Skip to main content

Compliance

1. Overview

PGOS ensures PGOS SDK‘s compliance with the General Data Protection Regulation (GDPR) of the EU as well as domestic data and privacy policy. This documentation dictates why PGOS accesses users' data and introduces the compliance strategies.

2. Personal Data Processing

This part is suitable for domestic and overseas compliance.

2.1 The purpose of collecting the personal data

PGOS, as the game backend, collects in-game data only for features implementation and storage, not for data reporting and analysis.

2.2 Where does PGOS get this personal data

Generally, it is associated with the gameplay and defined by the game itself on the portal and stored in the PGOS backend.

PGOS SDK will not actively collect player data nor do any reporting to other systems.

2.3 Who is responsible for the data

Only the game's technical operators have the right to maintain in-game data, and they are located in the area where the game is released. PGOS technical operators are responsible for PGOS data. Game‘s technical operators can retrieve the data on the PGOS portal.

Process of player access to personal data

compliance_p1

Process of admin access to personal data

compliance_p2

Process of DS access to personal data

compliance_p3

2.4 How long will these personal data be stored

PGOS stores necessary plyer's info until the game stop running. If players require to delete the account then PGOS will delete the data within 15 working days.

PGOS will provide an ability that allows players to request to delete a personal account in the future.

2.5 What technical measures to ensure data security

  1. Security measures for data transmission: HTTPS-encrypted data transmission channel is used for data reporting; it is stored locally in the MongoDB or Redis cluster on the intranet and protected by username and password.

  2. Security measures for data storage: The Data is stored in a MongoDB or Redis cloud cluster on the intranet, protected by a username and password. A DB model with sharding and replica sets is used, and different games have their independent database instances.

  3. Security measures for data use: Stored data is only accessible by technical operators through the PGOS Portal, and is not authorized to be accessed by other third-party systems.

    compliance_p4

2.6 Referenced third-party SDKs

SDK Name: GME.

Version: v2.9.0.

Function type: Game multimedia engine.

Purpose of use: Provide a real-time in-game voice and the speech-to-text ability for players.

Type of personal information: device manufacturer, device model, OS version number.

Third-party privacy policy or official website address: https://cloud.tencent.com/document/product/607/59299


SDK Name: Serverless Cloud Function

Version: V4.0.93

Function type: Coding Running

Purpose of use: It is a serverless execution environment that enables developers to build and run applications without having to purchase and manage servers. Simply code in a supported language and set the execution conditions, and the code can be run on the Tencent Cloud infrastructure elastically and securely.

Third-party privacy policy or official website address: https://cloud.tencent.com/product/scf

3. Compliance Differences between Domestic and Overseas

Publish a game in ChinaPublish a game overseas
In which countries or regions are these personal data stored?he data is stored in servers located in ChinaThe data is stored on servers overseas, where the servers are deployed depending on where the game is published
Who owns the serverTechnical operators team in ChinaTechnical operators team overseas
If PGOS stores online chat data?PGOS does not save chat data in servers, only processed device-side.PGOS does not save chat data in servers, only processed device-side.
If PGOS stores offline chat data?TBD for offline chat data.The server stores offline chat data, which is limited to 50 messages for every chat, and cache data to be cleaned every 7 days.
Will any of these personal data be transmitted to other countries or regions?All data will be stored in China and will not be transferred overseasNo. All data will be stored overseas and will not be transferred back to China

PGOS will deploy more regions on demand based on game publish planning.

Tencent CloudAWS Cloud
Available RegionsGuangzhou, Shanghai, Singapore, European Frankfurt.North American Oregon

FAQ

Q1: SDK version iterations are frequent, how to ensure continuous compliance?

New versions containing new functional modules (involving personal data collection or supporting mobile platforms) will be reviewed for compliance before release.

Q2: Does a game need to integrate different PGOS SDKs for domestic and overseas compliance requirements?

No, there is only one PGOS SDK and it meets both domestic and overseas compliance requirements.