Aura Privacy Policy

Last Updated: September 10, 2025

The Read More provides a handy entry point to our longer and more comprehensive Privacy Policy (below). It enhances rather than replaces the important notices in this Privacy Policy, which governs our collection, use, storage, and sharing of the information that we collect or receive from you.

Unity Technologies and its subsidiaries and affiliates (collectively “Unity”) want you to be familiar with how we collect, use, and disclose User Personal Information in connection with Aura by Unity (“Aura”). The Policy refers to Unity as “we” or “us” and to the Users as “you.” When we say “User,” we mean an individual who is using Aura. When we say “Device,” we mean any device, including desktop, laptop, PC or Mac computers, smartphones, tablets, or any other device that is used to access or interact with the Service. When we say “Demand Partners,” we mean app developers that promote their apps through Aura. When we say “Personal Information” we mean information that identifies you as an individual or relates to an identifiable individual. Personal Information does not include aggregated, de-identified, and/ or anonymized information, i.e., when the information has been transformed so that it no longer relates back to a person’s identity.

It is important that you read this Privacy Policy together with any other privacy policy or fair processing notice we may provide on specific occasions when we are collecting or processing Personal Information, so that you are fully aware of how and why we are using your Personal Information.

This Privacy Policy governs our information practices for Aura, including any Personal Information we collect in connection with Aura, such as when you call us.

Information We Collect

We collect the following categories of Personal Information:

A. Personal Information we receive from you:

Personalization Information	Information used to personalize recommendations, such as age range and gender.
User Engagement Data	Such as notification clicks, app downloads, app launches, and other metrics tied to User activity in response to Aura recommendations.
Advertiser Data	Collected by mobile measurement platforms (MMPs) on behalf of advertisers, including attribution data (e.g., installs, in-app purchases, level achievements) and information used by account managers or machine learning systems for optimizing ad spend and advertiser performance.
Account Information	Such as the user ID you create to access Aura.

B. Personal Information we collect through your use of Aura or from other sources:

IP Address	Our systems automatically collect an IP address, which can be used to learn about the general location (e.g., city, state and country) of a User’s point of access to the web.
Device Information	We may log a variety of technical information, including but not limited to User ID; Device identifiers, CPU, CPU-supported architectures, manufacturer, model, RAM, storage, location, network type (wifi/cellular data), and product name; operating system name, fingerprint, version, version code; SIM information; network information; and other technical details about your Device.
Cookies and Related Technologies	We collect Personal Information through cookies and similar technologies. For more information on how Unity uses cookies, the types of cookies and other technologies used, and your privacy choices, please see our Cookie & Advertising Policy.
Other Information	We may employ third-party analytics services to collect and analyze Users’ activity on their Device and engagement with Aura recommendations. We may obtain additional information about you from third parties such as marketers, partners, researchers, Demand Partners, and others. We may combine information that we collect from you with information about you that we obtain from such third parties and information derived from any other subscription, product, or service we provide.

C. Sensitive Information:

Unless we request it, we ask that you not send us, and you not disclose, any sensitive Personal Information (e.g., Social Security numbers, information related to racial or ethnic origin, political opinions, religion or other beliefs, health, criminal background, or trade union membership) to us.

D. Aggregated, De-Identified, and/ or Anonymized Information:

We may aggregate, de-identify, and/ or anonymize Personal Information, i.e., transform the information so it no longer relates back to a person's identity so that it will no longer be considered Personal Information. We do so to generate other data for our use, which we may use and disclose for any purpose.

3. How We Use the Information we Collect or Receive

Below, you will find a table depicting how we use the information we collect or receive through Aura.

Purpose	Examples of Processing Activities	Personal Information Categories
Providing Aura Services	Delivering app recommendations to the Device. Personalizing our interactions with you and providing you with information and/ or offers. Sending administrative information to you, such as changes to our terms, conditions and policies.	User Engagement Data Account Information Device Information IP Address Cookies and Related Technologies
Service Provision & Maintenance	Analyzing and acting on the analysis of our products such as system and log maintenance, technical and customer support, system debugging. Carrying out operations and general business such as administering Aura; employee training and managing work activities and personnel generally. Reporting and billing our Demand Partners.	Personalization Information User Engagement Data Account Information Device Information IP Address Cookies and Related Technologies
Customer service	Administering customer-care services to facilitate and address inquiries, requests, comments, and complaints about Aura (such as in person, through phone lines, email, or on social media), e.g., to send you documents or product information you request or assist you in using Aura.	Account Information Device Information
Marketing	Providing you with marketing materials Conducting research and surveys Limiting the number of times a specific campaign is served across Aura Optimizing marketing campaigns, including for our Demand Partners	Demographic Details User Engagement Data Advertiser Data Account Information IP Address Cookies and Related Technologies
Personalizing Services		Personalization Information User Engagement Data Advertiser Data Account Information Device Information IP Address Cookies and Related Technologies
Business Reporting	Improving the efficiency of Aura Identifying usage trends Determining the effectiveness of our promotional campaigns Develop new products and services Conducting research and surveys Developing, enhancing, improving, repairing, maintaining or modifying Aura Conducting data analytics, i.e., applying analytics to business operations and data to describe, predict, and improve business performance within Unity and/or to provide a better user experience, including the use of e.g., machine learning	Personalization Information User Engagement Data Advertiser Data Account Information Device Information IP Address Cookies and Related Technologies
AI Data Analytics	Conducting data analytics, i.e., applying analytics to business operations and data to describe, predict, and improve business performance within Unity and/or to provide a better user experience. Please note: we aim to include data minimization into our AI practices, such as through the incorporation noise reduction tools such as removal, tokenization, and anonymization of some Personal Information	Demographic Details User Engagement Data Advertiser Data Account Information Device Information IP Address Cookies and Related Technologies
Security Purposes	Fraud and security purposes, such as debugging Preventing criminal activity or harm to Users	Account Information Device Information IP Address Cookies and Related Technologies
Legal Purposes	Reporting to our Board of Directors as required by the Securities & Exchange Commission Conducting audits Financial & accounting purposes Complying with laws and regulations. These may be outside of your country of residence Other legal reasons such as enforcing terms and conditions, protecting operations, rights, privacy, safety, or property and/or that of our affiliates, you or others; to allow us to pursue available legal remedies, defend claims and limit the damages that we may sustain.	Personalization Information User Engagement Data Advertiser Data Account Information Device Information IP Address Cookies and Related Technologies
Law Enforcement Requests	Cooperating with public and government authorities, including law enforcement outside of your country of residence Fulfilling legal and compliance obligations, responding to legal processes, meeting national security or law enforcement requirements	Personalization Information User Engagement Data Advertiser Data Account Information Device Information IP Address Cookies and Related Technologies
Business Transactions	In connection with a reorganization, merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock (including in connection with any bankruptcy or similar proceedings).	Personalization Information User Engagement Data Advertiser Data Account Information Device Information IP Address Cookies and Related Technologies
Emergency & Incident Response	Responding to, handling, documenting, and sending notices in the event of incidents and emergencies Actively monitoring to ensure adequate incident prevention, response, and documentation	Account Information IP Address

Sharing Information

Below, you will find an outline of scenarios in which information may be disclosed by using Aura.

Recipients	Purpose
Our Affiliates,	All purposes described in this Privacy Policy
Demand Partners	Manage our relationship with and bill our Demand Partner clients and inform Demand Partners whether Device Information should be included in or excluded from a particular marketing campaign.
Service Providers	We share Personal Information with select service providers to help us provide the Aura services such as: Information Technology and Analytics, including Cloud Servers These assist us with operations and general business such as: Providing the functionality of Aura Infrastructure provision Improving and developing new products and services Data analytics and measurement information Marketing & Events These assist us with activities such as: Sending you marketing communications, consistent with your choices Conducting research and surveys Fraud & Security These assist us with activities such as: Protecting and securing our systems and services Monitoring, investigating, and acting on fraudulent activity Professional Services These provide a variety of services to us such as audit, legal, and financial
Law Enforcement or other similar parties	For safety, security, and legal compliance, including: To respond to legal process (e.g., if we receive a court order, search warrant, subpoena, or similar legal process); If we believe that Aura is being used in the commission of a crime, including to report such criminal activity or to exchange information with other companies and organizations for the purposes of fraud protection and credit risk reduction; To protect your vital interests or those of another person or the public; and To protect Unity’s rights or property, including to enforce the terms and licenses that govern Aura’s use.
Ad networks	As discussed in our Cookie & Advertising Policy, we may permit advertisers and their agents to use cookies or related technologies to store information on or read information from your browser or Device so that they can optimize their advertising campaigns, including to frequency cap and deliver targeted ads
Third parties in the event of a business transaction	Business Transactions
Others with your consent	We may share your information for other purposes if (i) you direct us to do so or (ii) you consent to such sharing.

5. Our Policies Concerning Children

Unless expressly provided otherwise, Aura is intended for general audiences. We do not knowingly collect Personal Information from children under 13. If any parent or legal guardian becomes aware that a child under the age to provide lawful consent to processing in their region (e.g., 13 in the U.S., 16 in the E.U.,16 in Japan) has provided us with Personal Information in contravention of our policies, they should contact us at DPO@unity3d.com.

6. Privacy Rights and Your Choices About Unity’s Collection and Use of Your Information

If you would like to request to access, correct, update, suppress, restrict, or delete your Personal Information, object to or opt out of the processing of Personal Information, withdraw your consent (which will not affect the lawfulness of processing prior to the withdrawal), or if you would like to request to receive a copy of your Personal Information for purposes of transmitting it to another company (to the extent these rights are provided to you by applicable law), you may contact us in accordance with the ‘Contact Us’ section below.

In your request, please make clear what Personal Information you would like to have changed or whether you would like to have your Personal Information suppressed from our database. For your protection, we may only implement requests with respect to the Personal Information associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable.

Please note that we may need to retain certain information for recordkeeping purposes and/or to complete any transactions that you began prior to requesting a change or deletion. Further, certain Personal Information may be exempt from requests pursuant to applicable data protection laws or other laws and regulations.

Depending on your jurisdiction, you may also lodge a complaint with a data protection authority for your country or region, or where an alleged infringement of applicable data protection law occurs. For example, a list of EEA data protection authorities is available at: http://ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm. Information regarding the UK data protection authority is available at: https://ico.org.uk/. If you are a resident of Japan and wish to exercise any of the above rights, please email us at DPO@unity3d.com (or contact us at the address indicated in the “Contact Us” section listed below). Please see Section 16 “Additional Information for U.S. Residents” for additional information on how we handle your Personal Information and the privacy requests you may make under applicable law.

If you do have a complaint, we would appreciate the chance to deal with your concerns before approaching your supervisory body, so please contact us at dpo@unity3d.com if you wish to discuss any complaint.

7. Transfers out of Country of Collection

Unity has implemented and maintains a framework consistent with applicable law for transfers of Personal Information outside of the country of collection, including for transfers out of the UK and/or EEA.

Your Personal Information may be stored and processed in any country where we have facilities, including ironSource which is headquartered in Israel, or in which we engage service providers, such as Google Cloud Platform and Salesforce and by using Aura you understand that your Personal Information will be transferred to countries outside of your country of residence, including the United States, which may have data protection rules that are different from those of your country. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your Personal Information.

Where this will involve transferring your Personal Information outside the UK and/or EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

Adequacy Decisions: Some non-EEA countries are recognized under the UK GDPR and by the European Commission as providing an adequate level of data protection according to EEA standards (the full list of these countries for the EEA is available here and the list of the UK’s adequate jurisdictions is available here). For example, we may transfer to our affiliates who are located around the world, including Canada, Japan, New Zealand, Republic of Korea, Switzerland, and the United Kingdom.

Standard Contractual Clauses: For transfers of Personal Information from entities in the UK and/or EEA to third countries, which are not considered adequate under the UK GDPR and/or by the European Commission, we have put in place standard contractual clauses adopted under the UK GDPR and/or by the European Commission to protect your Personal Information. For example, we use Google Cloud Platform’s infrastructure and data centers which are located around the world, including the United States. We rely on both controller-controller and controller-processor Standard Contractual Clauses. You may obtain a copy of these measures by contacting us in accordance with the “Contacting Us” section below. “UK GDPR” has the meaning given to it in section 3(10) (as supplemented by section 205(4)) of the Data Protection Act 2018.

Japan

For transfers from entities in Japan to countries other than the EEA/UK, we have put adequate measures in place to protect your Personal Information.

The transferees are obligated to comply with equivalent or comparable rules to those under the Act on the Protection of Personal Information of Japan (APPI) on a continuous basis, and we periodically confirm their compliance. We also periodically confirm any changes to the data privacy regulations of other countries that may affect the compliance measures taken by our overseas affiliates and third-party service providers and take measures such as requesting that they take corrective measures or suspending the provision of Personal Information if any issues arise in the implementation of such compliance measures. We will provide you with further information on the measures we take in this regard upon your request.

8. Retention

We retain Personal Information for as long as is necessary or as permitted in light of the purpose(s) for which it was obtained and consistent with applicable law, for example, for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. The criteria to determine our retention periods include:

The length of time we have an ongoing relationship with you and provide Aura to you (for example, for as long as you have an account with us or keep using Aura);
Whether there is a legal obligation to which we are subject (for example, certain laws require us to keep records of your transactions for a certain period of time before we can delete them); or
Whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).

Where a legal obligation arises or retention is advisable in light of our legal position, in some circumstances, we will retain certain Personal Information, even after your account has been deleted and/or we no longer provide Aura to you; for example:

To cooperate with law enforcement or public, regulatory and government authorities: If we receive a preservation order or search warrant, related to your Aura account, we will preserve Personal Information subject to such order or warrant after you delete your Aura account.
To comply with legal provisions on tax and accounting: We may retain your Personal Information, such as Account Information, after you delete your Aura account, as required by tax law and to comply with bookkeeping requirements. Please note the length of time may vary by country.
For fraud and security purposes: We may retain your Personal Information for fraud or security purposes. In the event you have acted fraudulently through the use of Aura (e.g., by refusing monies properly owed for Aura), we may retain Account Information and IP address.
To pursue or defend a legal action: We may retain relevant Personal Information in the event of a legal claim or complaint, including regulatory investigations or legal proceedings about a claim related to your Personal Information, or if we reasonably believe there is a prospect of litigation (whether in respect of our relationship with you or otherwise) after the dispute has been settled or decided by a court or tribunal from which there is no further right of appeal. The criteria for determining the length of time we will retain this information include:

Whether there is a legal obligation to which we are subject (for example, if the settlement or decision requires us to keep the records for a certain period of time before we can delete them); or

Whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).

9. Security

We employ a variety of measures to safeguard the collection, transmission, and storage of the information we collect. These measures vary based on the sensitivity of the information that we collect, process, and store, and the current state of technology. Please note that no system can be guaranteed to be 100% secure. Therefore, while we strive to employ reasonable protections for your information that are appropriate to its sensitivity, we cannot guarantee or warrant the security of the information you share with us, and we cannot be responsible for the theft, destruction, loss or inadvertent disclosure of your information. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone. We have put in place procedures to deal with any suspected Personal Information breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

If you have reason to believe that your interaction with us is no longer secure, please immediately notify us in accordance with the “Contact Us” section below

10. Cookie & Advertising Policy

We may collect Personal Information using cookies and similar technologies. For more information on how Unity uses cookies, the types of cookies and other technologies used, and your privacy choices, please see our Cookie & Advertising Policy.

11. Sites and Services Operated by Others

Aura may contain links to other sites, applications, and services. Because Unity does not operate those other sites, applications, and services, we cannot take responsibility for the privacy practices of the entities that operate them. We recommend that you consistently check privacy policies to understand an operator’s practices. As a reminder, this Privacy Policy describes Unity’s practices in connection with Aura.

This Privacy Policy does not address, and we are not responsible for, the privacy, information, or other practices of any third parties, including any third party operating any website or service to which Aura links. The inclusion of a link on Aura does not imply endorsement of the linked site or service by us or by our affiliates.

Aura may provide functionality allowing you to make payments to us using third-party payment services with which you have created your own account. When you use such a service to make a payment to us, your Personal Information will be collected by such a third party and not by us and will be subject to the third party’s privacy policy, rather than this Privacy Policy. We have no control over, and are not responsible for, this third party’s collection, use, and disclosure of your Personal Information.

In addition, we are not responsible for the information collection, use, disclosure, or security policies or practices of other organizations, such as Facebook, Apple, Google, Microsoft, RIM, other Demand Partners, app provider, social media platform provider, operating system provider, wireless service provider, or device manufacturer, including with respect to any Personal Information you disclose to other organizations through or in connection with the Apps or our social media pages.

12. Contact Us

Unity Technologies SF, located at 116 New Montgomery St., San Francisco, CA 94104., USA, is the organization responsible for collection, use, and disclosure of your Personal Information under this Privacy Policy.

Our European contact is Unity Technologies ApS, located at Niels Hemmingsens Gade 24, 1153 Copenhagen, Denmark.

Our Japanese contact is Unity Technologies, GINZA SIX 8F, 6-10-1 Ginza, Chuo-ku, Tokyo Japan 104-0061.

If you have any questions about this Privacy Policy, please contact us at DPO@unity3d.com.

Because email communications are not always secure, please do not include credit card or other sensitive information in your emails to us.

13. Changes to this Privacy Policy

The “LAST UPDATED” legend at the top of this Privacy Policy indicates when this Privacy Policy was last revised. Any changes will become effective when we post the revised Privacy Policy on our Privacy Policy Hub.

We reserve the right to change our practices and this Policy at any time. We may also send an email or provide notice within Aura when this Policy changes. We encourage you to check our Privacy Policy Hub regularly so that you know what our current practices are.

14. Additional information for those located in the European Economic Area

We process and disclose your Personal Information as necessary or appropriate as set out in further detail here.

Purpose	Legal Basis
Service Provision & Maintenance	Performing the terms of the contract, including the Terms of Service we enter with you to provide Aura Consent, such as: When we collect information through our use of cookies and similar technologies Legitimate Interest, such as in: Maintaining Aura & operational improvements Responding to inquiries Legal obligations* such as when you submit a request to access your Personal Information
Notices	Performance of the Terms of Service we enter with you to provide Aura Legal obligations* such as when we obtain your information from a third party and are obligated to notify you
Customer service	Performance of the Terms of Service we enter with you to provide Aura Legitimate Interests, such as: Responding to and resolving inquiries or complaints Providing support to customers so that they can use Aura Legal obligations* such as when you submit a request to access your Personal Information
Marketing	Consent, such as: When you have opted into marketing communications When we collect Personal Information through our use of cookies and similar technologies Contacting users for marketing opportunities
Personalizing Services	Consent, such as: When we collect Personal Information through our use of cookies and similar technologies Legitimate Interest, such as: Providing tailored services based on past usage and/or preferences, and such tailoring would be based on basic and privacy-non-intrusive segmentation
Business Reporting	Performance of the Terms of Service we enter with you to provide Aura Consent, such as: When we collect Personal Information through our use of cookies and similar technologies. Legitimate Interest, such as: Such as developing new Services and/ or products Understanding market sentiments and market standards
AI Data Analytics	Performance of the Terms of Service we enter with you to provide Aura Consent, such as: When we collect Personal Information through our use of cookies and similar technologies Legitimate Interest, such as: Developing new services and/ or products Understanding market sentiments and market standards
Security Purposes	Comply with a legal obligation* Legitimate Interests, such as: Securing our services, investigating cyber intrusions, fraud, and abuse Protecting our operations, rights, safety, or property Pursuing all available legal remedies, defending claims, and limiting damages we may sustain
Legal Purposes	Comply with a legal obligation* such as financial reporting obligations Legitimate Interests, such as: Securing our services, investigating cyber intrusions, fraud, and abuse Reporting on company progress to key stakeholders and making decisions on such reporting Protecting our operations, rights, safety, or property Pursuing all available legal remedies, defending claims, and limiting damages we may sustain
Law Enforcement Requests	Comply with a legal obligation* Legitimate Interest, such as: monitoring, reacting to, and documenting an emergency and/or incident
Business Transactions	Legitimate Interests, such as: Pursuing a business transaction Corporate restructuring
Emergency & Incident Response	Legitimate Interests, such as in monitoring, reacting to, and documenting an emergency and/or incident

Further details where the legal basis is to comply with law

To comply with applicable law and regulations

This may include laws outside your country of residence, which could give rise to a legal obligation requiring us to process your Personal Information, including:

Civil and commercial matters:

Where we are in receipt of a court order to disclose information for the purposes of court proceedings, such as under Regulation (EU) No 1215/2012 on jurisdiction and the recognition and enforcement of judgments in civil and commercial matters.
To comply with Council Regulation (EC) No 1206/2001 of 28 May 2001 on cooperation between the courts of the Member States in the taking of evidence in civil or commercial matters.

Criminal matters: to comply with requests and orders from EU and EU Member State law enforcement to provide information in relation to a criminal investigation in compliance with applicable local laws, or to take steps to report information we believe is important to law enforcement where so required or advisable under applicable local laws.
Consumer matters: to comply with requests from competent authorities under EU or EU Member State consumer protection law, such as under Directive (EU) 2019/2161 and its implementing laws in EU Member States.
Corporate and taxation matters: to comply with our obligations under applicable EU Member State corporate and tax legislation, such as where a national tax law of an EU Member State requires collection of specific transactional Personal Information for tax purposes.
Regulatory matters: to respond to a request or to provide information we believe is necessary or appropriate to comply with our obligations to engage with regulators, such as when relevant EU Member State data protection supervisory authorities initiate investigation under the General Data Protection Regulation into our Company. These can include authorities outside of your country of residence.
Compliance and internal investigations: to comply with whistleblowing requirements under Directive (EU) 2019/1937 and its implementing laws in EU Member States.
Health and safety regulations: to comply with health and safety reporting obligations in accordance with applicable local laws, such as in relation to accidents involving members of the public on our premises.
Compliance with the Digital Services Act (Regulation (EU) 2022/2065) and any other applicable laws: Note: Unity will provide its Users of impacted services with aggregate reporting regarding Unity’s compliance with the Digital Services Act upon the user’s request.
New laws may be enacted, or other obligations may become binding on our processing of your information which may require us to process your information and we will update this list from time to time.

For other legal reasons

For dispute resolution purposes;
To protect our rights, privacy, safety or property, and/or that of our affiliates, you or others.

15. Additional Information for U.S. Residents

Collection and Disclosure of Personal Information

The following chart details which categories of Personal Information we collect and process, as well as which categories of Personal Information we disclose to third parties for our operational business purposes, including within the 12 months preceding the date this Privacy Policy was last updated. You may view our California Consumer Privacy Act (CCPA) Transparency Report at https://unity.com/legal/privacy-report for details on our responses to requests to access, delete or opt out under CCPA.

Categories of Personal Information	Disclosed to Which Categories of Third Parties for Operational Business Purposes	Shared with Which Categories of Third Parties for Cross-Context Behavioral or Targeted Advertising	May be sold to Which Categories of Third Parties
Identifiers, such as online identifiers	affiliates; service providers; marketing partners; legal authorities	none	none
Characteristics of protected classifications under California or federal law, such as sex and age	affiliates; service providers; marketing partners; legal authorities	none	none
Network activity information, such as interactions with Aura	affiliates; service providers; ad networks; marketing partners; legal authorities	Demand Partners; ad networks	Demand Partners; ad networks
Geolocation Data, such as approximate location derived from IP address	affiliates; service providers; ad networks; marketing partners; legal authorities	Demand Partners; ad networks	Demand Partners; ad networks
Inferences drawn from any of the Personal Information listed above to create a profile or summary about, for example, an individual’s preferences or characteristics	affiliates; service providers; ad networks; marketing partners; legal authorities	Demand Partners; ad networks	Demand Partners; ad networks
Sensitive Personal Information, such as Personal Information that reveals an account login in combination with a required password	affiliates; service providers; legal authorities	none	none

Individual Requests

You may, subject to applicable law, make the following requests:

To know whether we process your Personal Information, and to access such Personal Information.

If you are a California consumer, you may also request that we disclose to you the following information:

The categories of Personal Information we collected about you and the categories of sources from which we collected such Personal Information;
The business or commercial purpose for collecting, “sharing,” or selling Personal Information about you;
The categories of Personal Information about you that we sold or “shared” and the categories of third parties to whom we sold or “shared” such Personal Information; and
The categories of Personal Information about you that we otherwise disclosed, and the categories of third parties to whom we disclosed such Personal Information.

If you are an Oregon or Minnesota consumer, you may also request that we disclose to you the following information:

The categories of Personal Information we process about you; and
The third parties to whom we have disclosed your Personal Information.

If you are a Delaware or Maryland consumer, you may also request that we disclose to you the categories of third parties to whom we disclosed your Personal Information.

To correct inaccuracies in your Personal Information.
To have your Personal Information deleted.
To receive the specific pieces of your Personal Information, including a copy of your Personal Information in a portable format.
To opt out of the “sale” of your Personal Information.
To opt out of targeted advertising, including the “sharing” of your Personal Information for cross-context behavioral advertising.

We will not unlawfully discriminate against you for exercising your rights under applicable privacy law. To make a privacy request, please contact us at DPO@unity3d.com or Unity Technologies, 116 New Montgomery St., San Francisco, CA 94104, USA. We will verify and respond to your request consistent with applicable law, taking into account the type and sensitivity of the Personal Information subject to the request. We may need to request additional Personal Information from you, such as email address/ username/ country associated with the account where applicable, in order to verify your identity and protect against fraudulent requests. If you make a request to delete, we may ask you to confirm your request before we delete your Personal Information.

To request to opt out of any future sale of your Personal Information and/or targeted advertising, including the “sharing” of your Personal Information for cross-context behavioral advertising, please contact DPO@unity3d.com.

We do knowingly not “sell” or “share” the Personal Information of Users who are minors under 16 years of age.

We also process opt-out preference signals, such as the Global Privacy Control. These signals set your opt-out preferences only for the particular browser or device you are using and any consumer profile that we associate with that browser or device unless you are logged into your Company account, in which case we will honor the signal with respect to that browser or device and your account, including your offline consumer profile associated with that account. If you wish to set your opt-out preferences for offline uses of your Personal Information, please contact DPO@unity3d.com. For information about how to use the Global Privacy Control, please visit https://globalprivacycontrol.org/.

Appeal Process

If you are a consumer in a state whose laws provide for a right of appeal and If we refuse to act on your request, you may appeal this refusal within a reasonable period after you have received notice of the refusal. You may file an appeal by contacting us via DPO@unity3d.com.

Authorized Agents

If an agent would like to make a request on your behalf as permitted under applicable law, the agent may use the submission methods noted in the section entitled “Individual Requests.” We will process the agent’s request consistent with applicable law. As part of our verification process, we may request that the agent provide, as applicable, proof concerning their status as an authorized agent. In addition, we may require that you verify your identity as described in the section entitled “Individual Requests” or confirm that you provided the agent permission to submit the request.

De-Identified Information

Where we maintain or use de-identified information, we will continue to maintain and use the de-identified information only in a de-identified fashion and will not attempt to re-identify the information.

Providing Personal Information to third parties for direct marketing purposes: California residents have the right to request the identity of any third parties to whom the resident’s Personal Information was provided, if such provision was to enable the third party’s direct marketing efforts. If you are a California resident and wish to make such a request, please submit your request to DPO@unity3d.com. Alternatively, you may opt-out of having your Personal Information shared with third parties for their direct marketing purposes, by emailing us at DPO@unity3d.com.

How we respond to “Do Not Track” signals: We are committed to providing you with meaningful choices about the information collected on Aura. Our cookie management tool on our website recognizes browser-initiated Do Not Track signals. To learn more about Do Not Track signals, you can visit allaboutdnt.com.