Trust forms the basis of our interaction with users at bookofslotss. This data retention policy explains how we manage, retain, and finally dispose of your personal information. We operate under UK data protection laws, such as the UK GDPR and the Data Protection Act 2018. Being clear about our data handling is a legal duty, but we also consider it as a key part of our service. We strive for you to experience our games aware your privacy is taken seriously.
Our Legal Basis for Data Retention
UK data protection law demands a valid legal reason for us to handle and retain your personal data. Our main reasons are to satisfy a contract with you, to follow legal rules, and for our legitimate business interests. For example, we keep your basic account details to provide the gaming service you requested. That satisfies our contract. At the same time, laws enforced by the UKGC require us to keep financial transaction records for several years to combat money laundering. When we base on legitimate interests, like preventing fraud, we carefully evaluate them against your rights. We ensure any data we keep is proportionate.
Your Entitlements and Removal of Data
You possess a claim to erasure, at times termed the ‘right to be forgotten’. This is a crucial part of UK data protection law. But this right comes with limits. You can ask us to delete your personal data. However, we might have to say no if we need to keep the data to comply with a legal duty. Our licensing conditions from the UKGC are one example. We also need to retain data to formulate, exercise, or defend legal claims. If we must keep data for these overriding reasons, we promise to only use it for those specific purposes. The data will be secured and access will be limited.
Data Security In Retention
Maintaining your personal data secure is our priority for its entire lifecycle. We implement strong technical and organisational controls to guard the information we store. This protects it from unauthorised access, change, disclosure, or destruction. Our actions include encrypting data when it’s moving and when it’s stored. We enforce strict access controls so employees only see what they must have for their job. We also use advanced network security. These protocols are checked and updated regularly to counter new threats. Your data stays secure whether we are using it today or reviewing it for a regulatory check in several years’ time.
Policy Revisions and Contact Information
We may revise this Data Retention Policy periodically. Changes may indicate shifts in our processes, technology updates, or new legal duties. The latest version will always be posted on our website. We will notify you about any significant changes that impact how we manage your data. If you have questions about this policy, our retention practices, or your data rights, please contact our Data Protection Officer. We are here to assist you, handle concerns, and give you clear, timely information about how we protect your personal information.
Core Data Categories and Keeping Periods
We organize personal data into categories so we can apply suitable retention timelines. The specific length of time depends on why we processed the data and the legal, regulatory, and business needs we must meet. These periods can shift if the law changes. If that happens, we will update this policy and let you know about any significant changes.
Profile and Identity Verification Data
This contains information you gave us when you registered and verified your account. It encompasses your name, date of birth, address, and copies of documents like a passport or driving licence. We keep this data for as long as your account is open, and for a set time after it closes.
After Account Closure Retention
After an account is closed, by you or by us, we must keep identity and verification data for at least five years from the closure date. The UK Gambling Commission’s Licence Conditions and Codes of Practice (LCCP) mandate this. It assists with responsible gambling oversight, fraud prevention, and any regulatory investigations that might happen after an account is no longer active.
Financial and Transaction Records
This category covers every deposit, withdrawal, bonus claim, and wager. Detailed transaction histories are essential for financial audits, solving disputes, and giving you a clear record of your activity. Financial and gambling regulations heavily affect how long we keep this data.
Satisfying Regulatory Requirements
We store full financial transaction data for a minimum of six years from the transaction date. This complies with standard UK tax and accounting law. For some records, the UKGC might require us to keep them even longer. We always observe the strictest applicable timeframe to ensure full compliance and to shield both you and our business.
User Interaction and Support Data
We keep records of your conversations with our customer support team, whether by live chat, email, or phone. This assists us maintain service quality and train our staff. It also enables us resolve ongoing issues and improve the player experience. We handle these records with the same confidentiality as all your personal data.
Generally, we hold support logs for three years from the date of the interaction. This offers us time to look back at previous conversations if you need more help, and to detect trends in player queries. If a communication is part of a dispute or complaint that could lead to legal action, we might keep those specific records longer. This complies with UK time limits for making legal claims.
What defines a Data Retention Policy?
A Data Retention Policy constitutes a written document. It sets out how long an organisation keeps different types of personal data and the legal reasons for keeping it. This is a key part of effective data governance. It prevents us from storing information forever, or for longer than we genuinely need it. At Book of Slots, we have set specific retention periods for all your data. This covers your account details, transaction history, support conversations, and gameplay records. This organised method minimises risk, improves data security, and proves we comply with the law for our players and regulators like the UK Gambling Commission.
FAQ
Why does Book of Slots require to retain my data after I close my account?
The UK Gambling Commission under regulations mandates us to retain particular data, like identity and transaction records, for a specified time after an account closes. This supports responsible gambling monitoring, aids prevent fraud, and assists with any future regulatory investigations. For core account data, this retention period is usually five years.
May I ask for early deletion of my personal data?
You can freely make a request for erasure. But UK gambling and financial regulations often mean we may not comply right away. For instance, we cannot delete your transaction history before the required six-year period is over. The law mandates us to keep it for auditing and compliance.
In what way is my data safeguarded during the retention period?
We implement strict security measures for the whole time we store your data. These include encryption, tight access controls, and secure storage systems. We perform regular security audits to make sure these protections stay strong against new threats. Your information is protected from unauthorised access, whether it’s in active use or stored away.
What exactly happens to my data when the retention period expires?
Once the retention period for a specific type of data finishes, we safely and irreversibly delete it. Sometimes we anonymise it instead. Anonymisation means modifying the data so it can no longer be traced back to you. After that, it might be used for internal statistical analysis.
Is it true that Book of Slots disclose my retained data with third parties?
We exclusively share data when it’s required. This includes sharing with payment processors to manage our service, or with authorities like the UK Gambling Commission when the law demands it. Any third party we work with must adhere to strict contractual rules to secure your data. They can only use it for the particular, lawful purpose we agreed on.
By what method can I learn what data you store on me?
You possess a right to access your personal data. To exercise this right, you can make us a Subject Access Request (SAR). We will then provide a copy of the information we maintain about you. We do not charge for this and will typically respond within one month. This lets you view exactly what data is in our records.
Where can I view the most up-to-date version of this policy?
The latest version of our Data Retention Policy is constantly available on our website. It’s a wise idea to examine it periodically. If we make any big changes that influence how we handle your data, we will alert you. This ensures you aware about our privacy practices.
