This Privacy Policy explains how personal data is collected, processed, and protected in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR). We are committed to handling personal information lawfully, fairly, and transparently.
Personal data is processed only where a lawful basis applies. This may include fulfilling contractual obligations, complying with legal requirements, pursuing legitimate interests (such as fraud prevention and platform security), or relying on user consent for optional features like marketing communications.
We may collect identification details (such as name and date of birth), contact information, account credentials, transaction records, technical data (IP address, device type, browser), and usage analytics. Data collection is limited to what is necessary for service delivery, regulatory compliance, and security monitoring.
Personal information may be used to create and manage accounts, verify identity and age, process payments, prevent fraud, comply with anti-money laundering regulations, and improve service functionality. Data is not sold to third parties. Any sharing occurs only where legally required or with trusted service providers operating under strict data processing agreements.
Appropriate technical and organisational measures are implemented to protect data against unauthorised access, alteration, disclosure, or loss. These measures include encrypted connections (SSL), secure servers, restricted access controls, and continuous system monitoring. Data is retained only for as long as required by legal and regulatory obligations.
Individuals have the right to request access to their personal data, request correction of inaccurate information, request erasure (where applicable), restrict processing, object to certain processing activities, and request data portability. Where processing is based on consent, it may be withdrawn at any time without affecting prior lawful processing.
Cookies are used in compliance with PECR regulations. Essential cookies ensure core functionality, while analytical or marketing cookies require user consent before activation. Users can manage cookie preferences through browser settings or on-site consent tools.
Services are intended for individuals aged 18 or over. Age verification procedures may be conducted to comply with UK regulatory standards. Accounts found to belong to underage individuals will be suspended and relevant data handled in accordance with legal requirements.
If personal data is transferred outside the United Kingdom, appropriate safeguards are applied, such as adequacy regulations or approved contractual clauses, ensuring that data protection standards remain equivalent to UK requirements.
This Privacy Policy may be updated periodically to reflect changes in legal, regulatory, or operational practices. Users are encouraged to review this page regularly to remain informed about how personal data is protected.
