Privacy Policy

When you visit, use, and/or access MGM Resorts or MGM Online Services, you may provide us with (and/or we may collect) information by which you can be personally identified including your name, date of birth, postal address, e‑mail address, and telephone number, and videos, recordings, and images of you (“Personal Information”). We may also obtain Personal Information from third parties.

If you apply for a job with us, we may ask for certain information about you including your work and education history, and your profile/résumé.

Through various ways (including when you park a vehicle at, or otherwise visit, MGM Resorts), we may collect information about a vehicle including an image of the vehicle, the vehicle's make, model, and license plate number. For example, we collect license plate information through technology known as “Automatic License Plate Recognition” (which captures the images of vehicle license plates and related information such as time/date of image capture) for various safety, security, fraud prevention, and other purposes.

When you visit, use and/or access MGM Resorts or MGM Online Services, we may collect information about your activities and actions including your purchases, reservations, and gaming activity (in jurisdictions where gaming is permitted).

When you make a purchase, visit, use and/or access MGM Resorts or MGM Online Services, or engage in other transactions or activities, you may provide us with sensitive Personal Information including your credit or debit card number, financial account number, biometrics, medical/health-related information, driver’s license number, government-issued identification card number, social security number, passport number, or naturalization number (“Sensitive Information”).

When you use Wi-Fi services we make available at MGM Resorts, we may collect (directly or through third parties) information about the websites you visit, the type of device and browser you are using, your device identification number, your precise physical location, bandwidth used, session time, etc. Even if you choose not to use Wi-Fi services we make available at MGM Resorts, we may still collect information concerning the precise physical location of your mobile device within and around MGM Resorts for Non-Marketing Purposes (defined in Section 3.A. below). With notice or your consent (and regardless of whether you use Wi-Fi service we make available at MGM Resorts), we might also collect information about the precise physical location of your mobile device within and around MGM Resorts for marketing purposes.

When you visit, use, and/or access MGM Online Services, we may collect information about the type of device and browser you are using, the unique number assigned to your server or Internet connection, your physical location, and your interactions with MGM Online Services. We may also use “cookies” and similar technologies to help us recognize and serve you better. Cookies are small files that contain information sent by a website that is saved on your computer’s hard drive. Cookies enable us to gather data such as web pages visited, links clicked, material downloaded, and allows us to record and/or reconstruct activity from a session or by a user. Cookies also are used to put a unique identifier on your computer. All of this helps us to generate statistics regarding usage of MGM Online Services and for troubleshooting, analytics, issue resolution, and other purposes. There are different types of cookies including “browser” cookies (also known as “html cookies”) and Flash cookies (also known as “Local Shared Objects”). You can configure your browser to reject browser cookies or to notify you when browser cookies are offered so that you can accept or reject them. However, if you reject browser cookies you may not be able to conduct some transactions or use some services on MGM Online Services. In addition, blocking or deleting browser cookies may not block or delete other types of cookies including Flash cookies.

When you use integrated social media features on MGM Online Services, or other social media websites or mobile applications, we may obtain information including your name and e-mail address; and videos, recordings, and images of you.

When you visit MGM Resorts we may use video and other surveillance systems to monitor gaming areas and other public and sensitive areas within and around MGM Resorts for safety, security, fraud prevention, and other purposes. Some surveillance systems may incorporate facial recognition technologies, which may be used for additional screening.

We may obtain information about you from third parties, including entities that direct you to, are located at, or are accessible via, MGM Online Services or MGM Resorts, business partners, family members, and friends.

Marketing Purposes. We may use the information we collect for our own marketing purposes including notifying you of special promotions, offers, and events via e-mail, direct mail, social media, telephone, text message, push notifications, in-room notifications, and other means.

Non-Marketing Purposes. We may use the information we collect for non-marketing purposes including (1) validating your identity; (2) recording and accessing gaming-related activity (in jurisdictions where gaming is permitted); (3) conducting statistical or demographic analysis; (4) processing, fulfilling, and tracking reservations, purchases, or other transactions; (5) complying with legal and regulatory requirements; (6) customizing your experience while visiting, using and/or accessing MGM Online Services and/or MGM Resorts; (7) protecting and defending MGM Resorts International and its affiliates against legal actions or claims; (8) preventing fraud; (9) collecting debt; (10) satisfying contractual obligations; (11) evaluating employment applications; and (12) safety and security purposes including cooperating with law enforcement or other government agencies for purposes of national security, public safety, or matters of public importance when we believe that disclosure of information is necessary or appropriate to protect the public interest (collectively “Non-Marketing Purposes”).

When it is possible to do so, we may link Personal Information such as your name or e- mail address with non-Personal Information such as the unique identifier associated with your computer or mobile device. We may also link Personal Information with other generally or publicly available information to help us identify your preferences or interests. The information we collect may also be merged with information available from other sources such as (1) companies that match e-mail addresses with postal addresses and other information; (2) credit card verification and credit services; and (3) other subsidiaries, resorts, casinos, or properties that are owned, operated, or affiliated with MGM Resorts International (each a “MGM Subsidiary”).

We may share the information we collect for any purpose among MGM Resorts International and any individual MGM Resort, MGM Subsidiary, or MGM Online Service. Sensitive Information will only be shared for Non-Marketing Purposes.

We may share the information we collect with our business partners and other third parties for joint marketing purposes or our business partners’ (or our own) marketing purposes. Even if you opt-out of permitting us to share your Personal Information with our business partners and other third parties for marketing purposes, we may still share the information we collect with them for Non-Marketing purposes such as processing transactions, fulfilling your requests, responding to your inquiries, etc. Sensitive Information will only be shared with our business partners and other third parties for Non-Marketing Purposes. When we provide Sensitive Information or other Personal Information to our business partners and other third parties, we require them to exercise reasonable care to protect such information and restrict the use of such information to the purposes for which it was provided to them.

We may engage service providers to provide certain services to us or to perform certain services on our behalf including analytics, marketing, fulfillment, etc. In some cases, service providers may collect or be provided with access to your information as reasonably necessary to perform such services on the condition that they not use or disclose your Personal Information for other purposes.

We may share any or all of the information we collect (including Sensitive Information) with any successor to all or part of our business in connection with a transaction involving a sale, purchase, reorganization, or transfer of any asset of MGM Resorts International and/or any individual MGM Resort or MGM Online Service.

By using our Guestbooks, you can view and update your contact information and choose which MGM Resorts and MGM Online Services you are most interested in hearing from. You can also select from among various communications preferences including direct mail, e-mail, telemarketing, and text messaging. To use our Guestbooks, please visit https://secure02.mgm-mirage.com/Guestbook/Guestbook.aspx?PID=205.

If you wish to opt-out of receiving marketing solicitations from us via postal mail, e-mail, telephone, and text messaging, or do not want us to share your Personal Information for marketing purposes with our business partners or other third parties, or with any individual MGM Resort, or MGM Subsidiary please e-mail us at: optout@mgmresorts.com, call us at: (866) 761-7111, or write to us with your specific request(s) at:

MGM Resorts International Attn: OPT-OUT
3549 Sammy Davis Jr. Drive
Las Vegas, Nevada 89109

Although you may opt-out of the use and sharing of Personal Information for marketing purposes, we may still use and share information we collect for Non-Marketing Purposes.

For information on how to opt-out of some uses of information collected by third-party advertising companies at (or through) MGM Online Services, please visit http://optout.networkadvertising.org/?

Nevada Residents. Nevada law gives consumers in Nevada the right to restrict certain businesses from selling certain personal information to unaffiliated third parties if those third parties will license or sell such personal information to additional third parties. To exercise this right (for Nevada residents only), please visit http://nvdsar.mgmresorts.com and follow the instructions and provide the requested information including your complete name, street address, city, state, zip code, and email address.

California Residents - Your California Privacy Rights. California law requires certain businesses to respond to requests from California residents asking about the disclosure of Personal Information to third parties for third party marketing purposes. Alternately, such businesses may adopt a policy of not disclosing Personal Information to third parties for marketing purposes if a California resident has opted-out of such information sharing. We have adopted an opt-out policy. If you wish to opt-out of our sharing your Personal Information with third parties for marketing purposes, please follow the instructions in Section 4.B. above. The California Consumer Privacy Act of 2018 as amended and including any regulations adopted by the California Attorney General (collectively, “CCPA”) grants new privacy rights to California residents effective January 1, 2020. One such right is the right to opt-out of the sale of Personal Information to certain third parties. To learn more about the CCPA, including how California residents can opt-out of the sale of their personal information to third parties, please see Section 5 below.

Even if you registered your telephone number on a do-not-call list, certain exemptions may allow us to contact you by telephone. However, to ensure your preferences are honored, we also maintain our own internal do-not-call list. If you would like to opt-out of receiving telemarketing sales calls from us, you can add your telephone number to our internal do- not-call list by visiting http://www2.mgmresorts.com/dnc/.

Below are the categories of personal information we have collected about California consumers during the preceding 12 months, including the categories of sources from which that information was collected, the business or commercial purpose for which it was collected, and the categories of third parties with whom the information was shared.

Categories of Sources from Which Information Was Collected:

Information You Provide Directly to Us and that is Collected At MGM Resorts (See Sections 1.A., 1.B., 1.C., 1.E., and 1.I.)

Categories of Personal Information Collected:

Personal identifiers including name, e-mail address, postal mail address, telephone number, date of birth, credit card number, passport number, driver’s license number, bank account number, social security number; legally protected characteristics including gender, race, and sexual orientation; commercial information including your gaming, entertainment, travel, dining, lodging, and business transactions; audio, visual, and biometric-related information including facial recognition information; professional or employment information

Business or Commercial Purposes for Which Information Was Collected:

Operate M life Reward program; provide the services and products you request including hotel accommodations, gaming activities, spa services, food and beverage services, retail, and entertainment; assess and improve our products and services; assess and improve MGM Online Services; track your use of MGM Resorts; create and update customer profiles; determine your eligibility for casino credit and offers; internal market research and analytics; notify you about promotions and special offers; generate statistical studies; security and safety; protect our rights or property; respond to your inquiries; perform background checks; process financial transactions; offer mobile gaming services

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; third party business partners; government related entities (e.g., in response to subpoenas or gaming regulator requests); credit reporting agencies (e.g., when applying for casino credit); data analytics provider

***********

Categories of Sources from Which Information Was Collected:

Information Automatically Collected Through MGM websites and Social Media Platforms (See Sections 1.G. and 1.H.)

Categories of Personal Information Collected:

Personal identifiers including internet protocol address; internet or other similar network activity such as browsing history and search history; geolocation data; inferences drawn from online behavior

Business or Commercial Purposes for Which Information Was Collected:

Operate the M life Rewards program; provide the services and products you request; assess and improve our products and services; assess and improve the MGM Resorts, MGM Online Services; track your use of MGM websites; create and update customer profiles; internal market research and analytics; protect our rights or property; security and safety

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; third party business partners; digital advertising providers; internet service providers; operating system and platform providers; government related entities

***********

Categories of Sources from Which Information Was Collected:

Information obtained from other sources, including from service providers, third party services, business partners, and government-related entities (See Section 1.J.)

Categories of Personal Information Collected:

Personal identifiers; legally protected characteristics; commercial information; geolocation information; professional or employment information; audio, visual, and biometric-related information, physical characteristics or descriptions

Business or Commercial Purposes for Which Information Was Collected:

Provide the services and products you request; assess and improve our products and services; assess and improve MGM Resorts and MGM Online Services; track your use of the MGM Resorts; create and update customer profiles; internal market research and analytics; generate statistical studies; security and safety; protect our rights or property; respond to your inquiries; perform background checks; process financial transactions; detect security incidents

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; third party business partners; government-related entities

***********

Categories of Sources from Which Information Was Collected:

Information We Automatically Collect Through the MGM Mobile Apps, including Location Information (See Section 1.G.)

Categories of Personal Information Collected:

Personal identifiers; internet or other similar network activity; geolocation data; inferences drawn from personal information; identity authentication based on biometric-related information

Business or Commercial Purposes for Which Information Was Collected:

Operate the M life Rewards program; provide the services and products you request; offer mobile gaming services; assess and improve our products and services; assess and improve MGM Resorts and MGM Online Services; track your use of MGM mobile apps and MGM Resorts; create and update customer profiles; security and safety; protect our rights or property; internal market research and analytics

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; third party business partners; digital advertising providers; government-related entities

***********

Categories of Sources from Which Information Was Collected:

Information We Automatically Collect When You Use Our Wi-Fi Services (See Section 1.F.)

Categories of Personal Information Collected:

Internet or other similar network activity; geolocation data

Business or Commercial Purposes for Which Information Was Collected:

Provide the services you request; assess and improve our products and services; assess and improve the MGM Resorts and MGM Online Services; track your use of MGM Resorts; create and update customer profiles; internal market research and analytics; security and safety; protect our rights or property

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; government-related entities (e.g., in response to subpoenas)

***********

Categories of Sources from Which Information Was Collected:

Information We Automatically Collect from Mobile Devices at MGM Resorts (See Section 1.F.)

Categories of Personal Information Collected:

Internet or other similar network activity; geolocation data

Business or Commercial Purposes for Which Information Was Collected:

Assess and improve our products and services; assess and improve the MGM Resorts and MGM Online Services; track your use of MGM Resorts; create and update customer profiles; internal market research and analytics; security and safety; protect our rights or property

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; government-related entities (e.g., in response to subpoenas)

***********

Categories of Sources from Which Information Was Collected:

Other Information We Collect Related to Your Gaming and Purchase History and Interactions with Us (See Section 1.D.)

Categories of Personal Information Collected:

Personal identifiers; commercial information; inferences drawn from personal information

Business or Commercial Purposes for Which Information Was Collected:

Operate the M life Rewards program; provide the services and products you request; assess and improve our products and services; assess and improve MGM Resorts and MGM Online Services; track your use of MGM Resorts and MGM Online Services; create and update customer profiles; notify you about promotions and special offers that may be of interest to you; predict your preferences, interest and future gaming and spending activity

Categories of Third Parties with Whom Information Was Shared:

Third party service providers; third party business partners; governmental-related entities (e.g., in response to subpoenas or gaming regulator requests)

You have the right to request that we disclose to you, for the 12-month period preceding the date we receive your request, the following: (1) the categories of Personal Information we have collected about you, (2) the categories of sources from which Personal Information was collected about you, (3) the business or commercial purpose for which your Personal Information was collected or sold, and (4) the categories of third parties to whom we have sold or disclosed your Personal Information. In addition, you have the right to request that we disclose to you the specific pieces of Personal Information we have about you. If you are a California resident, and wish to request this information, please visit http://ccpadsar.mgmresorts.com or call 1-844-464-5849 and indicate that you wish to request this information and provide the identifying information requested. All requests are subject to verification of your identity to protect the privacy and security of your Personal Information. We are required to fulfill these requests no more than twice within a 12-month period.

You have the right to request that we delete your Personal Information, subject to certain exceptions such as our need to comply with legal obligations, fulfill orders, complete transactions, etc. If you are a California resident, and wish to request deletion of your Personal Information, please visit http://ccpadsar.mgmresorts.com or call 1-844-464-5849 and indicate that you wish to delete your Personal Information and provide the identifying information requested. All deletion requests are subject to verification of your identity. If we verify your request, we will also instruct our service providers (if any) to delete your Personal Information from their records, subject to applicable legal requirements.

You have the right to opt-out of having your Personal Information sold to third parties. If you are a California resident, and wish to opt-out of the sale of your Personal Information to third parties, please visit http://ccpadsar.mgmresorts.com or call 1-844-464-5849 and indicate that you wish to opt-out of the sale of your Personal Information to third parties and provide your identifying information as requested. Please note that even if you opt-out of the sale of your Personal Information, we may still (1) share your Personal Information with service providers and other entities for business purposes consistent with the CCPA, and (2) share your Personal Information in connection with certain business transactions consistent with Section 3.D. above.

In order to verify requests made pursuant to the CCPA, we may require at least two (2) pieces of identifying information that match information maintained by us. In some cases, we may require additional identifying information and a signed declaration attesting to your identity. In situations where we receive a request from an authorized agent on your behalf, we may require written proof that the agent is, in fact, authorized to act on your behalf and we may take additional steps to verify your identity and the authorized agent’s identity. A request to opt-out pursuant to Section 5.D. above need not be verified. However, if we have a good-faith, reasonable basis to believe that an opt-out request is fraudulent, we may deny the request and provide an explanation of the reason for the denial.

In certain circumstances, we may decline a request to exercise the Right to Know (5.B) or Right to Delete (5.C) described above, particularly where we are unable to verify your identity. If we are unable to comply with all or a portion of your request, we will explain the reasons for declining to comply with the request.