Your personal data, including video footage and account information, may be transferred to and stored in China, where Eufy's parent company Anker is based.
This analysis describes what Eufy's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Data transfers to China are subject to Chinese data law requirements including the Personal Information Protection Law (PIPL) and potential government access obligations that differ materially from EU GDPR or US privacy frameworks, which may affect what protections apply to your data.
Interpretive note: The policy does not specify which data categories are transferred to China, which remain stored locally, or which specific transfer mechanisms are used for EU and UK users, creating material ambiguity about the scope of international transfers.
Video footage, biometric data, and account information collected by Eufy devices may be stored or processed in China, where different legal protections apply and Chinese authorities may have access rights under Chinese national security law.
How other platforms handle this
Your personal information may be transferred to, stored, and processed in the United States or other countries outside of your country of residence, which may have data protection laws that are different from those in your country.
Your personal information may be transferred to, stored, and processed in the United States or other countries where our service providers and partners operate. By using our Services, you acknowledge that your personal information may be transferred to countries outside your country of residence, in...
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Monitoring
Eufy has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Your personal information may be transferred to, stored, and processed in countries other than your own, including the United States and China, where our parent company Anker Innovations is headquartered. We take steps to ensure that your personal information receives an adequate level of protection in the jurisdictions in which we process it.— Excerpt from Eufy's Eufy Privacy Policy
REGULATORY LANDSCAPE: Cross-border data transfers from the EU/EEA to China are governed by GDPR Chapter V, which requires adequate safeguards such as Standard Contractual Clauses (SCCs) given that China does not have an EU adequacy decision. China's PIPL imposes its own requirements on outbound data transfers, including security assessments for large-scale transfers of personal information. The UK GDPR and International Data Transfer Agreements apply for UK users. The policy's assertion that 'adequate protection' is ensured without specifying the transfer mechanism creates compliance ambiguity for EU and UK users. GOVERNANCE EXPOSURE: High for EU and UK users. The absence of explicit disclosure of the transfer mechanism (SCCs, binding corporate rules, or adequacy decision) used for EU-to-China transfers is a notable gap. Chinese national security laws, including the National Intelligence Law, may require Chinese companies to cooperate with intelligence requests in ways that cannot be contractually prevented, creating a structural tension with GDPR transfer requirements that has been flagged by EU data protection authorities. JURISDICTION FLAGS: EU/EEA and UK users face the highest exposure given GDPR and UK GDPR transfer restrictions. US users should be aware that data stored in China may be subject to Chinese government access that differs from US legal process requirements. The policy does not specify which data categories are transferred internationally versus stored locally. CONTRACT AND VENDOR IMPLICATIONS: Enterprise or government purchasers of Eufy devices should conduct a data residency assessment before deployment, particularly for sensitive environments. Procurement teams should seek clarification on whether local storage options exist and whether data processing agreements can be structured to limit international transfers. COMPLIANCE CONSIDERATIONS: Legal teams should request specific documentation of the transfer mechanisms used for EU and UK data transfers to China, verify whether SCCs have been executed and supplemented with a transfer impact assessment, and assess whether local storage modes available in Eufy devices effectively prevent international transfer or merely cache data locally before syncing.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Data transfers to China are subject to Chinese data law requirements including the Personal Information Protection Law (PIPL) and potential government access obligations that differ materially from EU GDPR or US privacy frameworks, which may affect what protections apply to your data.
Video footage, biometric data, and account information collected by Eufy devices may be stored or processed in China, where different legal protections apply and Chinese authorities may have access rights under Chinese national security law.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Eufy.