How can manufacturers develop innovative health-focused smart home products while upholding consumer privacy rights and ensuring compliance with evolving data protection laws?
A Note from the Creator
Hi, I’m Giles Sutton—currently completing my Master of Legal Studies degree at UCLA School of Law, with a focus on technology law including data privacy, cybersecurity, and regulatory compliance.
I’ve spent most of the past two decades working in the smart home technology and IoT industry, watching it grow from a niche category reserved for luxury homes into a fixture of modern life- first unlocked by the launch of the Amazon Echo in 2014 and then accelerated by a wave of consumer‑ and DIY products. These devices didn’t just democratize smart living; they revolutionized how user data is collected, aggregated, and shared to power highly personalized experiences.
The shift hasn’t just been in cost and accessibility, but in how these products now enhance daily life by offering tailored recommendations- tracking everything from sleep and movement to heart rhythms and stress levels to support wellness and convenience. But as these capabilities have grown, so too has the complexity of the legal and ethical landscape- especially as consumers become more vigilant about how their data is used.
That’s what led me to create SmartHome Sentinel as my final Capstone Project at UCLA. It’s a privacy-first, guided assessment tool designed to help manufacturers, designers, and innovators understand the risks associated with wellness and health-related smart home data. While it’s not legal advice, every insight is grounded in real legal frameworks- from GDPR, CPRA, and COPPA to BIPA and the My Health My Data Act- offering a practical way to spot potential issues early and move forward with confidence.
Looking ahead, I hope to evolve this tool further by incorporating AI-powered guidance and expanding into areas like cybersecurity, algorithmic fairness, and other emerging laws that shape connected living.
Thanks for exploring SmartHome Sentinel. My hope is that it helps you build smarter, safer, and more respectful wellness technologies-because in the connected home, protecting user data isn’t just a legal requirement; it’s a responsibility.
— Giles Sutton
How I Built SmartHome Sentinel
01
Identified the Problem
I started with a key question: How can product teams navigate the growing legal risks around wellness data in smart home devices- without needing a law degree?
02
Mapped the Legal Landscape
I analyzed statutes, case law, enforcement actions, academic research, and regulatory guidance including GDPR, CPRA, BIPA, COPPA, and the My Health My Data Act, to ground the tool in real-world legal risks and evolving privacy standards.
03
Defined Common Risk Factors
I translated legal concepts into plain-English questions across ten categories- covering everything from data types and AI use to storage and third-party sharing.
04
Built a Risk Scoring System
Using a rules-based model, I assigned weighted risk values based on known legal standards, enforcement actions, and the sensitivity of certain data practices.
05
Developed the Interactive Tool
I coded the tool from scratch using JavaScript, CSS, and WordPress integration- allowing users to receive real-time guidance and download a report based on their responses.
06
Tested and Refined
Through user testing and legal review, I iterated on both the content and logic to ensure accuracy, usability, and alignment with current regulatory frameworks.