Privacy Policy
This Privacy Policy outlines how we collect, use, process, and protect your personal information when you access and use our online casino platform. We are committed to maintaining the highest standards of data protection in accordance with UK data protection laws, including the Data Protection Act 2018 and UK GDPR. By using our services, you acknowledge that you have read, understood, and agree to the practices described in this policy.
1. General Provisions
This Privacy Policy applies to all users of our online casino platform, including visitors, registered players, and former customers. We process personal data fairly, lawfully, and transparently, ensuring that all data collection and processing activities comply with applicable UK legislation. Our commitment extends to implementing appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. We regularly review and update our privacy practices to maintain compliance with evolving regulatory requirements and industry best practices.
2. Data Controller Information
We act as the data controller for all personal information collected through our platform. As a UK-regulated online casino operator, we maintain full accountability for data processing activities and ensure compliance with all applicable privacy regulations. Our designated Data Protection Officer oversees all privacy-related matters and serves as the primary contact for data protection inquiries. We maintain comprehensive records of our processing activities and regularly conduct privacy impact assessments to identify and mitigate potential risks to user privacy.
3. Types of Personal Data Collected
We collect various categories of personal information necessary for providing our online casino services and ensuring regulatory compliance. The scope of data collection is proportionate to the legitimate purposes for which it is processed.
| Data Category | Examples | Collection Method |
| Identity Information | Full name, date of birth, nationality, government-issued ID | Registration, verification process |
| Contact Details | Email address, phone number, postal address | Account creation, communication preferences |
| Financial Information | Payment card details, transaction history, deposit/withdrawal records | Payment processing, financial transactions |
| Technical Data | IP address, device information, browser type, session data | Automatic collection via cookies and tracking |
| Gaming Activity | Game preferences, betting patterns, session duration, winnings | Platform interaction, responsible gambling monitoring |
4. Legal Basis for Data Processing
We process personal data based on several lawful grounds established under UK GDPR. Contract performance serves as the primary basis for processing data necessary to provide casino services, manage user accounts, and process financial transactions. Legal compliance requires us to process certain information to meet regulatory obligations, including anti-money laundering requirements and responsible gambling measures. We rely on legitimate interests for fraud prevention, marketing communications, and platform improvement activities, always ensuring that such interests do not override your fundamental rights and freedoms.
5. Purposes of Data Processing
Your personal information is processed for specific, explicit, and legitimate purposes directly related to our casino operations and regulatory obligations:
- Account registration, management, and authentication services
- Processing deposits, withdrawals, and other financial transactions
- Identity verification and age confirmation procedures
- Anti-money laundering and counter-terrorism financing compliance
- Responsible gambling monitoring and player protection measures
- Customer support and technical assistance provision
- Marketing communications and promotional offers (with consent)
- Platform security, fraud prevention, and risk assessment
- Legal compliance and regulatory reporting requirements
- Business analytics and service improvement initiatives
6. Data Sharing and Third-Party Disclosures
We may share your personal information with carefully selected third parties under specific circumstances and strict contractual arrangements. Payment processors receive financial information necessary to facilitate deposits and withdrawals. Regulatory authorities may access personal data as required for licensing compliance and investigations. We engage trusted service providers for identity verification, fraud prevention, and technical support, ensuring all third parties maintain equivalent data protection standards. We never sell personal information to third parties for marketing purposes and only share data when legally required or necessary for service provision.
7. International Data Transfers
When transferring personal data outside the UK, we ensure adequate protection through approved transfer mechanisms. We utilise Standard Contractual Clauses approved by UK authorities and conduct transfer risk assessments to identify potential data protection challenges. All international transfers are documented and monitored to ensure ongoing compliance with UK data protection requirements. We maintain the right to suspend international transfers if adequate protection cannot be guaranteed.
8. Data Retention Periods
We retain personal information only for as long as necessary to fulfil the purposes for which it was collected or as required by applicable law. Account information is generally retained for seven years following account closure to comply with UK gambling regulations and anti-money laundering requirements. Marketing consent records are maintained until withdrawn, while technical data is typically deleted within two years. We conduct regular data retention reviews to ensure compliance with our retention schedule and securely delete information when no longer required.
9. Data Security Measures
We implement comprehensive technical and organisational security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction:
- Advanced encryption protocols for data transmission and storage
- Multi-factor authentication for account access and sensitive operations
- Regular security assessments and penetration testing procedures
- Employee training programmes on data protection and security practices
- Restricted access controls and need-to-know data access policies
- Automated monitoring systems for suspicious activities and security breaches
- Secure data centres with physical access controls and environmental protections
- Regular backup procedures and disaster recovery planning
10. Individual Rights and Data Subject Requests
Under UK data protection law, you possess several important rights regarding your personal information. You may request access to your personal data and receive a copy of the information we hold about you. The right to rectification allows you to correct inaccurate or incomplete personal information. In certain circumstances, you can request erasure of your personal data, though gambling regulations may require retention of specific information. You may object to processing based on legitimate interests and request restriction of processing in specific situations. Data portability rights enable you to receive your personal data in a structured format. To exercise these rights, contact our Data Protection Officer with appropriate identification.
11. Policy Updates and Contact Information
We regularly review and update this Privacy Policy to reflect changes in our practices, technology, or applicable law. Material changes will be communicated through email notifications or prominent website notices, with updated versions taking effect thirty days after notification. We encourage regular review of this policy to stay informed about our data protection practices. For privacy-related inquiries, complaints, or requests to exercise your rights, contact our dedicated Data Protection Officer. You also retain the right to lodge complaints with the Information Commissioner's Office if you believe your data protection rights have been violated.