Privacy Policy
Privacy Policy
Effective Date: October 16, 2023 Last Updated: February 28, 2026
BrickVerse (“BrickVerse,” “we,” “us,” or “our”) is operated by Meta Games LLC, Portland, Oregon, USA.
This Privacy Policy describes how we collect, use, disclose, and safeguard Personal Information when you access or use:
Websites under brickverse.gg
BrickVerse mobile, VR, desktop, and console applications
Developer tools and related services
Any product or service linking to this Policy (collectively, the “Services”)
By using the Services, you acknowledge this Privacy Policy.
1. Scope & Applicable Laws
This Policy is designed to comply with:
General Data Protection Regulation (EU) 2016/679 (“GDPR”)
UK GDPR
California Consumer Privacy Act (CCPA), as amended by CPRA
Children’s Online Privacy Protection Act (COPPA)
If local law provides additional protections, those protections apply to you.
2. Categories of Personal Information Collected
We collect the following categories of Personal Information:
A. Identifiers
Username
Email address
IP address
Device identifiers
Session identifiers
Country/region data
B. Account Information
Date of birth
Gender (optional in some jurisdictions)
Account settings
Username and email history
Security timestamps
C. Commercial Information
Purchase history
Virtual currency (“Cubes”) balances
Subscription status
Transaction metadata
Payment card details are processed by Stripe and are not stored by BrickVerse.
D. Internet & Usage Data
Log data (IP, browser, OS, timestamps)
Gameplay interactions
Content moderation logs
Session data
E. User-Generated Content
Forum posts
Chat messages
Uploaded assets
Marketplace content
F. Audio Data (Optional, 13+)
If voice chat is enabled:
Voice transmissions (processed for moderation)
Safety review metadata
G. Parental Contact Information (Under 13)
Parent/guardian email address for consent and oversight
3. Legal Bases for Processing (GDPR)
We process Personal Information under the following lawful bases:
Performance of a Contract (Article 6(1)(b)) – to operate your account and provide Services.
Legitimate Interests (Article 6(1)(f)) – fraud prevention, platform security, moderation.
Legal Obligation (Article 6(1)(c)) – tax, regulatory compliance.
Consent (Article 6(1)(a)) – marketing communications, optional features, voice services.
Protection of Vital Interests (Article 6(1)(d)) – user safety.
Where processing relies on consent, you may withdraw consent at any time.
4. How We Use Personal Information
We use Personal Information to:
Provide and maintain the Services
Authenticate users and secure accounts
Process transactions
Moderate content and enforce Terms
Prevent fraud and abuse
Improve functionality and user experience
Comply with legal obligations
Respond to user inquiries
Conduct internal analytics
We do not sell Personal Information.
5. Sharing of Personal Information
We disclose Personal Information only as necessary.
A. Service Providers (Processors)
We use the following processors under written data processing agreements:
1. Stripe, Inc.
Payment processing
Fraud detection
Subscription management Stripe processes payment data under its own PCI-DSS compliant systems.
2. Microsoft Corporation (Azure)
Cloud hosting
Database storage
Security infrastructure
Voice moderation tools (if enabled)
3. Cloudflare, Inc.
Content delivery network (CDN)
DDoS protection
Bot mitigation
Security filtering (e.g., Turnstile CAPTCHA)
4. Google Cloud Platform (GCP) / Google LLC
Cloud hosting services (if applicable)
Security and infrastructure services
reCAPTCHA (bot detection)
Analytics (if enabled)
Each provider acts as a Data Processor and is contractually obligated to:
Process data only on our instructions
Implement appropriate technical and organizational safeguards
Comply with GDPR where applicable
B. Legal & Regulatory Disclosures
We may disclose information:
In response to lawful court orders
To law enforcement where legally required
To prevent fraud or criminal activity
To protect child safety
During corporate restructuring, merger, or acquisition
C. Business Transfers
In the event of acquisition, merger, or asset sale, Personal Information may be transferred as part of business assets, subject to confidentiality obligations.
6. International Data Transfers
BrickVerse operates in the United States and Canada.
Where Personal Information is transferred outside the EEA, UK, or Switzerland, we rely on:
Standard Contractual Clauses (SCCs)
Adequacy decisions
Contractual safeguards with processors
By using the Services, you acknowledge cross-border transfers.
7. Data Retention
We retain Personal Information only as long as necessary to:
Provide Services
Prevent fraud
Resolve disputes
Comply with legal obligations
Enforce agreements
When no longer necessary, data is:
Deleted,
Anonymized, or
Securely archived as required by law.
8. Security Measures
We implement industry-standard safeguards including:
Encrypted password hashing
Encrypted two-factor authentication secrets
Access control restrictions
Monitoring and intrusion detection
Encrypted data transmission (TLS)
No system is 100% secure. However, we maintain commercially reasonable security practices.
In the event of a data breach, we will notify affected users and regulators where legally required.
9. Children’s Privacy (COPPA Compliance)
For users under 13:
Parental consent is required.
Accounts default to strict privacy settings.
Limited data collection applies.
Parents may review or request deletion of their child’s data.
We collect only minimal necessary data from children.
10. Your Rights Under GDPR (EEA/UK Users)
You have the right to:
Access your Personal Information
Rectify inaccurate data
Request erasure (“Right to be Forgotten”)
Restrict processing
Object to processing
Data portability
Withdraw consent
Lodge a complaint with a supervisory authority
To exercise rights: [email protected]
11. Your Rights Under CCPA / CPRA (California Residents)
California residents have the right to:
Know what Personal Information we collect
Request deletion
Correct inaccurate information
Opt-out of “sale” or “sharing” (we do not sell Personal Information)
Limit use of sensitive Personal Information (if applicable)
Non-discrimination for exercising privacy rights
Requests may be submitted via: [email protected]
We will verify your identity before responding.
12. Cookies & Tracking Technologies
We use:
Essential cookies (authentication, session)
Security cookies (fraud prevention)
Performance cookies (analytics, if enabled)
Third-party tools may include:
Cloudflare
Google reCAPTCHA
Google Cloud services
You may disable cookies via browser settings, though functionality may be limited.
We do not respond to Do Not Track (DNT) signals.
13. Automated Decision-Making
We may use automated systems for:
Fraud detection
Spam filtering
Moderation flagging
These systems may impact account enforcement decisions. Users may contact support for review of enforcement actions.
14. Account Deletion & Data Requests
You may request:
Access to data
Correction of data
Account deletion (where legally permissible)
Certain records may be retained to comply with legal obligations.
Deleted accounts may have a limited recovery window where permitted.
15. Advertising
We may use limited technical identifiers (IP, language, device type) to promote our Services.
We do not sell Personal Information to advertisers.
16. Data Controller
For GDPR purposes:
Data Controller: Meta Games LLC 5441 S Macadam Ave #8134 Portland, OR 97239 United States Email: [email protected]
If required under EU law, we may designate an EU Representative.
17. Changes to This Policy
We may update this Privacy Policy periodically.
Material changes will be communicated via:
Email notification, or
Prominent in-app or website notice
Continued use constitutes acceptance of updates.
18. Contact Information
For privacy-related inquiries:
Email: [email protected]
Mail: BrickVerse Privacy Meta Games LLC 5441 S Macadam Ave #8134 Portland, OR 97239 United States
Last updated
Was this helpful?