At the outset, this data collection was minimal and games collected data like high scores and the player’s initials. Today, developers collect a wide variety of data including game telemetry, biometrics, social media information, and personal information. Almost all gamers do not mind if this data is used to improve gameplay but problems arise when this data is hacked. The 2011 and 2014 Sony’s PlayStation Networks hacks are great examples of this. Financial data of its users was publicized. Leaks of this type of data can result in huge financial data but what happens when these leaks contain biometric information? You can get a new credit card but you cannot get a new face. With the growing pervasiveness of the use of biometric data to create avatars, and telemetry and chat data to create player psychological profiles, what can we do to correct any abuses? I would like to argue that end user license agreements are the strongest weapon in an arsenal that includes litigation, statutory regulation, private contracts, and industry self-regulation and gamer concerted action. The other weapons are too slow to respond to speed of action required to stop this information from getting out.