Trust forms the core of our interaction with customers at Book Of Slots. This data retention policy explains how we process, retain, and eventually remove your personal information. We function under UK data protection laws, including the UK GDPR and the Data Protection Act 2018. Being open about our data handling is a legal requirement, but we also consider it as a key part of our operations. We want for you to appreciate our games aware your privacy is taken seriously.
What constitutes a Data Retention Policy?
A Data Retention Policy constitutes a official document. It sets out how long an organisation retains different types of personal data and the legal reasons for retaining it. This is a key part of effective data governance. It prevents us from holding information forever, or for longer than we actually need it. At Book of Slots, we have set specific retention periods for all your data. This covers your account details, transaction history, support conversations, and gameplay records. This structured method minimises risk, enhances data security, and shows we comply with the law for our players and regulators like the UK Gambling Commission.
Your Rights and Removal of Data
You possess a right to erasure, sometimes referred to as the ‘right to be forgotten’. This is a crucial part of UK data protection law. But this right comes with limits. You can request us to delete your personal data. However, we might have to decline if we need to keep the data to comply with a legal duty. Our licensing conditions from the UKGC are one example. We also are required to retain data to establish, exercise, or defend legal claims. If we are obliged to keep data for these overriding reasons, we undertake to only use it for those specific purposes. The data will be safeguarded and access will be restricted.
Data Security In Retention
Ensuring your personal data protected is our main concern for its entire lifecycle. We employ strong technical and organisational safeguards to safeguard the information we hold. This protects it from unauthorised access, change, disclosure, or destruction. Our measures include encrypting data when it’s moving and when it’s stored. We apply strict access controls so employees only view what they need for their job. We also utilize advanced network security. These protocols are tested and updated regularly to counter new threats. Your data stays secure whether we are using it today or checking it for a regulatory check in several years’ time.
Policy Changes and Contact Information
We might update this Data Retention Policy occasionally. Changes might represent shifts in our activities, technology updates, or new legal requirements. The newest version will always be published on our website. We will inform you about any significant changes that affect how we handle your data. If you have questions about this policy, our retention practices, or your data rights, please contact our Data Protection Officer. We are here to collaborate with you, handle concerns, and provide you with clear, timely updates about how we protect your personal information.
Legal Grounds for Data Retention
UK data protection law necessitates a valid legal reason for us to manage and keep your personal data. Our main reasons are to meet a contract with you, to obey legal rules, and for our legitimate business interests. For example, we maintain your basic account details to provide the gaming service you requested. That completes our contract. At the same time, laws enforced by the UKGC mandate us to keep financial transaction records for several years to combat money laundering. When we depend on legitimate interests, like preventing fraud, we carefully evaluate them against your rights. We make sure any data we keep is proportionate.
Core Data Categories and Keeping Periods
We classify personal data into categories so we can use suitable retention timelines. The specific length of time depends on why we processed the data and the legal, regulatory, and business needs we must meet. These periods can change if the law changes. If that happens, we will update this policy and let you know about any significant changes.
Profile and Identity Verification Data
This includes information you gave us when you registered and verified your account. It covers your name, date of birth, address, and copies of documents like a passport or driving licence. We keep this data for as long as your account is open, and for a set time after it closes.
Post-Account Closure Retention
After an account is closed, by you or by us, we must keep identity and verification data for at least five years from the closure date. The UK Gambling Commission’s Licence Conditions and Codes of Practice (LCCP) mandate this. It aids with responsible gambling oversight, fraud prevention, and any regulatory investigations that might happen after an account is no longer active.
Financial and Transaction Records
This category contains every deposit, withdrawal, bonus claim, and wager. Detailed transaction histories are crucial for financial audits, solving disputes, and giving you a clear record of your activity. Financial and gambling regulations heavily influence how long we keep this data.
Meeting Regulatory Requirements
We keep full financial transaction data for a minimum of six years from the transaction date. This complies with standard UK tax and accounting law. For some records, the UKGC might demand us to keep them even longer. We always observe the strictest applicable timeframe to ensure full compliance and to safeguard both you and our business.
User Interaction and Support Data
We maintain records of your conversations with our customer support team, whether by live chat, email, or phone. This assists us maintain service quality and train our staff. It also enables us resolve ongoing issues and improve the player experience. We treat these records with the same confidentiality as all your personal data.
Generally, we retain support logs for three years from the date of the interaction. This offers us time to look back at previous conversations if you need more help, and to spot trends in player queries. If a communication is part of a dispute or complaint that could lead to legal action, we might retain those specific records longer. This complies with UK time limits for making legal claims.
FAQ
How come does Book of Slots have to keep my data after I close my account?
The UK Gambling Commission under regulations requires us to keep certain data, like identity and transaction records, for a fixed time after an account closes. This aids responsible gambling monitoring, aids prevent fraud, and aids with any future regulatory investigations. For core account data, this retention period is generally five years.
May I submit a request for early deletion of my personal data?
You can at any time make a request for erasure. But UK gambling and financial regulations often mean we may not comply right away. For instance, we may not delete your transaction history before the required six-year period is over. The law requires us to keep it for auditing and compliance.
In what way is my data protected during the retention period?
We apply strict security measures for the full time we hold your data. These cover encryption, tight access controls, and secure storage systems. We carry out regular security audits to make sure these protections stay strong against new threats. Your information is safe from unauthorised access, whether it’s in active use or stored away.
Which happens to my data when the retention period expires?
After the retention period for a specific type of data concludes, we safely and irreversibly delete it. Occasionally we anonymise it in its place. Anonymisation means modifying the data so it can no longer be traced back to you. Thereafter, it might be used for internal statistical analysis.
Is it true that Book of Slots provide my retained data with third parties?
We solely share data when it’s essential. This includes sharing with payment processors to operate our service, or with authorities like the UK Gambling Commission when the law requires it. Any third party we partner with must adhere to strict contractual rules to protect your data. They can solely use it for the particular, lawful purpose we agreed on.
By what method can I find out what data you store on me?
You are entitled to a right to access your personal data. To exercise this right, you can make us a Subject Access Request (SAR). We will then supply a copy of the information we maintain about you. We do not charge for this and will typically respond within one month. This enables you view exactly what data is in our records.
At what location can I view the most up-to-date version of this policy?
The latest version of our Data Retention Policy is continuously available on our website. It’s a good idea to review it now and then. If we implement any big changes that affect how we manage your data, we will notify you. This maintains you updated about our privacy practices.
