Catch the Winning Wave!
Spin and Be Surprised!
The privacy policies on this gaming site follow strict rules set by the United Kingdom Gambling Commission. We only collect data about registrants, like their name, age, address, payment information, and device identifiers, to create accounts, process payments, manage responsible gaming, and follow the rules. ISO/IEC 27001 standards are followed for how data is collected and stored, and encryption protocols are used both when the data is being sent and when it is not being used. Third-party partners, including payment processors and game providers, gain access only to information required for performing specified tasks. There is no sharing for marketing purposes without clear permission. Making all user rights available in account settings, such as the ability to edit or delete personal records, make data portability requests, or limit processing under GDPR Articles 15–21, ensures transparency. Different types of data have different retention periods. For example, financial information must be kept for five years after an account is closed to meet legal requirements. On the other hand, marketing preferences and cookies can be changed or deleted at any time. Every three months, security reviews are done to make sure that firewalls and intrusion detection are up to date. If you need help with information management or want to take back consents you've already given, you can get it through a number of channels.
When you make an account, enter your contact information, and use your account, personal data is collected. You may be asked for your name, address, date of birth, government-issued ID numbers, payment card information, and device information like your IP address and browser type.
To create an account, individuals are asked to furnish specific identifiers, including full name, date of birth, residential address, email, and telephone number. You must fill out all of these fields to follow the rules for checking age and protecting against fraud.
You may need to show more proof of your identity and address, like a government-issued ID, a utility bill, or an official bank letter. This step is very important for large withdrawals or changes to account information because it helps you meet your Know Your Customer (KYC) obligations and stops illegal activities.
Players give sensitive financial information, like debit or credit card numbers or e-wallet account details, when they deposit or withdraw money. We use this information only to authorise transactions and keep it safe.
Logs may keep track of your play history, device information, login times, browser type, and IP addresses while you use the platform. These details support responsible gaming programs, customer support services, and detection of suspicious conduct.
Users are often able to configure preferences regarding communication, promotional offers, and self-exclusion. Storing and processing these selections ensures tailored service and respects personal boundaries.
Before submitting any documentation or financial details, scrutinize data fields for accuracy. Only utilize secure internet connections and consider updating passwords regularly to mitigate unauthorized access risks.
Information provided during account creation or while using platform services may be disclosed to external organizations under specific circumstances, strictly regulated by contractual and legal obligations. The table below shows the main types of third parties that may get data and the legal reasons for these transfers:
| Category of Recipient | Why Data Transfer Is Needed | Types of Data | Limits on Shared Transfers |
|---|---|---|---|
| Payment Processing | Checking transactions, stopping fraud, paying out and taking out money | Personal information, transaction records, and financial data | Only when it's necessary to process payments or look into problems |
| Licensing and Regulatory Bodies | Following gambling rules, checking for money laundering, and requests for audits | Name, address, transaction history, and proof of where the money came from | Only in line with the law or regulations |
| Game & Software Providers | Authentication of users, delivery of services, and analytics | User ID, session information, game interactions | Pseudonymized or anonymized where possible; never full payment data |
| Affiliated Marketing Partners | Campaign performance measurement, user referral validation | Referral codes, basic registration data (non-sensitive only) | Limited to campaign-related metrics; never contact or payment data |
| IT Security Specialists | Threat detection, vulnerability assessments, breach management | Technical logs, access records, device information | Access is restricted and time-limited to the investigation duration |
No direct selling or unauthorized dissemination of personal records is permitted. There is a record of each transfer, and when possible, there are data-sharing agreements that require confidentiality and data minimization. People whose data is being used still have the right to ask for information about certain third parties who have accessed it. You can send clear requests through the official support channel, and they will be handled within the time limits set by the rules. Before working together, all vendors must go through due diligence and follow industry-standard information security practices. If any outside recipient lives outside the UK or the European Economic Area, legally binding protections like Standard Contractual Clauses are put in place.
Every registered member has certain rights when it comes to managing and controlling the personal information they have submitted. Here are the basic rights and some tips on how to use them:
Registered users can ask for a copy of their stored data at any time. You can do this by using the account dashboard or by contacting support directly through the dedicated data enquiries channel.
If any of your information is wrong or out of date (like your contact information or billing address), quickly change it in the profile settings or ask customer service to fix it.
Requests to remove an account and associated data are processed following legal obligations. Submit such requests via the official communication form; keep in mind certain information may be retained as required by regulatory authorities.
It's possible to limit how data is processed, especially during disputes over data accuracy or usage. Contact data protection staff to activate temporary restrictions.
Receive a structured digital file containing personal details. This enables secure transfer to another service provider if you wish to register elsewhere.
Users may object to certain uses of their information, particularly with regard to direct marketing. Adjust marketing preferences in your account or unsubscribe through provided email links.
Exercise of these rights is facilitated through the account interface or by reaching out to the designated data coordinator. All requests are looked at and handled within the time limits set by law, and there are steps to verify identity for security. You can ask for more information and documents about these rights if you need them.
Transactional records, personal identification data, and communication logs are kept for different amounts of time, depending on rules like anti-money laundering directives and licensing mandates. Identification documents and core account data are usually kept for at least five years after the account is closed. This helps with regulatory audit trails and resolving disputes. Within a rolling six-month period, non-essential information, such as marketing preferences that haven't been verified or incomplete registrations, is removed from active systems. Aggregated analytics and anonymized usage metrics that are no longer linked to individual profiles can be stored for reporting purposes without linking to individuals. People can ask for their personal information to be deleted using a secure contact form that can be found in the account settings. It is required to prove your identity before records can be deleted. Requests for deletion are looked at in light of legal and contractual obligations. If deletion isn't possible because of ongoing investigations or record-keeping standards, the person who made the request gets a detailed written explanation that lists the parts of the law or internal policy that require retention. Once approved, personal information is systematically removed from production databases and scheduled for secure deletion in backup environments within 60 days. Transaction logs and financial records that are part of an open investigation or an unpaid debt cannot be deleted right away. To be clear, all schedules for keeping and getting rid of things are regularly reviewed to make sure they follow the latest legal rules. Data management officers answer formal questions through the communication channels provided within the time limits set by data protection authorities.
All data sent between gaming servers and user devices is protected by 256-bit SSL/TLS encryption. This level of security is the same as what banks and other financial institutions require, so your login information, banking information, and personal information will stay private.
There are multiple firewalls at both the software and hardware levels. These solutions keep sensitive databases separate from each other and stop unauthorized access from outside sources. This greatly lowers the risk of cyber threats.
A group of security experts watches network activity in real time with automated intrusion detection systems (IDS). Alerts and quick incident response are set off by any suspicious activity, like strange login attempts or requests for data.
Only trained staff members with clearly defined roles can access user records. All administrative actions are recorded and checked on a regular basis by internal auditors. This lowers the risk from both inside and outside sources.
Players may enable 2FA for their accounts. This additional verification step uses one-time passcodes sent via email or SMS, preventing unauthorized access even if login data is compromised.
Third-party cybersecurity experts conduct scheduled penetration testing and vulnerability assessments. These proactive evaluations ensure that protections meet or exceed the latest regulatory standards and address newly discovered threats promptly.
For enhanced account safety, it is advised to update passwords frequently, activate 2FA, and avoid sharing login information. Should suspicious activity be noticed, support teams are available for immediate assistance.
Bonus
for first deposit
1000£ + 250 FS
Switch Language
