Reliance forms the core of our connection with users at Book of Slots. This data retention policy outlines how we process, store, and ultimately delete your personal information. We function under UK data protection laws, covering the UK GDPR and the Data Protection Act 2018. Being open about our data handling is a legal requirement, but we also view it as a vital part of our operations. We strive for you to experience our games aware your privacy is taken seriously.
What constitutes a Data Retention Policy?
A Data Retention Policy is a formal document. It sets out how long an organisation keeps different types of personal data and the legal reasons for storing it. This is a key part of sound data governance. It keeps us from keeping information forever, or for longer than we actually need it. At Book of Slots, we have set specific retention periods for all your data. This covers your account details, transaction history, support conversations, and gameplay records. This organised method minimises risk, boosts data security, and shows we comply with the law for our players and regulators like the UK Gambling Commission.
Essential Data Categories and Retention Periods
We group personal data into categories so we can apply suitable retention timelines. The particular length of time depends on why we processed the data and the legal, regulatory, and business needs we must meet. These periods can change if the law changes. If that happens, we will update this policy and let you know about any significant changes.
Account and Identity Verification Data
This covers information you gave us when you registered and verified your account. It covers your name, date of birth, address, and copies of documents like a passport or driving licence. We keep this data for as long as your account is open, and for a set time after it closes.
Post-Account Closure Retention
After an account is closed, by you or by us, we must keep identity and verification data for at least five years from the closure date. The UK Gambling Commission’s Licence Conditions and Codes of Practice (LCCP) mandate this. It aids with responsible gambling oversight, fraud prevention, and any regulatory investigations that might happen after an account is no longer active.
Monetary and Transaction Records
This category includes every deposit, withdrawal, bonus claim, and wager. Detailed transaction histories are vital for financial audits, solving disputes, and giving you a clear record of your activity. Financial and gambling regulations heavily affect how long we keep this data.
Complying with Regulatory Requirements
We keep full financial transaction data for a minimum of six years from the transaction date. This matches standard UK tax and accounting law. For some records, the UKGC might require us to keep them even longer. We always follow the strictest applicable timeframe to ensure full compliance and to shield both you and our business.
Customer Interaction and Support Data
We store records of your conversations with our customer support team, whether by live chat, email, or phone. This helps us maintain service quality and train our staff. It also allows us resolve ongoing issues and improve the player experience. We handle these records with the same confidentiality as all your personal data.
Generally, we keep support logs for three years from the date of the interaction. This provides us time to look back at previous conversations if you need more help, and to spot trends in player queries. If a communication is part of a dispute or complaint that could lead to legal action, we might retain those specific records longer. This complies with UK time limits for making legal claims.
Our Legal Basis for Data Retention
UK data protection law necessitates a valid legal reason for us to handle and store your personal data. Our main reasons are to fulfil a contract with you, to follow legal rules, and for our legitimate business interests. For example, we hold your basic account details to offer the gaming service you requested. That satisfies our contract. At the same time, laws upheld by the UKGC mandate us to keep financial transaction records for several years to combat money laundering. When we base on legitimate interests, like preventing fraud, we carefully evaluate them against your rights. We ensure any data we keep is proportionate.
Your Protections and Data Deletion
You hold a claim to erasure, occasionally called the ‘right to be forgotten’. This is a crucial part of UK data protection law. But this right carries limits. You can petition us to delete your personal data. However, we might have to decline if we need to keep the data to adhere to a legal duty. Our licensing conditions from the UKGC are one example. We also need to retain data to establish, exercise, or defend legal claims. If we are obliged to keep data for these overriding reasons, we commit to only use it for those specific purposes. The data will be safeguarded and access will be restricted.
Data Security During Retention
Keeping your personal data secure is our priority for its entire lifecycle. We use strong technical and organisational controls to safeguard the information we keep. This defends it from unauthorised access, change, disclosure, or destruction. Our actions include encrypting data when it’s moving and when it’s stored. We maintain strict access controls so employees only see what they need for their job. We also leverage advanced network security. These protocols are tested and updated regularly to combat new threats. Your data stays secure whether we are using it today or examining it for a regulatory check in several years’ time.
Policy Updates and Contact Details
We could change this Data Retention Policy periodically. Changes may indicate shifts in our activities, technology updates, or new legal obligations. The latest version will always be available on our website. We will tell you about any significant changes that impact how we manage your data. If you have queries about this policy, our retention practices, or your data rights, please contact our Data Protection Officer. We are here to assist you, address concerns, and provide you with clear, timely information about how we protect your personal information.
Nejčastější otázky
For what reason does Book of Slots need to hold my data after I close my account?
The UK Gambling Commission legally mandates us to hold specific data, like identity and transaction records, for a specified time after an account is terminated. This facilitates responsible gambling monitoring, assists prevent fraud, and assists with any future regulatory investigations. For core account data, this retention period is generally five years.
Can I ask for early deletion of my personal data?
You can always make a request for erasure. But UK gambling and financial regulations often mean we cannot comply right away. For instance, we cannot delete your transaction history before the required six-year period is over. The law requires us to keep it for auditing and compliance.
In what way is my data safeguarded during the retention period?
We implement strict security measures for the whole time we store your data. These cover encryption, tight access controls, and secure storage systems. We carry out regular security audits to make sure these protections remain strong against new threats. Your information is safe from unauthorised access, whether it’s in active use or stored away.
What exactly happens to my data when the retention period expires?
After the retention period for a specific type of data concludes, we securely and irreversibly delete it. Sometimes we anonymise it instead. Anonymisation means modifying the data so it can no longer be linked back to you. Thereafter, it might be used for internal statistical analysis.
Is it true that Book of Slots disclose my retained data with third parties?
We only share data when it’s essential. This encompasses sharing with payment processors to manage our service, or with authorities like the UK Gambling Commission when the law mandates it. Any third party we collaborate with must comply with strict contractual rules to protect your data. They can solely use it for the specific, lawful purpose we agreed on.
By what method can I find out what data you store on me?
You are entitled to a right to access your personal data. To utilize this right, you can send us a Subject Access Request (SAR). We will then supply a copy of the information we maintain about you. We do not charge for this and will normally respond within one month. This allows you review exactly what data is in our records.
Where can I find the most up-to-date version of this policy?
The newest version of our Data Retention Policy is always available on our website. It’s a wise idea to check it periodically. If we make any big changes that impact how we process your data, we will inform you. This ensures you aware about our privacy practices.