Cazeus Casino Privacy Policy

This Privacy Policy explains how Cazeus Gaming Ltd ("Cazeus Casino", "we", "us", "our") collects, uses, stores, and protects your personal data when you use our website at cazeuscasino-uk.com and related services. We are committed to protecting your privacy and processing your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Cazeus Gaming Ltd is registered as a data controller with the Information Commissioner's Office (ICO). Our ICO registration number is available on request. For all data protection enquiries, including subject access requests, erasure requests, and complaints, contact our Data Protection Officer at [email protected].

By registering an account and using Cazeus Casino, you acknowledge that you have read and understood this Privacy Policy. This Policy applies to personal data collected through the Site, our customer support channels, and any other service we provide. It does not apply to third-party websites linked from the Site, which operate under their own privacy policies.

We will notify you of any material changes to this Policy by email to your registered address, with a minimum of 30 days' notice before changes take effect. We recommend reviewing this page periodically for updates. Last Updated: January 2026.

We collect different categories of personal data depending on your interaction with us. We collect only what is necessary for the purposes described in this Policy.

Identity and contact data: your full legal name, date of birth, residential address, email address, and phone number. This is collected when you register an account.

Financial data: payment card details (processed securely by our payment providers — we do not store full card numbers), bank account information, e-wallet account identifiers, and transaction history. This is collected when you make deposits or withdrawal requests.

Identity verification (KYC) documents: copies of government-issued photo ID (passport, driving licence), proof of address documents (utility bills, bank statements), and any other documents requested during the verification process. This is required by law under the Anti-Money Laundering Regulations.

Gaming activity data: game history, bet amounts, win/loss records, session durations, and bonus usage. This is generated automatically when you play on the Site.

Technical data: IP address, device type, browser type and version, operating system, screen resolution, referring website, and pages visited on the Site. This is collected automatically via cookies and server logs.

Communications data: records of your communications with our customer support team, including live chat transcripts and email exchanges.

Account management: we use your identity and contact data to create and maintain your account, process your registrations, respond to your enquiries, and manage your account settings including responsible gaming preferences.

Payment processing: your financial data is used to process deposits and withdrawal requests, verify payment methods, and prevent duplicate payment fraud. We share necessary data with payment processors for this purpose.

KYC and AML compliance: we are legally required under the UK Anti-Money Laundering Regulations and our UKGC licence conditions to verify the identity of all players and to monitor transactions for suspicious activity. Your identity documents and gaming activity data are used for this purpose.

Fraud prevention: we use technical data, gaming activity data, and identity data to detect and prevent fraudulent activity including multi-accounting, bonus abuse, chargebacks, and money laundering.

Marketing (where consented): if you have opted in to marketing, we use your contact data to send you information about promotions, bonuses, and new features at Cazeus Casino. You can withdraw consent at any time by clicking unsubscribe in any marketing email or contacting us at [email protected].

Regulatory reporting: we may be required to report certain information to the UKGC, HM Revenue and Customs, or other regulatory and law enforcement bodies as required by our licence conditions and applicable law.

Site analytics: we use anonymised and aggregated technical data to understand how the Site is used, identify technical issues, and improve the player experience. Where analytics involves personal data, we rely on legitimate interests as the legal basis.

Under UK GDPR, we must have a lawful basis for processing your personal data. We rely on the following bases:

Contract performance: processing your identity, contact, and financial data is necessary to provide the services you have signed up for — operating your account, processing bets, and handling payments. Without this data, we cannot provide the service.

Legal obligation: processing your KYC documents, gaming activity records, and financial transaction data is required to comply with our legal obligations under the Anti-Money Laundering Regulations 2017, the UK Gambling Act 2005, and UKGC licence conditions. We have no discretion to decline this processing.

Legitimate interests: we process technical data, gaming activity data, and communications data for the purposes of fraud prevention, network security, and site analytics. We have assessed these legitimate interests and determined they do not override your rights and freedoms, given the limited intrusiveness of this processing and the safeguards we apply.

Consent: where we send you marketing communications, we rely on your consent as the legal basis. You have the right to withdraw consent at any time without affecting the lawfulness of prior processing. Withdrawal of marketing consent does not affect your ability to use the Site.

We do not process any special category data (such as health data, political opinions, or biometric data) except to the limited extent that identity documents submitted for KYC may incidentally reveal such information. We process KYC documents under legal obligation and do not use them for any other purpose.

We do not sell your personal data to third parties for marketing purposes. We share your data only in the circumstances described below, and only to the extent necessary.

Payment processors: we share financial data with our payment processing partners (including Visa, Mastercard, PayPal, Skrill, and Neteller) to process your deposits and withdrawals. These processors are subject to their own privacy policies and are required to process data only in accordance with our instructions and applicable law.

Identity verification services: we use third-party identity verification and anti-fraud services to process your KYC documents and confirm your identity. These services process data on our behalf as data processors under contractual obligations.

Regulatory authorities: we may be required to share data with the UK Gambling Commission, HMRC, the Financial Conduct Authority, and law enforcement agencies where required by law, court order, or our licence conditions. We cannot decline such requests.

Fraud prevention agencies: we share data with fraud prevention agencies and credit reference agencies where we have grounds to suspect fraudulent activity. This may result in a record being placed on your file with those agencies.

Analytics providers: we use third-party analytics tools to understand site usage. Where possible, we use anonymised and aggregated data for analytics purposes.

Group companies: we may share data with affiliated companies within our corporate group for the purposes of internal administration and reporting. All group companies are bound by equivalent data protection standards.

In all cases where we share data with third parties, we require appropriate data processing agreements or other safeguards to be in place. We do not transfer your data outside the UK or EEA without ensuring equivalent data protection safeguards are in place.

Cazeus Casino uses cookies and similar tracking technologies to operate the Site and enhance your experience.

Essential cookies are always active. These cookies are necessary for the Site to function. They include session cookies that keep you logged in during your visit, security cookies that protect against fraudulent activity, and functional cookies that remember your preferences. You cannot opt out of essential cookies without disabling the Site entirely.

Analytics cookies are used to understand how visitors interact with the Site, which pages are most popular, and where technical errors occur. We use this data in aggregated, anonymised form. You can opt out of analytics cookies via the cookie consent banner or through your browser settings.

Marketing and personalisation cookies are used to show you relevant promotions and content based on your browsing behaviour, both on the Site and on third-party websites. These cookies require your consent to be set. You can manage your cookie preferences at any time by clicking the cookie settings link in the footer.

We do not use cookies to collect sensitive personal information such as passwords or payment card numbers. You can also control cookies through your browser settings, though disabling certain types of cookies may affect the functionality of the Site. Most browsers allow you to view and delete cookies stored on your device — refer to your browser's help documentation for instructions.

We retain your personal data for as long as necessary to fulfil the purposes described in this Policy, subject to the following specific retention periods.

Active account data: we retain your account data for as long as your account remains active. If your account has been inactive for more than 5 years (and does not hold a positive balance), we may close it and anonymise your data, subject to giving you reasonable notice.

Post-account closure: following account closure, we retain transactional records, KYC documents, and gaming activity data for a minimum of 5 years from the date of closure. This is required to comply with our obligations under the Anti-Money Laundering Regulations and our UKGC licence conditions. In some cases, legal proceedings or regulatory investigations may require us to retain data for longer.

Marketing data: we retain data used for marketing communications until you withdraw your consent or until 3 years after your last interaction with marketing from us (whichever is sooner), unless we have a separate legal basis to retain it for longer.

Customer support records: chat transcripts and email records are retained for 2 years from the date of the interaction, except where the communication relates to a dispute or legal matter, in which case it is retained for the duration of that matter plus 6 years.

After the relevant retention period, we securely delete or anonymise your personal data so that it can no longer be linked to you.

You have the following rights regarding your personal data under UK GDPR. To exercise any of these rights, contact us at [email protected]. We will respond within one calendar month of receiving your request (this may be extended by up to two further months for complex requests, with notice to you).

Right of access: you may request a copy of the personal data we hold about you, along with information about how and why we process it.

Right to rectification: if any personal data we hold is inaccurate or incomplete, you have the right to have it corrected. Please notify us of any changes to your personal information.

Right to erasure ("right to be forgotten"): you may request that we delete your personal data in certain circumstances — for example, where we no longer need it for the original purpose, or where you have withdrawn consent. Note that this right does not apply where we are required to retain data by law (such as AML retention requirements).

Right to data portability: where we process your data on the basis of consent or contract, you may request that we provide your data in a structured, machine-readable format for transfer to another data controller.

Right to restriction of processing: in certain circumstances, you may request that we restrict the processing of your data — for example, while you contest the accuracy of data we hold.

Right to object: you have the right to object to processing carried out on the basis of legitimate interests, including profiling. You also have an absolute right to object to processing for direct marketing purposes.

Right to withdraw consent: where processing is based on consent (such as marketing), you may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

Right to complain: if you are not satisfied with our response to a data protection concern, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.

Cazeus Gaming Ltd takes the security of your personal data seriously and has implemented a range of technical and organisational measures to protect it.

All data transmitted between your device and the Site is encrypted using 256-bit SSL/TLS encryption. Our servers use encrypted storage for sensitive personal data including KYC documents and payment records.

Access to personal data within our organisation is restricted on a role-based basis. Only staff with a legitimate operational need can access identifiable personal data, and all access is logged and audited. Staff with access to sensitive data are subject to confidentiality agreements and regular data protection training.

We conduct regular security audits and penetration testing of our systems. Our payment processing infrastructure is PCI DSS compliant. We maintain an incident response plan and will notify you and the ICO without undue delay in the event of a data breach that is likely to result in a risk to your rights and freedoms.

While we take all reasonable steps to protect your data, no internet transmission is completely secure. You are also responsible for protecting your account credentials. Use a strong, unique password and enable two-factor authentication — both are available in your account settings.

Cazeus Casino is primarily based in the United Kingdom. Where we transfer personal data outside the UK or European Economic Area (EEA) — for example, when using analytics or payment processing services operated by companies with international infrastructure — we ensure that appropriate safeguards are in place in accordance with UK GDPR requirements.

Appropriate safeguards may include UK International Data Transfer Agreements (IDTAs), Standard Contractual Clauses approved by the ICO, adequacy decisions recognising equivalent data protection standards in the recipient country, or other mechanisms recognised by UK law.

Where possible, we prefer to work with service providers that process data within the UK or EEA. Where international transfers are unavoidable, we carry out transfer impact assessments and put in place robust contractual protections before any transfer takes place.

If you would like further information about the specific safeguards we have in place for international data transfers, contact us at [email protected].

We may update this Privacy Policy from time to time to reflect changes in our data processing practices, applicable law, or our business operations. We distinguish between material and non-material changes.

Material changes — changes that significantly affect how we use your data, introduce new categories of processing, or affect your rights — will be communicated to you by email to your registered address with a minimum of 30 days' notice before taking effect. If you do not agree with the changes, you have the right to close your account before the effective date.

Non-material changes — minor updates that do not affect the substance of our data processing, such as formatting improvements, clarifications, or updates to contact information — may be made without individual notice, though the revised Policy will always be available on this page with the updated "Last Updated" date shown at the top.

We recommend bookmarking this page and reviewing it periodically. Your continued use of the Site after the effective date of any changes constitutes acceptance of the updated Policy.

For all data protection matters, including subject access requests, erasure requests, objections to processing, and general privacy enquiries, contact our Data Protection Officer at:

Email: [email protected] Postal address: Data Protection Officer, Cazeus Gaming Ltd, [Registered Address], United Kingdom

We aim to acknowledge all data requests within 5 business days and provide a substantive response within one calendar month. For complex requests, we may extend this by up to two further months, in which case we will notify you within the initial one-month period.

For general customer support (account queries, payments, technical issues), contact our support team via live chat at cazeuscasino-uk.com or at [email protected].

If you have a complaint about how we have handled your personal data and are not satisfied with our response, you can lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk, by phone on 0303 123 1113, or by post to: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.