Privacy Policy
This Privacy Policy outlines how we collect, use, process, and protect your personal information when you access and use our online gaming platform, including slots, table games, and other interactive entertainment services. We are committed to maintaining the highest standards of data protection in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy applies to all users, whether they are registered account holders or visitors to our website and mobile applications. Last updated: January 18, 2026.
1. Information We Collect
We collect various types of information to provide you with seamless gaming experiences, comply with regulatory requirements, and ensure account security. The information we gather includes personal identifiers you voluntarily provide during registration, such as your full name, date of birth, email address, and telephone number. We also collect financial information necessary for deposits, withdrawals, and payment processing, including bank account details, credit card information, and cryptocurrency wallet addresses for users preferring digital currencies.
During gameplay, we automatically collect technical data about your interactions with our platform, including IP addresses, device identifiers, browser types, operating systems, and gaming activity logs. This information helps us optimise performance, prevent fraud, and identify potential problem gambling patterns. Additionally, we collect behavioural data through cookies and similar tracking technologies to understand user preferences, personalise content recommendations, and measure the effectiveness of our promotional campaigns.
| Data Category | Description | Collection Method | Legal Basis |
|---|---|---|---|
| Personal Identifiers | Name, date of birth, address, email, phone number | Direct user input during registration | Contract performance and legal obligation |
| Financial Information | Bank details, payment card information, transaction history | Payment processing systems and direct input | Contract performance and legal obligation |
| Technical Data | IP address, device ID, browser information, cookies | Automatic collection through platform systems | Legitimate interest in security and optimisation |
| Gaming Activity | Game history, wagering patterns, account balances, session duration | Automatic logging during gameplay | Contract performance and legitimate interest |
| Communication Records | Support tickets, chat transcripts, email correspondence | Customer service interactions | Contract performance and legal obligation |
| Verification Documents | Scans of identity documents, proof of address, source of funds | Know Your Customer (KYC) compliance | Legal obligation and fraud prevention |
| Preferences and Settings | Language preferences, notification settings, responsible gaming limits | User account settings and configuration | Contract performance and user consent |
2. Purposes of Data Processing
Your personal information serves multiple essential functions within our gaming operations. Primary among these is account creation and management, enabling you to access gaming services, maintain account security, and preserve your gaming history and financial records. We process your data to execute financial transactions, including deposits and withdrawals, in compliance with banking regulations and anti-money laundering (AML) requirements mandated by the Gambling Commission and HM Revenue & Customs.
We utilise your information to enforce our Terms and Conditions, investigate potential violations, and protect against fraudulent activities that could compromise the integrity of our platform and the safety of all users. Regulatory compliance represents a critical processing purpose, as we must comply with UK gambling legislation, including the Gambling Act 2005 and subsequent regulatory guidance. Your data also enables us to provide customer support services, respond to inquiries, address complaints, and implement improvements based on user feedback and platform analytics.
Marketing and promotional communications form another significant purpose, though you retain full control over your preferences. We analyse your gaming patterns and preferences to personalise your experience, recommend games matching your interests, and inform you of promotions relevant to your profile. Finally, we process data for responsible gambling initiatives, including identifying problem gambling indicators and implementing protective measures to support player wellbeing.
3. Legal Basis for Processing
Under UK GDPR, we process your personal data on several lawful bases. Contract performance is the primary basis, as processing is necessary to provide the gaming services you have requested and maintain your account. Legal obligation represents another critical basis, as UK gambling regulations require us to collect identification documents, verify your age and identity, conduct enhanced due diligence for high-value players, and maintain detailed transaction records for regulatory audits and government inquiries.
Legitimate interest forms the basis for processing technical data to secure our platform, prevent fraud, and analyse user behaviour for service improvement. We have carefully balanced these interests against your rights and expectations, implementing appropriate safeguards to minimise any potential negative impact. Consent provides the basis for cookies, marketing communications, and voluntary participation in responsible gambling programmes where you explicitly opt-in to receive benefits.
4. Data Sharing and Recipients
We do not sell your personal data to third parties for commercial purposes. However, we share information with carefully selected partners essential to delivering our services and meeting regulatory requirements. Payment processors and financial institutions receive necessary transaction information to facilitate deposits and withdrawals. These partners are bound by strict data protection agreements and contractual obligations requiring them to process data solely for specified purposes and maintain appropriate security measures.
Law enforcement agencies and regulatory bodies, including the Gambling Commission, National Crime Agency, and HM Revenue & Customs, may receive your information pursuant to legal processes, court orders, or regulatory investigations. Identity verification service providers conduct Know Your Customer checks using your personal documents and address details. Responsible gambling organisations and support services may receive anonymised or pseudonymised data to help identify players at risk, though never without your knowledge and typically through dedicated opt-in programmes.
Our technology partners, including cloud service providers and analytics platforms, process data on our behalf under strict data processing agreements. Affiliate partners who refer you to our platform receive minimal information required for commission tracking and fraud prevention. Our legal team may access relevant data during dispute resolution, compliance investigations, or responses to legal claims. In the unlikely event of corporate restructuring, merger, or acquisition, user data would be transferred as a business asset subject to comparable or improved privacy protections.
5. International Data Transfers
Our primary data processing occurs within the United Kingdom. However, given the global nature of online gaming, some information may be transferred to countries outside the UK, including EU member states and other jurisdictions. We only transfer data to countries the UK Government or relevant authorities have determined provide adequate protection equivalent to UK GDPR standards, or we implement supplementary transfer mechanisms including Standard Contractual Clauses and appropriate additional safeguards.
Before any international transfer, we conduct Transfer Impact Assessments evaluating recipient country laws, government surveillance practices, and the availability of enforceable rights. Your financial information receives enhanced protection, transmitted only to payment processors in jurisdictions with robust financial regulations and banking confidentiality protections. We maintain detailed records of all international transfers and regularly review transfer mechanisms to ensure continued compliance with UK data protection law and Gambling Commission guidance.
6. Data Retention Periods
We maintain your personal data for the duration necessary to provide gaming services and fulfil our legal obligations. Personal account information, including identification documents and verification records, is retained for the entire period your account remains active and for six years following account closure or final transaction, complying with money laundering regulations and potential dispute resolution timeframes. Financial transaction records must be preserved for seven years for tax compliance and potential regulatory investigations, in accordance with HMRC requirements and standard financial industry practice.
Gaming activity logs and betting history are retained for up to two years after account closure to enable fraud investigations, dispute resolution, and regulatory audits. Technical data including IP addresses and device identifiers is typically deleted after twelve months once it no longer serves security or analytical purposes, except where legal obligations require extended retention. Communication records with customer support remain accessible for three years to maintain service quality and address historical disputes, then are progressively deleted unless involved in unresolved legal proceedings.
We implement regular data deletion schedules and automated purging processes to ensure information is not retained beyond necessary periods. You may request deletion of certain personal data subject to legal and regulatory retention requirements, though we will inform you of any retention obligations that prevent complete removal. Deletion requests do not affect information already anonymised or aggregated beyond re-identification.
7. Your Data Protection Rights
As a data subject under UK GDPR, you possess comprehensive rights regarding your personal information. The right to access enables you to request a complete copy of personal data we hold, the purposes of processing, recipients we share with, and expected retention periods. We respond to access requests within thirty days, providing information in a structured, commonly used, machine-readable format. The right to rectification allows you to correct inaccurate or incomplete personal data, essential for maintaining account integrity and preventing fraud-related issues.
The right to erasure permits you to request deletion of personal data under certain circumstances, such as when data is no longer necessary for original purposes or you withdraw consent. However, we must retain data where required by law, including gambling regulations and financial compliance obligations. The right to restrict processing enables you to prevent us from using your data in certain ways whilst maintaining it in our systems, useful when you dispute accuracy or believe processing is unlawful.
The right to data portability allows you to receive personal data in a structured format and transmit it to another controller, facilitating comparison of services or facilitating account migration. The right to object permits you to oppose processing on legitimate interest grounds and direct marketing communications. The right not to be subject to automated decision-making protects against purely algorithmic decisions significantly affecting you, though fraud detection and responsible gambling algorithms may apply limited exceptions.
The right to withdraw consent applies where you have provided consent as the processing basis, effective immediately without affecting processing conducted beforehand. The right to lodge complaints with supervisory authorities grants you access to escalated dispute resolution, with the Information Commissioner’s Office serving as the UK’s independent data protection authority.
- Right of access to your personal data
- Right to rectify inaccurate or incomplete information
- Right to erasure or deletion under specified circumstances
- Right to restrict processing pending accuracy verification
- Right to data portability in machine-readable format
- Right to object to processing for marketing and certain legitimate interests
- Rights related to automated decision-making and profiling
- Right to withdraw consent at any time
- Right to lodge complaints with the Information Commissioner’s Office
- Right to legal remedy and compensation for damages
8. Security Measures and Data Protection
We implement comprehensive security protocols protecting your personal information from unauthorised access, modification, disclosure, or destruction. All communication between your device and our servers employs TLS/SSL encryption, creating secure tunnels preventing interception of sensitive data including login credentials and payment information. Our databases utilise industry-standard encryption at rest, rendering stored personal data unreadable without proper decryption keys.
Access to personal data is restricted through role-based access controls, ensuring employees and contractors access only information necessary for their functions. We conduct rigorous staff training on data protection responsibilities, confidentiality obligations, and security protocols, with regular refresher sessions keeping everyone informed of emerging threats and evolving best practices. Background checks are mandatory for all personnel handling sensitive information.
We maintain comprehensive security audit trails logging all database access, modifications, and data extractions, enabling us to detect suspicious patterns indicating potential breaches or unauthorised activity. Regular penetration testing and vulnerability assessments, conducted by independent cybersecurity specialists, identify weaknesses in our systems before malicious actors can exploit them. Incident response procedures enable rapid detection and containment of any security incidents, with notification to affected individuals and the Information Commissioner’s Office as required by law.
Payment card information receives enhanced protection through PCI DSS compliance, a globally recognised standard requiring encrypted transmission, restricted storage, and regular auditing. We never store full card details on our systems; instead, we maintain encrypted tokens enabling future transactions without retaining sensitive numbers. Multi-factor authentication protects user accounts from unauthorised access, requiring both passwords and secondary verification factors like time-based codes or email confirmations.
9. Cookies and Tracking Technologies
Our platform uses cookies and similar tracking technologies enhancing user experience, personalising content, measuring performance, and preventing fraud. Session cookies remain active only during your browsing session, automatically deleted when you close your browser, facilitating navigation and maintaining login status. Persistent cookies remain on your device for extended periods, up to two years, enabling features like automatic language preference recognition and remembering your gaming preferences.
Functional cookies enable core platform features including account login, session management, and remembering responsible gambling limits you have set. Analytical cookies collect aggregated data about site usage, traffic patterns, and user behaviour, helping us optimise performance and identify popular games or problematic areas requiring improvement. These cookies do not identify you personally; they track behaviour anonymously in aggregate.
Marketing and advertising cookies track your gaming preferences and website interactions, enabling personalised advertising on third-party websites and measuring marketing campaign effectiveness. You retain full control over cookie usage through your browser settings and our preference centre, enabling selective acceptance or rejection of different cookie types. Disabling cookies may affect platform functionality, restricting access to certain features or requiring repeated information entry.
Third-party cookies from analytics and advertising partners track your behaviour across multiple websites, building user profiles for targeted marketing purposes. These third parties maintain their own privacy policies governing data usage, and you can opt-out of targeted advertising through industry mechanisms like the Digital Advertising Alliance or Network Advertising Initiative. We provide granular cookie consent interfaces enabling specific selections rather than all-or-nothing decisions.
10. Updates and Contact Information
We regularly review and update this Privacy Policy to reflect changes in our practices, evolving legal requirements, and technological developments. Significant changes requiring renewed consent will be communicated through prominent notices on our website and email notifications to registered users. Minor clarifications and technical updates may be implemented without prior notice, though the last updated date visible at the policy’s beginning indicates when substantive revisions occurred.
Your continued use of our platform following policy updates constitutes acceptance of revised terms. We encourage you to review this policy periodically, particularly before providing sensitive information or when accessing new features. If you have questions about our privacy practices, wish to exercise any of your data protection rights, or believe we have mishandled your personal information, please contact our Data Protection Officer through the channels below.
You may submit data access requests, withdrawal of consent, or privacy concerns via email to our dedicated privacy inbox, ensuring your inquiry reaches appropriate personnel with authority to address your concerns. We respond to all communications within thirty days, providing detailed explanations of our position and any corrective actions taken. If you believe we have violated UK GDPR requirements or handled your data inadequately, you retain the right to lodge formal complaints with the Information Commissioner’s Office, the independent UK data protection authority overseeing privacy law compliance and investigating complaints against organisations.
Data Protection Officer contact: [email protected]
Correspondence address: Data Protection Department, Gaming Compliance Office, London, United Kingdom
Information Commissioner’s Office: www.ico.org.uk