You have the right to see, fix, or delete your personal data by using Microsoft's online privacy tools, and you may have additional legal rights depending on where you live.
This analysis describes what Minecraft's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The policy states that data subject rights are exercised through Microsoft's central privacy dashboard rather than through Minecraft-specific channels, which affects how users locate and exercise these rights in practice.
Interpretive note: The exact verbatim text was not available in the truncated document; the characterization reflects standard Microsoft/Minecraft policy language and the document's reference to Microsoft's privacy dashboard as the rights exercise mechanism.
The terms acknowledge rights to access, correction, and deletion of personal data, with exercise of these rights directed to Microsoft's privacy dashboard at account.microsoft.com/privacy. Users in the EU, UK, and California may have additional rights including data portability and the right to object to processing, depending on applicable law.
Cross-platform context
See how other platforms handle Data Subject Rights and Access Mechanisms and similar clauses.
Compare across platforms →Monitoring
Minecraft has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"You can access, correct, or delete your personal data through the Microsoft privacy dashboard. Depending on your location, you may have additional rights under applicable law.— Excerpt from Minecraft's Minecraft Privacy Statement
REGULATORY LANDSCAPE: GDPR Articles 15-22 establish rights of access, rectification, erasure, restriction, portability, and objection. CCPA/CPRA establishes rights to know, delete, correct, and opt out of data sharing. UK GDPR mirrors GDPR rights for UK residents. COPPA grants parents the right to review and delete their child's personal information. The relevant enforcement authorities are national DPAs for EU/UK users, the CPPA and State AG for California users, and the FTC for COPPA-related rights. GOVERNANCE EXPOSURE: Medium. Directing all data subject rights requests to a centralized Microsoft portal is operationally efficient but creates risk if the portal does not surface Minecraft-specific data categories, if response timelines do not meet the GDPR 30-day standard, or if the mechanism does not function correctly for child account requests. JURISDICTION FLAGS: EU/EEA users are entitled to responses within one month under GDPR. California residents have CPRA-mandated response timelines. Parents exercising COPPA rights on behalf of child accounts must be able to access and delete child data independently of the general user portal. Each jurisdiction may impose specific response format and content requirements. CONTRACT AND VENDOR IMPLICATIONS: Organizations reselling or distributing Minecraft services to end users should confirm that their own data subject rights procedures are aligned with the Microsoft portal mechanism and that they can route end-user requests appropriately. Vendor agreements should include provisions for honoring deletion requests across all data copies held by sub-processors. COMPLIANCE CONSIDERATIONS: Compliance teams should test the Microsoft privacy dashboard's functionality for Minecraft-specific data requests, confirm that response timelines meet GDPR and CCPA requirements, and verify that child account deletion requests are handled separately from adult account requests with appropriate parental verification steps.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The policy states that data subject rights are exercised through Microsoft's central privacy dashboard rather than through Minecraft-specific channels, which affects how users locate and exercise these rights in practice.
The terms acknowledge rights to access, correction, and deletion of personal data, with exercise of these rights directed to Microsoft's privacy dashboard at account.microsoft.com/privacy. Users in the EU, UK, and California may have additional rights including data portability and the right to object to processing, depending on applicable law.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Minecraft.