If you look at Valve’s TOS or any other game developer who has games with an online component, you will see the exact same language regarding data collection. The language being added is to comply with laws, like the GDPR, which requires specific language indicating what data is collected and how it is used.
The data that is being collected is the same as it was 10 years ago. There’s nothing new here, just a YT video that got a lot of views and social media being full of people who don’t fact check anything.
Thats a windows thing so it can put files in “protected” folders like program files
The unfortunate thing about the UAC prompt is that it gives the software permission to put files in protected folders, but it also gives the software root permission so it can do literally anything else without prompting the user. Except, I believe, if it tries to install unsigned kernel drivers, then the user has to click a new prompt… but you can completely compromise a machine with the permissions that users routinely give to executables that they download from the Internet.
Here is another person, 7 years ago trying the exact same outrage-based engagement farming strategy of linking a TOS update and implying a nefarious intent: www.reddit.com/…/take_two_a_spyware_apocalypse/ It’s exactly the same “Take two is spying on you!!!” content and yet, none of the Borderlands games have added spyware and none have added kernel anti-cheat.
Also, if you read the 2018 and 2025 TOS you will notice notice that the information that they collect in the 2025 TOS ( www.take2games.com/legal/en-US/ ) is exactly the same as it was in 2018.
TL;DR - Just because you read it on the Internet, doesn’t mean it is true.
So…if Steam is running in a Flatpak, and Borderlands is launched from Steam, how much can they even see…really?
Without using exploits to escape the container, not much. A very empty Windows environment with a single game installed, your network interfaces and any directories that the Flatpak has access to (usually just the SteamLibrary directories).
The TOS (www.take2games.com/legal/en-US/) changes are mostly related to data that they collect via their interfacing with Steam and through their website. This idea that they’re requiring you to agree to a root level access or installing a spyware rootkit is just nonsense.
There is nothing in the TOS that requires you to submit to a rootkit and there is no spyware that has been added. The comment in the OP is simply wrong.
This is what happens when you simply read social media and repeat what you’ve heard without checking to see if you’re spreading misinformation.
So, to be clear: There is nothing in the TOS that requires you to submit to a rootkit and there is no spyware that has been added. The comment in the OP is simply wrong.