Privacy Policy

1. Data Controller and Data Protection Officer

For the purposes of the GDPR and applicable Irish data protection law, the data controller responsible for the processing of your personal data is the operator of this website.

If you have any questions or concerns regarding the processing of your personal data, or if you wish to exercise any of your rights under the GDPR, you may contact our Data Protection Officer using the contact details provided in Section 14 of this Privacy Policy.

As data controller, we determine the purposes and means of processing personal data collected through this website and are responsible for ensuring that all processing activities comply with the GDPR and applicable national legislation.

2. Collection and Storage of Personal Data

We collect personal data in the following circumstances:

Data Collected Automatically

When you visit our website, our servers automatically collect and store certain technical information in server log files. This data includes:

• Your IP address (anonymised where technically feasible)
• Date and time of your visit
• Pages viewed and time spent on each page
• The referring website or source from which you arrived
• Your browser type, version, and language settings
• Your operating system and device type
• Screen resolution and viewport size

Data You Provide Voluntarily

If you contact us via email, a contact form, or any other communication channel, we may collect:

• Your name and email address
• The content of your message or enquiry
• Any other personal data you voluntarily include in your correspondence

Data Storage

All personal data is stored on secure servers located within the European Economic Area (EEA). We implement appropriate technical and organisational measures to protect your data against unauthorised access, alteration, disclosure, or destruction, in accordance with Article 32 of the GDPR.

3. Purpose of Data Processing

We process your personal data for the following purposes and on the following legal bases as defined in Article 6(1) of the GDPR:

Legitimate Interest — Article 6(1)(f) GDPR

• Website operation and improvement: We process technical data to ensure the proper functioning, security, and optimisation of our website.
• Analytics and statistical analysis: We analyse aggregated and anonymised usage data to understand how visitors interact with our content, enabling us to improve our services and user experience.
• Fraud prevention and security: We process data to detect and prevent malicious activity, abuse, or unauthorised access to our systems.

Consent — Article 6(1)(a) GDPR

• Cookies and tracking technologies: Where required by law, we obtain your explicit consent before placing non-essential cookies or tracking technologies on your device. You may withdraw your consent at any time.
• Marketing communications: If you subscribe to any newsletter or communication, we will only send marketing material with your prior explicit consent.

Legal Obligation — Article 6(1)(c) GDPR

• We may process personal data where necessary to comply with a legal obligation to which we are subject, such as responding to lawful requests from regulatory authorities.

We do not process personal data for automated decision-making or profiling as defined in Article 22 of the GDPR.

4. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and to analyse website traffic. Cookies are small text files that are stored on your device when you visit our website.

Types of Cookies We Use

• Strictly Necessary Cookies: These cookies are essential for the operation of our website. They enable core functionality such as page navigation and access to secure areas. These cookies do not require your consent under Article 5(3) of the ePrivacy Directive (2002/58/EC).
• Analytics Cookies: These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. We use this data to improve the structure, content, and performance of our website.
• Functionality Cookies: These cookies allow our website to remember choices you make (such as your language preference or region) and provide enhanced, personalised features.
• Advertising and Affiliate Cookies: These cookies are used by our affiliate partners to track referrals from our website to casino operators. They enable us to earn a commission when you register at a casino through our affiliate links. These cookies may track your activity across multiple websites.

Managing Cookies

When you first visit our website, you will be presented with a cookie consent banner that allows you to accept or reject non-essential cookies. You can change your cookie preferences at any time by adjusting your browser settings or by using our cookie management tool. Please note that disabling certain cookies may affect the functionality of our website.

For more information about cookies and how to manage them, visit www.allaboutcookies.org.

5. Disclosure of Data to Third Parties

We do not sell, rent, or trade your personal data to third parties. However, we may share your data with the following categories of recipients where necessary:

• Hosting and infrastructure providers: Our website is hosted by third-party service providers who process data on our behalf and are bound by data processing agreements in accordance with Article 28 of the GDPR.
• Analytics providers: We use third-party analytics services (see Section 9) that process anonymised or pseudonymised data to provide us with website usage statistics.
• Affiliate partners: When you click on an affiliate link on our website, the respective casino operator or affiliate network may receive certain data (such as a referral identifier and your IP address) to track the referral. This processing is governed by the privacy policies of the respective third parties.
• Legal and regulatory authorities: We may disclose personal data to law enforcement agencies, regulatory bodies, or other authorities where required by law or in response to a valid legal request.

All third-party service providers are contractually obligated to process your data only in accordance with our instructions and applicable data protection legislation. We conduct due diligence to ensure that all processors provide sufficient guarantees regarding the implementation of appropriate technical and organisational measures.

6. Data Security

We take the security of your personal data very seriously and implement appropriate technical and organisational measures in accordance with Article 32 of the GDPR to protect your data against unauthorised or unlawful processing, accidental loss, destruction, or damage.

Our security measures include, but are not limited to:

• Encryption: Our website uses SSL/TLS encryption (HTTPS) to protect data transmitted between your browser and our servers.
• Access controls: Access to personal data is restricted to authorised personnel only, on a strict need-to-know basis.
• Regular security assessments: We regularly review and update our security practices to address emerging threats and vulnerabilities.
• Secure server infrastructure: Our servers are maintained with up-to-date security patches and are protected by firewalls and intrusion detection systems.
• Data minimisation: In accordance with Article 5(1)(c) of the GDPR, we only collect and process the minimum amount of personal data necessary for the purposes described in this policy.

While we strive to protect your personal data, please be aware that no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security but are committed to taking all reasonable steps to safeguard your data.

7. Your Rights as a Data Subject

Under the GDPR, you have the following rights in relation to your personal data. You may exercise any of these rights free of charge by contacting us using the details provided in Section 14.

• Right of Access (Article 15 GDPR): You have the right to obtain confirmation as to whether we process your personal data and, if so, to request access to that data along with supplementary information about the processing.
• Right to Rectification (Article 16 GDPR): You have the right to request the correction of inaccurate personal data concerning you without undue delay. You also have the right to have incomplete personal data completed.
• Right to Erasure (Article 17 GDPR): You have the right to request the deletion of your personal data where, among other grounds, the data is no longer necessary for the purpose for which it was collected, or you withdraw your consent and there is no other legal basis for the processing.
• Right to Restriction of Processing (Article 18 GDPR): You have the right to request the restriction of processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when the processing is unlawful.
• Right to Data Portability (Article 20 GDPR): Where processing is based on consent or a contract and carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
• Right to Object (Article 21 GDPR): You have the right to object to the processing of your personal data based on legitimate interests (Article 6(1)(f)), including profiling. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.
• Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw that consent at any time. The withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

We will respond to your request within one month of receipt, in accordance with Article 12(3) of the GDPR. This period may be extended by two further months where necessary, taking into account the complexity and number of requests.

Right to Lodge a Complaint: If you believe that our processing of your personal data infringes the GDPR, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC):

Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
Website: www.dataprotection.ie

8. Data Retention Period

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, in accordance with Article 5(1)(e) of the GDPR (storage limitation principle).

The specific retention periods are as follows:

• Server log files: Automatically deleted after 30 days, unless longer retention is required for security investigations or legal compliance.
• Analytics data: Aggregated and anonymised analytics data may be retained indefinitely as it no longer constitutes personal data. Identifiable analytics data is deleted or anonymised within 14 months.
• Contact form submissions and correspondence: Retained for up to 12 months after the last communication, unless a longer retention period is required for legal purposes.
• Cookie consent records: Retained for 12 months from the date consent was given or refused, after which you will be asked to renew your preferences.

When personal data is no longer required, it will be securely deleted or anonymised so that it can no longer be associated with you.

9. Use of Analytics Tools

We use web analytics tools to analyse the usage of our website and to improve our content and services. The analytics tools we may use include:

Google Analytics

We may use Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). Google Analytics uses cookies to analyse your use of our website. The information generated by these cookies is typically transferred to a Google server and stored there. We have enabled IP anonymisation on our website, meaning that your IP address is truncated within the EEA before being transmitted to Google.

Google processes this data on our behalf to evaluate your use of the website, compile reports on website activity, and provide us with other services relating to website and internet usage. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

You can prevent the collection of data by Google Analytics by adjusting your cookie settings or by installing the Google Analytics Opt-out Browser Add-on, available at tools.google.com/dlpage/gaoptout.

For more information on how Google processes your data, please see Google's Privacy Policy at policies.google.com/privacy.

Other Analytics Tools

We may also use other analytics and performance monitoring tools. Where such tools process personal data, we will ensure that appropriate data processing agreements are in place and that the processing complies with the GDPR.

10. Affiliate Links and External References

Our website contains affiliate links to third-party online casino operators and gambling platforms. When you click on an affiliate link, you will be redirected to the respective third-party website. Please be aware of the following:

• We are an independent information portal: We provide reviews, comparisons, and editorial content about online casinos. We do not operate any casino, accept bets, process payments, or hold gambling licences. We are not responsible for the services, products, or data processing practices of the casino operators we review.
• Third-party data processing: When you visit a third-party casino website through our affiliate links, that website's own privacy policy and terms of use will apply. We have no control over the data collection and processing practices of these third parties and accept no responsibility for them.
• Affiliate tracking: Our affiliate links may contain tracking parameters that enable the casino operator or affiliate network to identify that the referral originated from our website. This typically involves the setting of cookies on your device by the third party. The information shared may include a referral identifier, timestamp, and your IP address.
• Recommendation and editorial independence: Our reviews and recommendations are based on our editorial assessment. However, we may receive a commission from casino operators when you register or make a deposit through our affiliate links. This does not affect the price or terms offered to you by the casino operator.

We encourage you to carefully review the privacy policy of any third-party website before providing your personal data.

11. Protection of Minors

Our website and its content are intended exclusively for individuals aged 18 years or older. We do not knowingly collect, store, or process personal data from individuals under the age of 18.

Online gambling is restricted to persons aged 18 and over in Ireland and most EU jurisdictions. Our website provides information about online casinos and gambling services that are legally available only to adults.

If we become aware that we have inadvertently collected personal data from a minor under the age of 18, we will take immediate steps to delete such data from our systems in accordance with Article 8 of the GDPR.

If you are a parent or guardian and believe that your child has provided personal data to us, please contact us immediately using the details in Section 14 so that we can take appropriate action.

We also encourage parents and guardians to monitor their children's internet usage and to implement parental controls to prevent minors from accessing gambling-related content.

12. International Data Transfers

We primarily store and process personal data within the European Economic Area (EEA). However, some of our third-party service providers (such as analytics and hosting providers) may transfer data to countries outside the EEA.

Where personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place in accordance with Chapter V of the GDPR (Articles 44-49). These safeguards may include:

• Adequacy decisions: Transfers to countries that the European Commission has determined provide an adequate level of data protection (Article 45 GDPR).
• Standard Contractual Clauses (SCCs): We may rely on Standard Contractual Clauses approved by the European Commission (Article 46(2)(c) GDPR) to ensure that your data is protected when transferred to countries without an adequacy decision.
• Binding Corporate Rules: Where applicable, transfers may be covered by Binding Corporate Rules approved by the relevant supervisory authority (Article 47 GDPR).

You may request further information about the specific safeguards applied to international transfers of your data by contacting us using the details in Section 14.

13. Changes to this Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data processing practices, legal requirements, or regulatory guidance. Any changes will be effective immediately upon publication on this page.

When we make material changes to this Privacy Policy, we will:

• Update the "Last updated" date at the top of this policy.
• Where appropriate, notify you of significant changes through a prominent notice on our website or, where we have your contact details and consent, by email.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. Your continued use of our website after any changes to this Privacy Policy constitutes your acknowledgement of the modifications.

14. Contact for Data Protection Enquiries

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing activities, or if you wish to exercise any of your rights as a data subject under the GDPR, please do not hesitate to contact us:

Data Protection Enquiries
Email: privacy@[yourdomain]

We will endeavour to respond to all legitimate enquiries within one month. If your request is particularly complex or if we receive a large number of requests, we may extend this period by up to two additional months, in which case we will inform you of the extension and the reasons for the delay within the initial one-month period, in accordance with Article 12(3) of the GDPR.

If you are not satisfied with our response or believe that we are processing your personal data in a manner that is not in compliance with the law, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC). Contact details for the DPC are provided in Section 7 of this policy.