Sign Up
Events Brick Deals

Explore Bricks

News Reviews MOCs & Building Guides & How-To Interviews Collecting & Investing Community & Events Culture & History

Tools

Insiders Points Calculator LEGO® Ideas Tracker Brand Set Database
Login Sign Up

Privacy Policy

Last updated: 20 April 2026

At brick.news we take your privacy seriously. This policy explains what personal data we collect, how we use it, and the rights you have over it under the General Data Protection Regulation (GDPR) and equivalent privacy laws.

1. Who we are

brick.news is the data controller responsible for your personal information. If you have any questions about this policy or wish to exercise any of your rights, you can contact us at hello@brick.news.

2. What data we collect

We only collect the data we need to run the site and give you a good experience. Depending on how you use brick.news, this may include:

Account information

  • Username, display name and email address
  • Password (stored in a securely hashed form — we never store it in plain text)
  • Profile avatar, if you upload one
  • Email verification status and newsletter preference
  • Two-factor authentication settings, if you enable them
  • Linked social login identifiers (Google or Facebook), if you sign in with those providers

Authentication and security data

  • Session information, including IP address and browser user agent
  • Login history (successful and failed attempts, with approximate location)
  • Password reset tokens
  • Push notification subscriptions, if you opt in
  • A log of transactional emails we send you (such as verification and password reset messages)

Your activity on the site

  • Articles you like or bookmark
  • Comments you post
  • Poll votes you cast
  • Searches you run while logged in
  • Analytics events, such as article views, shares and time on page
  • Projects, authors, categories or topics you follow

Events

  • Events you RSVP to (going or interested)
  • Events you save to your calendar
  • Per-event notification preferences
  • Events you submit to our calendar

Deals

  • Deals you are tracking, and the price at the time you added them
  • Deal alerts we have sent you
  • Your deal preferences, such as favourite brands, discount threshold and preferred marketplace

Collections

  • The LEGO® sets you have added to your personal collection

Newsletter data

  • Whether a given issue was sent to, opened by, or unsubscribed from by your account

Contributor data (only if you are an author, editor or admin)

  • Articles, static pages, newsletters, polls and advertisements you have created
  • Ideas or suggestions you have submitted or reviewed
  • Events you have approved as a moderator

3. How we use your data

  • To create and manage your account
  • To personalise your experience (for example, remembering your bookmarks, followed projects and deal preferences)
  • To send transactional emails, such as verification, password resets and security alerts
  • To send the newsletter and deal alerts, if you have opted in
  • To protect your account against abuse and unauthorised access
  • To measure and improve how the site works, through aggregated analytics

4. Legal basis for processing

We process your personal data on the following legal bases:

  • Contract — to deliver the account and features you sign up for.
  • Consent — for optional communications such as newsletters, deal alerts and push notifications. You can withdraw consent at any time.
  • Legitimate interest — to keep the site secure, prevent fraud and abuse, and improve our service.
  • Legal obligation — where we must retain certain records to comply with the law.

5. Data sharing

We do not sell your personal data. We only share it with trusted third parties who help us run the service, such as:

  • Our email delivery provider (for transactional and newsletter emails)
  • Our hosting provider
  • OAuth providers (Google, Facebook) if you choose to sign in with them
  • Analytics and affiliate partners, in aggregated or anonymised form where possible

All providers are bound by data protection agreements and only process your data on our instructions.

6. Data retention

We keep your personal data only for as long as your account is active or as needed to provide you with our services. Some records, such as login history and transactional email logs, may be retained for a limited period for security and auditing purposes. When you delete your account, we remove or anonymise your personal data as described below.

7. Your rights

Under GDPR you have the following rights:

  • Access — you can request a copy of the personal data we hold about you.
  • Rectification — you can correct inaccurate or incomplete information.
  • Erasure — you can ask us to delete your data ("right to be forgotten").
  • Restriction — you can ask us to limit how we use your data.
  • Portability — you can receive your data in a machine-readable format.
  • Objection — you can object to certain types of processing, such as marketing.
  • Withdraw consent — you can withdraw consent at any time for processing based on it.

8. Exporting and deleting your data

From your Account Settings you can:

  • Export your data — download a single file containing your profile, activity, followed projects, bookmarks, likes, comments, poll votes, saved and tracked deals, event RSVPs and saves, collections, and newsletter preferences.
  • Delete your account — permanently remove your personal data. Anonymous, aggregated analytics may be retained in a form that can no longer be linked to you. Content you have published (such as comments or articles) may be anonymised rather than deleted, so that the surrounding context is preserved for other users.

If you prefer, you can also make these requests by emailing hello@brick.news. We will respond within 30 days.

9. Data security

We take the security of your data seriously and apply industry-standard safeguards, including:

  • Encrypted connections (HTTPS) across the entire site
  • Secure, one-way hashing of passwords — we never store your password in a readable form
  • Optional two-factor authentication for your account
  • Automatic account lockout after repeated failed login attempts
  • Regular security reviews, backups and access controls

10. Cookies

We use a small number of cookies to keep you logged in, remember your preferences, and measure how the site is used. You can control cookies through your browser settings. For more detail, please see our Cookie Policy.

11. International transfers

Your data is primarily stored within the European Union. Where data is transferred outside the EU (for example, to a service provider), we make sure appropriate safeguards are in place, such as Standard Contractual Clauses.

12. Children's privacy

brick.news is not intended for children under 16. If you believe a child has provided us with personal data, please contact us and we will delete it.

13. Changes to this policy

We may update this policy from time to time. When we do, we will change the "Last updated" date at the top of the page and, where appropriate, notify you by email or through a notice on the site.

14. Contact and complaints

If you have any questions about this policy, or if you want to exercise any of your rights, please contact us at hello@brick.news.

You also have the right to lodge a complaint with a supervisory authority. In Portugal, this is the Comissão Nacional de Proteção de Dados (CNPD).

LEGO® is a trademark of the LEGO Group, which does not sponsor, authorize or endorse this site.