|
5 | 5 | - toc |
6 | 6 | --- |
7 | 7 |
|
8 | | -By using the WLED embedded system code, the WLED iOS mobile application, the WLED Android mobile application, web client, or associated Services, no personally identifiable data is collected, transmitted and/or stored on external servers. |
9 | | -No data is processed in any way not absolutely required for the operation of the Service. |
| 8 | +# WLED Privacy Policy (GDPR-Compliant) |
10 | 9 |
|
11 | | -This https://kno.wled.ge page is hosted using GitHub Pages. While the author of this page does not collect any personally identifiable data, the service provider GitHub "may collect User Personal Information from visitors to [the] GitHub Pages website, including logs of visitor IP addresses, to comply with legal obligations, and to maintain the security and integrity of the Website and the Service." (https://docs.github.com/en/github/site-policy/github-privacy-statement#github-pages) |
12 | | -This is outside the influence of the author. |
| 10 | +Last updated: 2025-11-20 |
13 | 11 |
|
14 | | -### Overview of collected data |
| 12 | +## 1. Introduction |
| 13 | +This Privacy Policy describes how the WLED Open Source Software (“WLED”, “the Software”) processes technical data when it is installed and run on a device. WLED is designed to operate locally and does not intentionally collect, transmit, or store personal data (as defined under the EU General Data Protection Regulation (GDPR)). |
15 | 14 |
|
16 | | -The embedded system internally stores configuration data, including, but not limited to the user's WiFi credentials. |
17 | | -This data is deletable by the user. External read access to sensitive data is blocked. No user or configuration data is sent to any system outside the users local network, unless the user modifies the Software or network configuration. |
| 15 | +Because WLED is self-hosted (flashed onto user-controlled hardware), the individual or organization deploying WLED acts as the “Data Controller” for any data arising from its local operation. The WLED open source contributors act only as software publishers and typically do not receive any data. |
18 | 16 |
|
19 | | -The mobile apps internally store data regarding connected devices, including, but not limited to the device's network-local IP addresses. |
| 17 | +New in recent versions: WLED offers an optional, opt-in submission of device hardware and configuration details to the WLED Usage Server. This occurs only if you explicitly click Accept during a fresh install or an upgrade prompt. No user behavior or personal data is collected or transmitted in this submission. |
20 | 18 |
|
21 | | -Using the provided Support services (including, but not limited to GitHub, Discord and E-mail), only the information you choose to disclose will be processed. Privacy policies and Terms of Service of service providers apply. |
| 19 | +## 2. Scope |
| 20 | +This policy applies to: |
| 21 | +- The WLED firmware and its built-in web interface. |
| 22 | +- Optional configuration and diagnostic data stored locally on the device. |
| 23 | +- The optional, opt-in submission of non-personal hardware and configuration details to the WLED Usage Server. |
22 | 24 |
|
23 | | -In accordance with the Service MIT license, THE SOFTWARE IS PROVIDED "AS IS", |
24 | | -WITHOUT WARRANTY OF ANY KIND, EXPRESS OR |
25 | | -IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, |
26 | | -FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE |
27 | | -AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER |
28 | | -LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, |
29 | | -OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE |
30 | | -SOFTWARE. |
| 25 | +It does not cover: |
| 26 | +- Third-party integrations (e.g., Home Automation platforms, MQTT brokers, cloud dashboards). |
| 27 | +- Forks or modified builds. |
| 28 | +- External logging or analytics that a user may choose to enable independently. |
31 | 29 |
|
32 | | -If you have inquiries regarding this Policy please feel free to contact me at: dev.aircoookie@gmail,com |
| 30 | +## 3. Key Definitions (GDPR Art. 4) |
| 31 | +- Personal Data: Any information relating to an identified or identifiable natural person. WLED is designed not to process such data by default. |
| 32 | +- Processing: Any operation performed on data (e.g., storage, transmission). |
| 33 | +- Data Controller: The person or entity determining purposes and means of processing (typically the device owner for local operation; for the optional Usage Server submission, the WLED project acts as a separate controller of that dataset). |
| 34 | +- Data Processor: A party processing data on behalf of a controller (generally not applicable; WLED maintainers do not process your local data). |
| 35 | + |
| 36 | +## 4. Categories of Data Processed |
| 37 | +WLED processes and stores the following non-personal technical and configuration data locally on the device. If you opt in, a subset may be transmitted to the WLED Usage Server as described below. |
| 38 | + |
| 39 | +### 4.1 Hardware & System Diagnostics (Local) |
| 40 | +- Microcontroller type (e.g., ESP8266, ESP32 variant) |
| 41 | +- Firmware version and build identifiers |
| 42 | +- Available flash/RAM and usage metrics |
| 43 | +- Uptime counters and reboot reason codes |
| 44 | +- Voltage or power draw estimates (if supported) |
| 45 | + |
| 46 | +### 4.2 LED & Effect Configuration (Local) |
| 47 | +- Number of LEDs and mapping/segment definitions |
| 48 | +- Color palette selections and active effects |
| 49 | +- Brightness level and power limiting configuration |
| 50 | +- GPIO pin assignments related to LED control |
| 51 | + |
| 52 | +### 4.3 Network & Interface Settings (Local Only) |
| 53 | +- Device name/hostname you assign (stored locally) |
| 54 | +- Local IP address (assigned by your router, not transmitted by default) |
| 55 | +- mDNS service name (if enabled) |
| 56 | +- Wi‑Fi signal strength (RSSI) and channel |
| 57 | +- MQTT broker address and topic strings (if you configure them) |
| 58 | +- Sync group identifiers for multi-device coordination |
| 59 | + |
| 60 | +### 4.4 Optional Feature Flags (Local) |
| 61 | +- Enabled modules (e.g., audio reactive mode, sound input calibration, IR remote mapping) |
| 62 | +- Security settings (OTA password hash, admin interface lock status) |
| 63 | + |
| 64 | +### 4.5 Persistence Mechanisms |
| 65 | +- Stored in device flash (configuration JSON or similar internal structures) |
| 66 | +- Temporarily held in RAM for active operation |
| 67 | + |
| 68 | +### 4.6 Data NOT Collected |
| 69 | +WLED intentionally does NOT collect: |
| 70 | +- User names, email addresses, physical addresses |
| 71 | +- Precise geolocation |
| 72 | +- Usage analytics or behavioral clickstreams |
| 73 | +- Personal identifiers or profiling metrics |
| 74 | +- Content unrelated to LED control (e.g., photos, messages) |
| 75 | +- Credentials (e.g., Wi‑Fi or MQTT passwords) for transmission |
| 76 | + |
| 77 | +If you integrate WLED with external platforms that gather personal data, such collection is outside the scope of this policy. |
| 78 | + |
| 79 | +### 4.7 Optional Telemetry: WLED Usage Server (Opt-in) |
| 80 | +If, after a fresh install or upgrade, you click Accept on the prompt, WLED will transmit a one-time report to the WLED Usage Server containing only non-personal hardware and configuration details. No user behavior or personal data is included. |
| 81 | + |
| 82 | +Data included in the submission: |
| 83 | +- Microcontroller family and model |
| 84 | +- WLED firmware version/build and compile-time feature flags |
| 85 | +- LED configuration: total LED count, segment counts and lengths, chipset type(s) |
| 86 | +- Enabled modules/features (e.g., audio reactive enabled, IR support enabled) |
| 87 | + |
| 88 | +Data explicitly excluded from the submission: |
| 89 | +- Device name/hostname |
| 90 | +- IP or MAC addresses |
| 91 | +- Wi‑Fi SSID, passwords, or MQTT credentials |
| 92 | +- User-entered free text fields |
| 93 | +- Any usage or behavior logs (effects used over time, button clicks, etc.) |
| 94 | +- Any data that directly identifies an individual |
| 95 | + |
| 96 | +Network metadata: |
| 97 | +- As with any internet request, your network will necessarily handle an IP address for routing. The WLED Usage Server is configured to minimize exposure to such metadata and not retain it in application logs. No IP or similar identifiers are stored with the submitted payload. |
| 98 | + |
| 99 | +Frequency: |
| 100 | +- A single submission occurs only when you click Accept on the post-install/upgrade prompt. No continuous telemetry is sent by default. If you do not Accept, nothing is sent. |
| 101 | + |
| 102 | +## 5. Purposes of Processing |
| 103 | +The technical data above is processed exclusively for: |
| 104 | +- Proper functioning of LED control and effects (local processing) |
| 105 | +- Device configuration management and persistence (local processing) |
| 106 | +- Performance optimization (e.g., memory/power limiting) (local processing) |
| 107 | +- Interoperability with user-selected local automation systems (local processing) |
| 108 | +- Security features (e.g., validating OTA updates with stored credentials) (local processing) |
| 109 | +- If opted in: creating aggregate, anonymized statistics about hardware types, common configurations, and feature adoption to help prioritize development and improve compatibility (Usage Server) |
| 110 | + |
| 111 | +## 6. Legal Basis (GDPR Art. 6) |
| 112 | +- Local, non-personal technical data: GDPR Recital 26 (data not related to an identified or identifiable person is outside GDPR’s scope). |
| 113 | +- Optional Usage Server submission: Explicit consent (Art. 6(1)(a)), provided by clicking Accept. You can decline, or withdraw consent at any time as described below. |
| 114 | + |
| 115 | +If a deployment introduces personal data (e.g., assigning a hostname containing a person’s name), the Data Controller’s legal basis is typically “legitimate interest” (Art. 6(1)(f)) for operating home automation equipment. |
| 116 | + |
| 117 | +## 7. Data Minimization & Privacy-by-Design |
| 118 | +- Only essential hardware and configuration parameters are processed. |
| 119 | +- No remote transmission occurs unless you explicitly opt in. |
| 120 | +- The Usage Server is designed to exclude personal data and user behavior metrics. |
| 121 | +- Network metadata (e.g., IP addresses) is not retained in application logs. |
| 122 | + |
| 123 | +## 8. Data Retention |
| 124 | +- Local: Configuration and diagnostic data persist only as long as the firmware remains flashed and settings are not factory-reset. Ephemeral runtime metrics (e.g., RAM usage) disappear on reboot. |
| 125 | +- Usage Server (opt-in): Reports are retained only as long as needed to compute aggregate statistics. Aggregate metrics do not contain personal data. Raw payloads are minimized and not retained beyond what is necessary for aggregation and service integrity. |
| 126 | + |
| 127 | +## 9. Data Sharing & Disclosure |
| 128 | +- Local: No data is sent to WLED maintainers, cloud services, or third parties by default. |
| 129 | +- Usage Server (opt-in): Your one-time submission is processed by the WLED Usage Server operated for the WLED project. No sale of data. No sharing with advertisers. Access is restricted to project maintainers for the stated purposes. |
| 130 | + |
| 131 | +Data leaves the device only if you enable integrations (e.g., MQTT publishing of state messages) or opt in to the Usage Server submission. Those messages should not include personal identifiers, and WLED does not transmit credentials. |
| 132 | + |
| 133 | +## 10. International Transfers |
| 134 | +- Local-only operation: No transfers. |
| 135 | +- Usage Server (opt-in): The service may be hosted in a jurisdiction different from yours. As the payload is strictly non-personal technical data, GDPR cross-border transfer rules are generally not triggered. If hosting occurs outside your region, standard technical and organizational measures are used to protect the data in transit and at rest. |
| 136 | + |
| 137 | +## 11. Security Measures |
| 138 | +- Local configuration is stored in flash with standard microcontroller access controls. |
| 139 | +- Optional OTA update password (recommended). |
| 140 | +- Use a secure local network; avoid exposing WLED directly to the public internet. |
| 141 | +- Usage Server submissions are transmitted over encrypted channels (HTTPS/TLS). |
| 142 | +- Server-side access is limited to authorized project maintainers. |
| 143 | + |
| 144 | +## 12. User / Data Subject Rights |
| 145 | +Since WLED does not process personal data by default, GDPR data subject rights (access, erasure, portability, etc.) are generally not applicable. |
| 146 | + |
| 147 | +If you introduce personal data into custom fields under your control, you can: |
| 148 | +- Access: View configuration via the web UI or API. |
| 149 | +- Rectify: Edit settings. |
| 150 | +- Erase: Perform a factory reset or reflash the device. |
| 151 | + |
| 152 | +Consent management for the Usage Server: |
| 153 | +- Decline the prompt to avoid any transmission. |
| 154 | +- If you accepted by mistake: no continuous telemetry is sent; no further action is required for that submission. You may also reset/reflash to clear settings or decline on future prompts after upgrades. |
| 155 | + |
| 156 | +## 13. Children’s Data |
| 157 | +WLED is not designed to target or identify children. No age-related data is processed. |
| 158 | + |
| 159 | +## 14. Third-Party Integrations |
| 160 | +If you connect WLED to: |
| 161 | +- Home Assistant |
| 162 | +- Smart home hubs |
| 163 | +- Cloud IoT platforms |
| 164 | +Their privacy policies govern any additional data processing. Ensure you do not embed personal identifiers in topics, device names, or payloads. |
| 165 | + |
| 166 | +## 15. Open Source Contributions |
| 167 | +Issue reports or pull requests in public repositories may contain optional personal data that a contributor posts voluntarily (e.g., GitHub handle). Such data is processed under those platforms’ privacy policies, not by WLED firmware runtime. |
| 168 | + |
| 169 | +## 16. Changes to This Policy |
| 170 | +We may update this policy to reflect firmware or service changes. Revisions will be published in the source repository with an updated “Last updated” date. Material changes to the Usage Server submission flow will be reflected in the in-app prompt. |
| 171 | + |
| 172 | +## 17. Contact / Questions |
| 173 | +WLED is a community-driven open source project; a formal Data Protection Officer (DPO) is typically not required. For privacy-related questions: |
| 174 | +- Open a discussion or issue in the official WLED repository (avoid sharing personal data). |
| 175 | +- If you embed WLED in a commercial context, consult local regulations and your legal counsel. |
| 176 | + |
| 177 | +## 18. Controller Guidance (Commercial / Institutional Deployments) |
| 178 | +If you embed WLED in a product offered to end-users: |
| 179 | +- Perform a Data Protection Impact Assessment (DPIA) if you add telemetry. |
| 180 | +- Provide end-users with a tailored privacy notice if any personal data is introduced. |
| 181 | +- Maintain records of processing if personal data becomes involved (Art. 30). |
| 182 | + |
| 183 | +## 19. How to Keep Deployments Privacy-Respecting |
| 184 | +- Use generic device names (e.g., “wled-livingroom”) rather than personal identifiers. |
| 185 | +- Avoid adding user-specific tags into MQTT topics. |
| 186 | +- Do not expose the device directly to the internet without appropriate safeguards. |
| 187 | +- Regularly update firmware to the latest stable releases. |
| 188 | + |
| 189 | +--- |
| 190 | + |
| 191 | +Short Summary (Non-Legal): |
| 192 | +WLED runs locally and stores only what it needs to control LEDs. It does not collect personal or behavioral data. After install or upgrade, you may optionally click Accept to send a one-time, non-personal report of your hardware and configuration to the WLED Usage Server to help improve compatibility and development priorities. If you don’t accept, nothing is sent. |
0 commit comments