Home security camera privacy scorecard
Some links to products or providers on this page may become affiliate links in the future, which could earn us a commission at no cost to you. As of July 2026 we have no active affiliate partnerships, and any future commission will never change our recommendations. Read our full disclosure.
A spec sheet tells you resolution and field of view. It does not tell you whether the camera company can watch your footage, hand it to police without a warrant, or has already leaked strangers' feeds to each other. Those are the privacy facts that actually separate one brand from another, and they are the hardest to find. This scorecard pulls them into one place for seven mainstream brands, with every rating tied to a primary source you can check yourself.
This is not a "best camera" ranking. A brand can score poorly here and still be the right buy for someone who mainly wants cheap package-thief alerts. Read it as a privacy lens to lay over your own priorities, then pair it with the four buying questions in our guide to choosing a camera.
The scorecard
Four columns, seven brands. Each cell reflects the brand's documented default behavior as of July 2026, sourced below. "Optional" means the feature exists but is off by default or carries trade-offs. Read the notes under the table before drawing conclusions, because a single word hides real nuance.
| Brand | End-to-end encryption | Local storage without a subscription | Warrant required before police get footage | Documented security incident |
|---|---|---|---|---|
| Apple HomeKit Secure Video | Yes, by default | Hybrid: local processing, encrypted iCloud clips (iCloud+ required) | Effectively yes: Apple cannot decrypt your clips | None found |
| Reolink | Not applicable when run local-only | Yes (microSD, hub, or NVR; no subscription) | Effectively yes for local footage: nothing sits on the vendor's cloud | None found in this research |
| Arlo | No on its own; yes via Apple HomeKit on some models | No (most features need an Arlo Secure plan) | Yes: requires consent or a legal order | No major scandal documented |
| Wyze | No | Partial (microSD event recording; cloud for history) | Yes: requires subpoena or warrant | Yes: Feb 2024, ~13,000 users could see strangers' feeds |
| Ring (Amazon) | Optional, opt-in; disables many features; not on battery models | No (cloud subscription for recording) | No: shares in "emergencies" without a warrant | Yes: 2023 FTC settlement (employee snooping, hacks) |
| eufy (Anker) | No (marketed as local; see 2022 disclosure) | Yes on paper (HomeBase), but verify the behavior | No: emergency-sharing policy | Yes: 2022 cloud uploads despite "local" claims |
| Google Nest | No | No (cloud and Google account required) | No: reserves the right to share without a warrant in emergencies | No major feed breach documented; warrantless policy is the concern |
Rows are ordered roughly from most privacy-protective to least, on the axes above. That ordering is our editorial judgment from the sourced facts, not a lab score. One caveat applies to every row: under the federal Electronic Communications Privacy Act, any company can legally hand footage to police in a good-faith life-or-death emergency regardless of its stated policy. The scorecard reflects each company's own stated posture, not the outer limit of what the law allows. (Consumer Reports; sources below.)
How we scored each column
End-to-end encryption
End-to-end encryption (E2EE) means only your own devices hold the key, so the company cannot watch your video even if it wanted to, and cannot be forced to produce readable footage it does not hold the key for. Apple HomeKit Secure Video is the clearest example: a home hub analyzes motion on-device, then stores end-to-end-encrypted clips that only your Apple devices can unlock, for a 10-day window that does not count against iCloud storage (a paid iCloud+ plan and a home hub are required). Ring offers E2EE too, but it is opt-in, unavailable on battery-powered doorbells and cameras, and switching it on disables a long list of features including shared-user access, sharing links, Live View on more than one device, and viewing on an Echo Show or Fire TV. Most other mainstream brands encrypt video in transit and at rest on their servers, which protects against outside eavesdroppers but still leaves the company holding a key.
Local storage without a subscription
If footage never leaves your home, there is no vendor cloud to breach, subpoena, or lock behind a monthly fee. Reolink is the strongest here: it records to a microSD card, its Home Hub, or a network video recorder with no subscription required for local storage, high-resolution footage, or on-device AI, and its cameras can be pulled into open systems like Home Assistant to run fully on your network. The honest caveat is that remote viewing through any brand's app still routes through that vendor's servers, so "local storage" reduces exposure rather than eliminating it. eufy markets local storage heavily, but see the incident note below before treating the label as a guarantee. Cloud-first brands like Ring, Google Nest, and Arlo tie most recording and review features to a paid plan.
Warrant required before police get your footage
This is the column buyers rarely think about until it matters. In 2022, Amazon disclosed that it had given Ring footage to police without a warrant or user consent 11 times in the first half of that year, under an "emergency" exception. A Consumer Reports review found that Ring, eufy, Google, SimpliSafe, D-Link, and TP-Link all reserve the right to share footage with law enforcement without a warrant in life-threatening emergencies, while Arlo says it will not share in emergencies without user consent or a legally binding order, and Wyze says it shares only with a valid subpoena or warrant. Because Apple cannot decrypt HomeKit Secure Video, and because Reolink footage kept local never reaches the vendor, both are effectively protected on this axis by design rather than by policy. To its credit, Ring shut down the Neighbors app tool that let police mass-request footage from users in January 2024, though police can still obtain footage with a warrant.
Documented security incident
A company's track record is part of the product. Ring settled with the FTC in 2023 for failing to stop employees and contractors from accessing customer videos (one employee viewed thousands of recordings of women in bedrooms and bathrooms) and for lax defenses against account takeovers; Amazon paid $5.8 million, and the FTC sent more than $5.6 million in refunds in 2024. Wyze confirmed that in February 2024, as cameras recovered from an outage, about 13,000 users could see thumbnail images from strangers' cameras and roughly 1,500 clicked through to others' feeds. eufy was shown in November 2022 to be uploading identifiable face thumbnails to the cloud even with cloud features switched off, despite its local-storage marketing. We found no comparable feed-exposure incident for Apple, Arlo, or Reolink in this research, which is not proof that none exists.
A "local storage" label is a marketing claim, not a guarantee. The eufy episode is the cautionary tale: cameras sold on privacy were quietly sending thumbnails to the cloud. If cloud exposure is a dealbreaker for you, verify the behavior with the manufacturer's current documentation and independent testing, rather than trusting the word on the box. This page is a starting map, not a substitute for checking a specific model before you buy.
What this means for different buyers
If privacy is your top priority and you are willing to work for it, a local-storage setup (Reolink on your own network) or Apple's end-to-end-encrypted HomeKit Secure Video keeps your footage out of a vendor's readable cloud. Both ask something of you: local storage means you manage the hardware, and HomeKit means buying into Apple's ecosystem and paying for iCloud+.
If you want convenience and mainstream features and are comfortable with a company holding a key, Ring, Nest, and Arlo are the easy paths, with the trade-offs above. Arlo stands out among the cloud brands for requiring legal process before sharing with police and for a clean incident record so far, though nearly all of its features sit behind a subscription.
If budget drives the decision, Wyze and eufy are inexpensive and can record locally, but both carry documented incidents, so weigh the savings against the track record and keep firmware current.
Whatever you choose, an internet-connected camera is always a trade: convenience for trust. The goal of this scorecard is to help you make that trade deliberately instead of discovering the terms later. For indoor cameras especially, a model you can physically shutter or that stores locally respects a household more than an always-on cloud camera in a hallway.
Methodology, in brief
We built this scorecard from primary and independent sources: manufacturer documentation and support pages, the FTC's own filings, Consumer Reports and the Electronic Frontier Foundation on law-enforcement sharing, and contemporaneous reporting on the Wyze and eufy incidents. Every rating maps to a source in the list below, each with an access date. We did not perform hands-on or lab testing; where a company's stated policy and its documented behavior diverged (as with eufy in 2022), we scored the documented behavior and said so. Commercial facts drift, so we re-verify pages like this on a schedule and welcome corrections through our contact page. Full approach: our methodology.
Where to go next
- How to choose a home security camera without overbuying - the four questions (power, connection, storage, privacy) that pick a camera.
- Security cameras for a cabin with no Wi-Fi or power - cellular and solar options, with the data-cost math.
- Professional vs. self-monitoring - whether you also want an alarm and a response, not just a recording.
Trying to avoid recurring fees along with the privacy cost? Our no-contract systems comparison lays out what you keep and give up at each price level. And before buying any camera, walk your home with the free home security checklist - lighting, locks, and sightlines make every camera work better.
Sources
- Federal Trade Commission - FTC Says Ring Employees Illegally Surveilled Customers, Failed to Stop Hackers (accessed 2026-07-07)
- Federal Trade Commission - FTC Sends Refunds to Ring Customers (2024) (accessed 2026-07-07)
- Electronic Frontier Foundation - Ring Reveals They Give Videos to Police Without User Consent or a Warrant (accessed 2026-07-07)
- Consumer Reports - Security Companies Could Give Video to Police Without Consent (accessed 2026-07-07)
- NPR - Ring will no longer allow police to request doorbell camera footage (accessed 2026-07-07)
- Ring Support - Using video end-to-end encryption (E2EE) (accessed 2026-07-07)
- Apple Support - Store encrypted security camera footage in iCloud with HomeKit Secure Video (accessed 2026-07-07)
- Arlo Knowledge Base - How does Arlo keep my videos private and secure in the cloud? (accessed 2026-07-07)
- The Washington Post - Wyze security issue exposed private cameras to 13,000 strangers (accessed 2026-07-07)
- CNN Business - Wyze breach: about 13,000 home security customers were shown someone else's home (accessed 2026-07-07)
- Tom's Guide - Eufy cameras allegedly uploaded data to the cloud despite local storage promises (accessed 2026-07-07)
- MacRumors - Anker's Eufy cameras caught uploading content to the cloud without user consent (accessed 2026-07-07)
- Reolink - Local storage security cameras (no monthly fees) (accessed 2026-07-07)
- Android Police - Your Google Nest camera footage might be shared with police without a warrant (accessed 2026-07-07)