Update to Terms of Use, Privacy Policy, and Community Rules


#1

Hey Developers,

We have updated our Terms of Use, Privacy Policy, and Community Rules on the Roblox platform, effective as of May 23, 2018. These updates are in preparation for the upcoming European General Data Protection Regulations (GDPR) legislation. Our Terms of Use is globally unified and these changes will affect all users on the Roblox platform.

Summary of changes:

  • Please check out the Terms of Use found here and Roblox Community Rules found here for more information.
  • The rule has also been added to the Community Rules page under Section 2 (Personal Information).
  • Our Privacy Policy found here has been updated with information about our use of cookies and personal data. Residents of the European Union should read Section 14 of the updated Privacy Policy for more information (Information for EU Residents).

As a reminder, your game should never ask for or collect any PII (personally identifiable information) from your users. To find out more about what PII is and how GDPR now defines it, please go to the following website: https://gdpr-info.eu/. We also recommend collecting data based on the user’s unique numeric UserID instead of username.

Please be sure to read all of the content and changes thoroughly. This announcement does not represent the entirety of the changes made to the Terms of Service, Privacy Policy, or Community Rules.

Thanks,
Roblox Developer Relations


#2

EDIT: This section has since been removed.

From Terms of Use

  1. Sensitive Personal Information. When you use our Services you agree not to post, ask for, collect or otherwise disclose any personal information relating to your physical or mental health, your racial or ethnic origin, political opinions, religious or philosophical beliefs, your sex life, or your sexual orientation. This includes any comment or message on group walls, private or public chat, forums or personal posts.

Why am I not allowed to share my philosophical beliefs on Roblox?


#3

This change will impact a decent chunk of popular groups (True Colors, Robloxian Christians, etc.). Is it really necessary?


#4

What constitutes a philosophical belief? The potentially extreme vagueness of this seems dangerous.


#5

Related: does this mean we’re not allowed to say when we have a problem with our health, even if it’s relevant? Is “I’ll be out for a week because I’m having surgery” not allowed? Is “sorry, I was away because I was depressed, but I got some help for it and I’m better now” not okay? Is “sure, I’ll get started! Keep in mind that it might take longer because I lost my arm in an accident a few years ago” not okay?

Is a passing mention to religion not okay? Is “I’ll be on in a few hours, got to go to church” not okay?

All of those can be relevant to working or playing on Roblox. Does “personal information” just mean details such as name, birth date, etc. or does it mean things like my examples above?

I feel like some of the listed things should only be “do not ask for and do not collect” only. Posting about them can be important and relevant for other reasons. The following seem to fit into that category:

  • physical health
  • mental health
  • religious beliefs
  • philosophical beliefs

All of these should not be collected or asked for, but they can be relevant for other reasons and it’s not at all clear or natural that one would avoid talking about them in such situations.


#6

If you are a user based in the European Union, you may be entitled to exercise some or all of the following rights:
(…)

  • Require (i) to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format(…)

This point (although was already stated before the update if I recall well) has caught my interest:

  • How would I request the data that was collected since my account was registered?
  • How would I prove being an EU resident? Or are you guys eventually opening those features to everybody regardless of where they lIve?
  • “commonly used and machine-readable format” - while I interpretate it as a digital format (a .zip file for instance) file, could one legitimately interpretate it as “we don’t guarantee you’ll be able to read what we sent ya”?

#7

“commonly used and machine-readable format” - while I interpretate it as a digital format (a .zip file for instance) file, could one legitimately interpretate it as “we don’t guarantee you’ll be able to read what we sent ya”?

GDPR requires this data to be structured in machine-readable format, it is not merely a choice. The reasoning behind this is that you can download your data (contacts, messages, photos) from one service, and upload it to another. It’s primarily meant for social media, telecom providers, and those types of services where end users should be free to choose who provides them with that service regardless of who ‘owns’ their data.


#8

Whats so bad in informing your friends about your physical health or religion? Does it really create a danger?

EDIT #1
Okay i think i understand now, the GDPR doesnt allow collecting these data - well that explains it I guess. (correct me if im wrong about GDPR not allowing collection of that data)


#9

Most businesses end up making these features available to all users, as it’s far more easy and convinient to make them available to everyone; instead of attempting to filter non-EU users, where they risk breaching the law-given rights of a miss-indentified user.


#10

This has some very serious conflicts with the work that I have been doing on Roblox over the last several years which is explicitly religious work. When I get home from work, I plan to sit down and find some solutions to this. This is not okay.


#11

GDPR also regards user ids as personal information. What is the proper way to collect data and link it to some (pseudonymized) individual? Do we need a privacy policy for each game on its own too, asking new players to agree to it before being able to play the game?


#12

I’m also wondering this too; for example, GameAnalytics, which a lot of developers including myself use, says this:

Is the Roblox Privacy Policy a “catch-all” for GDPR or do we need to ask players when they join our games as @Den_S said?


#13

i’m very curious to know how this affects groups like True Colours who sort people into ranks based on their sexual orientation.


#14

Obviously is necessary because putting out any form of uniqueness is dangerous and somebody could disagree now and days. While we’re at destroying what makes us different, I would like to request we all have the same avatars so nobody feels bad and nobody can make fun of someone else.


But in all seriousness, this is quite a stupid change to the terms of use. How exactly is my physical and mental health condition, race and ethnicity, political opinions, religion, sex life, and sexual orientation all sensitive information? I kind of feel like this is Roblox trying to be politically correct rather than protecting users. Nobody is ever going to be protected by not being able to say that they will be back in a bit because they have to go to Church.

How is Roblox promoting creativity if they are literally creating a box of what is not allowed because someone might get their feelings hurt? Not to mention, nobody can hurt each other’s feelings in the first place considering the filter already filters everything. This change is also hurting a lot of large groups on Roblox and even fellow developers here on the DevForum. Ultimately, this change is going to probably hurt the platform considering is it driving aways groups of hundreds of thousands of players.


#15

A group like True Colours no doubt is now against the terms of service and will probably be terminated within a few days unless it is completely changed or abandoned.


#16

Yeah, the implication is there but I would like certainty from the staff who will be enforcing this rule.

I would certainly hope this is not just dropped on us and then we receive no response while hundreds of games and groups become immediately at risk.


#17

I don’t see this anywhere in Roblox’s ToS, where did you pull this from?


#18

So basically just more censorship by the EU, nice …


#19

It’s concerning that Roblox is making such a significant change that could result in the termination of many popular groups, especially without any advance notice and while leaving lots of unanswered questions on the table. Anyone who’s in violation of these new rules could be punished right here and now, without any chance to fix their content to be in compliance. It seems customary for almost every website to provide a certain waiting period before new terms go into effect, so questions can be answered and people can adjust their existing content.

Though it looks like the rule in question was just now silently removed for the time being…?


#21

This has been removed from the Terms of Use since I posted.