How to use your Polar product securely

Polar offers a minimum of five years of product support service to its customers from the sales start of the product. Product support service includes necessary firmware updates to Polar devices and fixes for critical vulnerability as required. Polar constantly monitors the releases of known vulnerabilities. Please update your Polar product regularly, and as soon as the Polar Flow mobile application informs you about the availability of a new firmware version.

Please be aware that when ANT+ and/or Bluetooth broadcasting (i.e. Heart rate visible to all setting) are enabled and your heart rate sensor transmits the ANT+ or Bluetooth signal, any compatible device using ANT+ or Bluetooth Smart wireless technology can receive the signal. This means that these connections are not secure from a user privacy perspective.

Also note that the Polar H10 supports two simultaneous Bluetooth connections and the feature is enabled by default. While this enhances connectivity, it also introduces a potential privacy risk as unauthorized devices may connect to the sensor without the user's awareness, especially in public or shared environments.

Before handing the device over to a third party for testing or before selling it, it is necessary to perform a factory reset on the device, and to remove the device from your Polar Flow account. A factory reset will clear the sensor memory and resets the sensor to factory setting, and the device cannot be linked to your data anymore. To remove the device from your Polar Flow account, sign into the Polar Flow web service, click your name on top right, choose Products and click the remove icon (X) next to the device you wish to remove.

Training sessions are also stored on your mobile device with the Polar Flow application. For extra security, various security enhancing options can be enabled on your mobile device such as strong authentication and device encryption. Consult the user manual of your mobile device for instructions on enabling these options.

When using the Polar Flow web service, we recommend using a password that is no less than 12 characters in length. If using the Polar Flow web service on a public computer, please remember to clear the cache and browsing history in order to prevent others from accessing your account. In addition, do not allow a computer’s browser to store or remember your password for the Polar Flow web service if it is not your private computer.

Any security issues can be reported to security(a)polar.com. You can also contact Polar Customer Care.