What can I do about this clause?

{'method': 'WEB_FORM', 'recipient': 'https://account.microsoft.com/privacy', 'difficulty': 'MODERATE', 'action_type': 'DELETE_DATA', 'instructions': "EU and UK residents can submit a GDPR data subject request (access, deletion, correction, or portability) through the Microsoft privacy dashboard. Sign in to your Microsoft account and select 'Privacy settings' or 'Submit a privacy request' to proceed.", 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'State_AG', 'reason': 'In the EU, national data protection authorities (not the US State AG) handle GDPR complaints; however, the State_AG field is used here to flag that non-US regulatory bodies are the relevant authorities for EU and UK users.', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this EU and UK User Rights under GDPR clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar EU and UK User Rights under GDPR clauses across approximately 1 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

EU and UK User Rights under GDPR — Minecraft

Share 𝕏 Share in Share 🔒 PDF

Recent governance activity Minecraft recorded 6 documented changes in the last 30 days.

Start monitoring updates

Monitor governance changes for Minecraft Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

Document Record

What it is

EU and UK users have rights under GDPR including the right to access, correct, delete, and port their personal data, as well as the right to object to certain types of processing such as direct marketing.

ⓘ

This analysis describes what Minecraft's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

GDPR provides some of the strongest personal data protections in the world, and EU and UK Minecraft players can exercise these rights against Microsoft as the data controller.

⚠

Interpretive note: Specific GDPR rights clause language was not recoverable due to document truncation; this provision is inferred from the known regulatory obligations applicable to Microsoft as data controller for EU and UK Minecraft users.

Consumer impact (what this means for users)

If you are in the EU or UK, you can request access to, correction of, or deletion of your Minecraft-related personal data from Microsoft, and you can object to your data being used for direct marketing or profiling.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

EU and UK residents can submit a GDPR data subject request (access, deletion, correction, or portability) through the Microsoft privacy dashboard. Sign in to your Microsoft account and select 'Privacy settings' or 'Submit a privacy request' to proceed.

How other platforms handle this

Grammarly Medium

If you are located in the EEA, UK, or Switzerland, you have certain rights with respect to your personal information, including the right to access your personal data, to correct or delete your personal data, to restrict processing of your personal data, to data portability, and to object to process...

TransUnion Medium

Depending on where you live, you may have certain rights with respect to your personal information. These rights may include: The right to know what personal information we have collected about you, including the categories of personal information, the categories of sources from which we collected i...

Waze Medium

If you are located in the European Economic Area or the United Kingdom, you have certain rights under applicable data protection laws, including the right to access, correct, or delete your personal data, the right to object to or restrict processing, and the right to data portability. You may also ...

See all platforms with this clause type →

Monitoring

Minecraft has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

(1) REGULATORY LANDSCAPE: The EU General Data Protection Regulation (GDPR) and the UK GDPR apply to processing of personal data of EU and UK residents respectively. Microsoft Ireland Operations Limited serves as the data controller for EU users. National data protection authorities in each EU member state, and the UK Information Commissioner's Office (ICO) for UK users, are the relevant enforcement bodies. GDPR Article 17 (right to erasure), Article 20 (data portability), and Article 21 (right to object) are directly relevant. (2) GOVERNANCE EXPOSURE: Medium. GDPR compliance is standard for Microsoft as a major technology company, but the reliance on a separate master privacy statement rather than a standalone Minecraft GDPR disclosure may create transparency concerns under Articles 13 and 14. (3) JURISDICTION FLAGS: EU and UK users have materially stronger rights than US users. The UK Children's Code imposes additional obligations for users under 18 in the UK, which is broader than COPPA's under-13 threshold. (4) CONTRACT AND VENDOR IMPLICATIONS: Standard Contractual Clauses or equivalent transfer mechanisms must be in place for any transfer of EU user data to non-EEA recipients, including US-based Microsoft entities and third-party analytics vendors. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should verify that data subject request workflows route EU and UK Minecraft user requests to the appropriate Microsoft privacy operations team, that response timelines comply with GDPR's one-month requirement, and that the lawful basis for each processing activity is documented in Microsoft's Record of Processing Activities for Minecraft.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 1 platform — free Try Watcher free for 14 days

Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.

Applicable agencies

State AG

In the EU, national data protection authorities (not the US State AG) handle GDPR complaints; however, the State_AG field is used here to flag that non-US regulatory bodies are the relevant authorities for EU and UK users.
File a complaint →

Applicable regulations

CCPA/CPRA

California, USA

COPPA

United States Federal

Connecticut Data Privacy Act Amendments

US-CT

CAN-SPAM

United States Federal

FTC Act Section 5

United States Federal

GDPR

European Union

Indiana Consumer Data Protection Act

US-IN

Kentucky Consumer Data Protection Act

US-KY

Universal Opt-Out Mechanism Expansion 2026

VPPA

United States Federal

Provision details

Document information

Document

Minecraft Privacy Statement

Entity

Minecraft

Document last updated

May 5, 2026

Tracking information

First tracked

May 9, 2026

Last verified

May 9, 2026

Record ID

CA-P-007488

Document ID

CA-D-00117

Evidence Provenance

Source URL

https://www.minecraft.net/en-us/privacy

Wayback Machine

View archived versions →

Content hash (SHA-256)

f6c443df7e583fb58517c9a318435a62e25295674fd40a76e0435d96f9d8097c

Analysis generated

May 9, 2026 19:19 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Minecraft
Document: Minecraft Privacy Statement
Record ID: CA-P-007488
Captured: 2026-05-09 19:19:03 UTC
SHA-256: f6c443df7e583fb5…
URL: https://conductatlas.com/platform/minecraft/minecraft-privacy-statement/eu-and-uk-user-rights-under-gdpr/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

Medium

Other risks in this policy

Data Collection from Gameplay and Account Use medium
Data Sharing with Microsoft Affiliates and Third Parties medium
Child Privacy and Parental Consent (COPPA) high
California Resident Rights (CCPA) medium
Advertising and Analytics Data Use medium

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Minecraft's EU and UK User Rights under GDPR clause do?

GDPR provides some of the strongest personal data protections in the world, and EU and UK Minecraft players can exercise these rights against Microsoft as the data controller.

How does this clause affect you?

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 1 platforms. See the full comparison.

Is ConductAtlas affiliated with Minecraft?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Minecraft.