Trust forms the basis of our relationship with customers at Book of Slots. This data retention policy explains how we manage, keep, and ultimately delete your personal information. We work under UK data protection laws, including the UK GDPR and the Data Protection Act 2018. Being clear about our data handling is a legal duty, but we also view it as a vital part of our service. We aim for you to enjoy our games knowing your privacy is taken carefully.
What constitutes a Data Retention Policy?
A Data Retention Policy represents a official document. It establishes how long an organisation holds onto different types of personal data and the legal reasons for retaining it. This is a key part of sound data governance. It stops us from storing information forever, or for longer than we actually need it. At Book of Slots, we have set specific retention periods for all your data. This covers your account details, transaction history, support conversations, and gameplay records. This organised method minimises risk, improves data security, and proves we comply with the law for our players and regulators like the UK Gambling Commission.
Your Rights and Removal of Data
You hold a right to erasure, at times termed the ‘right to be forgotten’. This is a key part of UK data protection law. But this right carries limits. You can ask us to remove your personal data. However, we could have to say no if we must to keep the data to follow a legal duty. Our licensing conditions from the UKGC are one example. We also must to retain data to establish, exercise, or defend legal claims. If we must keep data for these overriding reasons, we promise to only use it for those specific purposes. The data will be secured and access will be controlled.
Our Justification for Data Retention
UK data protection law necessitates a valid legal reason for us to process and store your personal data. Our main reasons are to satisfy a contract with you, to comply with legal rules, and for our legitimate business interests. For example, we hold your basic account details to offer the gaming service you requested. That satisfies our contract. At the same time, laws upheld by the UKGC oblige us to keep financial transaction records for several years to combat money laundering. When we base on legitimate interests, like preventing fraud, we carefully balance them against your rights. We guarantee any data we keep is proportionate.
Essential Data Categories and Retention Periods
We classify personal data into categories so we can apply suitable retention timelines. The exact length of time depends on why we processed the data and the legal, regulatory, and business needs we must meet. These periods can shift if the law changes. If that happens, we will update this policy and let you know about any significant changes.
Account and Identity Verification Data
This includes information you gave us when you registered and verified your account. It includes your name, date of birth, address, and copies of documents like a passport or driving licence. We keep this data for as long as your account is open, and for a set time after it closes.
After Account Closure Retention
After an account is closed, by you or by us, we must keep identity and verification data for at least five years from the closure date. The UK Gambling Commission’s Licence Conditions and Codes of Practice (LCCP) mandate this. It helps with responsible gambling oversight, fraud prevention, and any regulatory investigations that might happen after an account is no longer active.
Financial and Transaction Records
This category covers every deposit, withdrawal, bonus claim, and wager. Detailed transaction histories are crucial for financial audits, solving disputes, and giving you a clear record of your activity. Financial and gambling regulations heavily influence how long we keep this data.
Satisfying Regulatory Requirements
We retain full financial transaction data for a minimum of six years from the transaction date. This aligns with standard UK tax and accounting law. For some records, the UKGC might ask us to keep them even longer. We always follow the strictest applicable timeframe to ensure full compliance and to protect both you and our business.
Player Interaction and Support Data
We maintain records of your conversations with our customer support team, whether by live chat, email, or phone. This enables us maintain service quality and train our staff. It also lets us resolve ongoing issues and improve the player experience. We manage these records with the same confidentiality as all your personal data.
Generally, we hold support logs for three years from the date of the interaction. This offers us time to look back at previous conversations if you need more help, and to detect trends in player queries. If a communication is part of a dispute or complaint that could lead to legal action, we might preserve those specific records longer. This complies with UK time limits for making legal claims.
Data Security During Retention
Ensuring your personal data secure is our priority for its entire lifecycle. We employ strong technical and organisational safeguards to protect the information we keep. This shields it from unauthorised access, change, disclosure, or destruction. Our actions include encrypting data when it’s moving and when it’s stored. We apply strict access controls so employees only access what they must have for their job. We also use advanced network security. These protocols are tested and updated regularly to address new threats. Your data stays secure whether we are using it today or checking it for a regulatory check in several years’ time.
Policy Revisions and Contact Info
We could change this Data Retention Policy from time to time. Changes could reflect shifts in our activities, technology updates, or new legal obligations. The newest version will always be available on our website. We will notify you about any significant changes that influence how we process your data. If you have questions about this policy, our retention practices, or your data rights, please contact our Data Protection Officer. We are here to work with you, resolve concerns, and offer you clear, timely information about how we protect your personal information.
FAQ
Why does Book of Slots need to keep my data after I terminate my account?
The UK Gambling Commission under regulations obligates us to retain specific data, like identity and transaction records, for a set time after an account closes. This facilitates responsible gambling monitoring, aids prevent fraud, and aids with any future regulatory investigations. For core account data, this retention period is typically five years.
Is it possible to I request early deletion of my personal data?
You can always make a request for erasure. But UK gambling and financial regulations often mean we are unable to comply right away. For instance, we are unable to delete your transaction history before the required six-year period is over. The law requires us to keep it for auditing and compliance.
How is my data protected during the retention period?
We apply strict security measures for the whole time we store your data. These cover encryption, tight access controls, and secure storage systems. We conduct regular security audits to make sure these protections keep strong against new threats. Your information is protected from unauthorised access, whether it’s in active use or stored away.
What happens to my data when the retention period expires?
When the retention period for a specific type of data ends, we reliably and completely delete it. At times we anonymise it instead. Anonymisation means changing the data so it can no longer be traced back to you. After that, it might be used for internal statistical analysis.
Is it true that Book of Slots disclose my retained data with third parties?
We exclusively share data when it’s necessary. This encompasses sharing with payment processors to operate our service, or with authorities like the UK Gambling Commission when the law demands it. Any third party we work with must follow strict contractual rules to safeguard your data. They can exclusively use it for the designated, lawful purpose we agreed on.
How can I discover what data you keep on me?
You have a right to access your personal data. To utilize this right, you can make us a Subject Access Request (SAR). We will then provide a copy of the information we keep about you. We do not charge for this and will usually respond within one month. This lets you see exactly what data is in our records.
On which site can I view the most up-to-date version of this policy?
The newest version of our Data Retention Policy is always available on our website. It’s a sensible idea to review it now and then. If we implement any big changes that influence how we process your data, we will alert you. This ensures you aware about our privacy practices.
