Interesting debate on the City AM website. My view? The Consumer Rights Act 2015 states… “As with the Sale of Goods Act, under the Consumer Rights Act all products must be of satisfactory quality, fit for purpose and as described.” That makes the retailer responsible. If your smart toy is spying on you, I’d say that they are definitely not ‘Fit for purpose’…:
With cyber security concerns over smart toys, should retailers be held responsible for vulnerable products?
Keiron Shepherd, senior security systems engineer (UK & I) at F5 Networks, says YES.
With each new cyber attack on internet of things (IoT) devices, it’s clear that manufacturers need to work harder at building security into their products, but retailers cannot be let off the hook. As strict laws exist in the UK to safeguard children’s privacy, it’s extremely concerning that connected toys sold online still pose serious privacy risks.