Privacy Policy

This Privacy Policy outlines how we collect, utilise, protect, and manage your personal information when you access and engage with our online gaming platform. We are committed to maintaining the highest standards of data protection in accordance with the Protection of Personal Information Act (POPIA) 2013 and other applicable South African legislation. This policy applies to all users, players, and visitors of our platform, regardless of their jurisdiction. Last updated: January 28, 2026.

1. Information We Collect

We collect various types of information to provide you with a seamless gaming experience, ensure regulatory compliance, and maintain the security of our platform. The data collection process begins when you register an account and continues throughout your interaction with our services. We gather information through multiple channels, including direct submissions, automated tracking technologies, and third-party partnerships.

Data Category	Examples	Collection Method
Personal Identification Data	Full name, date of birth, national ID number, passport details	Account registration, KYC verification
Contact Information	Email address, mobile phone number, physical address	Registration form, profile update
Financial Data	Banking details, payment method information, transaction history, deposit and withdrawal records	Payment processing, account statements
Technical Information	IP address, device type, browser information, operating system, cookie identifiers	Automatic logging, cookies, web beacons
Gaming Behaviour Data	Game preferences, betting patterns, play history, win/loss records	Platform activity tracking
Communication Records	Messages with customer support, emails, live chat conversations	Direct communication channels

Additionally, we may collect information from third-party sources such as verification service providers, payment processors, and law enforcement agencies when legally required. This information assists us in authenticating your identity, preventing fraud, and complying with anti-money laundering regulations.

2. Purposes of Data Processing

Your personal information is processed for specific, legitimate purposes that enhance your gaming experience and protect our platform’s integrity. We process data only when we have a lawful basis to do so, including contractual necessity, legal compliance, consent, or legitimate business interests. Each data category serves distinct functions within our operations.

Account creation, verification, and management
KYC (Know Your Customer) and AML (Anti-Money Laundering) compliance checks
Processing deposits, withdrawals, and financial transactions
Fraud detection and prevention
Responsible gambling monitoring and self-exclusion enforcement
Customer support and dispute resolution
Marketing communications and promotional offers
Platform security and vulnerability testing
Statistical analysis and gaming research
Tax reporting and regulatory compliance
Investigation of illegal activities or breaches of terms
Improvement of user interface and platform functionality

We ensure that data processing remains proportionate and limited to what is necessary for each stated purpose. If we intend to use your information for purposes beyond those listed here, we will obtain your explicit consent before proceeding.

3. Data Sharing and Third-Party Disclosure

We maintain strict confidentiality regarding your personal information. However, there are specific circumstances and categories of recipients with whom we share your data to fulfil our operational and legal obligations.

Payment Service Providers: Banks, e-wallet operators, and payment processors require financial data to process transactions securely and verify payment authenticity.
Identity Verification Services: Third-party verification companies conduct KYC checks using your personal and identification data.
Regulatory Authorities: The National Gambling Board, Financial Intelligence Centre, and other government agencies receive information as required by law.
Law Enforcement: Police and judicial authorities may request personal information during investigations into criminal activity.
Technology Service Providers: Cloud hosting providers, database managers, and cybersecurity firms assist in platform maintenance and protection.
Marketing and Analytics Partners: Aggregated and anonymised data may be shared with advertising networks to improve targeted marketing.
Affiliate Networks: Referral partners receive limited information to track player acquisition and commission calculations.
Customer Support Contractors: External support teams may access account information to assist with technical issues and complaints.

All third parties are contractually obligated to maintain confidentiality, comply with data protection laws, and use information solely for agreed purposes. We never sell personal data to unrelated commercial entities.

4. Data Security and Protection Measures

We implement comprehensive technical and organisational measures to protect your personal information against unauthorised access, alteration, loss, or disclosure. Our security infrastructure adheres to industry best practices and international standards for data protection.

End-to-end encryption of data in transit using TLS 1.3 protocols
AES-256 encryption for data stored in our databases
Multi-factor authentication for user account access
Regular penetration testing and vulnerability assessments
Intrusion detection systems and real-time monitoring
Restricted access controls with role-based permissions
Employee confidentiality agreements and security training
Firewall protection and DDoS mitigation systems
Secure password policies and session management
Regular security audits by independent third-party assessors
Backup and disaster recovery protocols
Incident response procedures and breach notification protocols

Despite our rigorous security measures, no system is entirely impenetrable. You acknowledge that internet transmission carries inherent risks. We encourage you to use strong, unique passwords and maintain the confidentiality of your account credentials. If you suspect unauthorised access to your account, contact our security team immediately.

5. Data Retention and Deletion

We retain personal information for the duration necessary to fulfil the purposes outlined in this policy and comply with legal requirements. South African law and regulatory frameworks impose specific retention obligations for gaming operators, particularly regarding financial and transaction records.

Account Information: Retained for the active account lifetime plus seven years post-closure for audit trails
Financial Records: Maintained for six years in accordance with South African tax legislation
Communication Records: Stored for three years unless required longer for dispute resolution
Technical Logs: Kept for twelve months unless investigation requires extended retention
Marketing Consent: Retained until withdrawal of consent or account deletion
Identity Verification Data: Maintained for ten years as required by anti-money laundering regulations

Upon request, we delete personal information when it is no longer necessary, unless legal or contractual obligations mandate retention. Data deletion is conducted securely to prevent unauthorised recovery. Anonymised or aggregated data that cannot identify individuals may be retained indefinitely for statistical purposes.

6. User Rights and Data Subject Access

Under the Protection of Personal Information Act (POPIA) and applicable South African privacy laws, you possess specific rights regarding your personal data. We are committed to facilitating these rights and responding to requests promptly and transparently.

Right of Access: You may request a copy of all personal information we hold about you in an intelligible format.
Right to Correction: You can request correction of inaccurate, incomplete, or outdated personal information.
Right to Deletion: You may request erasure of personal data, subject to legal retention requirements.
Right to Objection: You can object to processing for marketing purposes, profiling, and certain automated decision-making.
Right to Restrict Processing: You may request limitation of data processing pending investigation of disputes.
Right to Data Portability: You can request your data in a structured, commonly used, and machine-readable format.
Right to Lodge a Complaint: You may submit complaints to the Information Regulator if you believe your rights are violated.
Right to Withdraw Consent: You can withdraw previously granted consent to data processing at any time.

To exercise these rights, submit a written request to our Data Protection Officer with proof of identity. We will respond within thirty days unless investigation requires extension. Requests for data access may incur a reasonable administrative fee. We will not discriminate against you for exercising your privacy rights.

7. Policy Updates and Contact Information

We periodically review and update this Privacy Policy to reflect changes in our data practices, legal requirements, and industry standards. Significant changes will be communicated to registered users via email or prominent notification on our platform. Your continued use of our services following policy updates constitutes acceptance of the revised terms.

For questions, concerns, or requests regarding this Privacy Policy, contact our dedicated Data Protection Officer:

Email: [email protected]
Postal Address: Data Protection Officer, Gaming Compliance Department, Johannesburg, South Africa
Response Time: We aim to respond within five business days
Information Regulator: Lodge complaints at www.inforegulator.org.za

This Privacy Policy is effective as of January 28, 2026, and supersedes all previous versions. Your privacy is our priority, and we remain committed to protecting your personal information with the highest degree of care and professionalism.