This analysis describes what Riot Games's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The scope of the commitment is bounded by statutory definitions; only categories that qualify as sensitive personal information under those specific laws are excluded from collection.
Riot Games has restructured how it presents information about data collection and use in its privacy notice. The company narrowed its third-party disclaimer by removing the phrase 'we don't own or control,' replacing it with 'we don't control'—a distinction that may affect which entities the company is claiming it has no privacy responsibility for. For California residents, the notice now consolidates information about categories of personal information and their purposes into a single section rather than splitting them across the document. The practical implication depends on how Riot Games operationally interprets 'control' in relation to its business relationships and how California regulators view this language under CCPA notice requirements.
View change record →Readers can rely on Riot Games not collecting information that falls within the statutory definition of sensitive personal information under the CCPA or GDPR.
How other platforms handle this
As you interact with our Website, we may automatically collect Technical Data and Usage Data about your equipment, browsing actions and patterns...by using cookies, server logs and other similar technologies.
TAO Toolkit releases that collect data, collect it for the following purposes: (a) to properly configure and optimize products for use with Software; (b) to deliver content or service through the Software; and (c) to improve NVIDIA products...
Some of our ad partners may also enable us to collect similar data directly from their website or app by integrating our or our affiliates' advertising technology.
Monitoring
Riot Games has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We do not collect sensitive personal info, as defined under comprehensive state privacy laws, including the California Consumer Privacy Act and the European Union's GDPR.— Excerpt from Riot Games's Riot Games Privacy Notice
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The scope of the commitment is bounded by statutory definitions; only categories that qualify as sensitive personal information under those specific laws are excluded from collection.
Readers can rely on Riot Games not collecting information that falls within the statutory definition of sensitive personal information under the CCPA or GDPR.
ConductAtlas has identified this type of provision across 298 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Riot Games.