EA Privacy and Cookie Policy

EA's Privacy and Cookie Policy explains how Electronic Arts collects and uses your personal data when you play games like FIFA, The Sims, or Battlefield — including your gameplay recordings, device fingerprints, voice and text chat, purchase history, and approximate location. Most importantly, EA shares your personal information with advertising partners who use it to track you across third-party websites and apps and serve you targeted ads, and you can opt out of this targeted advertising by visiting the EA Privacy Settings page or external opt-out tools like www.aboutads.info/choices. If you are a parent of a child who plays EA games, you should check whether a child EA Account has been set up and review parental consent settings, as EA collects data on children with varying levels of restriction depending on their age.

This document is EA's global Privacy and Cookie Policy (last updated June 23, 2025), governing EA's collection, use, sharing, and retention of personal information from users of its games, websites, mobile applications, and live events, with legal bases varying by jurisdiction including GDPR consent, legitimate interests, and contractual necessity for EEA/UK/Brazil users. EA's most significant obligations include collecting a broad array of data categories — including device fingerprints, gameplay recordings, controller inputs, voice/text communications, biometric likeness at live events, and mobile advertising identifiers — and sharing these with platform partners (Sony, Microsoft, Nintendo), advertising networks, analytics vendors, and business partners for targeted advertising and cross-platform features. A notable deviation from industry standard is EA's explicit collection of machine fingerprints and hardware hashes for anti-cheat purposes, the recording and replay of controller button inputs in competitive modes, and the collection of users' physical likeness at live events, all with limited opt-out mechanisms. This policy engages GDPR (Arts. 6, 13, 17, 20), CCPA/CPRA (§§1798.100–1798.199), COPPA (16 CFR Part 312), APEC CBPR, the EU-U.S. Data Privacy Framework, and the UK Extension to the EU-U.S. DPF, with the FTC holding primary enforcement jurisdiction over EA Inc. US's DPF compliance; material compliance considerations include the breadth of third-party advertising data sharing, the adequacy of consent mechanisms for minors across multiple jurisdictions, and the open-ended data retention language ('as long as necessary... and beyond that period if necessary for legal, operational, or other legitimate reasons').