Get Set, Go Spin!
Win Streak Starts Here!
This document explains the exact steps taken to handle player information accurately and in accordance with national and international standards, such as GDPR and the rules set by the relevant gambling authorities. We use the latest encryption (TLS 1.3), multifactor authentication, and strict controls on who can access user profiles and records at every stage of registration, gameplay, and withdrawal. Strong protocols stop information from being shared without permission, lost by accident, or compromised by technology. Personal information is only collected for the purposes of verifying identity, ensuring fair gameplay, processing payments, and checking age as required. The law says how long records can be kept, and storage times follow those rules exactly. Payment processors and licensing bodies are the only third parties that can share information, and they are all required by contract to keep the same protections. All users have the right to look at, change, or delete saved information. You can send requests through secure account channels or contact forms, and you will get a response within 30 days. We always respect people who want to withdraw their consent, but this may limit their ability to do real-money activities because they still have to prove their identity by law. We only use cookies and analytics tools to improve our services and find fraud, never for unsolicited marketing. Account controls let you choose not to receive certain messages and give you clear instructions on how to do so. For full help, dedicated data protection officers are there to answer any questions you may have about compliance or safety. Everyone's information is always safe from avoidable risks thanks to ongoing audits, up-to-date security patches, and clear communication. Every game or financial transaction should have the best standards for information stewardship, which include responsible oversight and regular reviews.
When you sign up for an account, you will be asked for personal information like your full name, birth date, home address, email address, and phone number. When you make a payment, your financial information, such as your card numbers, bank details, and e-wallet credentials, is collected through encrypted channels. When you use the platform, it automatically records your activity, device type, IP address, browser version, log-in times, and referral information.
Personal information is used to check identity, stop duplicate accounts, make sure someone is eligible by jurisdiction, and follow jurisdictional rules. Financial records make it easier to make deposits, take out money, and cash in rewards. We look at transaction logs and activity summaries to find suspicious behaviour, stop fraud, and meet the requirements set by licensing authorities.
We use the contact information you give us when you sign up to send you service notifications, bonus offers (if you choose to receive them), and security alerts. You can change your preferences or opt out at any time through your account settings. To improve service quality and settle disagreements, we keep records of all communications, such as customer support tickets and live chat logs.
Only verified staff and authorised third parties who are essential for managing accounts, processing payments, and following the rules can see your records. Contracts make sure that outside partners follow strict rules for protecting data. The European Economic Area or other areas with similar protections store information in safe, controlled-access areas.
All financial operations use TLS 1.3 protocol with 256-bit Advanced Encryption Standard (AES-256) to guarantee the confidentiality and authenticity of transmitted information. This mechanism stops unauthorised access during data transit by using certificate pinning and forward secrecy.
Sensitive payment card details are never stored in plaintext. Instead, unique tokens take the place of important account numbers, so attackers can't use the information they get. These tokens reference encrypted data stored in isolated, access-controlled environments.
Cryptographic keys are generated, used, rotated, and retired under strict hardware security module (HSM) controls. No key is stored with user data, and regular audits ensure compliance with PCI DSS level 1 standards.
From input at the client device to final processing, all transactional data follows an encrypted path. Secure Sockets Layer (SSL) inspection is disabled to maintain the integrity of cryptographic handshakes, reducing man-in-the-middle exposure.
Always confirm HTTPS is active before entering personal or financial details. Enable device-level security updates and avoid transmitting confidential data over unstable Wi-Fi connections. Two-factor authentication is suggested for additional account access protection.
Recommendations for users include regularly updating passwords, avoiding shared or public networks when accessing accounts, and enabling push notifications for all security-related activities. Dedicated support is available to address any irregularities and assist users in regaining control should unauthorized access be suspected.
Registered individuals can retrieve a digital copy of all personal records stored on the platform by submitting a verified request through the account management section. Processing time for such requests does not exceed 20 working days.
Should inaccuracies be detected in your stored profile or identification details, you have the option to edit or request amendments. This can be actioned directly in your profile or by contacting the dedicated support team through secure channels.
Users can ask for their personal information in a structured, widely used format, which makes it easy to move to another service provider when it is legal to do so. Requests are handled after confirming who owns the account and who they are.
People have the right to ask for their personal data to be deleted, but there are laws that require businesses to keep certain information (like anti-money laundering rules). Within 30 days of getting the go-ahead, all records that aren't needed are deleted from live databases.
You can ask for a temporary restriction if you think your data is being used for something other than what it was originally meant for. The information will not be used for marketing or profiling during this time.
To use these rights, follow the instructions in your account dashboard or get in touch with support and give them the information they need. We handle each data privacy request separately, and you will get a confirmation when each one is finished.
We may only send data to specific groups outside of our company. These groups include payment service providers, licensed software vendors, independent auditing agencies, technical support contractors, advertising platforms, and partners who help find fraud. Each recipient operates under binding confidentiality clauses and is required by law or contractual obligations to provide a comparable level of data protection.
Sharing occurs solely to facilitate financial transactions, ensure smooth software performance, fulfil regulatory compliance checks, prevent fraudulent activities, deliver personalized offers, or to obtain independent verification of random number generation and payout metrics. Without collaboration with these specific professionals, continued operation and legal compliance cannot be guaranteed.
In some cases, disclosures may involve servers or teams located in foreign countries. All such transfers adhere to standardized contractual clauses recognized by national and international supervisory authorities, ensuring consistent protection regardless of the recipient’s location.
Where rules require explicit authorization for certain types of disclosures–such as marketing or third-party promotional outreach–clear opt-in mechanisms are presented within account settings. Preferences may be updated or withdrawn at any time through the profile dashboard.
Data release to courts, law enforcement, or regulatory authorities occurs exclusively when mandated by legal orders or investigations. Unauthorized disclosure for commercial gain or outside listed purposes is strictly prohibited by internal policy and legal statutes. Users are encouraged to review partner lists and third-party data handling statements, which are available on-demand via customer support or within account management sections.
All amendments to our user data practices are scheduled a minimum of 14 days before taking effect. Each revision date is indicated at the top of the relevant page, making it straightforward to identify the latest version. Registered customers receive targeted email notifications outlining specific changes, including newly introduced clauses, expanded definitions, or revised retention periods. We advise users to review notification emails promptly, as certain updates may require acknowledgment or acceptance to ensure uninterrupted access. If an amendment materially alters user rights or data-processing purposes, express consent is requested through a secure account prompt. Declining such terms may restrict access to particular services or features involving personal information management. Archived versions of prior statements are stored for six years. Users can ask to see these files for reference or to check that they are following the rules. Changes to the platform, such as new rules or security improvements, are announced through in-platform messages and, when required by law, through other means of communication like SMS or account notifications. To get timely notifications about changes to your practice, we suggest that clients change their account contact preferences. You can reach our support team by live chat or email to get more information about what any changes to data-handling procedures mean.
Bonus
for first deposit
1000£ + 250 FS
Switch Language
