MMRadar.GG - Privacy Policy

Privacy Policy

Effective Date: 2024. 8. 5.

Last Updated: 2025. 9. 1.

California Notice at Collection: This Policy also serves as our notice at collection for California residents.

1. Introduction

MMRadar, LLC (“Company,” “we,” “our,” or “us”) operates the website located at mmradar.gg and related services (the “Services”). We process personal information in accordance with applicable law, including the EU GDPR, UK GDPR, and the California Consumer Privacy Act (CCPA/CPRA). This Privacy Policy describes the categories of data we collect, purposes and lawful bases for processing, disclosures, and user rights.

Controller & Contact: MMRadar, LLC (Delaware, USA). Email: [email protected].

2. Information We Collect

We may collect and process:

Account Information: contact identifiers (e.g., email) for account administration; authentication information necessary to operate accounts; identifiers associated with externally linked gameplay accounts to enable in-service statistics.
Usage/Technical Data: IP address, device/browser characteristics, operating system, referring URLs, session activity, and diagnostics (including event/error logs).
Advertising/Analytics Signals: cookies, device IDs, and other pseudonymous signals used for ad delivery, measurement, frequency capping, fraud prevention, and service analytics.
Cookies/Similar Technologies: used for functionality, security, preferences, analytics, and advertising.
Third-Party Data: gameplay/performance data obtained from game-platform APIs when users connect external accounts to enable analytics.
Sensitive Personal Information: we do not intentionally collect or use SPI (as defined by CPRA) in a manner requiring “limit” rights.

Defined term — “Encoded Identifier.” Where noted in this Policy, we may derive a pseudonymous identifier from contact information (for example, applying a one-way cryptographic hash to an email). We refer to this as an Encoded Identifier. Encoded Identifiers are handled under appropriate safeguards and used or disclosed only for the purposes stated herein. Unencoded contact information is not disclosed for advertising.

3. Purposes and Legal Bases

We process personal information to operate accounts and features; secure, maintain, and improve the services; perform analytics/measurement; support advertising/monetization (including use or disclosure of Encoded Identifiers and other pseudonymous signals); communicate account/service notices; and comply with legal obligations. Legal bases include performance of contract, legitimate interests (balanced against user rights), consent (where required for non-essential technologies and ad signals), and legal obligation.

4. Advertising and Tracking Technologies

Advertising Partners and Authorized Sellers: We believe in transparency regarding our advertising practices. MMRadar, LLC (operating the website mmradar.gg, “MMRadar.GG”) works with third-party advertising networks to serve ads, and the specific advertising partners we work with may change from time to time. To keep you informed, we maintain an updated Authorized Digital Sellers file (known as an ads.txt file) for our site. This ads.txt file publicly lists the companies authorized to sell or resell ad inventory on MMRadar.GG. You can view the most current list of our authorized advertising partners at mmradar.gg/ads.txt. By consulting our ads.txt file, you can see which advertising partners are involved in displaying ads on MMRadar.GG. We update this file as our partnerships change, ensuring it remains the definitive, up-to-date source for understanding who our current advertising partners are.

We may engage advertising and measurement partners that deploy cookies, identifiers, and similar technologies. To support advertising, we may use and disclose Encoded Identifiers together with other pseudonymous signals for ad delivery, reporting, frequency capping, and fraud prevention. Unencoded contact information is not disclosed for advertising. Where required by law, we obtain and honor user choices via consent mechanisms and on-site or device/browser controls. We honor Global Privacy Control (GPC) signals as an opt-out of “sale”/“sharing” for the applicable browser. California residents may exercise opt-out rights via the “Do Not Sell My Personal Information” link.

We utilize a Consent Management Platform (CMP) to obtain and manage user choices regarding advertising and analytics cookies where required by law. This tool allows you to grant or withhold consent for data processing and to update your preferences at any time through the “Update consent preferences” link available on our site.

5. Data Sharing and Disclosure

We do not sell personal information for monetary consideration. We may disclose information:

To service providers/contractors under confidentiality and data-protection obligations (e.g., hosting, infrastructure, analytics, advertising, security);
To advertising/measurement partners for the purposes in Section 4 (limited to pseudonymous signals, including Encoded Identifiers);
To competent authorities where required or permitted by law;
In corporate transactions (merger, acquisition, reorganization, asset transfer), subject to continued protection consistent with this Policy;
With user consent or where otherwise permitted by law and a lawful basis applies.

We do not disclose linked gameplay account identifiers or associated gameplay data to advertising partners. Disclosures for cross-context behavioral advertising may be deemed a “sale” or “sharing” under applicable law; opt-out is available as noted above. We may use de-identified/aggregated data for analysis and improvement and will not re-identify such data.

6. Data Retention and Deletion

We keep personal information only for as long as needed to fulfill the purposes set out in this Policy. When it is no longer required, we delete it or irreversibly de-identify it.

Account information is removed promptly upon account deletion (with routine backups overwritten in due course). IP addresses and diagnostic logs may be retained for up to 12 months to maintain security, prevent fraud and abuse, and ensure operational integrity.

Where necessary, we may retain certain information to comply with legal, accounting, or reporting obligations, or for archiving in the public interest, scientific or historical research, or statistical purposes, subject to appropriate safeguards.

7. International Data Transfers

Information may be processed or stored outside your country of residence. Where required, cross-border transfers are implemented under recognized transfer mechanisms (e.g., Standard Contractual Clauses) and subject to appropriate safeguards.

8. Your Rights

We honor all applicable privacy rights and provide the means to exercise them. These rights vary by region:

EU/UK (GDPR/UK GDPR) Rights

Under the EU GDPR and UK GDPR, you have the right to:

Right of Access: Obtain a copy of your personal data that we hold.
Right to Rectification: Correct any inaccurate or incomplete personal data.
Right to Erasure: Delete your personal data, subject to certain exceptions (for example, if retention is required to comply with legal obligations).
Right to Restrict Processing: Pause or limit the processing of your data in certain circumstances.
Right to Object: Object to certain types of processing (for example, direct marketing) at any time.
Right to Data Portability: Receive your data in a structured, commonly used format and transfer it to another service.
Right to Withdraw Consent: Withdraw your consent at any time if we are processing your data based on consent. (You may do this via our consent management tool - our NitroPay CMP - or by contacting us; see below.)
Right to Lodge a Complaint: Lodge a complaint with your national Data Protection Authority if you believe your rights are being infringed.

You can exercise these rights by contacting us (see Exercising Your Rights below). We will respond in accordance with GDPR requirements, typically within one month. You may also contact your local data protection authority; however, we encourage you to reach out to us first so we can address your concerns directly.

California (CCPA/CPRA) Rights

If you are a California resident, you have the following privacy rights under the CCPA/CPRA:

Right to Know (Access): You may request details about the personal information we have collected about you. This includes categories of data collected, sources, purposes of collection, categories of third parties with whom we share your information, and the specific pieces of information we hold. (We provide a full disclosure table in this policy for transparency.)
Right to Deletion: You may request that we delete personal information we have collected from you. Once we verify your request, we will delete your personal information from our records (and direct our service providers to do the same), unless an exception applies.
Right to Correction: You have the right to request correction of inaccurate or incomplete personal information we maintain about you. Upon verifying your request, we will correct (or complete) the information as required.
Right to Opt-Out of Sale or Sharing: You may direct us not to sell or share your personal information. (Note: MMRadar.GG does not “sell” your personal data for money. However, we do partner with advertising networks to show personalized ads. Some data sharing for ads - such as using cookies or device IDs - may be considered a “sharing” of personal information under California law.) For example, any contact information used for ad targeting is only shared in a privacy-safe, hashed form (an “Encoded Identifier”) and never in plain text. To exercise your opt-out right, click the “Do Not Sell or Share My Personal Information” link on our site (footer and privacy policy). This link, although labeled “Do Not Sell,” also functions as your opt-out for any sale or sharing as required by law. Once you opt out, we will cease any sale or sharing of your data for advertising purposes as required. We also honor Global Privacy Control (GPC) signals from your browser as an equivalent opt-out of sale/sharing.
Right to Non-Discrimination: We will not discriminate against you for exercising your California privacy rights. We will not deny you services, change prices or quality of service because you exercised these rights. (For example, we do not offer financial incentives in exchange for personal data, but if we did in the future, we would notify you so you can make an informed choice.)
Right to Limit Use of Sensitive Data: The CPRA provides a right to limit uses of “sensitive personal information.” We do not collect or use any sensitive personal data (as defined by California law) in a way that requires offering this right. If that changes, we will update our practices to honor the right.

Additionally, California law provides a “Shine the Light” right. We do not disclose personal information (e.g. contact details) to third parties for their own marketing. If our practices change, we will provide an appropriate opt-out or consent mechanism as required by law.

Other U.S. State Privacy Rights

Residents of other U.S. states (such as Virginia, Colorado, Connecticut, Utah, etc.) may have similar privacy rights, including the rights to access, delete, correct personal information and to opt out of targeted advertising or the sale of personal information. We will honor valid privacy rights requests from residents of these states in accordance with applicable law.

Exercising Your Rights (Requests and Verification)

Regardless of where you live, you can exercise your privacy rights by contacting us at [email protected]. Please include your full name and which right(s) you wish to exercise. (California residents can help us process requests by including “California Privacy Rights Request” in the email subject line.)

Once we receive your request, we will verify your identity (and authorization of any agent) to safeguard your information. For example, we may ask for additional information or confirmation. We will confirm receipt of your request and respond within the timeframes required by law (generally, within 45 days for California and within one month for EU/UK; extensions are allowed if necessary). We will not retaliate against you for exercising your rights, and we do not charge a fee to process requests unless a request is clearly unfounded or excessive (in which case we will explain the reason and provide a cost estimate).

If you have any questions or need assistance, you may contact us at any time at the above email. All users (“EU/UK, California, and others”) may submit privacy requests and we will respond according to the applicable law.

Verification & Agents: We may require reasonable identity verification and, for authorized agents, proof of authorization (and direct confirmation where required).

We encourage California residents to review the detailed list below, which provides a comprehensive overview of the categories of personal information we collect, the sources of that information, the purposes for which we use it, and the categories of third parties with whom we disclose (or have disclosed) the information. This section is designed to meet the disclosure requirements of the CCPA/CPRA and will help you better understand our data practices. By having this information accessible, you can make informed decisions about your personal data and how it is used or shared. (Please note that we do not knowingly collect or sell the personal information of consumers under 16 years of age without affirmative authorization, in accordance with CCPA requirements.)

Categories of Personal Information Collected, Sources, Uses, and Disclosures

A. Identifiers

Examples: Email address, account name, Riot ID, tagline, PUUID, IP address, device identifiers
Sources: Directly from users; Riot Games API (when linking account); automatically from devices
Purposes: Account creation & login; linking Riot accounts; providing gameplay stats; security & fraud prevention; advertising & analytics
Disclosures (past 12 months): Service providers (hosting providers); Riot Games (for linked accounts); analytics providers (Google Analytics); advertising networks (see mmradar.gg/ads.txt)

B. Customer Records (Cal. Civ. Code §1798.80(e))

Examples: Email address used for registration
Sources: Directly from users
Purposes: Account administration; communication with users
Disclosures: Service providers (hosting, customer support tools); advertising partners (hashed or pseudonymous identifiers only)

C. Protected Classifications

Examples: Age, race, religion, gender, etc.
Sources: Not collected
Purposes: —
Disclosures: Not disclosed

D. Commercial Information

Examples: Purchase or subscription history
Sources: Limited to subscription status (via Stripe)
Purposes: Subscription management; fraud prevention
Disclosures: Stripe (payment processor); not shared with advertisers

E. Biometric Information

Examples: Fingerprints, face scans
Sources: Not collected
Purposes: —
Disclosures: Not disclosed

F. Internet or Network Activity

Examples: Browsing history, pages viewed, click paths, interactions with features, ad impressions
Sources: Automatically from devices; cookies; analytics tools
Purposes: Service improvement; analytics; ad delivery & frequency capping
Disclosures: Analytics providers (Google Analytics); advertising networks (see mmradar.gg/ads.txt)

G. Geolocation Data

Examples: Approximate location from IP address
Sources: Automatically from devices
Purposes: Regional service delivery; analytics; ad targeting
Disclosures: Analytics providers; advertising networks (see mmradar.gg/ads.txt)

H. Sensory Data

Examples: Audio, visual, thermal, olfactory data
Sources: Not collected
Purposes: —
Disclosures: Not disclosed

I. Professional/Employment Information

Examples: Job history, employer data
Sources: Not collected
Purposes: —
Disclosures: Not disclosed

J. Non-Public Education Information

Examples: Education records
Sources: Not collected
Purposes: —
Disclosures: Not disclosed

K. Inferences

Examples: Derived analytics such as performance scores, playstyle profiles, champion preferences, statistical trends
Sources: Derived internally from match data obtained via Riot Games API
Purposes: To generate player performance analytics and gameplay insights
Disclosures: Not shared with advertisers; disclosed only to the user within MMRadar.GG features

L. Sensitive Personal Information

Examples: Government IDs, precise geolocation, financial account details, health/biometric data
Sources: Not collected
Purposes: —

Requests: [email protected].

9. Do Not Track

We do not respond to “Do Not Track” (DNT) signals. However, we do honor Global Privacy Control (GPC) signals, which provide a standardized mechanism for opting out of “sale” or “sharing” of personal information under applicable law. Some third-party websites may still track your browsing activity. You can enable or disable DNT in your browser's Preferences or Settings.

10. Children's Privacy

Our services are not directed to children under 13, and we do not knowingly collect personal information from individuals under 13. If we become aware such information has been provided, we will take reasonable steps to delete it and, where applicable, terminate related access. Parents/guardians who believe a child has provided personal information should contact [email protected] to request removal.

11. Security

We implement organizational, technical, and administrative safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. No method of transmission or storage is fully secure; absolute security cannot be guaranteed.

12. Changes to this Privacy Policy

We may update this Policy to reflect changes in legal requirements or business practices. Material changes will be posted here and become effective on the updated Effective Date. Continued use of the services after the effective date constitutes acceptance of the revised Policy.

Corporate Information

Legal Name: MMRadar, LLC

Jurisdiction: Delaware, USA

Contact for Privacy Requests: [email protected]