Trust forms the foundation of our relationship with players at Book of Slots, book-of.eu. This data retention policy outlines how we process, keep, and eventually delete your personal information. We work under UK data protection laws, including the UK GDPR and the Data Protection Act 2018. Being open about our data handling is a legal duty, but we also consider it as a central part of our service. We want for you to experience our games aware your privacy is taken seriously.
Data Safety Throughout Retention
Keeping your personal data protected is our priority for its entire lifecycle. We implement strong technical and organisational measures to guard the information we hold. This protects it from unauthorised access, change, disclosure, or destruction. Our steps include encrypting data when it’s moving and when it’s stored. We apply strict access controls so employees only access what they must have for their job. We also use advanced network security. These protocols are evaluated and updated regularly to combat new threats. Your data remains secure whether we are using it today or checking it for a regulatory check in several years’ time.
What defines a Data Retention Policy?
A Data Retention Policy constitutes a formal document. It sets out how long an organisation holds onto different types of personal data and the legal reasons for keeping it. This is a key part of sound data governance. It prevents us from storing information forever, or for longer than we actually need it. At Book of Slots, we have set specific retention periods for all your data. This includes your account details, transaction history, support conversations, and gameplay records. This structured method minimises risk, improves data security, and demonstrates we comply with the law for our players and regulators like the UK Gambling Commission.
Your Entitlements and Data Deletion
You hold a entitlement to erasure, at times termed the ‘right to be forgotten’. This is a essential part of UK data protection law. But this right comes with limits. You can petition us to delete your personal data. However, we may have to decline if we need to keep the data to comply with a legal duty. Our licensing conditions from the UKGC are one example. We also must to retain data to establish, exercise, or defend legal claims. If we have to keep data for these overriding reasons, we promise to only use it for those specific purposes. The data will be safeguarded and access will be limited.
Our Justification for Data Retention
UK data protection law demands a valid legal reason for us to manage and store your personal data. Our main reasons are to satisfy a contract with you, to comply with legal rules, and for our legitimate business interests. For example, we hold your basic account details to provide the gaming service you requested. That fulfils our contract. At the same time, laws implemented by the UKGC mandate us to keep financial transaction records for several years to fight money laundering. When we base on legitimate interests, like preventing fraud, we carefully weigh them against your rights. We make sure any data we keep is proportionate.
Policy Revisions and Contact Info
We might update this Data Retention Policy periodically. Changes may indicate shifts in our processes, technology updates, or new legal duties. The latest version will always be published on our website. We will notify you about any major changes that influence how we process your data. If you have questions about this policy, our retention practices, or your data rights, please contact our Data Protection Officer. We are here to assist you, handle concerns, and provide you with clear, timely updates about how we protect your personal information.
Essential Data Categories and Retention Periods
We classify personal data into categories so we can apply suitable retention timelines. The specific length of time depends on why we processed the data and the legal, regulatory, and business needs we must meet. These periods can shift if the law changes. If that happens, we will update this policy and let you know about any significant changes.
Profile and Identity Verification Data
This covers information you gave us when you registered and verified your account. It includes your name, date of birth, address, and copies of documents like a passport or driving licence. We keep this data for as long as your account is open, and for a set time after it closes.
Post-Account Closure Retention
After an account is closed, by you or by us, we must keep identity and verification data for at least five years from the closure date. The UK Gambling Commission’s Licence Conditions and Codes of Practice (LCCP) mandate this. It assists with responsible gambling oversight, fraud prevention, and any regulatory investigations that might happen after an account is no longer active.
Monetary and Transaction Records
This category contains every deposit, withdrawal, bonus claim, and wager. Detailed transaction histories are vital for financial audits, solving disputes, and giving you a clear record of your activity. Financial and gambling regulations heavily determine how long we keep this data.
Complying with Regulatory Requirements
We store full financial transaction data for a minimum of six years from the transaction date. This matches standard UK tax and accounting law. For some records, the UKGC might require us to keep them even longer. We always follow the strictest applicable timeframe to ensure full compliance and to shield both you and our business.
Player Interaction and Support Data
We keep records of your conversations with our customer support team, whether by live chat, email, or phone. This enables us maintain service quality and train our staff. It also allows us resolve ongoing issues and improve the player experience. We handle these records with the same confidentiality as all your personal data.
Generally, we retain support logs for three years from the date of the interaction. This gives us time to look back at previous conversations if you need more help, and to spot trends in player queries. If a communication is part of a dispute or complaint that could lead to legal action, we might keep those specific records longer. This matches UK time limits for making legal claims.
Časté dotazy
Why does Book of Slots have to hold my data after I terminate my account?
The UK Gambling Commission legally requires us to hold specific data, like identity and transaction records, for a set time after an account is closed. This facilitates responsible gambling monitoring, helps prevent fraud, and assists with any future regulatory investigations. For core account data, this retention period is generally five years.
Can I request early deletion of my personal data?
You can at any time make a request for erasure. But UK gambling and financial regulations commonly mean we may not comply right away. For instance, we cannot delete your transaction history before the required six-year period is over. The law mandates us to keep it for auditing and compliance.
In what way is my data protected during the retention period?
We enforce strict security measures for the entire time we store your data. These include encryption, tight access controls, and secure storage systems. We carry out regular security audits to make sure these protections remain strong against new threats. Your information is protected from unauthorised access, whether it’s in active use or stored away.
What happens to my data when the retention period expires?
After the retention period for a specific type of data finishes, we safely and irreversibly delete it. Sometimes we anonymise it as an alternative. Anonymisation means changing the data so it can no longer be connected back to you. Following that, it might be used for internal statistical analysis.
Does Book of Slots share my retained data with third parties?
We exclusively share data when it’s required. This covers sharing with payment processors to operate our service, or with authorities like the UK Gambling Commission when the law mandates it. Any third party we work with must follow strict contractual rules to safeguard your data. They can exclusively use it for the designated, lawful purpose we agreed on.
In what way can I discover what data you keep on me?
You have a right to access your personal data. To exercise this right, you can make us a Subject Access Request (SAR). We will then supply a copy of the information we maintain about you. We do not impose a fee for this and will typically respond within one month. This allows you view exactly what data is in our records.
Where can I view the most up-to-date version of this policy?
The newest version of our Data Retention Policy is always available on our website. It’s a good idea to check it periodically. If we implement any big changes that affect how we process your data, we will inform you. This keeps you aware about our privacy practices.
