Supplemental EEA+ Privacy Statement
Last Updated: August 31, 2021
Last Updated: August 31, 2021
The data protection laws of the United Kingdom, Switzerland and the European Economic Area (EEA) (collectively, the “EEA+”), including the General Data Protection Regulation (“GDPR”), require us, Glu Mobile Inc., to provide additional and different information about our data processing practices to individuals in the EEA+.
This Statement only applies to to the use of our websites, mobile applications, and other online products; it does not apply to any data collection from third-party sites and services or to prospective employment data.
This Statement applies to personal data we collect when you use our websites, mobile applications and other online products and services (collectively, the “Services”). This Statement does not apply to the information collected from: (1) web-based applications that are based on our mobile applications but are published by third parties, (2) mobile applications that we distribute on behalf of third parties and which are hosted and operated by such parties, or (3) the on-line submission of resumes and employment applications in connection with the Jobs section of our website.
Glu Mobile Inc. is the Data Controller of your personal data collected when you use our Services.
Glu Mobile Inc. is the data controller. Our address is 875 Howard Street, Suite 100, San Francisco, CA 94103. You may contact our EU Representative at EURep@glu.com or by post at Parkmore West Business Park, 1, Ballybrit, Galway, H91 Y2R5, Ireland and our UK Representative at UKRep@glu.com or by post at Onslow House, Onslow St, Guildford GU1 4TN, United Kingdom.
We may rely on different legal bases to process your personal data, including where we have your consent, where we have a legitimate interest to do so, where the processing is necessary for the performance of a contract with you and/or where we have a legal obligation to do so.
We will only process personal data about you in accordance with the following legal bases:
We store and process your personal data in the United States and other countries where we operate. When we do this, we utilize technical, physical, and administrative safeguards to meet data transfer requirements set by various privacy laws, such as the European General Data Protection Regulation.
We may transfer your personal data to service providers and business partners outside of the EEA. Some of these recipients are located in countries for which the European Commission has issued adequacy decisions, including but not limited to: Canada, Israel, Japan, New Zealand and Switzerland. In each case, the transfer is thereby recognized as providing an adequate level of data protection from a European data protection law perspective (GDPR Art. 45).
Some recipients of your personal data are located in countries for which the European Commission has not issued an adequacy decision in respect of the level of data protection there, including but not limited: Australia, Chile, China, India, Mexico, Philippines, and Singapore. By entering into appropriate data transfer agreements based on Standard Contractual Clauses (2010/87/EU and/or 2004/915/EC) as referred to in GDPR Art. 46(5) or other adequate means, we have established that such recipients will provide an adequate level of data protection and that appropriate technical and organizational security measures are in place to protect personal data against accidental or unlawful destruction, loss or alteration, unauthorized disclosure or access, and against all other unlawful forms of processing.
You can ask for a copy of such appropriate data transfer agreements by contacting us using the contact details above.
We provide you with choice and control about our use of your information, including your ability to exercise your data privacy rights.
Subject to the conditions set out under the GDPR, you have the following rights:
If you would like to exercise any of these rights, please contact us via the details listed above. Please note that these rights might be limited under applicable national data protection laws. You also have the right to lodge a complaint with the competent supervisory authority.
You are not required to provide any personal data to us, but if you do not provide any personal data to us, you may not be able to use certain features of our Services. You can use our Services without consenting to cookies that are not strictly necessary; however, this might affect the availability and functionality of our Services. You can also use our Services without consenting to receiving marketing communications from us; the only consequence is that you may not receive marketing communications that you may be interested in.
We may retain certain information for legitimate business purposes or required by law.
We store the information we collect about you for as long as is necessary for the purposes for which we originally collected it, which depends on the personal data at issue and the purposes for which we process it. We may retain certain information for legitimate business purposes or as required by law.