Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
Of course, corporations are not entitled to any of this, but there is no entity that can say no to them. Simple logic suggests that, like most such issues, the user needs to take effort to resolve the issue themselves. There are plenty of methods for the savvy user to discourage, frustrate, stymie, or block these sorts of data collection avenues. The Steam group Penguin Domination is an excellent starting resource for documenting these trackers and providing counter measures. You can be certain the group is good because, if memory serves, several recent posts have been arbitrarily blocked or limited despite meticulous compliance with Valve rules, but don't quote me on that as I forgot what his last update said specifically.
That said, it is right to say we shouldn't have to tolerate a paradigm where you need several pages of blockers to stop corporations from gathering infinite data they are not entitled to, but we do. And people HOWL if you try to put any requirement on their dear corporations to not do such things. (You would think GDPR insulted some of these peoples mothers given how animated they get over it lol)
Valve like any company will take action IF and only IF the data being collected is intrusive and violates GDPR for example.
They have to comply with the law, and not a user who simply types GDPR, when GDPR only covers specific data.
Ah! Yes, The age old, "anyone who does not validate my anti-corporation stance must be tagged and labelled as pro-corporation."
just install a tool or a firewall with "asktoconnect" feature each time any tools on your comp is trying to access the net and just answer no.
In essence, this board can never and will never give you an authoritative, useful answer to the question you posed. Completely impossible.
Really, we shouldn't be either in a society where "How does X comply with Y law?" can really only be answered by "Ask the Y law regulatory agency and find out. Its a surprise!" but fixing that is beyond the scope of what we can do here too.
Citation needed for "nobody here has any experience of legal issues" after all you are both presuming and assuming no one has ever gone to court, nor their career involves any type of legality.
That being said, laws are already being drawn up apparently to stop this type of stuff, particularly with minors under 17...including online games..
https://www.cnn.com/2024/07/30/politics/senate-passes-legislation-protecting-minors-online/index.html
https://www.congress.gov/bill/118th-congress/senate-bill/1409/text
Technically, the GDPR covers anything that is considered personal data, a term that is defined by the regulation itself as meaning any data related to an identified or identifiable natural person. Where such a person shall mean any natural person who can be identified, directly or indirectly, by reference to any form of identifier. In particular name, location, etc. but also online identifiers.
The legal definition does not require that the party collecting and/or processing the data is the same party that can perform the link towards the natural person. Those may be separate.
The consequence of that, is that if any video game sold on Steam collects any type of data related to the hardware or software environment that includes something as trivial as IP address and timestamp, then this is automatically personal data. Because there is another party, namely Valve, who can accurately correlate these to a sign-in on a Steam account, which will have the natural person on file as part of any purchases, where they ask to provide among other things your name and physical address for tax purposes.
Note though, that the fact that such data is classified as personal data doesn't mean a publisher or developer would immediately not be allowed to collect or process the data.
There are various legal grounds under which data may be processed; not just the legal ground of explicit consent. Other potentially compatible legal grounds are necessity for performance of contract, or the age-old standby of 'legitimate interest.'
Though both involve a few caveats.
The former requires strict necessity - i.e. it is absolutely physically impossible to perform what was contractually agreed upon without. For instance: your physical address is pretty darned necessary for ordering fast-food delivered to your doorstep.
While there is some case law wrt legitimate interest which states processing purely aimed at gaining additional commercial profit through e.g. data brokerage, or using the data for advertising purposes can never be done under the grounds of legitimate interest. (In fact, Meta / Facebook was fined for this one.)
And no matter the legal grounds used, the data controller (i.e. the publisher or developer here) is legally required to inform the data subject of the specifics of the collection and processing: which data they're collecting, for what purposes, from where, for how long the data will be kept, where it will be kept and processed, with which subcontracted processors it will be shared, etc.
Good to know , w10 or w11 ? Because surelly not on w10 xd
thx @Start_Running
I have read the GDPR and it only covers specific data.