Posted August 28, 2023
high rated
Hey gog, I just claimed the free game on the gog.com homepage (thanks), but did not notice that the terms of this giveaway were 'subtly' but importantly different than the terms for previous giveaways, namely agreeing "to receive marketing through ... GOG's Trusted Partners' services". According to the subscriptions page and the linked to support page, that means "Google Ads Customer Match" and "Meta Custom Audiences" (i.e. facebook), and that both would receive a hash of my email address.
I am very much not okay with these particular two parties receiving my email address, even if it's hashed, so I immediately withdrew my consent. Now my question is: Did you immediately transfer my personal data to them when I clicked on the green button on the homepage? Or does this only happen once an hour / a day / ...?
If it's immediately, did removing my consent then cause a second signal to go to them to remove my hashed email address?
Also, does this transfer happen on the back-end (that is, through your servers), or on the front-end (that is, through my browser)? In the latter case, my IP-address would also be transferred - but I'd actually prefer this, as then my privacy-extensions will have stopped the data transfer...
N.B. The privacy policy which you link to from the homepage banner does not include the detailed information about this program which shows on the aforementioned support page. You might want to update section 10.3 of your privacy policy with that information and/or a link to that support page.
(And yes, yes, file a support request - but the answers to these questions should be of general interest...)
I am very much not okay with these particular two parties receiving my email address, even if it's hashed, so I immediately withdrew my consent. Now my question is: Did you immediately transfer my personal data to them when I clicked on the green button on the homepage? Or does this only happen once an hour / a day / ...?
If it's immediately, did removing my consent then cause a second signal to go to them to remove my hashed email address?
Also, does this transfer happen on the back-end (that is, through your servers), or on the front-end (that is, through my browser)? In the latter case, my IP-address would also be transferred - but I'd actually prefer this, as then my privacy-extensions will have stopped the data transfer...
N.B. The privacy policy which you link to from the homepage banner does not include the detailed information about this program which shows on the aforementioned support page. You might want to update section 10.3 of your privacy policy with that information and/or a link to that support page.
(And yes, yes, file a support request - but the answers to these questions should be of general interest...)
Post edited August 28, 2023 by gogtrial34987