If you follow the news surrounding the internet of things (IoT), you know that security issues have long been a key concern for IoT consumers, enterprises, and vendors. Those issues are very real, but I\u2019m becoming increasingly convinced that related but fundamentally different privacy vulnerabilities may well be an even bigger threat to the success of the IoT.\nIn June alone, we\u2019ve seen a flood of IoT privacy issues inundate the news cycle, and observers are increasingly sounding the alarm that IoT users should be paying attention to what happens to the data collected by IoT devices.\n\nPredictably, most of the teeth-gnashing has come on the consumer side, but that doesn\u2019t mean enterprises users are immune to the issue. One the one hand, just like consumers, companies are vulnerable to their proprietary information being improperly shared and misused. More immediately, companies may face backlash from their own customers if they are seen as not properly guarding the data they collect via the IoT. Too often, in fact, enterprises shoot themselves in the foot on privacy issues, with practices that range from tone-deaf to exploitative to downright illegal\u2014leading almost two-thirds (63%) of consumers to describe IoT data collection as \u201ccreepy,\u201d while more than half (53%) \u201cdistrust connected devices to protect their privacy and handle information in a responsible manner.\u201d\nRing becoming the poster child for IoT privacy issues\nAs a case in point, let\u2019s look at the case of Ring, the IoT doorbell company now owned by Amazon. Ring is reportedly working with police departments to build a video surveillance network in residential neighborhoods. Police in more than 50 cities and towns across the country are apparently offering free or discounted Ring doorbells, and sometimes requiring the recipients to share footage for use in investigations. (While Ring touts the security benefits of working with law enforcement, it has asked police departments to end the practice of requiring users to hand over footage, as it appears to violate the devices\u2019 terms of service.)\nMany privacy advocates are troubled by this degree of cooperation between police and Ring, but that\u2019s only part of the problem. Last year, for example, Ring workers in Ukraine reportedly watched customer feeds. Amazingly, though, even that only scratches the surface of the privacy flaps surrounding Ring.\nGuilty by video?\nAccording to Motherboard, \u201cRing is using video captured by its doorbell cameras in Facebook advertisements that ask users to identify and call the cops on a woman whom local police say is a suspected thief.\u201d While the police are apparently appreciative of the \u201cadditional eyes that may see this woman and recognize her,\u201d the ad calls the woman a thief even though she has not been charged with a crime, much less convicted!\nRing may be today\u2019s poster child for IoT privacy issues, but IoT privacy complaints are widespread. In many cases, it comes down to what IoT users\u2014or others nearby\u2014are getting in return for giving up their privacy. According to the Guardian, for example, Google\u2019s Sidewalk Labs smart city project is little more than \u201csurveillance capitalism.\u201d And while car owners may get a discount on auto insurance in return for sharing their driving data, that relationship is hardly set in stone. It may not be long before drivers have to give up their data just to get insurance at all.\nAnd as the recent data breach at the U.S. Customs and Border Protection once again demonstrates, private data is \u201ca genie without a bottle.\u201d No matter what legal or technical protections are put in place, the data may always be revealed or used in unforeseen ways. Heck, when you put it all together, it\u2019s enough to make you wonder whether doorbells really need to be smart at all?