Your data, who touches it, and how long we hold on
What we collect
Three categories, and nothing beyond them. First, the account data you give us at registration: an email address, a password we store only as a salted hash, a date of birth and a currency. Second, the verification data we ask for before your first payout: a photo identity document and a proof of address. Third, the operational data an account generates by existing — deposits, withdrawals, game rounds, session times, the IP address you connected from and the device you used.
We do not collect what we do not need. There is no marketing tracker on this site harvesting a profile of you across the internet, and we do not ask for information that has no bearing on running your account.
Why we hold it
The account data runs the account. The gameplay data settles bets, resolves disputes and produces the audit trail our licence requires — if you ever query a game round, that record is how it gets answered. The verification documents exist because a licensed operator may not pay money to a person it has not identified, and because an 18+ site has to be able to prove it enforced that.
The legal basis is a mix of contract (we cannot run your account without it), legal obligation (licensing, anti-money-laundering and age verification) and, for anything optional such as marketing email, your consent — which you can withdraw at any time without it affecting your ability to play.
How long, and how it is protected
Account and transaction records are retained for the period our licence and anti-money-laundering rules require after an account closes, which is measured in years rather than months. Verification documents are held under the same regime — we cannot simply delete an ID the day after a payout, because the obligation to have checked it outlives the payout itself. Marketing preferences we delete when you withdraw consent.
Everything travels over TLS, passwords are salted and hashed rather than stored, and access to verification documents is restricted to the staff who need them to do a specific job — the payments and compliance desks, not the marketing team. We do not sell your data. We do not rent it, trade it, or pass it to another casino, and there is no circumstance in which your name leaves here as part of a list.
Who else sees it
Only the parties that make the account work: our payment providers (who need enough to move money to you), our game suppliers (who see the rounds their own games produce), our identity-verification partners, and a regulator or law-enforcement body where the law compels us. Each of those receives the minimum required for its function, under contract, and none of them may use it for anything else.
Your rights
You can ask for a copy of what we hold on you, ask us to correct anything wrong in it, withdraw marketing consent, or ask for erasure — bearing in mind that erasure yields to the retention obligations above, so an account with a transaction history cannot be wiped on request while those obligations stand. Ask through the support channels in your account and we will answer within a month.
Cookies are used for the session, for security, and for basic analytics about how pages perform. You can clear or block them in your browser; blocking the session cookie will simply mean you cannot stay signed in. If you want the wider picture of how the site operates, the main page is the place to start.