Trustly Casino

Privacy Policy

This Privacy Policy outlines how we collect, use, process, and protect your personal information when you access and use our online casino services. We are committed to maintaining the highest standards of data protection and privacy in accordance with applicable UK legislation, including the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. By using our services, you acknowledge that you have read, understood, and agree to the practices described in this policy.

Information We Collect

We collect various types of personal information to provide you with secure and personalized gaming services. The information we gather falls into several categories, each serving specific purposes related to account management, regulatory compliance, and service enhancement.

Personal identification information includes your full name, date of birth, residential address, email address, and telephone number. This data is essential for account verification, age verification processes, and compliance with UK gambling regulations. We also collect government-issued identification documents such as passport, driving licence, or national identity card details during our Know Your Customer (KYC) procedures.

  • Full name and date of birth for identity verification
  • Residential address and contact information
  • Government-issued identification documents
  • Financial information including payment method details
  • Gaming activity and transaction history
  • Device information and technical data
  • Marketing preferences and communication settings
  • Responsible gambling information and self-imposed limits

Financial information encompasses bank account details, credit and debit card information, e-wallet credentials, and transaction histories. This data is collected to facilitate deposits, withdrawals, and to maintain comprehensive financial records as required by anti-money laundering regulations and the UK Gambling Commission licensing conditions.

How We Use Your Information

Your personal information is processed for specific, legitimate purposes that are directly related to providing online casino services and ensuring regulatory compliance. We operate under lawful bases for processing as defined by GDPR, including contractual necessity, legal obligations, and legitimate interests.

Account management represents a primary use of your personal data. We utilize your information to create and maintain your player account, process registration requests, verify your identity and age, and ensure that only authorized individuals access your account. This includes implementing security measures such as two-factor authentication and monitoring for suspicious account activity.

  • Account creation, maintenance, and security management
  • Processing deposits, withdrawals, and gaming transactions
  • Compliance with regulatory requirements and legal obligations
  • Customer support and communication services
  • Fraud prevention and risk assessment
  • Marketing communications and promotional offers
  • Service improvement and analytics
  • Responsible gambling monitoring and intervention

Regulatory compliance necessitates extensive use of personal data. We are obligated to maintain detailed records of player activities, conduct anti-money laundering checks, report suspicious transactions to relevant authorities, and ensure compliance with responsible gambling requirements. This includes monitoring gaming patterns, implementing deposit limits, and facilitating self-exclusion programs.

Data Sharing and Disclosure

We maintain strict policies regarding the sharing and disclosure of personal information. Your data is only shared with authorized third parties under specific circumstances and always in accordance with applicable privacy laws and our contractual obligations.

Service providers and business partners receive limited access to personal data when necessary for operational purposes. This includes payment processors who handle financial transactions, identity verification services that conduct KYC checks, and technology providers who maintain our gaming platform infrastructure. All third-party partners are contractually bound to maintain the same level of data protection that we provide.

  • Payment processors for transaction handling
  • Identity verification and KYC service providers
  • Technology and infrastructure service partners
  • Customer service and support contractors
  • Regulatory authorities when legally required
  • Law enforcement agencies under legal compulsion
  • Auditors and compliance monitoring organizations

Regulatory authorities may receive personal information when required by law or regulation. This includes the UK Gambling Commission, HM Revenue and Customs, the National Crime Agency, and other relevant governmental bodies. We only disclose information to the extent necessary to fulfill our legal obligations and regulatory requirements.

Data Retention Policies

We maintain comprehensive data retention policies that balance operational needs, regulatory requirements, and privacy rights. Personal information is retained for specific periods based on the type of data, its purpose, and applicable legal requirements.

Account information and gaming records are typically retained for a minimum of five years following account closure, as required by UK gambling regulations and anti-money laundering legislation. Financial transaction records, including deposit and withdrawal information, are maintained for seven years to comply with tax regulations and potential audit requirements.

  • Account information: minimum five years after account closure
  • Financial records: seven years for tax and audit compliance
  • Communication records: three years from last interaction
  • Marketing data: until consent is withdrawn or account closure
  • Technical logs: typically 12-24 months unless required longer
  • Compliance records: as required by regulatory obligations

Upon expiration of retention periods, personal data is securely deleted or anonymized unless continued retention is required by law or for the establishment, exercise, or defense of legal claims. We conduct regular reviews of stored data to ensure compliance with our retention policies and to minimize data storage to what is necessary and proportionate.

Security Measures and Data Protection

We implement comprehensive security measures designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. Our security framework encompasses technical, physical, and administrative safeguards that meet industry standards and regulatory requirements.

Technical security measures include advanced encryption protocols for data transmission and storage, secure server infrastructure hosted in certified data centers, and multi-layered network security systems. We employ SSL/TLS encryption for all data communications and utilize strong encryption algorithms for stored personal information.

  • Advanced encryption for data transmission and storage
  • Secure server infrastructure and certified data centers
  • Multi-factor authentication systems
  • Regular security audits and penetration testing
  • Employee training and access control procedures
  • Incident response and breach notification protocols
  • Continuous monitoring and threat detection systems

Administrative controls include comprehensive staff training programs, strict access control policies that limit data access to authorized personnel only, and regular security awareness updates. We maintain detailed audit logs of all data access and processing activities, enabling us to detect and respond to potential security incidents promptly.

Your Rights and Choices

Under UK data protection legislation, you possess several fundamental rights regarding your personal information. We are committed to facilitating the exercise of these rights and provide clear mechanisms for you to manage your personal data and privacy preferences.

You have the right to access personal information we hold about you, including the right to obtain a copy of your data in a structured, commonly used format. You may also request correction of inaccurate information, deletion of personal data under certain circumstances, and restriction of processing activities.

  • Right of access to your personal information
  • Right to rectification of inaccurate data
  • Right to erasure under specific circumstances
  • Right to restrict processing activities
  • Right to data portability
  • Right to object to certain processing
  • Rights regarding automated decision-making
  • Right to withdraw consent where applicable

To exercise these rights, you may contact our Data Protection Officer through the designated channels provided in our contact section. We will respond to your requests within one month of receipt, though complex requests may require additional time with appropriate notification to you.

Cookies and Tracking Technologies

We utilize cookies and similar tracking technologies to enhance your gaming experience, maintain session security, and analyze website performance. Our cookie policy provides detailed information about the types of cookies we use and how you can manage your preferences.

Essential cookies are necessary for basic website functionality and account security. These cookies enable core features such as user authentication, session management, and security protocols. Performance cookies help us understand how visitors interact with our website, allowing us to optimize user experience and identify technical issues.

  • Essential cookies for core functionality and security
  • Performance cookies for website optimization
  • Functional cookies for personalized features
  • Analytics cookies for usage statistics
  • Marketing cookies for promotional content

You can control cookie settings through your browser preferences, though disabling certain cookies may limit website functionality. We provide cookie preference management tools that allow you to customize your tracking preferences while maintaining essential website operations.

International Data Transfers

While we primarily operate within the UK jurisdiction, certain operational requirements may necessitate the transfer of personal data to countries outside the European Economic Area. All international data transfers are conducted in accordance with GDPR requirements and UK data protection standards.

When transfers occur, we implement appropriate safeguards including adequacy decisions, standard contractual clauses, or other approved transfer mechanisms. Service providers processing data internationally are contractually bound to maintain equivalent levels of data protection and security.

  • Transfers only when operationally necessary
  • Implementation of appropriate legal safeguards
  • Contractual protection requirements for recipients
  • Regular review of transfer arrangements
  • Compliance with UK and EU transfer regulations

We maintain records of all international data transfers and regularly review transfer arrangements to ensure continued compliance with evolving regulatory requirements and adequacy decisions.

Marketing Communications

We may send marketing communications about promotions, bonuses, new games, and other relevant offers based on your preferences and consent. All marketing activities comply with UK privacy and electronic marketing regulations, including the Privacy and Electronic Communications Regulations.

You can manage marketing preferences through your account settings or by using unsubscribe mechanisms provided in communications. We respect opt-out requests promptly and maintain suppression lists to prevent unwanted communications.

  • Promotional offers and bonus information
  • New game releases and feature updates
  • Account-related notifications and updates
  • Responsible gambling information and resources
  • Regulatory and policy change notifications

Marketing communications are tailored based on gaming preferences, account activity, and explicitly provided interests. We do not share personal information with third parties for their direct marketing purposes without explicit consent.

Policy Updates and Contact Information

This Privacy Policy may be updated periodically to reflect changes in our practices, services, or applicable regulations. We will notify you of significant changes through appropriate channels, including email notifications or prominent website notices.

For questions, concerns, or requests regarding this Privacy Policy or our data protection practices, you may contact our Data Protection Officer through our customer support channels. We are committed to addressing privacy inquiries promptly and transparently.

  • Regular policy reviews and updates
  • Notification procedures for significant changes
  • Multiple contact channels for privacy inquiries
  • Dedicated Data Protection Officer availability
  • Complaint resolution procedures
  • Regulatory authority contact information

You also have the right to lodge complaints with the Information Commissioner's Office, the UK's data protection supervisory authority, if you believe your privacy rights have been violated. We encourage you to contact us first to resolve any concerns, but you may pursue regulatory complaints independently of our internal procedures.

Play
Registration
Trustly Casino UK
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.