Privacy Policy

This Privacy Policy governs the collection, processing, and protection of personal information by our online casino platform operating within the United Kingdom. We are committed to safeguarding your privacy and ensuring compliance with the UK General Data Protection Regulation (UK GDPR), Data Protection Act 2018, and relevant gambling legislation including the Gambling Act 2005. This policy outlines how we handle your personal data when you access our gaming services, payment processing systems, and promotional offerings. Last updated: January 28, 2026.

1. Data Controller Information and Legal Basis

We operate as the data controller for all personal information collected through our casino platform. Our data processing activities are conducted under legitimate interests for service provision, legal obligations for regulatory compliance, and contractual necessity for account management. We maintain full compliance with UK Gambling Commission requirements and financial conduct regulations. Our legal basis for processing includes performance of contracts, compliance with legal obligations, protection of vital interests, and legitimate business interests. We process data necessary for anti-money laundering checks, responsible gambling measures, and fraud prevention as required by UK legislation.

All data processing activities are documented and registered with the Information Commissioner’s Office (ICO) where required. We maintain detailed records of processing activities, data retention schedules, and security measures implemented to protect user information. Our commitment extends to ensuring transparency in all data handling practices while maintaining the highest standards of player protection and regulatory compliance.

2. Types of Personal Data Collected

We collect various categories of personal information necessary for providing secure gaming services and maintaining regulatory compliance. Our data collection practices are proportionate and limited to information essential for legitimate business purposes.

Data CategoryInformation TypesCollection Purpose
Identity DataFull name, date of birth, nationality, genderAccount verification and age confirmation
Contact InformationEmail address, phone number, postal addressCommunication and account management
Financial DataPayment card details, bank information, transaction historyPayment processing and financial security
Technical DataIP address, device information, browser data, cookiesPlatform functionality and security monitoring
Gaming ActivityGame preferences, betting patterns, session durationService personalisation and responsible gambling
Verification DocumentsIdentity documents, address proofs, payment confirmationsRegulatory compliance and fraud prevention

3. Data Collection Methods and Sources

Personal information is collected through multiple channels during your interaction with our services. Primary collection occurs during account registration, identity verification processes, and ongoing gaming activities. We gather information directly from users through registration forms, customer support interactions, and voluntary survey participation.

Secondary data collection includes automated systems monitoring technical interactions, payment processing partners providing transaction details, and third-party verification services conducting identity checks. We also receive information from regulatory bodies, fraud prevention agencies, and marketing partners where explicit consent has been provided. All collection methods comply with data minimisation principles, ensuring we only gather information necessary for specified purposes.

4. Purposes of Data Processing

Your personal information is processed for specific, legitimate purposes aligned with our business operations and regulatory obligations. Primary processing purposes include account management, payment processing, customer support provision, and gaming service delivery. We utilise data for identity verification, age confirmation, and anti-money laundering compliance as mandated by UK gambling regulations.

  1. Service provision and account management including registration, authentication, and customer support
  2. Payment processing, transaction verification, and financial security measures
  3. Regulatory compliance including anti-money laundering checks and responsible gambling monitoring
  4. Fraud prevention, security monitoring, and risk assessment activities
  5. Marketing communications and promotional offers where consent is provided
  6. Platform improvement, analytics, and service personalisation based on legitimate interests
  7. Legal obligations including dispute resolution and regulatory reporting

5. Data Sharing and Third-Party Disclosures

We share personal information with carefully selected third parties essential for service delivery and regulatory compliance. Our data sharing practices are governed by strict contractual arrangements ensuring recipient organisations maintain equivalent protection standards.

Authorised recipients include payment processors for transaction handling, identity verification services for compliance checks, and regulatory authorities when legally required. We engage with fraud prevention agencies, customer support providers, and technical service partners under comprehensive data processing agreements. Marketing partners may receive limited information where explicit consent is provided, with full opt-out mechanisms available.

We never sell personal information to third parties for commercial purposes. All sharing arrangements include contractual obligations for data protection, security measures, and purpose limitations. International transfers are conducted under appropriate safeguards including adequacy decisions or standard contractual clauses approved by UK authorities.

6. Data Security and Protection Measures

We implement comprehensive technical and organisational measures to protect personal information against unauthorised access, disclosure, alteration, and destruction. Our security framework encompasses multiple layers of protection designed to safeguard user data throughout collection, processing, and storage phases.

  1. Advanced encryption protocols for data transmission and storage including SSL/TLS security
  2. Multi-factor authentication systems for account access and administrative functions
  3. Regular security audits, penetration testing, and vulnerability assessments
  4. Staff training programmes covering data protection obligations and security procedures
  5. Access controls limiting data access to authorised personnel on need-to-know basis
  6. Secure data centres with physical access controls and environmental monitoring
  7. Incident response procedures for security breaches and data protection violations
  8. Regular backup systems with secure storage and recovery procedures

7. Data Retention and Deletion

Personal information is retained only for periods necessary to fulfil processing purposes and comply with legal obligations. Our retention schedules are based on regulatory requirements, business needs, and data protection principles ensuring information is not kept longer than justified.

Account information is typically retained for seven years following account closure to meet anti-money laundering and taxation obligations. Transaction records are maintained for six years as required by financial regulations. Marketing communications data is retained until consent withdrawal or account termination. Technical data including logs and analytics information is retained for shorter periods typically not exceeding two years.

Automated deletion processes ensure information is securely destroyed at appropriate intervals. Users may request earlier deletion where no overriding legal obligations exist. Our retention policy is reviewed regularly to ensure compliance with evolving regulatory requirements and best practice standards.

8. User Rights and Control Options

Under UK data protection legislation, you possess comprehensive rights regarding your personal information. We provide accessible mechanisms for exercising these rights while maintaining appropriate verification procedures to prevent unauthorised access.

  1. Right of access to obtain copies of personal information we hold about you
  2. Right to rectification for correcting inaccurate or incomplete information
  3. Right to erasure (right to be forgotten) subject to legal and regulatory constraints
  4. Right to restrict processing in specific circumstances including accuracy disputes
  5. Right to data portability for transferring information to alternative service providers
  6. Right to object to processing based on legitimate interests including direct marketing
  7. Rights related to automated decision-making and profiling activities
  8. Right to withdraw consent for processing activities based on consent
  9. Right to lodge complaints with the Information Commissioner’s Office

9. Contact Information and Policy Updates

For privacy-related enquiries, rights requests, or complaints regarding data processing activities, please contact our Data Protection Officer through designated channels. We are committed to responding to all requests within statutory timeframes and providing comprehensive assistance with privacy concerns.

This Privacy Policy is reviewed regularly to ensure continued compliance with legal requirements and industry best practices. Updates reflect changes in our services, regulatory obligations, or data protection legislation. Significant modifications are communicated through email notifications and prominent website notices with appropriate implementation periods for user adaptation.

We maintain transparency in our data handling practices and welcome feedback regarding privacy protection measures. Our commitment to data protection excellence ensures your information remains secure while enabling us to deliver exceptional gaming experiences within the regulatory framework governing UK online gambling services.