logo
EN DE IT PL DE FI DE
EN

Kingmaker Casino Privacy policy

Scope, status of this notice, and definitions

This document constitutes the Kingmaker Casino Privacy policy applicable to the website available at kingmakercas.it.com/privacy-policy and to related data processing activities connected with the provision of iGaming services. For the purposes of this notice, personal data means any information relating to an identified or identifiable natural person, including identification data, registration data, financial data, and login details. The term users refers to visitors, account holders, and other persons whose personal data are processed through the website, customer support channels, or compliance procedures. The term data controller refers to the entity that determines the purposes and means of processing, while processors are service providers acting on documented instructions. This policy applies to processing performed through electronic files, recorded communications, and other operational records, subject to mandatory legal requirements and sector specific obligations.

Regulatory framework and core principles

This privacy notice is drafted for a global audience and reflects commonly applicable data protection standards, including principles aligned with the General Data Protection Regulation where relevant and comparable local laws. Processing is conducted in accordance with the principles of lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity, and confidentiality. Appropriate governance measures are implemented to demonstrate accountability, including internal policies, documented procedures, and role based access control. Where a conflict arises between this notice and mandatory rules in a user’s jurisdiction, the mandatory rules take precedence to the extent required. The casino Kingmaker service does not knowingly seek to process personal data from individuals who are not legally permitted to access gambling services in their jurisdiction.

Categories of personal data processed

The categories of personal data processed depend on the interaction with the services and may include identification data such as name, date of birth, nationality, and government issued identifiers where required for verification. Registration data may include address, email, telephone number, account preferences, and jurisdiction related eligibility information. Login details may include usernames, authentication factors, password hashes, and security questions, together with logs relating to sign in events. Financial data may include payment instrument identifiers, transaction references, deposit and withdrawal history, and limited information required for fraud prevention and reconciliation. Operational records may also include communications with customer support, responsible gambling interactions, and compliance screening results, processed strictly for stated purposes and under access limitations.

Methods and sources of data collection

Operationally, personal data are collected when users create an account, complete verification steps, initiate transactions, contact support, or interact with responsible gambling tools. Data may also be collected automatically through files such as server logs and similar technical records generated during access to the website, supporting network security and service integrity. The Kingmaker Casino Privacy policy also covers personal data obtained from third party sources where permitted, such as identity verification providers, payment service providers, and fraud prevention databases. Where third party data are used, reasonable measures are applied to ensure that the data are relevant, up to date, and lawfully sourced. The casino Kingmaker environment may require additional information in specific cases, including enhanced checks linked to risk indicators or legal obligations.

Processing is carried out under one or more legal bases depending on context, including performance of a contract for account creation, gameplay delivery, and transaction processing. Compliance with legal obligations may require processing for anti money laundering, counter terrorist financing, age and identity verification, and record keeping duties. Legitimate interests may support processing for service security, fraud prevention, network monitoring, and quality assurance, subject to balancing against the rights and freedoms of users. Where consent is an appropriate basis, it is obtained through clear affirmative actions, and it may be withdrawn at any time with prospective effect where legally permitted. Special handling applies where sensitive data could arise incidentally, and any such processing is limited to what is strictly necessary and supported by an appropriate legal basis.

Purposes of processing under the Kingmaker Casino Privacy policy

The Kingmaker Casino Privacy policy governs processing for the establishment and administration of accounts, including authentication, access management, and maintenance of account integrity. Processing is undertaken to execute deposits and withdrawals, manage chargebacks, detect suspicious activity, and maintain accurate financial reconciliation. Compliance purposes include risk assessments, sanctions screening, verification of identity and age, and the fulfilment of sector specific reporting duties. Operational purposes include customer support, dispute handling, incident management, and maintaining accurate records of communications. Technical purposes include ensuring service availability, troubleshooting, and the improvement of security controls, without using personal data in a manner incompatible with the original purposes.

Cookies and tracking technologies

Cookies are small files stored on a device that enable website functionality, maintain sessions, and support security measures such as preventing unauthorised access. The website may use session cookies that expire when the browser is closed and persistent cookies that remain for a defined period, which may be up to 12 months depending on the cookie category and configuration. Similar technologies may be used to detect anomalies, prevent automated abuse, and maintain service continuity, with configuration designed to minimise collection of personal data. Where consent is required by applicable law, non essential cookies are not placed until an appropriate preference is recorded, and consent may be changed through browser controls or available preference interfaces. The casino Kingmaker technical environment also relies on log based monitoring that supports network defence and does not seek to identify individuals beyond what is necessary for security and troubleshooting.

Data retention and storage limitation

Retention periods are determined by reference to the purposes of processing, statutory obligations, and the need to establish, exercise, or defend legal claims. Account related data are retained for the active relationship and then for a defined period after closure, commonly 5 years where required by financial and anti money laundering rules, subject to jurisdictional variation. Certain technical logs may be retained for shorter periods, such as 90 days, where they are used for security monitoring and incident response, unless a longer period is justified by an investigation. Where a dispute or regulatory inquiry is ongoing, relevant records may be preserved until the matter is resolved and limitation periods have elapsed. Once retention ends, personal data are deleted, anonymised, or securely archived with access restrictions, consistent with storage limitation and data security requirements.

Disclosure to third parties and onward processing

Personal data may be shared with processors that provide services such as hosting, identity verification, payment processing, customer support tooling, and security monitoring, under contractual confidentiality and data processing obligations. Disclosure may occur to competent authorities, regulators, or law enforcement bodies where required by applicable law, valid legal process, or mandatory reporting obligations. Limited sharing may occur with professional advisers, including auditors and legal counsel, where necessary for compliance, risk management, and dispute resolution. Internal access is granted on a need to know basis, with segregation of duties and monitoring designed to reduce misuse risks. The Kingmaker Casino Privacy policy does not permit the sale of personal data, and any sharing is limited to the stated purposes and to recipients subject to appropriate safeguards.

International transfers and cross border access

For a global audience, cross border processing may occur when service providers or operational teams are located in different jurisdictions, including where servers or support functions are outside a user’s country. When personal data are transferred internationally, appropriate safeguards are implemented, which may include standard contractual clauses, transfer impact assessments, and supplementary technical controls where required. Transfers are limited to what is necessary for the provision of services, compliance operations, and data security functions. Where local laws impose additional requirements for international transfers, those requirements are applied to the extent they are mandatory and operationally feasible. The casino Kingmaker processing environment is designed to reduce unnecessary transfer by applying regional routing and access restrictions where supported by the infrastructure.

Information security, integrity, and confidentiality controls

Security measures are implemented to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, and unauthorised access. Controls include encryption in transit and at rest where appropriate, secure credential storage, access logging, and layered network security, with periodic reviews to maintain effectiveness. Organisational safeguards include staff confidentiality commitments, role based access management, and training aligned to operational risk, including secure handling of financial data and login details. The incident response process is designed to assess and contain security events promptly, with escalation and documentation to support legal compliance. Security performance is monitored using measurable criteria, and internal compliance objectives may include achieving at least 99.9% service availability while maintaining appropriate privacy and data security standards.

Rights of users and how requests are handled

Individuals have rights under applicable data protection laws that may include the right of access, the right to rectification, the right to erasure, the right to restriction of processing, and the right to data portability, subject to conditions and lawful limitations. Individuals may also have the right to object to processing based on legitimate interests and to withdraw consent where processing is based on consent, without affecting prior lawful processing. Requests are assessed to confirm identity and to protect against unauthorised disclosure, and identification checks may require additional information proportionate to the risk. A response is generally provided within 30 days of receipt, although extensions may apply where permitted due to complexity or volume, with reasons communicated where required. Where a request cannot be fulfilled in full due to legal obligations, including record keeping or anti fraud requirements, the response will explain the basis for refusal or partial fulfilment in a legally appropriate manner.

Contact channels, data controller matters, and complaint escalation

Requests, questions, or concerns regarding personal data protection may be submitted through the contact details published on kingmakercas.it.com, using channels dedicated to privacy and compliance matters. Where a request is made, it should include sufficient information to locate the relevant account or records, and it should describe the nature of the request, such as access, correction, deletion, or restriction. The data controller will record the request in secure files, apply verification proportionate to the sensitivity of the personal data involved, and implement actions within the applicable legal time frames. If a user believes that processing infringes applicable law, a complaint may be made to the competent supervisory authority in the relevant jurisdiction, without prejudice to other legal remedies. The casino Kingmaker compliance function maintains documented procedures to ensure consistent handling of requests, including audit trails and retention of request records for up to 24 months to evidence compliance.

Amendments, effective date, and compliance statement under the Kingmaker Casino Privacy policy

The Kingmaker Casino Privacy policy may be amended to reflect changes in applicable law, regulatory guidance, operational practices, security measures, or service features that affect data processing. Updates are implemented under internal change control procedures designed to ensure that revisions are reviewed for legal consistency, risk impact, and alignment with personal data protection principles, including purpose limitation and data minimisation. Where changes materially affect the rights of users or the categories of personal data processed, reasonable steps are taken to provide notice through the website or account related communications, subject to the availability of contact details and lawful communication permissions. The revised version applies from the date it is published on kingmakercas.it.com/privacy-policy, and prior versions may be archived for reference in compliance files where retention is justified. For transparency and accountability, users are encouraged to review this notice periodically, while recognising that continued processing may be required for legal obligations even where an account is inactive. This policy confirms an ongoing commitment to data security, encryption where appropriate, and documented governance measures, and it describes the procedure for submitting data requests and complaints through the stated contact channels, thereby ensuring that amendments are managed in a controlled and compliant manner consistent with the Kingmaker Casino Privacy policy.