burger icon
Casino United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how Skill on Net Ltd., operating the Casino Casino project for the Casino Casino brand on the website cazino.casino (the "Site"), collects, uses, shares, and protects your personal data. It applies to UK-based players, visitors to the Site, and any person who interacts with our services for real-money or demo play. We provide this information in line with the UK General Data Protection Regulation ("UK GDPR") and the Data Protection Act 2018.

By creating an account, visiting, or using the Site, you acknowledge that your personal data will be processed in accordance with this Privacy Policy. If you do not agree with this Policy, you should not use the Site or our services. Effective date: 6 November 2025.

Who We Are

Data controller: For UK players and visitors, the data controller is Skill on Net Ltd., which operates the Casino Casino brand and the Casino Casino project on cazino.casino under licence from the United Kingdom Gambling Commission.

  • Company name: Skill on Net Ltd.
  • Legal form: Limited company (Ltd.)
  • Registered / legal address: Malta (full postal address as notified to the United Kingdom Gambling Commission for licence account number 39326).
  • UK gambling licence: United Kingdom Gambling Commission (UKGC), remote gambling licence (casino, bingo, gambling software), licence account number 39326, active as of 2025.
  • Additional licensing: Remote gaming licence issued by the Malta Gaming Authority (MGA), active as of 2025.

Data protection contact: Skill on Net Ltd. maintains a dedicated data protection function, including a Data Protection Officer or equivalent responsible person, for handling privacy-related matters.

  • Primary contact channel: Please use the secure support or contact functionality available in your account on cazino.casino, clearly marking your request as "Data protection" or "Privacy request". Your request will be routed to our data protection team.
  • Postal contact: You may also write to Skill on Net Ltd. at its registered address in Malta, marked for the attention of the "Data Protection Officer".
  • Additional or more specific contact details (such as a dedicated privacy email address or webform) may be published from time to time in the "Contact Us" or "Privacy" sections of cazino.casino. Please refer to those details for the most up-to-date information.

What Personal Data We Collect

We collect only the personal data necessary to provide and improve the services offered by Casino Casino on cazino.casino, to comply with our legal obligations, and to protect our legitimate interests in operating a regulated online gambling business.

Identification and contact data

  • Account and profile data: Full name, date of birth, username, password, security questions and answers, preferred language, and account settings.
  • Contact details: Email address, telephone number, residential address, and any additional contact information you choose to provide.
  • Verification (KYC) data: Copies or details of identity documents (e.g. passport, ID card, driving licence), proof of address, income and affordability documentation, and any information obtained from electronic identity and age verification services.

Technical and usage data

  • Device and connection data: IP address, device identifiers, browser type and version, operating system, time zone, language settings, and similar technical information.
  • Log and activity data: Login dates and times, pages viewed, session duration, clicks and in-game navigation, error logs, and other diagnostic information.

Payment and transactional data

  • Payment information: Partial payment card details (as allowed by card scheme rules), e-wallet identifiers, bank account details where needed for withdrawals, payment tokens or transaction references provided by payment processors. We do not store full card numbers where this is not permitted or necessary.
  • Financial transactions: Deposits, withdrawals, bonus credits, chargebacks, refunds, account balances, and related records needed for accounting, regulatory, and anti-money laundering (AML) purposes.

Gameplay and behavioural data

  • Betting history: Games played, stakes, wins and losses, timestamps, game session details, and return-to-player data.
  • Responsible gambling data: Self-exclusion status, deposit/loss limits, reality check history, interactions and notes relating to safer gambling measures.
  • Behavioural patterns: Aggregated or pseudonymised data regarding how you use the Site and services, used for analytics, risk management, and improvement of our offering.

Communications and support data

  • Customer support interactions: Records of chats, emails, secure messages, call logs or notes, including any information you choose to provide.
  • Marketing preferences: Opt-ins and opt-outs for email, SMS, push notifications, and other channels, as well as records of your responses to campaigns where legally permitted.

Cookies and similar technologies

  • Cookies: Small text files placed on your device that store information about your preferences, authentication status, and usage.
  • Similar technologies: Web beacons, pixels, tags, local storage, and SDKs used for analytics, security, and advertising (where applicable and lawful).

Legal Basis for Processing

We process personal data in accordance with the UK GDPR and the Data Protection Act 2018. Depending on the specific context, we rely on one or more of the following lawful bases:

  • Performance of a contract: We process your data to create and manage your Casino Casino account on cazino.casino, to provide you with access to games, to process deposits and withdrawals, to manage bonuses and promotions, to provide customer support, and to otherwise perform the contract you enter into when accepting our Terms and Conditions.
  • Compliance with legal obligations: As a UK-licensed operator (UKGC licence account number 39326) and an entity subject to AML, counter-terrorist financing, taxation, accounting, and responsible gambling obligations, we must collect and retain certain information about you. This includes verification data (KYC), transaction records, safer gambling information, and records required for regulatory reporting and audits.
  • Legitimate interests: We process certain data to protect the security and integrity of cazino.casino, to prevent and detect fraud, money laundering, and abuse, to defend and exercise legal claims, to improve our products and services, to perform internal analytics, and to ensure that our marketing efforts are proportionate and relevant. Whenever we rely on legitimate interests, we balance our interests against your rights and freedoms.
  • Consent: In specific cases, we rely on your freely given, informed, and unambiguous consent. This typically includes:
    • Sending electronic direct marketing communications (for example by email or SMS) where consent is required by law;
    • Using certain cookies or tracking technologies that are not strictly necessary for the operation of the Site;
    • Processing special categories of data (if any) where this is not otherwise justified under another lawful basis.
    You may withdraw your consent at any time, as explained in the "Your Rights" section, without affecting the lawfulness of processing prior to withdrawal.
  • Vital interests and public interest (rare cases): In exceptional circumstances, we may process data to protect the vital interests of you or another person (for example, where there is a serious risk of harm) or to perform tasks carried out in the public interest, where such grounds are recognised under applicable law.

Purpose of Processing

We process your personal data only for specific, explicit, and legitimate purposes. These purposes include:

  • Providing and managing our services: To create and administer your Casino Casino account, verify your identity and age, allow you to deposit and withdraw funds, provide access to casino games and related services on cazino.casino, and deliver customer support.
  • Regulatory compliance and risk management: To comply with our obligations under UK gambling law, the UKGC licensing regime, AML and counter-terrorist financing laws, tax and accounting regulations, responsible gambling rules, and to cooperate with competent authorities and approved bodies such as the UKGC and eCOGRA (as an ADR provider for gambling disputes).
  • Fraud prevention and security: To monitor accounts and transactions for suspicious activity, to authenticate users, to detect and prevent fraud and misuse, to maintain the security and integrity of our systems, and to enforce our Terms and Conditions.
  • Service improvement and analytics: To understand how players interact with the Site and games, to analyse performance, to resolve errors, to test new features, and to improve usability, game selection, and overall user experience. Where possible, we use aggregated or pseudonymised data for these purposes.
  • Marketing and personalisation: To send you marketing communications and promotional offers where lawful (for example, when you have given consent or when we rely on legitimate interests under applicable rules), to personalise content and offers on cazino.casino, and to measure the effectiveness of campaigns.
  • Customer communications and relationship management: To respond to your queries and complaints, provide information about updates or changes to our services, notify you about important events (such as account security alerts or significant changes to this Privacy Policy), and maintain our relationship with you.
  • Legal claims and business operations: To establish, exercise, or defend legal claims, to manage business continuity, internal governance, audits, and corporate transactions, and to protect our rights, property, and safety, as well as those of our players and third parties.

Disclosure & Sharing

We treat your personal data as confidential and share it only where necessary, proportionate, and lawful. Depending on circumstances, we may disclose your data to the following categories of recipients:

  • Group entities and affiliates: Other entities within the Skill on Net group or affiliated brands involved in operating or supporting cazino.casino and Casino Casino, for example for consolidated risk management, customer service, and technical support, in accordance with applicable data protection safeguards.
  • Payment service providers and financial institutions: Banks, card schemes, e-wallet providers, payment processors, and other financial institutions involved in processing deposits, withdrawals, chargebacks, and fraud checks.
  • Technical service providers: Hosting providers, IT and cloud services, security providers, analytics tools, customer support platforms, communications providers (email, SMS, push notification services), and other suppliers who process data on our behalf and under our instructions.
  • Gaming and content providers: Game studios and gambling software suppliers that provide games and platforms integrated into cazino.casino, where access to limited data is necessary for game operation, risk management, and regulatory compliance.
  • Regulators, authorities, and ADR bodies: The United Kingdom Gambling Commission, the Malta Gaming Authority, tax authorities, law enforcement agencies, courts, and approved alternative dispute resolution (ADR) bodies such as eCOGRA, where required by law, regulation, or for the resolution of disputes.
  • Professional advisers: Lawyers, auditors, consultants, and other professional advisers subject to confidentiality obligations, where needed to obtain advice or defend legal claims.
  • Marketing and advertising partners: Where permitted by law and, where necessary, with your consent, we may share limited data with marketing, analytics, and advertising partners (including affiliate networks) to deliver and measure marketing campaigns related to cazino.casino. We do not sell your personal data.
  • Corporate transactions: In connection with a merger, acquisition, reorganisation, or sale of assets related to Casino Casino or cazino.casino, your data may be transferred to the relevant third parties, subject to appropriate safeguards and only to the extent permitted by law.

Whenever we share personal data with third parties acting as processors, we enter into written agreements requiring them to process the data only on our instructions, to implement appropriate security measures, and to comply with data protection law.

International Transfers

Skill on Net Ltd. is established in Malta and operates in multiple jurisdictions. As a result, your personal data may be transferred to and processed in countries outside the United Kingdom, including within the European Economic Area (EEA) and, in limited cases, in other countries that may have different data protection standards.

  • Transfers within the EEA and to Malta: Transfers between the UK and Malta or other EEA countries are subject to adequacy decisions or equivalent safeguards, meaning that data protection standards are considered broadly similar to those of the UK.
  • Transfers to non-EEA / third countries: Where we transfer your data to service providers or partners located outside the UK and EEA (for example, technology or support providers), we will ensure that appropriate safeguards are in place, such as:
    • Standard Contractual Clauses (SCCs) approved under UK data protection law;
    • Other contractual and organisational safeguards designed to ensure a level of protection essentially equivalent to that in the UK.
  • Access limitation: Access to your data from third countries is restricted strictly to those individuals who need such access for legitimate business or support purposes and is subject to confidentiality and security obligations.

You may contact us using the channels described in the "Who We Are" or "Complaints & Contacts" sections if you would like more information about the safeguards used for international transfers, where applicable.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, to comply with legal and regulatory requirements, and to protect our legitimate interests. Retention periods may vary depending on the category of data and the applicable legal framework (for example, gambling and AML regulations in the UK).

  • Account and identification data: Typically kept for the duration of your active account and for a period thereafter (generally up to 5-7 years from account closure) to comply with legal, regulatory, tax, and AML obligations, and to defend or establish legal claims.
  • Transactional and payment data: Retained for the periods required by financial, tax, and AML laws, generally up to 5-7 years from the date of the relevant transaction or the end of the business relationship, whichever is later.
  • Responsible gambling and risk data: Retained for as long as necessary to meet our regulatory obligations (including UKGC social responsibility requirements) and to monitor patterns of play, which may extend beyond account closure where required by regulation or where there is an ongoing investigation.
  • Marketing data and preferences: Retained while you remain subscribed to marketing communications and for a limited period after you opt out, in order to maintain an accurate suppression list and demonstrate compliance.
  • Technical logs and analytics: Retained for shorter periods where possible and, where feasible, aggregated or anonymised so that you can no longer be identified, for long-term analytics and reporting.
  • Customer support and complaints: Records of communications and complaints are retained for the time needed to manage and evidence the interaction and, where applicable, for legal limitation periods.

When data is no longer required for any permitted purpose, we will either securely delete or irreversibly anonymise it. Your rights to erasure and objection (subject to legal and regulatory constraints) are explained in the "Your Rights" section.

Your Rights

As a data subject, you have a number of rights in relation to your personal data under the UK GDPR and related legislation. Where applicable, we also align our practices with principles reflected in other regimes, such as the EU GDPR and relevant Mexican data protection law (including the Federal Law on Protection of Personal Data Held by Private Parties and its regulations) for individuals covered by those regimes.

  • Right of access: You can request confirmation of whether we process your personal data and obtain a copy of that data, along with information on how and why it is processed.
  • Right to rectification: You can ask us to correct inaccurate or incomplete personal data. In many cases, you can update certain details directly in your account settings on cazino.casino.
  • Right to erasure ("right to be forgotten"): You can request deletion of your personal data where there is no longer a lawful basis for us to retain it. This right is subject to important exceptions, particularly where data must be kept to comply with legal, regulatory, or AML obligations, or to establish, exercise, or defend legal claims.
  • Right to restriction of processing: You can ask us to suspend certain processing activities, for example while we verify the accuracy of data you contest or where processing is considered unlawful but you do not want the data erased.
  • Right to object: You can object to processing based on our legitimate interests or for direct marketing. Where you object to direct marketing, we will stop such processing immediately. For other objections, we will assess our compelling legitimate grounds against your interests and rights.
  • Right to data portability: Where processing is based on consent or on a contract and carried out by automated means, you may request to receive certain personal data in a structured, commonly used, and machine-readable format, and to have it transmitted to another controller where technically feasible.
  • Rights related to consent and marketing: Where processing is based on your consent, you may withdraw that consent at any time, without affecting the lawfulness of processing carried out before withdrawal. You may also change your marketing preferences at any time via your account settings or by using the unsubscribe options provided in communications.
  • Mexican data protection alignment (where applicable): For individuals whose data is processed under Mexican data protection law, we endeavour to respect ARCO-type rights (access, rectification, cancellation, and opposition), subject to and consistent with the primary legal framework governing the processing (for UK players, the UK GDPR and UK gambling regulations will generally prevail where there is a conflict).

How to exercise your rights: You may submit a request using the secure contact options within your account on cazino.casino or by writing to Skill on Net Ltd. for the attention of the Data Protection Officer, as described in the "Who We Are" and "Complaints & Contacts" sections. We may need to verify your identity before acting on your request, which may involve requesting additional information.

Response time and fees: We aim to respond to privacy requests within one month (30 calendar days) of receipt. This period may be extended by a further two months where necessary due to complexity or number of requests, in which case we will inform you of the extension and reasons. We will not charge you for exercising your rights, except where requests are manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse to act, as permitted by law.

Cookies & Tracking Technologies

We use cookies and similar technologies on cazino.casino to ensure the proper functioning of the Site, to enhance your experience, and, where permitted, to support analytics and marketing.

Types of cookies

  • Strictly necessary / functional cookies: These cookies are required for the Site to function correctly and securely (for example, to keep you logged in during a session, to manage your preferences, and to route traffic). They cannot be switched off in our systems, although you may configure your browser to block or alert you about them, which may affect site functionality.
  • Performance and analytics cookies: These cookies help us understand how visitors use the Site (pages visited, time spent, error messages, etc.) so we can improve performance, usability, and the overall player experience. Where feasible, we use aggregated or pseudonymised data.
  • Advertising and marketing cookies: Where permitted by law and, where necessary, with your consent, we may use cookies and similar technologies to deliver targeted offers related to Casino Casino and Casino Casino, to measure campaign effectiveness, and to limit the number of times you see a particular advertisement.
  • Third-party cookies: Some cookies may be placed by third-party service providers (for example analytics, fraud prevention, or marketing partners) integrated into cazino.casino. These providers may process limited data on our behalf or, in some cases, as independent controllers, in which case their own privacy policies may apply.

Managing cookies

  • Browser settings: Most web browsers allow you to manage cookies through their settings, including blocking or deleting cookies. Please consult your browser's help section for instructions.
  • On-site controls (where available): We may provide cookie banners, preference centres, or similar tools on cazino.casino to allow you to manage non-essential cookies, including withdrawing consent at any time.
  • Effect of disabling cookies: If you disable or reject certain cookies, some features of the Site may not function properly, and you may not be able to access secure areas or complete certain transactions.

Data Security

We take the security of your personal data very seriously and use a combination of technical and organisational measures designed to protect it against unauthorised access, alteration, disclosure, or destruction. While no system can be guaranteed to be completely secure, we continually assess and enhance our safeguards to reflect industry best practices and regulatory expectations.

  • Encryption in transit and at rest: Data transmitted between your device and cazino.casino is protected using modern encryption technologies (such as TLS 1.2 or higher). Where appropriate, we also apply encryption or pseudonymisation to data stored in our systems.
  • Access controls and authentication: Access to personal data is restricted to authorised personnel and service providers who require it for legitimate business purposes, subject to role-based access controls, authentication mechanisms, and audit logging. Multi-factor authentication and strong password policies are used where appropriate.
  • Secure infrastructure: Our systems are hosted in secure environments with physical and logical safeguards, including firewalls, intrusion detection and prevention systems, and regular vulnerability assessments.
  • Policies, training, and awareness: We maintain internal policies and procedures covering information security, data protection, and incident management. Staff receive training and guidance on these topics, with particular emphasis on handling of sensitive data related to gambling, payments, and responsible gambling.
  • Vendor and third-party management: We carefully assess and select third-party service providers that process data on our behalf, requiring them to implement appropriate security measures and to adhere to contractual and legal obligations. Where necessary, we conduct due diligence and periodic reviews.
  • Monitoring and incident response: We monitor systems for unusual or suspicious activity and maintain processes to detect, investigate, and respond to potential data incidents. In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority and, where required, affected individuals, in accordance with legal requirements.
  • Alignment with standards: We design our security controls to be consistent with recognised international security frameworks (such as ISO/IEC 27001 or SOC 2) where appropriate, taking into account proportionality, regulatory expectations, and the nature of our operations.

Complaints & Contacts

If you have concerns or questions about how your personal data is processed in connection with Casino Casino or cazino.casino, you can contact us or raise a complaint using the channels below.

Contacting us

  • Secure account communication: The preferred method is to use the secure messaging or support function within your player account, clearly indicating that your message relates to "Privacy" or "Data protection".
  • Postal address: You may write to Skill on Net Ltd., Malta (registered address as notified to the UKGC), marked for the attention of the "Data Protection Officer".
  • Other channels: We may provide dedicated privacy or support email addresses and webforms on cazino.casino. Please refer to the "Contact Us" or "Privacy" sections for the most up-to-date details.

Internal complaint procedure

  1. Submission: Submit your privacy-related request or complaint using one of the contact methods above, providing sufficient information for us to understand and investigate your concern.
  2. Acknowledgement: We aim to acknowledge receipt of your complaint within a reasonable period, generally within a few working days.
  3. Investigation: Your complaint will be reviewed by our data protection or compliance team, which may request additional information or clarification if needed.
  4. Response: We aim to provide a substantive response within one month (30 calendar days) of receiving a complete complaint. If the matter is complex or we receive multiple related requests, this period may be extended by up to two further months, in which case we will inform you of the extension and reasons.
  5. Further steps: If you are not satisfied with our response, you may escalate the matter to the relevant supervisory authority, as described below.

Supervisory authorities and ADR

  • United Kingdom - Information Commissioner's Office (ICO): If you believe your data protection rights have been infringed, you have the right to lodge a complaint with the ICO, the UK's independent supervisory authority for data protection issues. Further information is available at www.ico.org.uk.
  • European Union supervisory authorities: Where EU data protection law applies (for example, in relation to certain cross-border processing activities), you may have the right to lodge a complaint with the data protection authority in your EU Member State of residence, place of work, or place of the alleged infringement.
  • Mexico - data protection authority: For individuals covered by Mexican data protection law, you may have the right to submit a complaint to the competent Mexican data protection authority (for example, the National Institute for Transparency, Access to Information and Personal Data Protection - INAI) in accordance with local legal requirements.
  • Alternative dispute resolution for gambling matters: For certain gambling-related disputes not resolved through our internal process, UK players may escalate to eCOGRA, an Alternative Dispute Resolution (ADR) body approved by the UKGC. eCOGRA's role is focused on gambling disputes and does not replace your rights to address data protection issues with the ICO or other supervisory authorities.

Updates

We may update this Privacy Policy from time to time to reflect changes in our services, technologies, legal or regulatory requirements, or our internal practices. When we make material changes, we will take appropriate steps to inform you in advance.

  • Notification methods: We may notify you of significant changes through a combination of:
    • Prominent notices on cazino.casino (for example banners or pop-ups);
    • Messages in your account area on the Site;
    • Email or other direct communications, where appropriate.
  • Advance notice: For material changes that significantly affect the way we process your personal data (for example, new purposes or changes to legal bases that require consent), we will, where feasible, provide at least 30 days' prior notice before the changes take effect. During this period, you may review the updated Policy and choose to object to certain processing or to close your account if you do not agree with the changes, subject to our legal and regulatory obligations.
  • Version control: Each version of this Privacy Policy will be identified by an effective date and may include a brief description of key material changes. We recommend that you review this Policy periodically to stay informed about how we protect your data.

Last updated: November 2025. Author: Oliver Bennett.

If you continue to use Casino Casino services on cazino.casino after changes to this Privacy Policy take effect, your continued use will constitute acknowledgement of the updated Policy, to the extent permitted by applicable law and without prejudice to your statutory rights.