What are the institutional and regulatory implications of this document?

REGULATORY EXPOSURE: This policy directly engages GDPR Articles 6 (lawful basis), 7 (consent), 8 (child consent), 13 (transparency), 17 (erasure), and 20 (portability), enforced by EU supervisory authorities; UK GDPR under the Data Protection Act 2018, enforced by the ICO; COPPA (15 U.S.C. §6501) enforced by the FTC, covering users under 13; CCPA/CPRA (Cal. Civ. Code §1798.100–§1798.199) enforced by the California Privacy Protection Agency, applicable to California residents; and FTC Act Sectio…

How does Epic Games's Epic Games Privacy Policy affect users?

Epic Games collects a wide range of personal data including gameplay behavior, device identifiers, IP address, payment details, voice chat snippets, and facial images, and shares this data with third-party ad partners, platform providers, and service vendors. Children are placed in restricted 'Cabined Accounts' with limited data collection, but parental consent unlocks a significantly broader data profile similar to adult accounts. You can manage your privacy rights, including data deletion and…

How often is Epic Games's Epic Games Privacy Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Epic Games updates this document?

Yes. Watcher subscribers ($9.99/month) can add Epic Games to their watchlist and receive same-day email alerts whenever this document or any other Epic Games document changes.

Epic Games Privacy Policy — Epic Games

9 Total

4 High severity

5 Medium severity

0 Low severity

Summary

This is Epic Games' privacy policy covering how the company collects and uses your personal data across all its products, including Fortnite, the Epic Games Store, and Unreal Engine. Most notably, Epic records voice chat snippets on your device and may send them to Epic if a violation is reported, and it collects facial images if you use MetaHuman — two data types that go beyond typical gaming data practices. If you are a parent of a child who plays Epic games, you should set up parental controls through your Epic account to limit your child's data exposure and restrict features like voice chat.

Technical Summary

This document is the Epic Games Privacy Policy (last updated November 28, 2025), governing the collection, use, retention, disclosure, and processing of personal information across all Epic Services — including Fortnite, Rocket League, Fall Guys, the Epic Games Store, Unreal Engine, MetaHuman, and live events — with legal bases grounded in contractual necessity, legitimate interests, consent, and legal obligation depending on jurisdiction. Epic's most significant obligations include operating a 'Cabined Account' system for child users that restricts data collection to limited categories and disables voice chat and real-money purchases pending verifiable parental consent, and providing data subject rights including access, correction, deletion, portability, and objection across multiple jurisdictions. Notable provisions include the use of voice snippet recording and storage on user devices with potential transmission to Epic upon violation reports, facial image collection via MetaHuman for face mesh generation, cross-platform account linking that triggers inbound data sharing from third parties (PlayStation, Xbox, Facebook, Steam), and broad advertising and analytics data sharing with unspecified third-party ad partners. The Policy engages GDPR (Articles 6, 7, 8, 13, 17), UK GDPR, COPPA (15 U.S.C. §6501 et seq.), CCPA/CPRA (Cal. Civ. Code §1798.100 et seq.), and implicitly the FTC Act Section 5; material compliance considerations include the adequacy of Epic's verifiable parental consent mechanism via Kids Web Services (a subsidiary), the scope of legitimate interests relied upon for advertising and analytics, and the breadth of third-party data sharing with ad partners which may require opt-out mechanisms under CCPA.

Evidence Provenance

Captured May 1, 2026 15:53 UTC

Document ID CA-D-000086

Version ID CA-V-001130

Source URL https://www.epicgames.com/site/en-US/privacypolicy

Wayback Machine View archived versions →

SHA-256 7b6379aa109ecff327d3c8e5b73e1c45a484b6c5535ee53941a07c69ec0d6710

✓ Snapshot stored ✓ Text extracted ✓ Change verified ✓ Cryptographically signed

Institutional Analysis

🔒 Institutional analysis locked

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.

Upgrade to Professional — $149/mo

Change Timeline

May 1, 2026 — Document updated low

Epic Games updated their Privacy Policy on May 1, 2026 to reformat contact email addresses throughout the document, changing how emails are displayed (e.g., from 'privacy@support.epicgames.com' to '[email protected]'). The actual email addresses remain the same — only the display formatting was changed. This is a cosmetic update and does not affect how users can contact Epic Games or exercise their privacy rights.

· 6 modified
View diff → View full record →
7b6379aa…
April 23, 2026 — Document updated medium

Epic Games updated their privacy policy on April 23, 2026, primarily changing how they refer to and handle data for young players. The policy now uses 'child' instead of 'child user,' clarifies what data is collected from children's accounts, and adds a note that persistent identifiers from children's accounts won't be used for other purposes. These changes appear to strengthen protections for minors by being more precise about data use limitations.

11 added · 26 modified
View diff → View full record →
31bb31d5…
April 19, 2026 — Document updated low

Epic Games updated their privacy policy on April 19, 2026 to standardize the contact email addresses used across all their subsidiaries and entities. Previously, some contact emails appeared to use hyperlinked or differently formatted addresses; now all privacy-related emails are consolidated to addresses like privacy@support.epicgames.com and dpo@support.epicgames.com, and the EU/UK Representative contact for Mishcon de Reya is now listed as representative@mishcon.com. This change is primarily administrative, making it clearer how to reach Epic Games and their representatives about privacy matters.

· 6 modified
View diff → View full record →
61b0b1cd…
March 25, 2026 — Initial capture

Initial snapshot — monitoring begins

c11c0f0b…

View full version history (0 captures) →

Analyzed Changes

3 changes analyzed since monitoring began.

Updated May 1, 2026

low

What changed Epic Games updated their Epic Games Privacy Policy on May 01, 2026. Change detected: 6 sentence(s) modified. Document contained 228 sentences after update.

Consumer impact Epic Games reformatted the contact email addresses in their Privacy Policy on May 1, 2026, but the underlying email addresses themselves remain unchanged. Users can still reach Epic Games' privacy team at the same addresses as before — only the visual display format was updated. This change has no practical effect on how you contact Epic Games or exercise your data rights.

Why it matters This change is purely cosmetic and has no practical effect on consumers. Email addresses for contacting Epic Games about privacy matters remain identical.

Updated April 23, 2026

medium

What changed Epic Games updated their Epic Games Privacy Policy on April 23, 2026. Change detected: 11 sentence(s) added, 26 sentence(s) modified. Document contained 228 sentences after update.

Consumer impact Epic Games has clarified and strengthened how it handles data for children's accounts, explicitly stating that persistent identifiers like IP addresses and device IDs collected from children's accounts cannot be used for other purposes beyond operating those accounts. The policy also removed a previous statement about deleting information after inquiry resolution and replaced it with a technical safeguard commitment, which is a shift in the nature of the protection offered. Parents should review the updated parental controls section and ensure their child's account settings reflect the level of access they want their child to have.

Why it matters Parents relying on Epic's explicit promises about how long their contact data and their child's support inquiry data would be retained may find those specific commitments are no longer in the policy. The new restriction on secondary use of children's tracking data is a positive step, but the removal of concrete deletion timelines reduces the specificity of child data protections.

Updated April 19, 2026

low

What changed Epic Games updated their Epic Games Privacy Policy on April 19, 2026. Change detected: 6 sentence(s) modified. Document contained 217 sentences after update.

Consumer impact Epic Games has updated the contact email addresses listed in their privacy policy for privacy inquiries and data protection officer requests across all their subsidiary companies. The functional purpose of these contacts remains the same — they are simply now routed through standardized support.epicgames.com addresses. You can use privacy@support.epicgames.com to submit general privacy requests or dpo@support.epicgames.com to contact the Data Protection Officer if you wish to exercise your data subject rights.

Why it matters Knowing the correct contact addresses is essential for users who wish to exercise data subject rights such as access, deletion, or correction requests. The updated addresses are now the authoritative channels for all privacy-related communications with Epic Games.

Recent Clause-Level Changes Apr 23, 2026

9 provisions unchanged.

View full change record →

High Severity — 4 provisions

Voice Snippet Recording and Transmission

When voice reporting is enabled in a voice channel, snippets of your voice chat are stored on your device and the devices of other participants. If someone reports a policy violation, those snippets may be sent to Epic for review.

Added April 1, 2026
Facial Image Collection via MetaHuman

If you use the MetaHuman feature to create in-game characters, Epic collects images of your face to generate a face mesh. Epic states this is solely to provide the requested functionality and not to identify you.

Added April 1, 2026
Cabined Account Child Privacy System

Users who indicate they are children are placed in a 'Cabined Account' with restricted features and limited data collection until a parent provides consent for a full account, verified through Epic's subsidiary Kids Web Services (KWS).

Added April 1, 2026
Third-Party Advertising Data Sharing

Epic shares your personal data with third-party advertising partners to promote the Epic Services, manage advertising, and conduct analytics. This includes data collected automatically such as IP address, device ID, and usage behavior.

Added April 1, 2026

Medium Severity — 5 provisions

Cross-Platform Account Linking and Third-Party Data Inflows

When you link your Epic account to third-party platforms like PlayStation, Xbox, Facebook, or Steam, Epic receives personal data from those platforms including your display name, user ID, device information, and in some cases your name and email address.

Added April 1, 2026
AI-Powered Features and Input Data Processing

When you use AI-powered features like the Epic Developer Assistant, Epic collects your inputs — which may include information that identifies you — and uses them to generate outputs.

Added April 1, 2026
Data Subject Rights and Privacy Controls

Epic provides users with rights to access, correct, delete, and export their personal data, and to object to or restrict certain processing. These rights are exercisable via account settings or by contacting Epic directly.

Added April 1, 2026
Automatic Data Collection via Cookies and Tracking Technologies

Epic automatically collects usage data, device information, and general location (via IP address) using cookies, log files, and web beacons whenever you visit or use the Epic Services, including for advertising purposes.

Added April 1, 2026
Payment Information Collection for Epic Games Store Purchases

When you make a purchase on the Epic Games Store, Epic may collect your credit card number, expiration date, name, and region information to complete the transaction, depending on the payment method used.

Added April 1, 2026