Privacy Policy

Effective Date: December 9, 2025 (Updated for GDPR, CCPA/CPRA, and COPPA compliance)

Introduction

Your privacy is important to us. This Privacy Policy explains what information pcsx2 (accessible at pcsx2.gitlab.io) collects when you use our website, how we use and protect that information, and your choices. We strive to comply with all relevant privacy laws – including the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) as amended by the CPRA, and the U.S. Children’s Online Privacy Protection Act (COPPA) – while keeping this policy clear and easy to understand (no unnecessary legal jargon). By using our site, you acknowledge that you have read and agree to this Privacy Policy. If you do not agree with any part of it, please discontinue use of our site.

Information We Collect

No Account Signup or Direct Personal Data: We do not ask you to create an account or provide your name, address, phone number, email, or other contact details just to use our site. In other words, we do not directly collect personally identifying information like your real name or contact info.

Usage and Device Data (Automatically Collected): When you browse pcsx2, we and our third-party partners may automatically collect certain information about your visit. This data includes things like your IP address (which we anonymize so it cannot identify you specifically), your browser type, device information, general geographic region (e.g. country or city), and what pages or games you access on our site. This information is collected via cookies and similar technologies (explained below) and by services like Google Analytics. Importantly, we do not use this data to identify you as an individual – it is used in aggregate form for analytics and site functionality purposes.

Children’s Data: We do not knowingly collect personal information from children under 13 years of age. Our site and games are intended for a general audience, not specifically for young children. If you are under 13, please only use our site with a parent or guardian’s supervision. If we ever find out that we have inadvertently collected personal data from a child under 13, we will delete it immediately. Parents or guardians can contact us at the email address in the Contact section if they believe their child has provided personal information, so we can take prompt action.

How We Use Your Information

We use the information we collect for the following general purposes:

To Provide and Improve the Service: Non-personal usage data helps us analyze how our site is performing and make improvements. For example, understanding which games are most popular or if certain pages are slow or broken helps us fix problems and optimize your experience. We review analytics information only in summary form (aggregated data) to spot overall trends, not to track individual users.
Analytics (Google Analytics): We use Google Analytics to understand overall visitor behavior on our site – for instance, what pages are visited and how long users stay – so we can make pcsx2 better. Google Analytics may collect data such as anonymized IP addresses, browser and device type, and pages visited. This data is aggregated and does not identify you personally. We do not combine Google Analytics data with any personal details (since we don’t collect personal details in the first place). The legal basis for our use of analytics in regions like the EU is your consent (see “Legal Bases” below), and you have options to opt out (see “Your Choices” below).
Advertising (Google AdSense): Our website is free to use and supported by ads. We partner with Google AdSense (and possibly its advertising partners) to display advertisements on our site. To make these ads relevant and to avoid showing you the same ad over and over, AdSense uses cookies and similar tracking technologies. These advertising cookies allow Google and its partners to serve ads to you based on your visits to our site and other sites on the Internet. For example, if you often visit gaming websites, you might see more game-related ads. We do not share any information that identifies you personally with advertisers; Google’s system automatically handles the ad personalization as described below.

Cookies and Tracking Technologies

What Are Cookies? Cookies are small text files stored on your device by websites you visit. They serve various functions, like remembering your preferences or recognizing you on a return visit. We use cookies and similar technologies to make our site work, to understand how it’s used, and to support our advertising.

Cookies We Use:

Essential Cookies: These are cookies that are necessary for the site to function properly. For example, if we use any cookie to remember your game settings or to keep the site secure, those would be essential. (At present, our site does not require login and has minimal interaction, so cookies in use are primarily for analytics and advertising as described below.)
Analytics Cookies: Google Analytics sets cookies to collect information on site usage (such as which pages you visit, how long you stay, and what device you use). This helps us analyze overall traffic and user behavior. These cookies do not collect personally identifying information – they gather statistics that help us improve the website’s performance and content.
Advertising Cookies (Personalized Advertising): Google AdSense and its third-party ad partners use advertising cookies (like the Google DoubleClick cookie) to show ads that are relevant to you. These cookies remember that you visited our site (and possibly certain pages or games) and use that information to tailor the ads you see – both on our site and across other sites – to your interests. For instance, if you visited pages about puzzle games, you might later see ads for puzzle games or related products. Third-party vendors, including Google, use cookies to serve ads based on your prior visits to our site and other websites. This enables what is called “interest-based advertising.”

Cookie Consent (Your Choices in the EU): If you are visiting from the European Economic Area (EEA), United Kingdom, or other regions with similar laws, we will ask for your permission before setting non-essential cookies (like analytics or advertising cookies) on your device. You will see a cookie consent notice or pop-up when you first visit our site in those regions. You can choose to accept all cookies, reject non-essential cookies, or customize your preferences. We will not use analytics or personalized advertising cookies unless you consent, as required by law. (If you decline, you will still see ads, but they will be non-personalized ads that are not based on tracking your behavior.)

Opting Out of Cookies and Ads: Regardless of where you are, you have the ability to control cookies and advertising:

You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on, which prevents Google Analytics from collecting data in your browser. You can also disable cookies entirely via your browser settings (see below), which will stop Google Analytics and other services from functioning, though note this may affect some site features.
For Google AdSense personalized ads, you can visit Google Ad Settings to manage your Google ad preferences and opt out of interest-based ads. Google also allows you to disable personalized ads entirely for your Google account if you prefer. Additionally, you can opt out of many third-party advertisers’ personalized ads by visiting the Network Advertising Initiative’s opt-out page or the Digital Advertising Alliance’s Consumer Choices page . These industry sites allow you to opt out of interest-based advertising from participating companies. (Keep in mind that even if you opt out, you may still see ads – they just won’t be tailored to your interests.)
We honor “Do Not Track” (DNT) browser signals for opting out of analytics and advertising to the extent feasible. However, not all services respond to DNT, so using the opt-out methods above is the most reliable way to enforce your preferences.

Browser Controls: You can control or delete cookies at any time through your web browser settings. Most browsers allow you to block cookies entirely, to delete cookies, or to alert you when cookies are being set. Feel free to use these options – our site should remain usable, though some features (for example, remembering certain game preferences or keeping you logged in to community features, if applicable) might not work as intended without cookies. Refer to your browser’s help documentation to manage cookies. For example, you can typically find options under “Settings” > “Privacy” > “Cookies” (or similar) in most browsers to clear existing cookies or set rules for future cookies.

If you are located in the European Economic Area (EEA) or another jurisdiction with similar data protection laws, we want you to know the legal grounds on which we process your personal data, as required by GDPR. Under the GDPR, we are considered a “data controller” for the limited personal data that is processed via our site (since we decide how and why the data is used), and we must have a lawful basis for each type of processing.

Here are the legal bases we rely on:

Consent: In most cases, we rely on your consent. We will obtain your consent before setting analytics or advertising cookies that process your personal data (such as online identifiers) when you’re in the EEA/UK. For example, we ask for consent to use Google Analytics and to enable personalized advertising cookies. You have the right to withdraw your consent at any time (see “Your Privacy Rights” below). Withdrawing consent will not affect the lawfulness of any processing we already performed but means we will stop the specific processing going forward (e.g., if you withdraw consent for advertising cookies, we will stop using them for your visits).
Legitimate Interests: We may process certain data if we have a legitimate interest in doing so, and if that processing is not overridden by your privacy rights. Our “legitimate interests” include maintaining the functionality and security of our website, serving non-personalized ads to support our service, and analyzing aggregate site usage to improve our platform. For example, if you decline personalized ads, we may still serve contextual (non-targeted) ads and perform basic analytics using anonymized or essential data under our legitimate interest in running a free and safe service. When we rely on this basis, we always consider your rights and ensure we’re not being intrusive or unfair. You have the right to object to processing based on legitimate interests (see below).
Legal Obligation: If we are ever required by law to process or disclose your information (for example, to comply with a court order or a binding government request), we will do so under the legal obligation basis. This is mentioned for completeness; in general, since we collect minimal personal data, this is unlikely to apply except in unusual circumstances.
(Note: We do not rely on “contract” as a basis since you are not required to sign up or agree to a user contract to use our free site, and we do not need personal info to provide the basic service. We also do not engage in any processing under “vital interests” or “public task” bases, as those typically apply to emergency situations or governmental functions.)

By transparently explaining our legal bases, we aim to fulfill the GDPR principle of lawfulness, transparency, and fairness in how we handle any personal data.

Your data privacy is important to us. We want to be clear about if and when we share information with others:

No Selling of Personal Data for Profit: We do not sell your personal information to third parties for money. In fact, since we don’t collect names, contact info, or other direct identifiers, we have nothing to sell in that sense. We also do not share your personal details with outside companies for their own marketing purposes.
Service Providers (Google and Others): The main instances of “sharing” data are with our service providers or partners who help run the site:
- Google Analytics: As described, Google operates our analytics. Google acts as our data processor for analytics data. Google may receive your truncated/anonymized IP and other usage data as you use our site. Google is contractually bound (through Data Processing Terms) to only use that information to provide analytics services to us, and not for other purposes. We have configured Google Analytics to anonymize IP addresses where applicable and not to share data with other Google products.
- Google AdSense and Advertising Partners: We use Google AdSense to serve ads. In doing so, some information (like your device identifiers or cookie info) is automatically shared with Google and advertisers in Google’s ad network to allow ads to display and to perform ad targeting. For example, an advertiser using the Google network may get to know that a cookie ID (which does not reveal your name or who you are) visited a page about a certain game, so they can decide to bid to show an ad to that cookie ID. This kind of data “sharing” is standard for how online ad auctions work. Importantly, this is all handled by Google’s systems – we do not directly hand over personal data about you to advertisers. We never receive from Google any information like your name or contact info; we only see reports such as how many users clicked an ad, etc. Under California law, some of this advertising-related disclosure may be considered a “sale” or “sharing” of personal information (because it involves transferring device identifiers or browsing info to third parties for advertising). Please see the “Do Not Sell or Share” section for how you can opt out of this if you are a California resident or otherwise.
- Other Third-Party Ads: We have not disabled third-party ad serving on Google AdSense, so it’s possible that ad networks besides Google (who are certified by Google) might show ads on our site. These companies might also place their own cookies. We don’t control those third parties, but we want to inform you that this can happen. If it does, those third parties are supposed to adhere to their own privacy policies and industry standards. To get information on any particular advertiser’s data practices, you can check their privacy policy. A convenient way to opt out of many advertising networks at once is via the websites mentioned earlier (NAI or DAA opt-out pages).
Business Transfers or Law Requirements: We do not anticipate this, but if pcsx2 were ever to be involved in a merger, acquisition, or sale of assets, user information (which in our case is minimal) might be transferred as part of that deal. We would provide notice if that happened and do so in accordance with applicable laws. Additionally, if required by law to comply with a legal obligation (for example, responding to a valid legal subpoena or request from law enforcement), we may have to disclose certain information. Since we don’t actually hold much personal data, such scenarios are rare. If we do receive a government request, we will review it carefully and only comply if required by law.

Aside from the above, we do not share your information with anyone. In plain terms: we use your data internally to run and improve the site, and we allow Google (and similar service providers) to process it on our behalf for analytics and advertising. We do not provide your personal information to unrelated parties for their own use.

Third-Party Links and Embedded Content

Our website may contain links to other websites or embed games/content that come from external sources. For example, when you click on a game, it’s possible the game might be hosted on another server or you might follow a link to an external site for more information. Please be aware that this Privacy Policy applies only to pcsx2 (pcsx2.gitlab.io) and not to any third-party websites or services. We have no control over the privacy practices of external sites.

If you click a link to a third-party website (or a third-party game that opens outside our domain), any data they collect falls under their own privacy policy. We recommend that you review the privacy policies of those sites or services if you visit them. For example, if you go to a developer’s site or a social media page via our site, check their posted privacy notice to understand how they handle your data. We are not responsible for the content or data practices of other websites that are not under our control.

Your Privacy Rights

Depending on where you live, you may have certain rights regarding your personal data. We are committed to honoring applicable privacy rights and providing you control over your information. Below, we outline the rights you have under the GDPR (for users in the EU/EEA, UK, and similar jurisdictions) and under California law (CCPA/CPRA for California residents).

If you are in the European Union, EEA, United Kingdom, or a jurisdiction with similar laws, you have the following data protection rights under the GDPR:

Right to Be Informed: You have the right to clear and transparent information about how we collect and use your personal data. We address this through this Privacy Policy (and related notices).
Right of Access: You can request a copy of any personal data we hold about you, and to obtain information about how we process it. This is commonly known as a “Data Subject Access Request.” Given that we collect very limited personal data (and mostly in anonymized form), in most cases we may not have any data that identifies you individually, apart from cookie identifiers. But you are still entitled to ask and we will do our best to provide you with a report if applicable.
Right to Rectification: If you believe that any personal data we have about you is inaccurate or incomplete, you have the right to request that we correct or update it. (Practically, since we do not have user accounts, this would mainly apply if, for example, you had contacted us via email and we stored that communication – you could ask us to correct any info in that record.)
Right to Erasure: Also known as the “right to be forgotten,” this allows you to request that we delete any personal information we have about you. We will honor such requests to the extent possible. For example, if you contacted us and want your email and inquiry deleted from our records, we will delete it. If you want us to delete cookies or data related to Google Analytics or ads, we might guide you on how to delete cookies (since the data is in your browser) and we can delete any associated server logs if applicable. Keep in mind, some data we may not be able to fully delete if it’s anonymized and we have no way to link it to you, or if we are required to keep it for legal reasons – but we’ll explain if that’s the case.
Right to Restrict Processing: You can ask us to limit or “pause” the processing of your data in certain circumstances. For instance, if you contest the accuracy of data or have objected to processing (see below), you can request restriction until the issue is resolved. In practice, since our data is mostly cookie-based, your most effective way to restrict processing is to use the opt-outs we provide (like disabling cookies or withdrawing consent for certain processing). We will ensure that any ongoing processing that can be stopped is stopped upon valid request.
Right to Data Portability: You have the right to obtain your personal data in a common, machine-readable format, and/or to request that we transfer it to another service provider where applicable. This generally applies to data you have provided to us. Given the nature of our service, we don’t collect traditional personal data or uploads from users. If you exercise this right, we will work with you to provide your data in a suitable format (for example, a CSV file of any data points we might have).
Right to Object: You have the right to object to our processing of your personal data when that processing is based on legitimate interests, or if we were to perform direct marketing or profiling. In our context, you can object to (or opt out of) any analytics or advertising data processing (which is effectively what our cookie consent and opt-out mechanisms already cover). If you object to any other processing, let us know and we will consider your objection and stop processing unless we have a compelling legitimate ground to continue (per GDPR rules). For direct marketing: We currently do not send any marketing communications, but if we ever did (say, an email newsletter), you would have the right to opt out of that at any time.
Rights related to Automated Decision-Making: GDPR provides rights not to be subject to decisions based solely on automated processing (including profiling) that have legal or similarly significant effects. Our website does not make any such automated decisions about you – we do not profile users in a way that produces legal effects. Advertising targeting does occur in an automated way (ad networks deciding which ad to show you), but this does not have a significant effect on you beyond showing different ads. Nonetheless, you have the right to opt out of any form of profiling for marketing, which we facilitate through the opt-outs for personalized ads.

Exercising Your GDPR Rights: To exercise any of these rights, please contact us at our email address provided in the Contact section. We may need to verify your identity to ensure that we’re fulfilling requests for the correct person (for example, we might ask you to email us from the same email address you’re asking about, or ask for some proof if we have any data to link to you). We will respond to your request as soon as possible, and in any event within one month as required by GDPR. If for some reason we cannot fulfill your request, we will explain why (for instance, if you asked for data that we truly do not have, or asked us to erase data that we are legally required to keep). We also inform you that you have the right to lodge a complaint with your local Data Protection Authority (DPA) if you believe we have not complied with your rights; however, we would appreciate the chance to address your concerns first, so please reach out with any issues.

California Privacy Rights (CCPA/CPRA)

If you are a California resident, you are protected by the California Consumer Privacy Act (CCPA) of 2018, as amended by the California Privacy Rights Act (CPRA) of 2020. Even though pcsx2 may not meet the strict criteria of a “business” that must comply (for example, we likely do not have $25 million in revenue or handle data of 100,000 people), we aim to voluntarily honor the spirit of these laws and extend those privacy rights to our users in California. Here is a summary of your California privacy rights and how you can exercise them:

Right to Know (Access): You have the right to request that we disclose the specific pieces and categories of personal information we have collected about you in the 12 months prior, the categories of sources of that information, the business or commercial purpose for collecting it, and the categories of third parties with whom we shared or sold that information. (We provide much of this information in this Privacy Policy itself.) Upon a verifiable request, we will provide you with a report of your personal info in our records, if any. Please note, given our minimal data collection, the information we have is generally limited to online identifiers (like cookie IDs or IP addresses in logs) and usage data as described in this policy.
Right to Delete: You can request that we delete personal information we have collected from you and retained. Upon receiving a verified deletion request, we will delete the personal information we hold about you from our records (and direct our service providers to do the same), unless a legal exception applies. CCPA allows some exemptions to deletion – for example, we may retain data necessary to complete a transaction you initiated, to detect security incidents, to comply with legal obligations, or other such exceptions. We will inform you if any such exception applies. Given that we collect very limited data, in many cases deletion will simply involve removing cookie identifiers from our systems or instructing you on how to clear certain cookies.
Right to Correct: You have the right to request correction of inaccurate personal information that we hold about you (CPRA added this right). If you believe any data we have is incorrect, please let us know and we will rectify it if possible. (For example, if you think we logged an incorrect info in a support interaction, etc. With no user profiles on our site, this will rarely come up.)
Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale of your personal information, or the “sharing” of your personal information for cross-context behavioral advertising. As mentioned, we do not sell personal data for money, but we do allow certain data (like cookies and device identifiers) to be shared with third parties (like Google and advertisers) in a way that may be considered a “sale” or “sharing” under California law because it’s used for personalized advertising. You can direct us not to sell or share your personal information by using the “Do Not Sell or Share My Personal Information” link or mechanism on our website (see the next section for details on how to opt out). Once you opt out, we will stop any such data sharing for advertising (meaning we will tell our ad partners not to use your data for targeted ads). You will still see ads, but they will be generic. By law, after you opt out, we cannot ask you to reauthorize sale/sharing of your data for at least 12 months.
Right to Limit Use of Sensitive Personal Information: (CPRA introduced this right.) This is applicable if a business collects “sensitive personal information” (like precise geolocation, financial info, social security numbers, etc.) and uses it for certain purposes. In our case, we do not collect or use sensitive personal information of that nature. Therefore, there is nothing we need to limit here. If that ever changes, we will update this policy and provide a way to limit such use.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. This means we won’t deny you our service, charge you a different price, or provide a lesser experience just because you exercised your privacy rights. Our service is free and accessible to all users equally. If you opt out of personalized ads or ask for your data to be deleted, you will still have access to the same games and features as before. (The only difference might be that without personalized ads or certain cookies, some minor site functions – like personalized game recommendations – might not work as effectively, but we will never intentionally punish you for opting out.)

Categories of Personal Information We Collect (California Notice): In the last 12 months, we have collected (as described in detail earlier) the following categories of personal information, as defined by CCPA:

Identifiers: e.g. Online identifiers like cookie IDs, device IDs, or IP address. We do not collect real name, postal address, phone number, SSN, driver’s license, or any government ID. We do collect IP addresses and assign cookies which are considered “identifiers” under the law.
Internet or Electronic Network Activity: This includes your interactions with our website, such as browsing history, search queries on our site, and information on your interaction with games or ads. For instance, we know which pages on our site are visited and which games are played (though we look at this at an aggregate level). This falls under “internet or other electronic network activity information” in CCPA terms.
Geolocation Data: Approximate location derived from your IP address (we can usually tell the region or country, and sometimes the city, of a visitor). We do not collect precise GPS coordinates or any real-time mobile location. It’s only the general location based on IP, which we use for things like language settings or to comply with legal requirements (e.g., showing the EU cookie consent to EU users).
Commercial Information: We do not collect or maintain commercial transaction records since we don’t sell anything directly to users. (No purchase history, etc., since our games are free and we don’t process payments.)
Characteristics of Protected Classifications: We do not collect data like your race, gender, age (except we may infer someone is under 13 if they tell us, but we actively avoid collecting birthdates or ages), religion, etc.
Biometric Information: Not collected.
Sensitive Personal Information: We do not intentionally collect any sensitive personal info such as financial details, login credentials, health data, precise geolocation, etc., from our users.
Inferences: We do not create advanced “profiles” or inferences about our users’ preferences beyond basic interest categories for ads (which are handled by Google’s algorithms, not by us directly). We don’t maintain profiles linking you to personal traits.

Categories of Sources: We collect the above information directly from you and your devices through your interaction with our site (e.g., automatically via cookies when you visit pages). We also may receive some of it from service providers (e.g., Google provides us analytics reports based on the data collected from your device, and advertising partners provide ad performance data). We do not collect data about you from third-party data brokers or public databases.

Business or Commercial Purposes for Collection: The purposes are as described in this policy: to operate and improve our site (analytics), to show advertising and measure its effectiveness, to ensure security, and to comply with law if needed.

Disclosure of Information: We disclose the above categories of information to the categories of third parties as described in “How We Share Information.” Specifically, we have disclosed identifiers and internet/activity data to service providers like Google (analytics and advertising) in the past 12 months for business purposes (site analytics, fraud prevention, serving ads). We do not sell personal information for money. However, as noted, sharing of identifiers and internet/activity data with ad networks for advertising may be deemed a “sharing” or “sale” under CPRA, which is why we provide an opt-out.

Exercising Your California Rights: If you are a California resident and would like to exercise your right to know, access, delete, or correct, please contact us (see Contact Us section). Make sure to indicate that you are making a “CCPA Request” and describe which right you wish to exercise. We will need to verify your identity to process requests (for example, by confirming information we might have, such as asking you to send the request from the same email you might have contacted us with before, etc.). You may also designate an authorized agent to make requests on your behalf. To designate an agent, we may require a signed letter or proof of authorization and also independently verify you (for security). We will respond to consumer requests within 45 days as the law requires (or within the additional 45-day extension if needed, in which case we’ll inform you of the need for more time). For access requests, we will provide the information covering the 12 months period preceding your request as required. For deletion requests, we will confirm once we have deleted your data (or if an exception applies, we will explain it). For opt-out of sale/sharing, see below.

We also honor signals from the Global Privacy Control (GPC). If your browser or extension is set to send a GPC signal (a privacy preference signal), we will treat it as a valid request to opt out of the sale/sharing of your personal information under CCPA/CPRA. In practice, that means if we detect a GPC signal from your device, we will automatically disable third-party advertising cookies on our site (as if you clicked “Do Not Sell My Personal Info”) for that browser. You can learn more about GPC at globalprivacycontrol.org.

We take your privacy choices seriously. As explained, we do not sell your personal information for monetary compensation. However, we do allow certain advertising cookies and third-party data sharing that could be classified as a “sale” or “sharing” of personal information under California law (because it involves sharing identifiers for the benefit of showing you ads). California residents have the right to opt out of this.

How to Opt Out: If you are a California resident (or any user who wishes to opt out of targeted advertising data sharing), you can exercise your right to “Do Not Sell or Share My Personal Information” by using the opt-out mechanisms we provide:

Website Opt-Out Link: We have provided a “Do Not Sell or Share My Personal Information” link on our website (likely in the footer or a visible area). By clicking that link, you can set your preferences to disable any selling/sharing of data. This will typically involve our site turning off personalized advertising for your browser. Once you opt out, we will instruct our advertising partners that your data should not be used for targeted ads. The opt-out is implemented via a cookie or similar mechanism to remember your choice, so if you clear your cookies, you may need to opt out again.
Cookie Consent Banner: Alternatively, you may use our cookie consent banner (if shown to you) to decline advertising cookies. Declining advertising cookies has the same effect as opting out of sale/sharing – it ensures that we do not share your information for personalized ads. If you already accepted cookies but change your mind, you can adjust your preferences by clicking the “Do Not Sell” link or by clearing cookies and revisiting the site to get the banner again.
Browser Signal (GPC): As mentioned above, we honor the Global Privacy Control. If your browser is sending a GPC signal, our site should automatically treat it as a Do Not Sell request – meaning we will not set or will disable advertising cookies for that visit, without you needing to click anything.

After you opt out, we will refrain from sharing or using your data for cross-context behavioral advertising. You will still see advertisements, but they will be contextual (for example, based on the content of the page or general location) rather than based on your personal browsing profile. We will also avoid any non-essential data transfers that would be considered a “sale.”

Opt-In for Minors: We do not knowingly collect personal information from users under 16. In the event that we had a user’s personal info and knew they were under 16, we would not sell or share that information unless we obtained affirmative authorization as required by law. For users we actually know are under 13, we would require parental consent to do so (COPPA would also apply). Since our policy is not to collect such data from kids, this situation is unlikely. Essentially, we treat all minors’ data as opted-out by default.

If you have used the opt-out and for some reason still have concerns that your data is being sold or shared, please contact us so we can investigate and ensure compliance. We aim to make the opt-out process seamless and honored by all our third-party integrations.

International Data Transfers

pcsx2 is accessible worldwide. We are primarily based on servers in the United States (the site is hosted via GitLab Pages and our third-party providers like Google operate globally). This means that if you are visiting from outside the United States, your information (such as cookie identifiers or IP address) might be transferred across international borders. In particular, if you are in the European Union or UK, your personal data may be transferred to and processed in the United States or other countries where our partners have servers .

Data Protection Abroad: Different countries have different privacy laws, but we want to assure you that when your data is transferred, we take steps to protect it. For transfers from the EU/EEA to the US (or other regions) that lack an EU adequacy decision, we rely on appropriate safeguards as required by GDPR. These may include the European Commission’s Standard Contractual Clauses (SCCs) – which are legal contracts that obligate the recipient (like our U.S. service providers) to protect your data to EU standards . For example, Google, our main analytics/ads partner, has incorporated SCCs into its data processing terms for Google Analytics and AdSense, to cover European data transfers . Google also participates in the EU-U.S. Data Privacy Framework (DPF) as of 2025, which means it has certified that it complies with specific data protection principles for transfers . These frameworks and clauses are designed to safeguard your information during transit and while stored abroad.

We also only work with reputable service providers that commit to high privacy standards. Google’s privacy controls and security measures are robust, and they apply the same strict protections to user data regardless of where it is processed .

Your Choices on Location: If you prefer, you can decline cookies and thus minimize the data that is transferred (as most of the data transfer is via cookies/analytics). However, basic connection data (like your IP address) is inevitably transferred when you visit any website (that’s how the internet works). We ensure any such transfers are lawful and protected.

If you have questions about international data transfers or require more information about the specific safeguards in place, please contact us. We can provide further details, such as a copy of the relevant Standard Contractual Clauses if required.

Data Security and Retention

Security Measures: We take the security of your data seriously and implement reasonable measures to protect it. Our website is served over an encrypted connection (HTTPS), which means data transmitted between your browser and our site is encrypted in transit. We utilize trusted hosting (GitLab Pages) and reputable third-party services like Google, which have their own strong security protocols in place. For example, Google data centers employ industry-standard physical and electronic security to protect data from unauthorized access. Internally, we limit access to whatever minimal information we have – for instance, only authorized personnel (which in our case is likely just the site administrator) can view our Google Analytics dashboard or ad reports, and these are protected by authentication.

No website can guarantee 100% security, but we strive to protect your information from loss, misuse, or unauthorized alteration. We also continuously monitor for any vulnerabilities or threats. If we ever experience a data breach involving personal data, we will notify affected users and authorities as required by law.

Retention Period: We retain personal data only as long as necessary for the purposes described in this policy (or as required by law). Because we do not collect user accounts or persistent personal details, we generally have limited data to retain:

Analytics data in Google Analytics is retained for a period set in our Google Analytics settings (which may be, for example, 14 months by default for user-level data, or a similar reasonable period) after which it is deleted or anonymized by Google. We review only aggregated analytics, and those aggregate reports may be kept indefinitely for reference (since they contain no personal info).
Advertising data (such as information associated with cookie IDs) is mostly handled by Google. Cookie data on your own device will persist until the cookie expires or is deleted. For example, Google’s advertising cookies (like IDE or ANID cookies) may have expiration periods on the order of months up to 2 years. If you revisit our site, those may be refreshed. You can always delete these cookies yourself to remove the data. On our side, we do not have direct access to your individual advertising profile – we just receive ad performance reports. Those reports (which contain no personally identifiable info) might be retained for our financial record-keeping and analysis.
If you contact us via email, we will retain your communication for as long as needed to address your question or request, and for a reasonable period thereafter in case of follow-ups. If you request that we delete an email correspondence, we will delete it from our inbox unless required to keep it.
Server logs (if any are collected by our hosting) that contain IP addresses are typically rotated and deleted after a short duration by our hosting provider. We do not separately log IP addresses in a personalized way.

In summary, we aim to keep data only as long as necessary to fulfill the purposes outlined. When data is no longer needed, we will securely delete or anonymize it. For instance, if we were to ever collect additional data in future (like a newsletter email list with your consent), we would inform you of retention and deletion practices at that time.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make changes, we will update the “Effective Date” at the top of the policy. If any changes are significant (for example, if we start collecting new types of data or plan to use data in a new way), we will provide a more prominent notice — such as a notice on our website or a direct notification if appropriate — and obtain consent if required. We encourage you to review this policy periodically to stay informed about how we are protecting your information and what our practices are.

Your continued use of pcsx2 after any update to this Privacy Policy will signify your acceptance of the changes, to the extent permitted by law. If you do not agree with any updates, you should stop using our site and can contact us if you have specific concerns.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please do not hesitate to contact us. We are here to help and we take your privacy inquiries seriously.

Email: emamnipu@gmail.com
Alternate Email: rahmanen619@gmail.com

You can reach out for reasons such as:

To ask about the data we have about you (or to request access/deletion/correction as described above).
To opt out of certain data uses (if you had trouble with the provided tools).
To seek further clarification on any part of this policy.
To provide feedback or suggest improvements related to privacy.

We will do our best to respond promptly and address your inquiry within a reasonable timeframe. If you contact us regarding an exercise of your privacy rights, we may need to verify your identity for security, and then we will proceed with your request as outlined in the relevant section of this policy.

Thank you for reading our Privacy Policy. We value your trust and are committed to maintaining the privacy and security of your data while you enjoy the games and content on pcsx2.

You also may like 〣〣