Track 1 platform and get the weekly governance digest. No credit card required.
This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology
This document establishes Activision's privacy practices across its games, websites, and services, including Call of Duty. Activision collects personal data including name, email, gameplay behavior, voice communications, device identifiers, and location information, and authorizes sharing this data with advertising networks, analytics providers, affiliated companies including Microsoft subsidiaries, and business partners for marketing and operational purposes. The policy establishes data subject rights for California residents and EU/UK users, including rights to access, delete, and opt out of data sharing through the privacy portal at privacy.activision.com.
This document is Activision Publishing, Inc.'s global Privacy Policy (last updated July 2, 2025), governing the collection, storage, use, and transfer of personal and non-personal information across all Activision websites, products, and services, with Activision acting as data controller. The policy states that Activision collects identifiers (name, email, date of birth, phone number), device and technical data, gameplay and usage data, location information, payment information, voice and chat data, and inferences drawn from all of the above; the terms authorize sharing this information with affiliated companies (including Microsoft and its subsidiaries following acquisition), business partners, advertising networks, analytics providers, and third-party service providers, as well as in connection with corporate transactions. The policy asserts broad cross-contextual behavioral advertising permissions and discloses sharing of personal information with third-party advertising and analytics partners, which under California law (CCPA/CPRA) may constitute a 'sale' or 'sharing' of personal information subject to opt-out rights; the document provides California residents with opt-out mechanisms, though the breadth of data categories shared with advertising partners warrants evaluation. The policy engages GDPR and UK GDPR (citing lawful bases including legitimate interests and consent for EU/UK users), CCPA/CPRA for California residents, COPPA for users under 13 in the US, and references additional rights for users in Australia, South Korea, and Brazil; compliance considerations include the adequacy of consent mechanisms for cross-border data transfers post-Schrems II, the sufficiency of legitimate interest assessments for behavioral profiling, and the robustness of age verification procedures given the policy's acknowledgment that children's data may be inadvertently collected.
Institutional analysis available with Professional
Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.
Start Professional free trialMonitoring
Activision has updated this document before.
Watcher includes same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
Professional Governance Intelligence
Need provision-level monitoring and regulatory mapping?
Professional includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.
Start Professional free trialCross-platform context
See how other platforms handle Children and Young People Privacy and similar clauses.
Compare across platforms →Governance Monitoring
Structured alerts for policy changes, governance events, and provision updates across 318+ platforms.