StayCasino Privacy Policy

StayCasino collects personal data to provide and secure the services, meet legal obligations, and improve user experience.

Personal data we collect:

• Identification and contact details: name, date of birth, address, email, phone.
• Account and gameplay details: account ID, preferences, limits, activity logs.
• Transactions and payment information: deposits, withdrawals, methods used. Card data is processed by certified providers.
• Verification records: KYC documents, sanctions and PEP screening results.
• Device and usage information: IP address, browser, app events, cookies.
• Communications: support requests, complaints, responsible gambling interactions.
• Marketing preferences and consent records.

Why we collect and use it:

• To create and manage the user account and provide online services.
• To process payments, prevent fraud, and perform AML/KYC checks.
• To uphold safer gambling tools and respond to user requests.
• To personalise content, run analytics, and maintain the platform.
• To meet legal, regulatory, and tax obligations in Ireland and the EEA.

Protection measures:

• Encryption in transit and at rest, segregated environments, and strong access controls.
• Role-based permissions, logging, and regular security testing.
• Data minimisation, pseudonymisation where feasible, and secure disposal routines.
• Vendor due diligence and contractual safeguards for processors.

User rights under GDPR and Irish law:

• Access, rectification, and erasure.
• Restriction and objection to processing, plus data portability.
• Withdrawal of consent at any time where consent is the legal basis.
• Complaint to the Data Protection Commission at dataprotection.ie.

Compliance

• This Policy aligns with the GDPR, the Data Protection Act 2018, and Irish ePrivacy rules, alongside AML obligations.

We process personal data lawfully, fairly, and transparently for the following purposes:

• Account servicing: account creation, identity checks, authentication, customer support. Legal basis: contract and legitimate interests.
• Transactions: deposits, withdrawals, chargeback handling. Legal basis: contract and legal obligation.
• Platform operation and improvement: troubleshooting, analytics, performance monitoring. Legal basis: legitimate interests.
• Personalisation: content, limits, and settings tailored to the user. Legal basis: legitimate interests or consent where required.
• Marketing and promotions: only where the user has opted in, with the option to opt out at any time. Legal basis: consent or legitimate interests in line with ePrivacy.
• Safer gambling and compliance: AML/KYC, sanctions screening, fraud prevention, regulatory reporting. Legal basis: legal obligation and substantial public interest where applicable.

Retention

• We retain data only as long as needed for the purposes above. Records required by AML rules are typically kept for 5 years after the relationship ends, subject to statutory extensions.

How to exercise rights

• Access or update: use account settings and our Help Centre or contact details provided on the website.
• Correction: provide updated information or documents so we can rectify inaccurate data.
• Deletion: request erasure. We will delete or anonymise data unless retention is required for legal, AML, tax, fraud prevention, or dispute purposes.
• Response times: we aim to respond within one month, extended where requests are complex or numerous.

Verification

• We may request proof of identity and may ask clarifying questions before acting on a request to protect users’ data.

Security checks and payments

• By using StayCasino, the user consents to security checks, identity verification, and processing of payment information by approved payment providers and verification partners.

Portability and objection

• Users may request a machine-readable export of certain personal data and may object to processing based on legitimate interests.

• The services are for persons aged 18 and over. Accounts for minors are not permitted.
• The operator cannot confirm age without appropriate documents and may request proof at any time.
• If a parent or guardian informs us that a minor has provided personal data, we will close any related account and delete the data, unless retention is required by law.

• Personal data may be processed in countries outside Ireland and the EEA where our partners or service providers operate.
• By using the site, the user consents to such transfers. Where required, we rely on appropriate safeguards, including EU Standard Contractual Clauses, adequacy decisions, and risk assessments.
• All partners are bound by confidentiality obligations, data protection agreements, and security controls aligned to our standards.

• This Policy may be supplemented by notices or terms that clarify, limit, or expand how specific rules apply to certain services. Where such notices conflict, the more specific notice will prevail for that context.
• The disclaimer applies once the user accepts this Policy by signing, clicking to accept, or otherwise indicating agreement, including accession through continued use of the services.
• Nothing in this Policy limits rights granted by mandatory law or the user’s statutory remedies.

Definition

• Cookies are small files stored on a device by websites and apps. Similar technologies include SDKs, pixels, and local storage.

How we use cookies

• Statistics and analytics: measure visits, performance, and errors.
• Behaviour analysis: understand how the service is used to improve reliability.
• Personalisation: remember preferences such as language and limits.
• Security: prevent fraud and protect accounts.

Retention

• Non-essential cookies are stored for up to 1 year unless the user clears them earlier. Some essential cookies may be shorter lived.

Control

• Users can manage consent through browser settings and on-site controls. Blocking some cookies may affect certain functions.

Third-party cookies

• Some analytics or advertising partners place cookies subject to their own notices. We require appropriate safeguards and contracts.

• Using the website or mobile applications constitutes full acceptance of this Privacy Policy.
• The current version published on this page prevails over any prior version. Changes take effect once posted, unless a different effective date is stated.
• Continued use after changes indicates agreement to the updated document.

Sharing

• We may share personal data with payment processors, banks, identity verification and AML screening providers, fraud prevention services, hosting and cloud vendors, analytics platforms, CRM tools, and professional advisers.
• Data may also be disclosed to public authorities, courts, or regulators where required by law or to defend legal claims.

Scope and purpose

• Sharing is limited to what is necessary for the agreed services, compliance, dispute resolution, or to enforce our terms. A current list of key processors is available on the website or on request.

Consent and responsibility

• Providing data for these services is deemed consent to such disclosures where consent is required by law. Third parties process data under their own privacy notices and contractual duties.

• Our services may include links to third-party websites or apps. Those destinations have their own privacy policies and practices.
• We are not responsible for how external sites collect or use information. Users should review each site’s privacy notice before providing any personal data.
• Exercise caution when leaving our site and consider the security of any external platform.