Privacy Policy
This Privacy Policy outlines how we collect, process, store, and protect your personal information when you access and use our gaming platform. We are committed to maintaining your privacy and ensuring complete transparency regarding data handling practices in accordance with United Kingdom data protection legislation, including the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR). Last updated: January 18, 2026
Information We Collect
We gather various types of information to provide you with a secure, personalised gaming experience and to comply with regulatory requirements. The categories of data we collect include personal identifiers, account-related information, financial details, behavioural data, and technical information about your device and browsing activity. Understanding what information we collect helps you make informed decisions about your interaction with our platform.
| Data Category | Type of Information | Collection Method |
|---|---|---|
| Personal Information | Full name, date of birth, address, email address, telephone number | Registration form, account verification |
| Financial Data | Bank account details, payment card information, transaction history, deposit and withdrawal records | Payment processing, financial statements |
| Identification Documents | Passport copy, driving licence, utility bills for address verification | Know Your Customer (KYC) procedures |
| Technical Data | IP address, browser type, device identifiers, operating system, cookies, log data | Automatic collection via website tracking |
| Behavioural Data | Gaming preferences, betting patterns, time spent on platform, game selections, session duration | Platform analytics and user interaction tracking |
| Communication Records | Customer service interactions, email correspondence, live chat conversations, complaint records | Direct communication and support channels |
Purposes of Data Processing
Your personal information is processed for multiple legitimate purposes essential to operating our gaming platform and complying with legal obligations. We process data to establish and maintain your account, process financial transactions, verify your identity and age, detect and prevent fraud, comply with anti-money laundering regulations, personalise your gaming experience, conduct marketing campaigns with your consent, analyse platform performance, and respond to customer inquiries. Each processing activity is grounded in specific legal bases, including contract performance, legal compliance, legitimate business interests, and your explicit consent.
- Account creation and management
- Payment processing and transaction verification
- Identity and age verification (mandatory for gaming jurisdictions)
- Fraud detection and prevention
- Anti-money laundering (AML) compliance
- Responsible gambling monitoring and enforcement
- Personalised recommendations and user experience enhancement
- Marketing communications and promotional campaigns
- Platform security and cybersecurity measures
- Legal compliance and regulatory reporting
- Customer support and dispute resolution
Legal Basis for Processing
Under the UK GDPR, we process your personal data only when we have a valid legal basis. The primary legal bases supporting our data processing activities include contract necessity—processing required to fulfil our agreement with you; legal obligation—compliance with regulatory requirements imposed by UK gambling authorities; legitimate interests—balancing our business needs against your privacy rights; and explicit consent—your voluntary agreement to specific processing activities such as marketing communications. For sensitive data categories, including financial information and identification documents, we apply additional safeguards and more stringent consent requirements before processing.
Data Sharing and Third Parties
We may share your personal information with selected third parties necessary to provide our services and comply with legal requirements. These recipients include payment processors and financial institutions for transaction handling, identity verification providers for KYC compliance, regulatory authorities and law enforcement agencies when required by law, responsible gambling and addiction prevention organisations, auditors and compliance consultants, and service providers who assist with platform maintenance and customer support. All third parties are bound by contractual confidentiality obligations and must process data in accordance with UK data protection laws.
- Payment gateways and banking partners
- Third-party identity verification services
- UK Gambling Commission and relevant regulatory bodies
- Law enforcement agencies (with legal authorization)
- GamCare and other responsible gambling organisations
- Self-Exclusion Register operators
- Cloud service providers and data hosting providers
- Analytics and customer relationship management platforms
- Professional advisors including legal and financial consultants
Cookies and Tracking Technologies
Our platform uses cookies, web beacons, and similar tracking technologies to enhance user experience, maintain security, and analyse platform usage patterns. Cookies serve multiple functions: essential cookies maintain session functionality and security features; analytics cookies measure user behaviour and platform performance; preference cookies remember your settings and choices; and marketing cookies track your activity across websites for targeted advertising. You can manage cookie preferences through your browser settings, though disabling essential cookies may impact platform functionality and your ability to access certain features.
- Session cookies for account authentication and security
- Persistent cookies for remembering user preferences and login credentials
- Analytics cookies from Google Analytics and similar services
- Third-party advertising cookies for retargeting campaigns
- Device fingerprinting for fraud detection and account security
- Local storage and IndexedDB for improved performance
Data Retention and Deletion
We retain your personal information for periods necessary to fulfil the purposes outlined in this policy and to comply with legal obligations. Account information is retained for the duration of your active account plus a minimum of five years following account closure to satisfy regulatory and tax requirements. Financial transaction records are maintained for seven years as mandated by money laundering regulations and tax authorities. Communications and customer service records are retained for three years unless longer retention is required by law. You may request deletion of non-essential personal data, provided such deletion does not conflict with legal retention obligations or ongoing investigations. Deletion requests will be processed within thirty days where legally permissible.
Your Rights and Choices
Under the UK GDPR and Data Protection Act 2018, you possess specific rights concerning your personal information. You have the right to access all personal data we hold about you in a structured, commonly-used format. You may request correction of inaccurate or incomplete information. You have the right to erasure (“right to be forgotten”) where data is no longer necessary, provided this does not conflict with legal obligations. You can object to processing based on legitimate interests, restrict processing activities, and request portability of your data in machine-readable formats. You also retain the right to withdraw consent at any time without affecting the lawfulness of previous processing.
- Right of access to your personal data
- Right to correct inaccurate information
- Right to erasure under specific circumstances
- Right to restrict data processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent
- Right to lodge complaints with the Information Commissioner’s Office (ICO)
- Right not to be subject to automated decision-making
Security and Data Protection Measures
We implement comprehensive technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, and destruction. Our security infrastructure includes end-to-end encryption for data transmission, SSL/TLS protocols for website communication, multi-factor authentication for account access, regular security audits and penetration testing, employee data protection training, secure data centres with physical access controls, and intrusion detection systems. All staff members with access to personal data are bound by confidentiality agreements. Despite these safeguards, no data transmission over the internet is completely secure; we encourage you to protect your account credentials and report suspicious activity immediately.
- AES-256 encryption for data at rest
- SSL/TLS 1.2+ encryption for data in transit
- Multi-factor authentication for account security
- Regular penetration testing and vulnerability assessments
- ISO 27001 compliance standards
- Secure password storage using salted hashing algorithms
- Network firewalls and DDoS protection
- Data access controls and role-based permissions
- Incident response procedures
International Data Transfers
While our primary operations and data storage are based in the United Kingdom, we may transfer personal information to countries outside the UK and EEA for specific operational purposes, including payment processing, cloud service hosting, and customer support. Any such transfers are conducted only where adequate safeguards are established, including Standard Contractual Clauses approved by relevant authorities, adequacy decisions by the UK government, or your explicit consent. Where transfers occur to countries without adequate protection, we ensure additional contractual protections and technical measures. You may request specific information about transfer mechanisms and protections for your data.
Responsible Gambling and Self-Exclusion
We are committed to promoting responsible gambling and protecting vulnerable players. Personal data is processed to enforce responsible gambling tools, including deposit limits, session time restrictions, account suspension, and self-exclusion features. Should you choose to self-exclude, your information is retained and shared with the National Self-Exclusion Register (GAMSTOP equivalent services) to prevent access across participating platforms. We retain self-exclusion records for the duration of the exclusion period plus three years to ensure compliance. Your data may be processed to identify problem gambling patterns and provide support resources, including information about GamCare, the National Problem Gambling Clinic, and Gamblers Anonymous. Participation in responsible gambling schemes does not constitute consent for other marketing communications.
Contact and Complaint Procedures
Should you have questions about this Privacy Policy or wish to exercise your rights, please contact our Data Protection Officer through the channels provided on our website. All data subject requests will be processed within thirty days as required by UK GDPR. If you believe our processing of your personal information violates your rights, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the independent authority responsible for data protection in the United Kingdom. You may also pursue legal remedies through UK courts. We encourage you to contact us first to attempt resolution before escalating complaints to regulatory authorities. Contact details, complaint procedures, and response timelines are available on our website’s contact page.