect and for which Purposes?

We receive or collect information and personal data, as described in detail below, when we provide our Services, including when you access, download and install the App. We associate your personal data with unique identifiers.

Sensitive Personal Data

We collect the following oral care data:

Your Device’s brushing data, including your routine, session information, sensor data (such as brush mode, position, motion and pressure), battery level, and brush head type and lifespan.
Your brushing goals and other oral care habits/activities (such as flossing and rinsing), your answers to our Personalization page in the Onboarding Questionnaire and the Focus Area (such as your plaque build-up, bleeding areas, gum recession, and potential cavities); and your brushing start location (i.e., the location in your mouth where you want to start brushing).

We collect this data to provide you with the Services, including providing feedback and real time guidance while you brush; sending your push notifications and/or In-App messages in connection with the Services; give you a customized program to immediately address missed spots; track your brush head effectiveness and alert you when to replace your brush head; and send you mouthwash or tongue cleaning reminders. We also use your oral care data to develop new products and services for you. Where you would like to receive In-App recommendations for Philips products, we process your oral care data to recommend products for you and help you get better results. We associate your oral care information with your account.

Before collecting any sensitive data, we will inform you and ask your explicit consent in accordance with article 9.2.a. of Regulation (EU) 2016/679. Other than provided above, we ask you not to send or disclose any sensitive personal data (e.g., social security numbers, information related to racial or ethnic origin, political opinions, religious, philosophical or other beliefs, health, sex life or sexual orientation, biometrics or genetic characteristics, criminal background or trade union membership) to us, on or through the App, or by any other means.

Read more Click here to read less

Account Data

We collect your personal data when you create an account. You may login to the App using a MyPhilips account or by using your social media profile, including your Apple account.

The personal data we collect may include your name, email address, country, language and password. We also process information on your App usage, including your session, login and authentication information, which we use to manage your account. For China users, we collect the users’ phone numbers.

If you choose to log in via social media, the personal data we collect may include your basic public profile (e.g., profile photo, identifier, gender, profile URL, birthday, homepage, and location) and email for authentication purposes. In this case, your social media provider may collect information on the fact that you are using the App and logging in using your social media account. Please read your social media provider’s Privacy Notice (e.g., Facebook, Google, Apple) to learn about their privacy practices, including, what type of personal data they collect, and how they use, process and protect them.

We use your Account Data to create and manage your account and provide personalized Services. You can use your account to securely login to the App. If you create a MyPhilips account to login to the App, we will send you a welcoming email to verify your username and password, to communicate with you in response to your inquiries, to send you strictly service-related announcements, or direct marketing communications in case you have provided consent. You may also use your MyPhilips account to order a Philips product or service, participate in a promotion or game, participate in a social media activity related to a Philips promotion (for example clicking "like" or "share"), and participate in product testing or surveys.

Because we use your Account Data to provide the Services, we consider this processing to be necessary for the performance of a contract to which you are party and lawful under Article 6.1. (b) of Regulation (EU) 2016/679.

Read more Click here to read less

Device Data

We may collect device-specific information when you install, access or use the Device, including your unique user Device number. The App also records (i) your Device’ time of use and battery level; and (ii) the type and lifespan of your brush head. We use this data to connect your Device with the App, track your brush head effectiveness and alert you when to replace your brush head.

Because your Device(s) Data are only processed for purposes of the Services, we consider this processing to be necessary for the performance of a contract to which you are party and lawful under Article 6.1.(b) of Regulation (EU) 2016/679.

Read more Click here to read less

Cookies and Analytics

We use cookies, tags or similar technologies (“Cookies”) to operate, provide, improve, understand, and customize our Services. Cookies allow us to recognize your mobile device and collect information and personal data including your unique user device number, the IP address of your mobile device, the type of mobile internet browser or operating system you use, session and usage data, or service-related performance information, which is information about your use of the App. We also use this information to show you country specific content (including information in your local language).

When you consent to making the app better based on your app interactions, feedback and crash information, we collect and process your App usage data as detailed in our Analytics Notice, which you can find under the App settings of the App. To do so, we may use several service providers that process your App data on our behalf and pursuant to our instructions. Our service providers use Cookies to help us collect your information. Before we use Cookies for analytics purposes, we will ask your consent.

Read more Click here to read less

Ratings and Review Data

If you write a review or rate the App on the app stores, we may process such information to respond to your comments and questions, understand how you feel when using the App, get familiar with your general perception of the App and our brand, and use these insights to improve the App. We can only see your app store username, ratings, comments and any other detail you decide to share with us or make publicly available. Unless you require us to do so, we do not link this information to your account credentials or any other information we hold from you. When you require customer support, we may use your data to follow-up on your case and guide you through our customer support process in accordance with section Customer support data further below. We consider the processing of your ratings and review data to be based on a legitimate interest of Philips and lawful under Article 6.1. (f) of Regulation (EU) 2016/679.

Customer Support Data

When you require customer support, we may ask you to provide us with information related to your use of our Services, including your interaction with Philips, and how to contact you so we can provide the required support. We operate and provide our Services, including providing customer support, and improving, fixing, and customizing our Services. We also use your information to respond to you when you contact us.

We consider the processing of your Customer Support data to be necessary for the performance of a contract to which you are party and lawful under Article 6.1.(b) of Regulation (EU) 2016/679. In some cases, we consider the processing of your Customer Support Data to be based on a legitimate interest of Philips and lawful under Article 6.1. (f) of Regulation (EU) 2016/679.

Combined Data

We may combine your personal data, including Account Data and Cookies, with data collected during your interactions and usage of the Philips digital channels such as social media, websites, emails, apps and connected products, including your IP addresses, Cookies, mobile device information, communications you click on or tap, location details, and websites you visit.

We use your Combined Data to improve the content, functionality and usability of the App, Device(s) and Services, as well as to develop new products and services. In this case, we consider the processing of your Combined Data to be based on a legitimate interest of Philips and lawful under Article 6.1. (f) of Regulation (EU) 2016/679. Before processing any Sensitive Data for the purposes mentioned in this section, we will inform you and ask your explicit consent in accordance with article 9.2.a. of Regulation (EU) 2016/679. We may aggregate your Combined Data, removing individual personal data, in order to create publications, presentations, reports or other (marketing) communications, which we can use for both internal and external purposes.

If you consent to receiving promotional communications about Philips products, services, events and promotions that may be relevant to you based on your preferences and online behavior, we may send you marketing and promotional communications via email, phone and other digital channels, such as mobile apps and social media. To be able to tailor the communications to your preferences and behavior and provide you with a more relevant and personalized experience, we may analyze your Combined Data. Before sending promotional communications to you, we will ask your consent.

Read more Click here to read less

Permissions

The App may request your permission to access your mobile device’s storage capabilities, sensors or other features (e.g. photos, calendar, contacts, camera, Wi-Fi, geo-location, or Bluetooth). We require access when strictly necessary to provide the Services as detailed below.

Bluetooth. The App requires Bluetooth connection to connect the Device to the App. You can at any time block your Bluetooth connection through the settings of your mobile device.

Calendar. If you want the App to remind you about your upcoming dental appointments, the App will require permission to access your calendar. We will not copy or store your calendar information. This information will remain in your mobile device.

Location. Android operating systems require coarse geo-graphic location to connect to your Device. iOS operating systems require geo-location to recognize when the App and the Device are nearby. However, Philips will not process such location data in any manner. The data will remain on your mobile device, where Philips will not have access to it. If you delete your profile and/or the App, the data will be deleted from your mobile device. You can at any time block geo-location collection through the settings of your mobile device.

Files. The App requires access to the mobile device’s files to store the language configurations and other files that the App uses to operate (e.g., graphics, media files, or other large program assets). If you delete the App, the data will be deleted from your mobile device.

Sometimes a permission is a technical precondition of the operating systems of your mobile device. In such case, the App may ask your permission to access such sensors or data. However, we will not collect such data, unless when required to provide you the Services and only after you provided consent.

Read more Click here to read less

With whom are Personal Data shared?

Philips may disclose your personal data to third party service providers, business partners, or other third parties in accordance with this Privacy Notice and/or applicable law.

Service Providers

We work with third-party service providers to help us operate, provide, improve, understand, customize, support, and market our Services.

We may share your personal data with the following service providers:

IT and Cloud Providers

These service providers deliver the necessary hardware, software, networking, storage, transactional services and/or related technology required to run the App or provide the Services.

Analytics Service Providers

These service providers deliver the necessary hardware, software, networking, storage, and/or related technology that we require to perform App analytics.

Philips requires its service providers to provide an adequate level of protection to your personal data similar to the level that we provide. We require our service providers to process your personal data only in accordance with our instructions and only for the specific purposes mentioned above, to have access to the minimum amount of data they need to deliver a specific service, and to protect the security of your personal data.

Other Third Parties

Philips may also work with third parties who process your personal data for their own purposes. If Philips shares personal data with third parties that use your personal data for their own purposes, Philips will ensure to inform you and/or obtain your consent in accordance with applicable laws before sharing your personal data. In this case, please read their privacy notices carefully as they inform about their privacy practices, including, what type of personal data they collect, how they use, process and protect them.

Philips sometimes sells a business or a part of a business to another company. Such a transfer of ownership could include the transfer of your personal data directly related to that business, to the purchasing company. All of our rights and obligations under our Privacy Notice are freely assignable by Philips to any of our affiliates, in connection with a merger, acquisition, restructuring, or sale of assets, or by operation of law or otherwise, and we may transfer your personal data to any of our affiliates, successor entities, or new owner.

At your request, we may share your personal data with the following third parties:

Your insurance company or oral healthcare provider, if this option is available in your country and you have instructed us to do the disclosure;
Amazon (If Amazon DRS is available in your country – see further details below).

These third parties may provide their own services to you. We may share your personal data with these third parties at your request and/or in accordance with applicable laws.

Please note that when you log in through your Facebook social media account via Android, you enable Facebook to collect the following information through the Facebook SDK:

App Events: This covers generic App Events (e.g. App Install, app launch) and other standard logging for product metrics (e.g. SDK loading and SDK performance).
Configuration data: After a user has logged in, the SDK makes periodic background requests to manage the lifetime of the access token automatically.
Error information: The SDK captures error information, including during initialization of the SDK, which may include a user ID of individuals who are logged in to Facebook.
Short-term data: The SDK measures some user activity for purposes of managing fraud and abuse. This data is only retained for a very short period for those not logged in to Facebook.

Facebook may also collect analytics data on your use of the SDK, information about the name of the App you are using, the date when you authorized the login, and any URL associated with your login. You can find out more about how Facebook uses your information by reading Facebook's Data Policy. Please note that the Facebook login functionality is completely optional, we will always allow you to login using your MyPhilips account.

Amazon Dash Replenishment Services

In some countries, we support our BrushSync Reorder services (“BrushSync”). When you subscribe to BrushSync, the App will place automatic brush head orders for you via Amazon’s Dash Replenishment Service (“DRS”). For such purposes, you will have to log in to your Amazon Account, and Amazon will provide its own services to you. Please read Amazon’s Terms and Conditions and Privacy Notice as they inform about its privacy practices, including, what type of personal data it collects, and how it uses, processes and protects them.

When you set-up your BrushSync subscription, we share the following data with Amazon: the serial number of your Device, the model (hx number) of your Device, and when it is time to order a new brush head (“BrushSync Data”). To keep track of your subscription, we store your Amazon Customer ID. If you unsubscribe to BrushSync, we will delete such Customer ID. You can at any time (i) pause or change orders using the Reorder Settings in the My Brush Head Page of the App; and/or (ii) cancel any order via Amazon.

You understand that Amazon provides its own voice services to you and by activating BrushSync, you instruct us to share your BrushSync Data with Amazon, which may process the same in countries outside of your country of residence which may not provide adequate protection to personal data.

Cross-border Transfer

Your personal data may be stored and processed in any country where we have facilities or in which we engage service providers, and by using the Services you acknowledge the transfer (if any) of information to countries outside of your country of residence, which may have data protection rules that are different from those of your country. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your personal data.

If you are located in the EEA, your personal data may be transferred to our affiliates or service providers in non-EEA countries that are recognized by the European Commission as providing an adequate level of data protection according to EEA standards (the full list of these countries is available here (https://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm). For transfers from the EEA to countries not considered adequate by the European Commission, such as the United States, we have put in place adequate measures, such as our Binding Corporate Rules for Customer, Supplier and Business Partner Data and/or standard contractual clauses adopted by the European Commission to protect your personal data. You may obtain a copy of these measures by following the link above or by contacting us here.

Read more Click here to read less

How Long Do We Keep Your Data?

We will retain your personal data for as long as needed or permitted in light of the purpose(s) for which the data is collected. The criteria we use to determine our retention periods include: (i) the length of time you use the App and Services; (ii) whether there is a legal obligation to which we are subject; or (iii) whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).

Your Choices and Rights

If you would like to submit a request to access, rectify, erase, restrict or object to the processing of personal data that you have previously provided to us, or if you would like to submit a request to receive an electronic copy of your personal data for purposes of transmitting it to another company (to the extent this right to data portability is provided to you by applicable law), you may contact us here. We will respond to your request consistent with applicable law.

In your request, please make clear what personal data you would like to access, rectify, erase, restrict or object to its processing. For your protection, we may only implement requests with respect to the personal data associated with your account, your email address or other account information, that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable.

Where we rely on consent to collect and/or process your personal data, you may withdraw your consent at any time, without affecting the lawfulness of processing based on consent before your withdrawal. Where we rely on performance of a contract to process your personal data for purposes of the Services, we may not be able to provide the Services if we do not receive your information.

Please note that if you make use of (some of) your choices and rights, you may not be able to use, in whole or in part, our Services anymore.

When we process your personal data based on a legal obligation to which we are subject, including when you interact with us to exercise any of your rights, we consider the processing to be lawful in accordance with Article 6.1.(c) of Regulation (EU) 2016/679.

Read more Click here to read less

We Protect Your Personal Data

We take seriously our duty to protect the data you entrust to Philips against accidental or unauthorized alteration, loss, misuse, disclosure or access. Philips uses a variety of security technologies, technical and organizational measures to help protect your data. For this purpose, we implement, among others, access controls, use firewalls and secure protocols.

Read more Click here to read less

Special Information for Parents

While the Services are not directed to children, as defined under applicable law, it is Philips policy to comply with the law when it requires parent or guardian permission before collecting, using or disclosing personal data of children. We are committed to protecting the privacy needs of children and we strongly encourage parents and guardians to take an active role in their children’s online activities and interests.

If a parent or guardian becomes aware that his or her child has provided us with his or her personal data without their consent, please contact us here. If we become aware that a child has provided us with personal data, we will delete his/her data from our files.

Read more Click here to read less

Changes to this Privacy Notice

Our Services may change from time to time without prior notice to you. For this reason, we reserve the right to amend or update this Privacy Notice from time to time. When we update this Privacy Notice, we will also update the date at the top of this Privacy Notice.

We encourage you to review regularly the latest version of this Privacy Notice.

The new Privacy Notice will become effective immediately upon publication. If you do not agree to the revised notice, you should alter your preferences, or consider stop using our Services. By continuing to access or make use of our Services after those changes become effective, you acknowledge that you have been informed and agree to the Privacy Notice as amended.

Read more Click here to read less

Contact Us

For purposes of article 27 of Regulation (EU) 2016/679, Philips International B.V. (High Tech Campus 5, Eindhoven, 5656 AE, the Netherlands) acts as our Representative in the European Union.

If you have any question about this Privacy Notice or about the way in which Philips uses your personal data, you may contact us (including our Data Protection Officer and/or Representative) here. Alternatively, you have the right to lodge a complaint with a supervisory authority competent for your country or region

Additional information for California Residents

California Civil Code Section 1798.83 permits our customers who are California residents to request and obtain from us once a year, free of charge, information about the personal information (if any) we disclosed to third parties for direct marketing purposes in the preceding calendar year. If applicable, this information would include a list of the categories of personal information that was shared and the names and addresses of all third parties with which we shared information in the immediately preceding calendar year. If you are a California resident and like to make such a request, please visit our privacy website: https://www.philips.com/a-w/privacy/questions-and-feedback.html.

Pursuant to the California Consumer Privacy Act of 2018 (“CCPA”), we are providing the following details regarding the categories of Personal Information that we collect and process about California residents via the Device and/or the App. For details on how we handle Personal Information pursuant to the CCPA in other contexts, please go here. Under the CCPA, “Personal Information” is information that identifies, relates to, or could reasonably be linked with a particular California resident or household.

Sources of Personal Information

We collect Personal Information from:

Our interactions with you through the Device and/or the App; and
Our affiliates.

Collection and Disclosure of Personal Information

The following chart details which categories of Personal Information about California residents we plan to collect, as well as which categories of Personal Information we have collected and disclosed for our operational business purposes in the preceding 12 months

Read more Click here to read less

*Categories of Personal Information*	*Disclosed to Which Categories of Third Parties for Operational Business Purposes*
Identifiers, such as name, contact information, IP address and other online identifiers.	Our affiliates and subsidiaries; trusted third-party service providers; business partners; third-party sponsors of sweepstakes, contests and similar promotions; your social media account providers, in connection with the social sharing you choose to us in accordance with section “With whom are Personal Data shared?” of this Privacy Notice.
Personal information as defined in the California customer records law, such as name and contact information.	Our affiliates and subsidiaries; trusted third-party service providers in accordance with section “With whom are Personal Data shared?” of this Privacy Notice.
Characteristics of protected classifications under California or federal law, such as age, sex and primary language	Our affiliates and subsidiaries; trusted third-party service providers in accordance with section “With whom are Personal Data shared?” of this Privacy Notice.
Internet or network activity information, such as browsing history and interactions with our online services	Our affiliates and subsidiaries; trusted third-party service providers in accordance with section “With whom are Personal Data shared?” of this Privacy Notice.
Geolocation data, such as device location.	Our affiliates and subsidiaries; trusted third-party service providers in accordance with section “With whom are Personal Data shared?” of this Privacy Notice.
Inferences drawn from any of the Personal Information listed above to create a profile about, for example, an individual’s preferences, behaviour and characteristics	Our affiliates and subsidiaries; trusted third-party service providers in accordance with section “With whom are Personal Data shared?” of this Privacy Notice.

Use of Personal Information

We use these categories of Personal Information for the purposes of operating, managing, and maintaining our business, providing our products and services, and accomplishing our business purposes and objectives, as described above under “What Personal Data are collected and for which purposes?”

We do not sell and have not sold Personal Information in the preceding 12 months, as “sale” is defined in the CCPA. We do not sell the Personal Information of minors under 16 years of age.

Individual Rights and Requests

If you are a California resident, you may request that we:

Disclose to you the following information covering the 12 months preceding your request:

o The categories of Personal Information we collected about you and the categories of sources from which we collected such Personal Information;

o The specific pieces of Personal Information we collected about you;

o The business or commercial purpose for collecting (if applicable) Personal Information about you; and

o The categories of Personal Information about you that we otherwise shared or disclosed, and the categories of third parties with whom we shared or to whom we disclosed such Personal Information (if applicable).

2. Delete Personal Information we collected from you.

To make a request for the disclosures or deletion described above, please contact us at: https://www.philips.com/a-w/privacy/questions-and-feedback.html or (866) 309-3263. We will verify and respond to your request as described above in “Your Choices and Rights” and consistent with applicable law, taking into account the type and sensitivity of the Personal Information subject to the request. We may need to request additional Personal Information from you, such as email address, mailing address, or telephone number in order to verify your identity and protect against fraudulent requests. If you make a deletion request, we may ask you to verify your request before we delete your Personal Information.

You have the right to be free from unlawful discrimination for exercising your rights under the CCPA.

Authorized Agents

If you want to make a request as an authorized agent on behalf of a California resident, you may use the submission methods noted above. As part of our verification process, we may request that you provide, as applicable:

Proof of your registration with the California Secretary of State to conduct business in California;
A power of attorney from the California resident pursuant to Probate Code sections 4000-4465;
Written permission that the California resident has authorized you to make a request on the resident’s behalf. This permission must be signed (via physical or e-signature) by the California resident.

If you are making a request on behalf of a California resident and have not provided us with a power of attorney from the resident pursuant to Probate Code sections 4000-4465, we may also require the resident to:

Provide you with a written permission signed by the resident to make the request on the resident’s behalf;
Verify the resident’s own identity directly with us;
Directly confirm with us that the resident provided you permission to submit the request.