All Oculus Quest developers MUST PASS the concept review prior to gaining publishing access to the Quest Store and additional resources. Submit a concept document for review as early in your Quest application development cycle as possible. For additional information and context, please see Submitting Your App to the Oculus Quest Store.
Your use of any user data collected or processed through the Oculus Platform, whether directly or indirectly, is subject to this Oculus Developer Data Use Policy (“Policy”). “Oculus Platform” means the set of APIs, SDKs, tools, plugins, code, technology, content, and services made available by us that enables others, including app developers, content providers, and website operators, to develop software or other functionality (including apps).
This Policy explains your obligations with respect to the receipt, collection, use and processing of User Data (as defined below) in connection with any Content you distribute via the Oculus Platform. “Content” includes any application or other technical integration with the Oculus Platform or to which we have assigned an app identification number, or any virtual reality experience, immersive media (e.g., 180- or 360-degree video), documentary, music, concert, visuals, audio content, animations or other content you distribute.
To use the Oculus Platform, integrate in-app services (e.g., matchmaking, leaderboards), distribute Content, retrieve data from us, or provide data to us, you must agree to this Policy, as well as our other applicable terms and policies made available to you, including those on our Developer Portal.
This Policy is effective as of the date you accept it or otherwise start accessing or using the Oculus Platform, and will continue until you stop accessing and using the Oculus Platform, unless earlier terminated as described below.
If you fail to comply with this Policy or any other applicable terms or policies, we may suspend or remove your Content and limit or terminate your developer access to the Oculus Platform, as described below.
Capitalized terms not otherwise defined in this Policy have the meaning given in our other terms and policies, including our Terms of Service.
If you independently collect or process personal data from an end user (whether a person or an entity) through your Content (including without limitation through web based account creation, or inputs from the end user through the Oculus headset), then it is your responsibility, as required by applicable law, to obtain any permissions/consents from the end user and/or rely on any appropriate legal basis for use or other processing of that personal data (the “Developer User Data”). It is also your responsibility to obtain consent or clear direction from end users before you give Oculus any Developer User Data.
“Oculus User Data” is any data, information, or content that is about or associated with a person, device, or unique identifier (including anonymized or hashed user IDs) that you obtain from Oculus.
“Device User Data” is any data, information, or content that is about or associated with a person, device, or unique identifier (including anonymized or hashed user IDs) that you obtain directly from an Oculus device (including microphone or camera data, or headset position or hand tracking data).
Together, Oculus User Data and Device User Data are referred to as “User Data.”
You can use User Data solely for the following purposes:
You will not perform, or facilitate or support others in performing, any of the following prohibited practices (collectively, “Prohibited Practices”):
You may share User Data only:
With or without advance notice to you, we may enforce against your Content if we conclude you have violated this Policy or are negatively impacting the Oculus Platform, and/ or suspend your Content, while we investigate suspected violations of this Policy. We may or may not notify you in advance. You must keep your contact information up to date and respond to our requests and requests from users to delete User Data.
You agree to use no less than industry standard security measures to protect against unauthorized access, use or disclosure of User Data and Developer User Data, and to respond to and comply with all end users requests under applicable law. Without limiting the foregoing, you must delete User Data when a user requests their User Data be deleted or no longer has an account (unless the User Data has been obscured, or de-identified so that it cannot be associated with a particular user, browser or device).
In accordance with our Terms of Service, you will not transfer any of your rights or obligations under this Policy to anyone else without our prior consent. Transfer can include assignment, acquisition, merger, change of control, or other forms of transfer. Any unpermitted transfer will be considered null and void. For any permitted transfer of Content, you will obligate the transferee to comply with this Policy and other applicable terms and policies, and re-submit such App and Content through our App Review process for our review and approval. After any such permitted transfer by you of Content, you can only access, use, share, and retain User Data to the extent permitted by, and in compliance with, this Policy and applicable laws and regulations.
You also must comply with all applicable laws and regulations (including without limitation the European General Data Protection Regulation, ePrivacy Directive and any related EEA countries’ requirements, California Consumer Privacy Act, the Children’s Online Privacy Protection Act, and the Video Privacy Protection Act). If there is any conflict between this Policy and any other applicable online terms, the terms that are more restrictive on you and your Content or more protective of us apply.
We reserve the right to amend this Policy at any time. Your continued use of or access to Oculus Platform or User Data after any such amendment will constitute your binding agreement to this Policy as amended.
We may change, suspend, or discontinue the availability of the Oculus Platform at any time. In addition, we may impose limits on certain features and services or restrict your access to parts or all of the Oculus Platform or our other APIs or websites without notice or liability.
When this Policy has ended, all rights granted to you under this Policy will immediately stop and you will immediately stop using the User Data. The following Sections will remain in effect after this Policy has ended: Section 4 (Prohibited Uses of User Data), Section 5 (Sharing User Data), Section 7 (Security), and Section 8 (General).