Modern Times Group MTG AB
Skeppsbron 18, Box 2094,
111 30 Stockholm, Sweden
Tel: +46 8 562 000 50
Dr. Matthias Walker
c/o Modern Times Group MTG AB
Skeppsbron 18, Box 2094,
111 30 Stockholm, Sweden
As a controller we need a legal basis to process your data lawfully, according to Art. 6 para. 1 GDPR. If
Under the GDPR you have certain rights concerning the processing of personal data by us. According to the GDPR you have the following rights:
The following list gives you an overview of the main providers of tools and services we use and who might be a recipient of your data:
Microsoft Enterprise Service Privacy
One Microsoft Way
Redmond, Washington 98052 USA
Microsoft Ireland Operations, Ltd.
One Microsoft Place
South County Business Park
Dublin 18, D18 P521, Ireland (both together “Microsoft”)
Slack Technologies, Inc., 500 Howard Street, San Francisco, CA 94105
OneTrust Technology Limited
82 St. John Street
Farringdon, London EC1M 4JN United Kingdom (“OneTrust”)
Cision Sverige AB
Box 24194, 104 51, Stockholm
EVRY Sweden AB
171 41 Solna Sweden
Some of these recipients are established outside of the European Union. Principally, there are two possible safeguards we rely on when these recipients receive personal data of yours, to make sure an adequate level of protection for your data is provided:
Apart from the main possible recipients mentioned above, the following categories of recipients can receive personal data from us, only if necessary for the specific case: financial and IT services; host providers; providers of data rooms for M&A transactions; potential buyers or sellers of an M&A transaction; external financial and legal advisors and auditors; courts or governmental authorities that legally legitimately oblige us (e.g., through subpoenas, court orders, governmental requests or search warrants) to disclose data.
You can find details on which recipients and categories of recipients are involved in the processing of personal data under Section VI.
In the following we’d like to inform you about how we process your personal data. These are the general processing activities that can apply when you interact with us. Every processing activity is broken down into 5 parts:
(a.) What: What data is processed?
(b.) Why: For what purpose is the data processed?
(c.) Who: With whom do we share the data?
(d.) Legal Basis: What law allows us to process the data?
(e.) How Long: How long do we keep the data?
You can at any time of course also contact us via email@example.com if you want to declare your withdrawal or objection to us processing your personal data
We do not process your data with means of automated decision-making (e.g., profiling).
Together with our gaming studios we form a group of undertakings. We cooperate closely with the gaming studios of the group (each a “Group Company”) to learn from one another, help each other and improve how the group makes games. We like to see ourselves as a small gaming village in which we strive together to make great games.
The following Group Companies are part of our gaming village:
2nd Floor Scrutton Street,
London, England, EC2A 4HH
10680 Treena Street, Suite 155
San Diego, CA 92131
17 Shamrock Drive,
Unit 13, Vision Building, 20 Greenmarket, Dundee
Second Floor, Anjaneya Techno Park No. 147,
Kodihalli, HAL Old Airport Rd,
Bangalore – 560008
30 Cecile Street
#19-08, Prudential Tower
What does joint controllership mean?
In some cases when we cooperate with a Group Company we jointly determine if and how certain personal data of yours is processed. In such a case the involved companies each are controllers of your data when doing so and the working relationship is called a joint controllership. We have concluded an agreement with all Group Companies in which the rules for our joint controllership are set out and which also includes so called standard contractual clauses that ensure that personal data of people located in the European Union (or European Economic Area) is adequately safeguarded when transferred between us and a Group Company that is not established in the European Union or a country considered to have the same level of data protection as the European Union.
In the following cases we and Group Companies are joint controllers of your personal data:
Who can you contact?
How is your data secured?
We have implemented technical and organizational measures to ensure a level of security appropriate to the risk presented by the processing in accordance with Art. 24 and 32 GDPR.
What happens in a case of a personal data breach?
In case of a personal data breach under the GDPR and if this breach is likely to result in a risk to your rights and freedoms, we will, without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the competent supervisory authority.
Should such breach likely result in a high risk for your rights and freedoms, we, or – where required by article 34 GDPR –, we, or the respective Group Company will inform you about the personal data breach without undue delay.
Apart from cases in which we jointly process personal data, we cooperate with other Group Companies as independent controllers of your personal data in the following cases:
Last Updated: August 29, 2023