Privacy Policy

Last updated: December 15, 2024

This Privacy Policy governs the collection, processing, and protection of personal data by our online gaming platform operating under UK jurisdiction. We are committed to maintaining the highest standards of data protection in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy outlines how we handle your personal information when you access our services, create an account, or engage with our gaming offerings. By using our platform, you acknowledge that you have read, understood, and agree to the practices described herein. We recognise the importance of protecting your privacy while providing a secure and enjoyable gaming experience, and we have implemented comprehensive measures to ensure your personal data remains safe and is used only for legitimate purposes related to our gaming services.

1. Information We Collect

We collect various types of personal data to provide our gaming services effectively and comply with UK regulatory requirements. The information we gather falls into several categories, each serving specific purposes related to account management, security, and regulatory compliance.

Personal identification information includes your full name, date of birth, residential address, email address, and telephone number. This data is essential for account verification, age verification to ensure compliance with UK gambling laws, and maintaining secure communication channels with our users.

  • Account registration details including username, password, and security questions
  • Financial information such as payment card details, bank account information, and transaction history
  • Identity verification documents including passport, driving licence, or national identity card copies
  • Proof of address documents such as utility bills or bank statements
  • Gaming activity data including bet history, game preferences, session duration, and winnings
  • Device and technical information including IP addresses, browser type, operating system, and device identifiers
  • Communication records including customer support interactions, live chat transcripts, and email correspondence

We also collect information through cookies and similar tracking technologies to enhance your gaming experience, analyse website usage patterns, and deliver personalised content. This technical data helps us optimise our platform performance and identify potential security threats or fraudulent activities.

2. Purposes of Data Processing

Your personal data is processed for specific lawful purposes that are essential for operating our gaming platform and meeting our legal obligations under UK law. We ensure that all data processing activities have a clear legal basis and serve legitimate interests related to our gaming services.

Account management represents our primary processing purpose, enabling user registration, authentication, and ongoing account maintenance. This includes verifying your identity to prevent underage gambling, maintaining accurate records of your gaming activity, and providing customer support services when required.

  • Payment processing for deposits, withdrawals, and transaction management
  • Regulatory compliance including anti-money laundering checks and reporting suspicious activities
  • Security monitoring to detect and prevent fraudulent activities, unauthorised access, and account compromises
  • Marketing communications about promotions, bonuses, and new game releases (with your consent)
  • Customer support provision including responding to queries, resolving disputes, and providing technical assistance
  • Platform improvement through data analysis, user behaviour studies, and service optimisation
  • Legal compliance including tax reporting, dispute resolution, and cooperation with regulatory authorities

We also process data to ensure responsible gambling practices, including monitoring gaming patterns, implementing deposit limits, and identifying potential signs of problem gambling. This processing is crucial for player protection and regulatory compliance within the UK gaming industry.

3. Data Sharing and Disclosure

We maintain strict controls over data sharing and only disclose personal information to authorised parties when necessary for legitimate business purposes or legal requirements. All third-party recipients are carefully vetted and bound by appropriate contractual obligations to protect your data.

Payment service providers receive necessary financial information to process transactions securely, including deposits, withdrawals, and currency conversions. These providers operate under stringent security standards and are subject to financial services regulations in their respective jurisdictions.

  • UK Gambling Commission and other regulatory authorities when required by law
  • Law enforcement agencies in response to valid legal requests or court orders
  • Identity verification services for KYC (Know Your Customer) compliance
  • Game developers and software providers for technical integration and support
  • Customer support platforms for managing user communications and resolving issues
  • Marketing service providers for delivering promotional communications (with consent)
  • Legal advisors and professional services firms for compliance and advisory purposes

We never sell personal data to third parties for commercial purposes, and we maintain comprehensive data processing agreements with all service providers. Any data transfers outside the UK are conducted with appropriate safeguards, including adequacy decisions or standard contractual clauses approved by UK authorities.

In cases of business restructuring, merger, or acquisition, personal data may be transferred to the acquiring entity, subject to continued protection under this privacy policy or an equivalent standard. Users will be notified of any such changes affecting their data processing arrangements.

4. Data Security and Protection

We implement comprehensive security measures to protect personal data from unauthorised access, alteration, disclosure, or destruction. Our security framework encompasses technical, administrative, and physical safeguards designed to maintain data integrity and confidentiality throughout all processing activities.

Technical security measures include advanced encryption protocols for data transmission and storage, secure socket layer (SSL) technology for website communications, and multi-factor authentication systems for account access. Our servers are hosted in secure facilities with restricted access and continuous monitoring capabilities.

  • End-to-end encryption for sensitive data including payment information and personal details
  • Regular security audits and penetration testing to identify potential vulnerabilities
  • Access controls limiting data access to authorised personnel only
  • Data backup and recovery systems ensuring business continuity and data preservation
  • Fraud detection systems monitoring for suspicious activities and unauthorised access attempts
  • Regular software updates and security patches to maintain system integrity
  • Employee training programmes on data protection and security best practices

Administrative measures include comprehensive data handling policies, incident response procedures, and regular staff training on privacy and security requirements. All employees with access to personal data undergo background checks and sign confidentiality agreements.

Despite our robust security measures, no system is entirely immune to security breaches. In the unlikely event of a data breach affecting personal information, we will notify affected users and relevant authorities within the timeframes required by UK data protection law, providing clear information about the nature of the breach and steps being taken to address it.

5. Your Rights and Choices

Under UK data protection law, you have comprehensive rights regarding your personal data, and we are committed to facilitating the exercise of these rights through clear processes and reasonable response timeframes. You can exercise these rights by contacting our data protection team through the designated channels provided on our platform.

The right of access allows you to request copies of your personal data and information about how it is being processed. We will provide this information within one month of receiving your request, along with details about the purposes of processing, categories of data, and any third-party recipients.

  • Right to rectification enabling correction of inaccurate or incomplete personal data
  • Right to erasure allowing deletion of personal data in certain circumstances
  • Right to restrict processing limiting how your data is used while maintaining its storage
  • Right to data portability facilitating transfer of your data to another service provider
  • Right to object to processing based on legitimate interests or for marketing purposes
  • Rights related to automated decision-making including profiling for responsible gambling measures
  • Right to withdraw consent for processing activities that rely on your explicit agreement

You can manage many aspects of your data processing through your account settings, including communication preferences, marketing consent, and responsible gambling limits. For more complex requests or concerns about data processing, our customer support team is available to assist you.

If you believe your data protection rights have been violated or you are dissatisfied with our response to your concerns, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO), the supervisory authority responsible for data protection matters in the United Kingdom.

6. Data Retention and Policy Updates

We retain personal data for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, and protect our legitimate interests. Retention periods vary depending on the type of data and the specific requirements of UK gambling regulations and other applicable laws.

Account information and gaming records are typically retained for seven years after account closure to meet regulatory requirements and facilitate any necessary investigations or dispute resolutions. Financial transaction records follow similar retention schedules to comply with anti-money laundering regulations and tax obligations.

  • Identity verification documents retained for seven years following account closure
  • Marketing communication records deleted within two years of consent withdrawal
  • Technical logs and security data retained for one year unless required for ongoing investigations
  • Customer support communications maintained for three years for quality assurance purposes
  • Responsible gambling data retained for extended periods to support player protection measures
  • Legal and compliance records maintained according to regulatory requirements and statute of limitations

When personal data is no longer required, we securely delete or anonymise it using industry-standard methods to prevent recovery or reconstruction. This process includes secure overwriting of electronic storage media and physical destruction of paper records where applicable.

This Privacy Policy may be updated periodically to reflect changes in our data processing practices, legal requirements, or business operations. Material changes will be communicated to users through prominent notices on our platform and direct communications where appropriate. The effective date of any updates will be clearly indicated, and continued use of our services following policy changes constitutes acceptance of the revised terms. We encourage users to review this policy regularly to stay informed about how we protect their personal information and any changes to our data handling practices.