Privacy Policy
This Privacy Policy governs the collection, processing, and protection of personal data by our online gaming platform operating within the United Kingdom. We are committed to safeguarding your privacy and ensuring compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy explains how we handle your personal information when you access our gaming services, including slot machines, table games, and other online casino activities. Last updated: January 28, 2026.
Data Controller Information
We operate as the data controller for all personal information collected through our gaming platform. Our operations are conducted under strict adherence to UK gambling regulations and data protection laws. We maintain our primary data processing facilities within the United Kingdom and European Economic Area to ensure optimal protection standards. Our dedicated Data Protection Officer oversees all privacy-related matters and serves as your primary contact for data protection enquiries. You may reach our Data Protection Officer through the contact details provided on our website or by submitting a formal request through our customer support channels.
As a licensed gambling operator in the UK, we must comply with additional regulatory requirements from the UK Gambling Commission, which may influence how we process your personal data. These regulatory obligations are designed to protect players and maintain the integrity of online gambling services. We work closely with regulatory authorities to ensure our data processing practices meet all applicable standards and requirements.
Types of Personal Data Collected
We collect various categories of personal information necessary for providing secure and regulated gaming services. The following table outlines the primary data types we process:
| Data Category | Examples | Collection Method |
|---|---|---|
| Identity Information | Full name, date of birth, gender, nationality | Registration form, identity verification |
| Contact Details | Email address, phone number, postal address | Account setup, communication preferences |
| Financial Data | Payment methods, transaction history, deposit/withdrawal records | Payment processing, account management |
| Gaming Activity | Game preferences, betting patterns, session duration | Platform usage, automated tracking |
| Technical Information | IP address, device identifiers, browser data | Website analytics, security monitoring |
| Verification Documents | Passport, driving licence, utility bills | Know Your Customer (KYC) procedures |
Additionally, we may collect sensitive personal data where legally required for anti-money laundering compliance or responsible gambling measures. This includes information about your source of funds, employment status, and any self-imposed gambling restrictions. We process this sensitive information only when necessary and with appropriate additional safeguards in place.
Purposes of Data Processing
We process your personal data for several specific purposes, each based on legitimate legal grounds under UK data protection law. Our primary processing purposes include account management, regulatory compliance, fraud prevention, and service improvement. We maintain detailed records of our processing activities and regularly review these purposes to ensure they remain necessary and proportionate.
- Account creation and management, including user authentication and access control
- Processing payments, deposits, withdrawals, and maintaining financial transaction records
- Compliance with UK gambling regulations and anti-money laundering requirements
- Fraud detection, prevention, and investigation of suspicious activities
- Responsible gambling monitoring and intervention measures
- Customer support provision and query resolution
- Marketing communications delivery (with your explicit consent)
- Platform security monitoring and technical system maintenance
- Legal compliance and cooperation with law enforcement agencies
- Business analytics and service improvement initiatives
Legal Basis for Processing
Our data processing activities are founded on several legal bases established under UK GDPR. For contractual obligations, we process your data to provide gaming services and manage your account relationship with us. This includes processing payments, maintaining game records, and providing customer support services. We rely on legal obligation as our basis for regulatory compliance activities, including identity verification, anti-money laundering checks, and reporting to gambling authorities.
Legitimate interests form the basis for fraud prevention, security monitoring, and business analytics activities. We conduct regular legitimate interests assessments to ensure our processing remains balanced and proportionate. For marketing communications and certain analytical activities, we seek your explicit consent, which you may withdraw at any time through your account settings or by contacting our support team.
Data Sharing and Third Party Processors
We share your personal data with carefully selected third parties only when necessary for our legitimate business operations or legal compliance. Our data sharing practices are governed by strict contractual agreements that ensure recipient organisations maintain appropriate data protection standards. We conduct regular audits of our third-party processors to verify their continued compliance with UK data protection requirements.
Payment service providers receive financial information necessary for processing transactions, deposits, and withdrawals. These processors are typically located within the UK or EEA and maintain PCI DSS compliance for payment card data security. Identity verification services may receive copies of your identification documents for automated and manual verification procedures. Gaming software providers may access anonymised or pseudonymised gaming data for platform maintenance and game development purposes.
We may disclose your information to regulatory authorities, law enforcement agencies, or courts when legally required or when necessary to prevent fraud or other illegal activities. Such disclosures are made only to the extent required by law and with appropriate documentation of the legal basis for disclosure.
International Data Transfers
While we primarily process data within the United Kingdom and European Economic Area, certain limited transfers to third countries may occur for specific business purposes. All international transfers are conducted in accordance with UK GDPR requirements and include appropriate safeguards to protect your personal information. We utilise standard contractual clauses approved by UK authorities or rely on adequacy decisions where available.
Cloud storage providers and software development teams may occasionally require access to pseudonymised data for technical support purposes. In such cases, we implement additional technical and organisational measures to minimise privacy risks and ensure data minimisation principles are observed. We maintain detailed records of all international transfers and regularly review the adequacy of protection measures in destination countries.
Data Retention Periods
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations. Our retention periods are determined by various factors, including regulatory requirements, the nature of our relationship with you, and legitimate business needs. We regularly review stored data and securely delete information that is no longer required.
Account information and transaction records are typically retained for seven years after account closure to meet anti-money laundering and tax obligations. Gaming activity data may be retained for shorter periods unless required for fraud investigation or regulatory reporting purposes. Marketing communication preferences are maintained until you withdraw consent or request deletion of your data. Identity verification documents are securely disposed of when no longer required for compliance purposes, typically within one year of account closure for inactive accounts.
Data Security Measures
We implement comprehensive technical and organisational security measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. Our security framework is regularly updated to address emerging threats and maintains compliance with industry best practices for online gaming operators.
- Advanced encryption protocols for data transmission and storage systems
- Multi-factor authentication requirements for account access and administrative functions
- Regular security audits and penetration testing by independent specialists
- Employee training programmes covering data protection and security awareness
- Network segregation and access controls limiting data access to authorised personnel
- Automated monitoring systems detecting suspicious activities and security breaches
- Secure backup procedures ensuring data availability while maintaining confidentiality
- Incident response procedures for managing potential data breaches or security incidents
Our security team continuously monitors our systems for potential vulnerabilities and implements necessary updates and patches. We maintain cyber security insurance and work with specialist security consultants to ensure our protective measures remain effective against evolving threats.
Your Data Protection Rights
Under UK data protection law, you possess several important rights regarding your personal information. We are committed to facilitating the exercise of these rights and will respond to valid requests within the statutory timeframes. Most rights can be exercised through your account dashboard, while others may require verification of your identity through our customer support team.
You have the right to access your personal data and receive information about our processing activities. This includes obtaining copies of your data and details about how it has been used. You may request correction of inaccurate or incomplete personal information and, in certain circumstances, request deletion of your data. Where processing is based on consent, you may withdraw that consent at any time without affecting previous processing activities.
You also possess rights to object to certain types of processing, request restriction of processing activities, and receive your data in a portable format for transfer to other services. If you believe our processing violates data protection law, you have the right to lodge a complaint with the Information Commissioner’s Office, the UK’s data protection supervisory authority.
Contact Information and Complaints
For all privacy-related enquiries, data protection requests, or concerns about our handling of your personal information, please contact our Data Protection Officer through the dedicated privacy contact form available on our website. We aim to acknowledge all privacy enquiries within 48 hours and provide substantive responses within one month of receiving complete information.
When submitting data protection requests, please include sufficient information to verify your identity and specify the nature of your request clearly. This helps us process your enquiry efficiently while maintaining the security of your personal information. For urgent privacy concerns or suspected data breaches affecting your account, please contact our customer support team immediately through the priority contact channels provided on our platform.
If you remain unsatisfied with our response to your privacy concerns, you may escalate your complaint to the Information Commissioner’s Office through their website at ico.org.uk or by telephone on 0303 123 1113. We encourage you to contact us first, as we are committed to resolving privacy concerns promptly and fairly.