Privacy is a right.
We started this company from day one thinking about how to protect user privacy because we understood it as a requirement to building usable technology.
Here's how we did it.
People should not have to sacrifice their privacy in order to use and benefit from technology.
This is the basis of “Privacy by Design” in its most basic concept, and the design principles we uphold. Any amount of data can unintentionally reveal sensitive personal identifiable information (PII), which can land in the wrong hands. The principles of Privacy by Design provide a framework for how technology should be approached to reduce this risk. This means control measures for data privacy are foundational in the design, which minimizes the amount of personal data that is processed and retained.
Nymi has been practicing Privacy by Design since the inception of the company.
The very nature of a connected workforce requires technology to process some amount of PII, but our approach reduces risk by prioritizing security and privacy beginning from the design of our platform and wearable, to its actual use in every day life.
Most importantly, we minimize storage of PII to the least amount required to deliver a workplace solution that increases health and safety, security, and productivity for its users. The result is powerful technology that is balanced towards the end user’s interests and protects their right to privacy and autonomy at all stages.
Biometrics on the Nymi Band
When scanning a user’s fingerprint, the Nymi Band sensor will capture an initial fingerprint image that is then used to generate a mathematical template based on its unique features. The initial image is discarded in the trash and the mathematical fingerprint template is stored within protected memory. It never leaves the Nymi Band.
Similarly, a user’s heartbeat (aka ECG) is not stored on the Nymi Band. ECG data is used to verify that the user who is providing the fingerprint is wearing the Nymi Band.
A key component to designing a solution with privacy by design principles is also providing visibility and transparency to the end user.
This provides a means for users to check that companies are handling their personal information in a secure and trusted manner, aligned with privacy policies.
At Nymi, we work with companies to ensure there is visibility and transparency about what, how, and why any PII is processed or stored. Furthermore, our wearables work in some of the most highly regulated environments and within strict GDPR law.
Additionally, we provide transparency to the user through a companion app called, Nymi Lynk.
In essence, Nymi Lynk provides a convenient and simple way for users to navigate their own data and analytics. They can interact with the applications on the Nymi Connected Worker Platform in a visual medium that’s transparent and easy to understand. Finally, as an added privacy control, Nymi Band users can wipe all their biometric information and personal data through Nymi Lynk at any time.
Visibility & Transparency
There are significant benefits to employee safety, security, and productivity when connecting workers to their digital ecosystem. However, it is challenging to deliver a solution whose benefits consider user privacy as a fundamental value.
While there are many ways to approach designing a connected worker platform that balances these trade-offs, Nymi has always recognized user privacy as a design requirement as fundamental as other more obvious requirements, like security, compliance, and usability. In the end, we’ve built a solution that mitigates risk to the end user and puts employee interests first in principle and in practice.