This analysis describes what Unity's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Standard Contractual Clauses require supplementary technical and organizational safeguards post-Schrems II — if Unity has not conducted Transfer Impact Assessments, EU/UK user data may be transferred without adequate protection.
Unity's policy authorizes the collection of behavioral, device, and advertising data from end users of games that embed Unity's SDK, meaning players of Unity-powered mobile games are subject to data collection regardless of whether they have a direct relationship with Unity. For California residents, the policy discloses that personal information may be sold or shared with advertising partners, which triggers opt-out rights under CCPA and CPRA. You can opt out of Unity's personalized advertising and data sale by submitting a request at privacy.unity.com.
How other platforms handle this
If you are located in the European Economic Area, the United Kingdom, or Switzerland, please be aware that we may transfer your personal information to countries outside of these regions, including to the United States, where data protection laws may not provide the same level of protection as those...
Where Zendesk transfers personal data outside of the European Economic Area, the United Kingdom, or Switzerland, we rely on appropriate transfer mechanisms, including Standard Contractual Clauses approved by the European Commission, to ensure that your personal data receives an adequate level of pro...
Pinterest, Inc. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. When we transfer your personal data from the EEA, Switzerland, or the UK to...
Monitoring
Unity has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, your personal data may be transferred to countries outside of your region, including to the United States, where data protection laws may not provide the same level of protection as in your home country. When we transfer personal data outside of the EEA, UK, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or other legally recognized transfer mechanisms.— Excerpt from Unity's Unity Privacy Policy
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Standard Contractual Clauses require supplementary technical and organizational safeguards post-Schrems II — if Unity has not conducted Transfer Impact Assessments, EU/UK user data may be transferred without adequate protection.
ConductAtlas has identified this type of provision across 12 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Unity.