Privacy Policy
Griffon Casino is committed to protecting the personal information of all users who access our online slot games and services. This privacy policy outlines how we collect, use, store, and safeguard your data when you interact with our platform. We adhere to all applicable data protection regulations in United Kingdom, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. By using Griffon Casino, you acknowledge that you have read and understood the terms set out in this privacy policy.
We recognise the importance of maintaining the confidentiality and security of your personal data. This document provides transparency regarding our data handling practices and your rights as a user. We encourage you to review this privacy policy carefully to understand how your information is managed throughout your experience with our online gaming platform.
Information We Collect
Griffon Casino collects various types of information to provide you with a secure and personalised gaming experience. The data we gather falls into several categories, each serving specific purposes related to account management, regulatory compliance, and service improvement.
Personal identification information includes your full name, date of birth, residential address, email address, and telephone number. This data is collected during the registration process and is essential for verifying your identity and ensuring compliance with age restriction requirements for online gambling in United Kingdom. Financial information such as payment card details, bank account information, and transaction history is collected to process deposits and withdrawals securely.
We also collect technical data automatically when you use our services. This includes your IP address, browser type, device information, operating system, and gameplay patterns. Cookies and similar tracking technologies help us understand how users interact with our platform and enable us to improve functionality and user experience. Communication records, including correspondence with our customer support team and marketing preferences, are retained to provide better assistance and ensure compliance with your communication choices.
Documentation for verification purposes may include copies of identification documents such as passports, driving licences, or utility bills. These documents are required to fulfil our legal obligations under anti-money laundering regulations and responsible gambling policies. All verification documents are stored securely and accessed only by authorised personnel.
How We Use Your Information
The information collected by Griffon Casino is used for multiple purposes, all designed to ensure a secure, compliant, and enjoyable gaming environment. Understanding how your data is utilised helps you make informed decisions about your interaction with our platform.
Account management represents the primary use of your personal data. We use your information to create and maintain your gaming account, process your deposits and withdrawals, verify your identity, and communicate important account-related information. This ensures that your account remains secure and that transactions are processed accurately and efficiently.
Regulatory compliance is a fundamental aspect of our operations. We use your data to comply with legal obligations imposed by the UK Gambling Commission and other regulatory bodies. This includes conducting Know Your Customer (KYC) checks, preventing underage gambling, detecting and preventing fraud, monitoring for problem gambling behaviour, and maintaining accurate records as required by law.
Service improvement and personalisation benefit from the analysis of usage data. We examine gameplay patterns, technical performance metrics, and user feedback to enhance our games, optimise platform functionality, and identify technical issues. Marketing communications are sent only to users who have provided consent, and we respect your preferences regarding promotional materials.
Security measures rely heavily on data analysis. We monitor account activity for suspicious behaviour, implement fraud prevention systems, and protect against unauthorised access. Your information helps us maintain the integrity of our platform and safeguard all users from potential security threats.
Data Sharing and Third Parties
Griffon Casino maintains strict controls over how your personal information is shared with external parties. We only disclose your data when necessary for operational purposes, legal compliance, or with your explicit consent. Understanding our data sharing practices is essential for transparency in our privacy policy.
Payment processors receive necessary financial information to facilitate deposits and withdrawals. These trusted third-party providers operate under stringent security standards and are contractually obligated to protect your data. We partner only with reputable payment service providers who comply with industry standards such as PCI DSS.
Regulatory authorities may require access to your information as part of their oversight responsibilities. The UK Gambling Commission and other relevant bodies may request user data to ensure compliance with gambling regulations, investigate complaints, or conduct audits. We cooperate fully with legitimate regulatory requests whilst ensuring that only necessary information is disclosed.
Technology service providers who support our platform operations may process your data on our behalf. This includes hosting providers, customer support platforms, security services, and analytics tools. All such providers are bound by strict confidentiality agreements and are permitted to use your data only for the specific purposes we authorise.
Legal obligations may require us to share information with law enforcement agencies, tax authorities, or other governmental bodies when mandated by law. We may also disclose data in response to valid legal processes such as court orders or subpoenas. In cases involving suspected criminal activity, fraud, or threats to public safety, we reserve the right to share relevant information with appropriate authorities.
We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Any data sharing arrangements are carefully vetted to ensure recipient organisations maintain adequate data protection standards. Where data is transferred outside the United Kingdom, we implement appropriate safeguards such as standard contractual clauses to ensure your information remains protected.
Your Rights and Data Control
Under UK data protection legislation, you possess several rights regarding your personal information held by Griffon Casino. We are committed to facilitating the exercise of these rights and provide clear mechanisms for you to control your data.
The right to access allows you to request a copy of the personal information we hold about you. You may submit a subject access request through our customer support channels, and we will provide the requested information within one month, unless the request is particularly complex. There is no charge for this service unless requests are manifestly unfounded or excessive.
Rectification rights enable you to request corrections to inaccurate or incomplete personal data. If you identify any errors in your account information, you can update certain details directly through your account settings or contact our support team for assistance with information you cannot modify yourself.
Data portability rights allow you to receive your personal data in a structured, commonly used, and machine-readable format. You may also request that we transmit this data directly to another service provider where technically feasible. This right applies to information you have provided to us with your consent or for the performance of a contract.
Restriction of processing can be requested under specific circumstances, such as when you contest the accuracy of your data or object to processing. During the period of restriction, we will store your data but not actively process it except with your consent or for specific legal purposes.
The right to object allows you to oppose certain types of data processing, particularly for marketing purposes. You can opt out of marketing communications at any time through your account preferences or by using the unsubscribe mechanism in our emails. You may also object to processing based on legitimate interests by providing specific reasons related to your particular situation.
Erasure rights, commonly known as the right to be forgotten, permit you to request deletion of your personal data under certain conditions. However, this right is not absolute, and we may need to retain certain information to comply with legal obligations, resolve disputes, or enforce our agreements. We will inform you if we cannot fully comply with an erasure request and explain the reasons.
Data Security and Retention
Griffon Casino implements comprehensive security measures to protect your personal information from unauthorised access, alteration, disclosure, or destruction. Our approach to data security encompasses technical, organisational, and procedural safeguards designed to maintain the confidentiality and integrity of your information.
Encryption technology protects data both in transit and at rest. We employ SSL/TLS protocols to secure communications between your device and our servers, ensuring that sensitive information such as login credentials and payment details cannot be intercepted. Stored data is encrypted using industry-standard algorithms, and encryption keys are managed through strict access controls.
Access controls ensure that only authorised personnel can view or process your personal information. Our staff members receive training on data protection principles and are granted access only to the information necessary for their specific roles. We maintain detailed logs of data access activities and conduct regular audits to detect any unauthorised attempts to access user information.
Firewall systems and intrusion detection mechanisms protect our infrastructure from external threats. We monitor our networks continuously for suspicious activity and implement multiple layers of security to prevent cyberattacks. Regular security assessments and penetration testing help identify and address potential vulnerabilities before they can be exploited.
Data retention periods vary depending on the type of information and the purposes for which it is processed. The following table outlines our standard retention periods:
| Data Category | Retention Period | Reason for Retention |
|---|---|---|
| Account information | 7 years after account closure | Regulatory compliance and legal obligations |
| Transaction records | 7 years after transaction date | Financial regulations and tax requirements |
| Identification documents | 7 years after account closure | Anti-money laundering regulations |
| Communication records | 3 years after last contact | Customer service quality and dispute resolution |
| Marketing consent records | Until consent withdrawn plus 3 years | Demonstrating compliance with consent requirements |
| Technical logs | 12 months | Security monitoring and technical troubleshooting |
| Gameplay data | Duration of account activity plus 6 years | Regulatory requirements and responsible gambling |
These retention periods may be extended if required for ongoing legal proceedings, regulatory investigations, or to protect our legal rights. Once data is no longer required, we securely delete or anonymise it to prevent unauthorised access. Backup copies held for disaster recovery purposes are also deleted in accordance with our retention schedule.
Regular reviews of stored data ensure we do not retain information longer than necessary. Our data protection officer oversees retention practices and ensures compliance with applicable regulations. If you have questions about how long specific information is retained, you may contact our privacy team for clarification.
Incident response procedures are in place to address potential data breaches swiftly and effectively. In the unlikely event of a security incident affecting your personal data, we will notify you and the relevant regulatory authorities within the timeframes required by law. We will also take immediate steps to mitigate any harm and prevent future occurrences.