Effective Date: [Date, e.g., October 16, 2025]
This Privacy Policy outlines how Fairspin Casino (“Fairspin,” “We,” “Us,” or “Our”) collects, uses, protects, and discloses your Personal Data when you use our website, gaming platform, and related services (collectively, the “Services”). We are committed to protecting your privacy in compliance with applicable data protection laws and our regulatory obligations.
1. Data We Collect
We collect data necessary for the provision of our Services, legal compliance, security, and legitimate business interests.
A. Personal Identification Data (PID)
Collected during account registration, KYC (Know Your Customer) procedures, and verification.
- Categories: Full name, date of birth, gender, residential address, email address, telephone number, and copies of identification documents (e.g., passport, driver’s license).
- Purpose: Account creation, identity verification, age verification, regulatory compliance (AML/CFT).
B. Financial and Transactional Data
Collected to facilitate deposits, withdrawals, and game play.
- Categories: Deposit/withdrawal history, payment method details (e.g., bank name, truncated card number, digital wallet ID), betting history, winnings, and losses.
- Purpose: Transaction processing, fund security, fraud prevention, compliance with financial regulations and Responsible Gaming obligations.
C. Technical and Usage Data
Automatically collected as you interact with our Services.
- Categories: IP address, device type, operating system, browser type, geographical location (city/country), session duration, pages visited, game preferences, referral source, and error logs.
- Purpose: System security, service optimization, data analytics, fraud detection (e.g., multiple accounts from one device/IP), and technical support.
D. Communication and Marketing Data
Data related to your support interactions and marketing preferences.
- Categories: Content of communications (live chat transcripts, emails), feedback, and marketing consent status.
- Purpose: Customer support, service quality improvement, and delivering relevant promotional offers based on your consent/preferences.
2. Lawful Basis for Processing
We process your Personal Data based on the following legal grounds:
| Lawful Basis | Application |
| Contractual Necessity | Processing data (e.g., PID, Financial Data) to provide the Services you request and fulfill our obligations under the Terms and Conditions. |
| Legal Obligation | Processing data (e.g., PID, Transactional Data) to comply with legal and regulatory mandates, including KYC, AML (Anti-Money Laundering) requirements, and licensing conditions. |
| Legitimate Interests | Processing data (e.g., Technical, Usage Data) for purposes such as security improvements, internal business analysis, fraud prevention, and responsible gambling monitoring, provided your rights do not override these interests. |
| Consent | Processing data for specific purposes, such as direct marketing or non-essential cookies, where explicit consent is obtained. You have the right to withdraw consent at any time. |
3. Data Security and Retention
A. Security Measures
We employ industry-standard technical and organizational security measures to protect your data from unauthorized access, loss, or misuse:
- Encryption: All data transmission is secured using SSL/TLS Encryption. Sensitive data at rest is secured via appropriate cryptographic methods.
- Access Control: Strict role-based access controls (RBAC) are enforced, limiting access to Personal Data only to authorized personnel on a ‘need-to-know’ basis.
- Infrastructure: Our servers and network are protected by robust firewalls and continuous intrusion detection systems.
- Payment: Financial transactions are processed via certified, secure payment gateways in compliance with relevant standards.
B. Data Retention
We retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements.
- Account Data: Retained for the duration your account is active, and for a period mandated by our licensing jurisdiction (typically five to seven years) after account closure or termination, for regulatory compliance (AML/CFT) purposes.
- Transactional Data: Retained in line with statutory requirements (e.g., taxation, anti-money laundering laws).
4. Disclosure of Data
We may share your Personal Data with the following entities, only as required for the operation of our Services and compliance with legal obligations:
- Regulators and Authorities: To comply with legal requests, subpoenas, or mandatory reports to relevant gambling regulators, tax authorities, and law enforcement agencies.
- Payment Providers: To process financial transactions and prevent fraud.
- Service Providers: Third parties who perform essential functions on our behalf (e.g., IT hosting, security services, KYC/identity verification providers, marketing/analytics services). These parties are contractually bound to process data only according to our instructions and secure it appropriately.
- Game Providers: Data necessary to allow you to participate in games and ensure fair play.
- Corporate Transactions: In the event of a merger, acquisition, or asset sale, your data may be transferred to the new owner, subject to the same privacy commitments.
We will never sell your Personal Data to third parties for independent marketing purposes.
5. Your Data Rights
Subject to legal exceptions, you have the following rights regarding your Personal Data:
- Right of Access: Request copies of your Personal Data held by us.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure (‘Right to be Forgotten’): Request deletion of your data, where retention is not required by law (e.g., AML/CFT retention periods).
- Right to Restriction of Processing: Request limits on how we process your data.
- Right to Object: Object to processing based on legitimate interests or for direct marketing.
- Data Portability: Request transfer of your data to another party in a structured, commonly used format.
To exercise any of these rights, please contact our Data Protection Officer using the contact details below. We may require you to verify your identity before processing your request.