Trust forms the basis of our connection with customers at Book of Slots, https://book-of.eu/. This data retention policy describes how we handle, keep, and eventually remove your personal information. We function under UK data protection laws, including the UK GDPR and the Data Protection Act 2018. Being transparent about our data handling is a legal requirement, but we also see it as a central part of our operations. We aim for you to appreciate our games aware your privacy is taken carefully.

Policy Changes and Contact Details

We might update this Data Retention Policy occasionally. Changes may indicate shifts in our operations, technology updates, or new legal requirements. The most recent version will always be available on our website. We will tell you about any significant changes that impact how we manage your data. If you have inquiries about this policy, our retention practices, or your data rights, please contact our Data Protection Officer. We are here to assist you, address concerns, and offer you clear, timely information about how we protect your personal information.

FAQ

For what reason does Book of Slots require to retain my data after I terminate my account?

The UK Gambling Commission by law requires us to keep particular data, like identity and transaction records, for a specified time after an account is closed. This supports responsible gambling monitoring, helps prevent fraud, and aids with any future regulatory investigations. For core account data, this retention period is typically five years.

May I ask for early deletion of my personal data?

You can at any time make a request for erasure. But UK gambling and financial regulations often mean we cannot comply right away. For instance, we cannot delete your transaction history before the required six-year period is over. The law mandates us to keep it for auditing and compliance.

In what way is my data secured during the retention period?

We enforce strict security measures for the whole time we hold your data. These cover encryption, tight access controls, and secure storage systems. We conduct regular security audits to make sure these protections remain strong against new threats. Your information is safe from unauthorised access, whether it’s in active use or stored away.

What happens to my data when the retention period expires?

When the retention period for a specific type of data finishes, we reliably and irreversibly delete it. At times we anonymise it in its place. Anonymisation means altering the data so it can no longer be connected back to you. Thereafter, it could be used for internal statistical analysis.

Is it true that Book of Slots disclose my retained data with third parties?

We exclusively share data when it’s necessary. This covers sharing with payment processors to operate our service, or with authorities like the UK Gambling Commission when the law mandates it. Any third party we partner with must comply with strict contractual rules to safeguard your data. They can solely use it for the designated, lawful purpose we agreed on.

By what method can I discover what data you hold on me?

You possess a right to access your personal data. To use this right, you can make us a Subject Access Request (SAR). We will then provide a copy of the information we keep about you. We do not charge for this and will normally respond within one month. This enables you see exactly what data is in our records.

At what location can I see the most up-to-date version of this policy?

The most recent version of our Data Retention Policy is always available on our website. It’s a wise idea to review it periodically. If we introduce any big changes that impact how we manage your data, we will alert you. This maintains you updated about our privacy practices.

Our Justification for Data Retention

UK data protection law demands a valid legal reason for us to handle and store your personal data. Our main reasons are to satisfy a contract with you, to comply with legal rules, and for our legitimate business interests. For example, we hold your basic account details to provide the gaming service you requested. That completes our contract. At the same time, laws implemented by the UKGC mandate us to keep financial transaction records for several years to combat money laundering. When we rely on legitimate interests, like preventing fraud, we carefully balance them against your rights. We make sure any data we keep is proportionate.

Key Data Categories and Keeping Periods

We organize personal data into categories so we can set suitable retention timelines. The specific length of time depends on why we processed the data and the legal, regulatory, and business needs we must meet. These periods can change if the law changes. If that happens, we will update this policy and let you know about any significant changes.

Account and Identity Verification Data

This contains information you gave us when you registered and verified your account. It includes your name, date of birth, address, and copies of documents like a passport or driving licence. We keep this data for as long as your account is open, and for a set time after it closes.

Post-Account Closure Retention

After an account is closed, by you or by us, we must keep identity and verification data for at least five years from the closure date. The UK Gambling Commission’s Licence Conditions and Codes of Practice (LCCP) mandate this. It aids with responsible gambling oversight, fraud prevention, and any regulatory investigations that might happen after an account is no longer active.

Monetary and Transaction Records

This category includes every deposit, withdrawal, bonus claim, and wager. Detailed transaction histories are crucial for financial audits, solving disputes, and giving you a clear record of your activity. Financial and gambling regulations heavily influence how long we keep this data.

Satisfying Regulatory Requirements

We store full financial transaction data for a minimum of six years from the transaction date. This complies with standard UK tax and accounting law. For some records, the UKGC might ask us to keep them even longer. We always observe the strictest applicable timeframe to ensure full compliance and to protect both you and our business.

Customer Interaction and Support Data

We store records of your conversations with our customer support team, whether by live chat, email, or phone. This assists us maintain service quality and train our staff. It also lets us resolve ongoing issues and improve the player experience. We treat these records with the same confidentiality as all your personal data.

Generally, we hold support logs for three years from the date of the interaction. This gives us time to look back at previous conversations if you need more help, and to spot trends in player queries. If a communication is part of a dispute or complaint that could lead to legal action, we might preserve those specific records longer. This aligns with UK time limits for making legal claims.

What constitutes a Data Retention Policy?

A Data Retention Policy is a official document. It defines how long an organisation holds onto different types of personal data and the legal reasons for retaining it. This is a key part of good data governance. It stops us from storing information forever, or for longer than we genuinely need it. At Book of Slots, we have set specific retention periods for all your data. This encompasses your account details, transaction history, support conversations, and gameplay records. This structured method minimises risk, boosts data security, and demonstrates we comply with the law for our players and regulators like the UK Gambling Commission.

Your Entitlements and Data Deletion

You hold a claim to erasure, at times called the ‘right to be forgotten’. This is a key part of UK data protection law. But this right comes with limits. You can ask us to delete your personal data. However, we might have to refuse if we must to keep the data to comply with a legal duty. Our licensing conditions from the UKGC are one example. We also need to retain data to formulate, exercise, or defend legal claims. If we have to keep data for these overriding reasons, we undertake to only use it for those specific purposes. The data will be safeguarded and access will be limited.

Data Security During Retention

Ensuring your personal data safe is our main concern for its entire lifecycle. We implement strong technical and organisational controls to safeguard the information we hold. This protects it from unauthorised intrusion, change, disclosure, or destruction. Our steps include encrypting data when it’s moving and when it’s stored. We enforce strict access controls so employees only see what they must have for their job. We also leverage advanced network security. These protocols are evaluated and updated regularly to address new threats. Your data remains secure whether we are using it today or reviewing it for a regulatory check in several years’ time.