Supplemental EEA+ Privacy Statement
Last Updated: January 1, 2020
Last Updated: January 1, 2020
The data protection laws of the United Kingdom, Switzerland and the European Economic Area (EEA) (collectively, the “EEA+”), including the General Data Protection Regulation (“GDPR”), require us, Glu Mobile Inc., to provide additional and different information about our data processing practices to individuals in the EEA+.
This Statement applies to personal data we collect when you use our websites, mobile applications and other online products and services (collectively, the “Services”). This Statement does not apply to the information collected from: (1) web-based applications that are based on our mobile applications but are published by third parties, (2) mobile applications that we distribute on behalf of third parties and which are hosted and operated by such parties, or (3) the on-line submission of resumes and employment applications in connection with the Jobs section of our website.
Glu Mobile Inc. is the data controller. Our address is 875 Howard Street, Suite 100, San Francisco, CA 94103. You may contact our EU Representative at EURep@glu.com, by post at DPO Centre, 50 Liverpool Street, London, EC2M 7PR, or by phone at +44 203 797 6340.
We will only process personal data about you in accordance with the following legal bases:
We may transfer your personal data to service providers and business partners outside of the EEA. Some of these recipients are located in countries for which the European Commission has issued adequacy decisions, including but not limited to: Canada, Israel, Japan, New Zealand and Switzerland. In each case, the transfer is thereby recognized as providing an adequate level of data protection from a European data protection law perspective (GDPR Art. 45).
Some recipients of your personal data are located in countries for which the European Commission has not issued an adequacy decision in respect of the level of data protection there, including but not limited: Australia, Chile, China, India, Mexico, Philippines, and Singapore. By entering into appropriate data transfer agreements based on Standard Contractual Clauses (2010/87/EU and/or 2004/915/EC) as referred to in GDPR Art. 46(5) or other adequate means, we have established that such recipients will provide an adequate level of data protection and that appropriate technical and organizational security measures are in place to protect personal data against accidental or unlawful destruction, loss or alteration, unauthorized disclosure or access, and against all other unlawful forms of processing.
You can ask for a copy of such appropriate data transfer agreements by contacting us using the contact details above.
Subject to the conditions set out under the GDPR, you have the following rights:
If you would like to exercise any of these rights, please contact us via the details listed above. Please note that these rights might be limited under applicable national data protection laws. You also have the right to lodge a complaint with the competent supervisory authority.
You are not required to provide any personal data to us, but if you do not provide any personal data to us, you may not be able to use certain features of our Services. You can use our Services without consenting to cookies that are not strictly necessary; however, this might affect the availability and functionality of our Services. You can also use our Services without consenting to receiving marketing communications from us; the only consequence is that you may not receive marketing communications that you may be interested in.
We store the information we collect about you for as long as is necessary for the purposes for which we originally collected it, which depends on the personal data at issue and the purposes for which we process it. We may retain certain information for legitimate business purposes or as required by law.