Casper Spins Privacy Policy

• The platform collects personal data such as name, date of birth, address, contact details, and account credentials for account creation and management.
• Verification data and identity documents are processed to comply with age, identity, fraud prevention, and anti-money laundering requirements.
• Payment and transaction information is handled by approved electronic service providers to process deposits, withdrawals, and refunds.
• Gameplay, betting activity, and responsible gambling information support safer gambling tools, affordability checks, and regulatory reporting.
• Device, log, IP address, location (approximate), and cookies data help maintain site security, prevent abuse, and improve services.
• Communications, support tickets, and call/chat records may be retained for customer care, training, and dispute resolution.
• Marketing preferences and opt-ins are stored to manage subscriptions and send permitted messages.
• Security measures include encryption, access controls, audits, staff training, and incident response procedures.
• Data is minimised, access is limited on a need-to-know basis, and retention follows legal and contractual obligations.
• Independent testing and monitoring support ongoing resilience against threats and unauthorised access.

Users have rights of access, correction, deletion, restriction, and data portability, and may object to certain processing or withdraw consent at any time. Requests may require identity verification and will be handled in line with statutory timeframes.

Compliance is aligned with the UK GDPR, the Data Protection Act 2018, the Privacy and Electronic Communications Regulations, and relevant Gambling Commission requirements on customer identity, anti-money laundering, and safer gambling.

Personal data is used to operate accounts, process transactions, verify identity and age, and provide safer gambling tools. Information supports customer support, security monitoring, and the prevention and detection of fraud and money laundering. Analytics help improve the quality, performance, and accessibility of online services. Subject to consent and preferences, marketing communications may be sent by permitted channels. Regulatory duties require processing for reporting, dispute handling, and record-keeping.

• Set up, administer, and secure user accounts.
• Verify identity, age, source of funds, and conduct due diligence.
• Process payments and withdrawals via authorised payment providers.
• Deliver the gaming and sportsbook services and personalise user experience.
• Monitor gameplay to support responsible gambling and self-exclusion.
• Detect, investigate, and prevent fraud, misuse, and security incidents.
• Provide customer support and manage complaints or disputes.
• Conduct analytics to improve features, stability, and accessibility.
• Send marketing where consent exists or where permitted by law.
• Meet legal, regulatory, and tax obligations, including retention.

All processing is grounded in lawful bases under the UK GDPR, including consent, contract, legal obligation, and legitimate interests. The platform aims to keep users informed about how information is collected and used, and why each purpose applies.

Users can view and update most personal information in account settings. Formal requests for access, correction, deletion, or portability can be submitted through the secure account area or the contact options on the website. For security, any request may require identity checks and additional verification steps, and certain information may be retained where law or regulatory obligations require it, including anti-money laundering record-keeping. Users consent to necessary security checks and acknowledge that payment information is handled by approved electronic service providers under strict confidentiality and security standards. The service maintains administrative, technical, and physical safeguards to protect user privacy and maintain the integrity of the platform.

This service is intended for users aged 18 and over only. Age cannot be fully verified without appropriate identity documents. If a parent or guardian believes a minor has provided information, a request can be made to delete the account and related data.

• Access is denied to users under 18, and accounts suspected to be used by minors are suspended.
• Identity and age verification checks are conducted before gambling is permitted.
• Data linked to confirmed minors is promptly deleted, subject to legal holds.
• Parents or guardians may contact the service to request deletion and provide proof of guardianship.
• Responsible gambling tools and signposting to support services are provided for lawful users.
• Attempts to bypass verification may be reported where required by law.

Personal data may be stored or processed outside the United Kingdom where technology or compliance partners operate. Use of the site and services indicates consent to such transfers in line with applicable safeguards. Partners are contractually bound to maintain confidentiality and protect information. Risk assessments and approved transfer mechanisms are used to safeguard data in any international location.

• Transfers rely on adequacy regulations, the UK International Data Transfer Agreement, or UK-approved Standard Contractual Clauses.
• Transfer impact assessments evaluate local laws and risks before onboarding.
• Encryption in transit and at rest reduces interception risks during transfers.
• Access is limited to authorised personnel and strictly controlled.
• Vendors undergo review and must meet security and privacy standards.
• Users may request details of relevant transfer safeguards and mechanisms.

This disclaimer explains how certain terms may limit or clarify the scope and effect of the rules in this document. It applies when a user accepts the policy by continuing to use the services, by express acceptance, or by accession under the platform’s terms.

• The policy may be updated to reflect legal, technical, or operational changes; the latest version prevails.
• Nothing in this document limits statutory rights under UK law.
• If any provision is found invalid, the remainder continues in effect.
• Conflicts between this policy and mandatory law are resolved in favour of the law of England and Wales.
• Records and logs may be relied upon to evidence transactions and compliance.
• Breaches of platform rules may result in account actions consistent with applicable terms and regulations.

Cookies are small text files placed on a device to store information about a user’s session, preferences, and interactions across the websites and services. They are used for statistics, behaviour analysis, personalisation, and continual site improvement, including security and fraud prevention. First-party and third-party cookies, as well as similar technologies, may operate for these purposes, and users can manage consent through browser settings or the site’s controls. Unless otherwise stated, cookies are retained for up to 1 year, after which they are removed or refreshed in line with their purpose and applicable rules.

Use of the services in the United Kingdom constitutes full acceptance of the current Privacy Policy and any incorporated terms and notices. The most recent version replaces all previous versions from its effective date, and continued use after changes indicates agreement to the updated terms.

Personal data may be shared with third parties where required by law, for dispute resolution, or to perform agreements necessary to provide services. Categories of external recipients are listed on the site where possible; if not, information about the purpose and scope of sharing will be provided through appropriate notices. Submission of data for specific features signals consent to the relevant sharing for that feature, where consent is the applicable legal basis. All recipients are expected to process information under binding confidentiality and data protection obligations.

• Payment processors and banks for deposits, withdrawals, and chargebacks.
• Identity verification, KYC/AML, and fraud prevention providers.
• Regulators, supervisory authorities, and law enforcement where required.
• Dispute resolution bodies, auditors, and legal advisers.
• Analytics and security service providers supporting platform integrity.
• Marketing and communications providers subject to preferences and consent.
• Responsible gambling and self-exclusion scheme operators.
• Hosting, cloud, and content delivery partners maintaining the online service.

The site may include links to third-party websites that have their own privacy policies and security practices. Control over those external services is not exercised, and responsibility does not extend to how they collect or use personal information. Users should review the privacy notices and terms on any external site before providing data or using services. Caution is advised when sharing information or authorising third-party access.

• Check the external site’s privacy policy and cookie notice.
• Review security indicators such as HTTPS and certificate details.
• Avoid reusing account passwords across different websites.
• Limit sharing of sensitive information unless necessary and trusted.
• Use device and browser privacy controls to manage tracking.
• Close the browser session after accessing third-party portals.
• Contact the external site for questions about its data practices.
• Report suspicious links or content through the platform’s support channels.