About MTG
Our Business
Investors
Welcome to our Privacy Policy which contains information on how we process personal data when you visit our website, communicate, or otherwise interact with us in the cases described below. If you have any questions regarding our use of your personal data, please feel free to contact us over the channels provided below.
When we refer to “you” in this Privacy Policy, we refer to you as data subject (see Section II. below for more details on what this means). If you are interacting with us on behalf of others, please make sure all affected people receive the information stated in this Privacy Policy.
If we speak of “MTG”, “we” or “us” in this Privacy Policy, we refer to ourselves as controller as defined below. Our contact details are:
Modern Times Group MTG AB
Skeppsbron 18, Box 2094,
111 30 Stockholm, Sweden
Tel: +46 8 562 000 50
If you have any questions regarding this Privacy Policy, data protection or if you want to exercise your rights mentioned in Section IV., you can at any time contact our Data Protection Officer. His contact details are:
Dr. Matthias Walker
c/o Modern Times Group MTG AB
Skeppsbron 18, Box 2094,
111 30 Stockholm, Sweden
E-Mail: privacy@mtg.com
The meaning of certain terms we use in this Privacy Policy is defined by the General Data Protection Regulation (“GDPR”). When we refer to the GDPR we are referring to the General Data Protection Regulation of the UK as well, unless we otherwise specify that we are referring to only one of them.
All definitions set out in Art. 4 GDPR apply to this Privacy Policy. We’d like to explicitly mention the meanings of the following terms to make transparent what the often-used terms personal data, data subject, processing, controller and processor mean according to the GDPR:
As a controller we need a legal basis to process your data lawfully, according to Art. 6 para. 1 GDPR. If
Under the GDPR you have certain rights concerning the processing of personal data by us. According to the GDPR you have the following rights:
The personal data we process can also be either processed by other parties on our behalf and according to our instructions by processors or shared with and processed by other controllers. When data is processed according to this Privacy Policy, it is principally done so by our employees and freelancers commissioned by us that are responsible for the specific matter the data is required for.
The following list gives you an overview of the main providers of tools and services we use and who might be a recipient of your data:
Microsoft Enterprise Service Privacy
Microsoft Corporation
One Microsoft Way
Redmond, Washington 98052 USA
and
Microsoft Ireland Operations, Ltd.
One Microsoft Place
South County Business Park
Leopardstown
Dublin 18, D18 P521, Ireland (both together “Microsoft”)
and
Slack Technologies, Inc., 500 Howard Street, San Francisco, CA 94105
USA (“Slack”)
OneTrust Technology Limited
82 St. John Street
Farringdon, London EC1M 4JN United Kingdom (“OneTrust”)
Cision Sverige AB
Box 24194, 104 51, Stockholm
Sweden
(“Cision”)
EVRY Sweden AB
Ekensbergsvägen 113
171 41 Solna Sweden
(„Tietoevry“)
Some of these recipients are established outside of the European Union. Principally, there are two possible safeguards we rely on when these recipients receive personal data of yours, to make sure an adequate level of protection for your data is provided:
Apart from the main possible recipients mentioned above, the following categories of recipients can receive personal data from us, only if necessary for the specific case: financial and IT services; host providers; providers of data rooms for M&A transactions; potential buyers or sellers of an M&A transaction; external financial and legal advisors and auditors; courts or governmental authorities that legally legitimately oblige us (e.g., through subpoenas, court orders, governmental requests or search warrants) to disclose data.
You can find details on which recipients and categories of recipients are involved in the processing of personal data under Section VI.
In the following we’d like to inform you about how we process your personal data. These are the general processing activities that can apply when you interact with us. Every processing activity is broken down into 5 parts:
(a.) What: What data is processed?
(b.) Why: For what purpose is the data processed?
(c.) Who: With whom do we share the data?
(d.) Legal Basis: What law allows us to process the data?
(e.) How Long: How long do we keep the data?
We use cookies on our website. To make it easy for you to inform yourself about these and to grant or withdraw a potentially necessary consent of yours or object to a processing based on a legitimate interest of ours, we have implemented a consent management platform. You can at any time open the consent management platform by clicking the “CUSTOMIZE COOKIES” link at the bottom of our website. In the consent management platform and in our Cookie Policy, you will find all information on what data is processed, who the recipient is, the purpose, legal basis and storage period.
You can at any time of course also contact us via privacy@mtg.com if you want to declare your withdrawal or objection to us processing your personal data
We do not process your data with means of automated decision-making (e.g., profiling).
Together with our gaming studios we form a group of undertakings. We cooperate closely with the gaming studios of the group (each a “Group Company”) to learn from one another, help each other and improve how the group makes games. We like to see ourselves as a small gaming village in which we strive together to make great games.
The following Group Companies are part of our gaming village:
2nd Floor Scrutton Street,
London, England, EC2A 4HH
UK
Friesenstraße 13
20097 Hamburg
Germany
10680 Treena Street, Suite 155
San Diego, CA 92131
USA
17 Shamrock Drive,
Kumeu, 0810
New Zealand
Unit 13, Vision Building, 20 Greenmarket, Dundee
DD1 4QB
United Kingdom
Second Floor, Anjaneya Techno Park No. 147,
Kodihalli, HAL Old Airport Rd,
Bangalore – 560008
India
30 Cecile Street
#19-08, Prudential Tower
Singapore, 049712
What does joint controllership mean?
In some cases when we cooperate with a Group Company we jointly determine if and how certain personal data of yours is processed. In such a case the involved companies each are controllers of your data when doing so and the working relationship is called a joint controllership. We have concluded an agreement with all Group Companies in which the rules for our joint controllership are set out and which also includes so called standard contractual clauses that ensure that personal data of people located in the European Union (or European Economic Area) is adequately safeguarded when transferred between us and a Group Company that is not established in the European Union or a country considered to have the same level of data protection as the European Union.
In the following cases we and Group Companies are joint controllers of your personal data:
Who can you contact?
When we process your personal data, you have certain rights under the GDPR, which you can find in Section IV. of this Privacy Policy. If you have questions regarding the joint controllerships or want to make use of your data protection rights, you can contact us anytime by using the contact address mentioned in Section I. of this Privacy Policy.
How is your data secured?
We have implemented technical and organizational measures to ensure a level of security appropriate to the risk presented by the processing in accordance with Art. 24 and 32 GDPR.
What happens in a case of a personal data breach?
In case of a personal data breach under the GDPR and if this breach is likely to result in a risk to your rights and freedoms, we will, without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the competent supervisory authority.
Should such breach likely result in a high risk for your rights and freedoms, we, or – where required by article 34 GDPR –, we, or the respective Group Company will inform you about the personal data breach without undue delay.
Apart from cases in which we jointly process personal data, we cooperate with other Group Companies as independent controllers of your personal data in the following cases:
Last Updated: August 29, 2023