Your privacy and data security are paramount at Wicked Jackpots Casino. This comprehensive privacy policy outlines how we collect, process, store and protect your personal information in compliance with UK GDPR regulations and international data protection standards as of 2026.
We believe in complete transparency about our data protection practices. Every player deserves to understand exactly how their information is handled, secured, and used throughout their gaming experience with us.
π Table of Contents
- β What Data We Collect
- π How We Use Your Information
- π Data Protection Measures
- π§βπ UK GDPR Compliance
- π± Cookies and Tracking
- π Your Privacy Rights
- β Third-Party Data Sharing
- π± Privacy Support and Questions
β What Data We Collect
At Wicked Jackpots Casino, we collect specific categories of personal information to provide you with our gaming services, ensure legal compliance, and enhance your player experience. Understanding what data we gather is essential to your privacy rights.
Account Registration Data
When you create an account with us, we collect:
- Full legal name and date of birth - Required for account verification and age confirmation (you must be 18+ to play)
- Email address - For account communication, promotional offers, and security notifications
- Phone number - For account recovery and customer support purposes
- Home address - Required for identity verification and regulatory compliance
- Username and password - For secure account access
Financial and Payment Data
To facilitate deposits, withdrawals, and responsible financial management, we collect:
- Bank account details or payment card information - Processed securely through encrypted channels (never stored on our servers)
- Transaction history - Records of all deposits, withdrawals, and gaming activity
- Betting patterns and gaming preferences - Used to personalise your experience and identify problem gambling signals
- Bonus redemption records - Tracked for promotional compliance
Gaming and Behavioral Data
We automatically collect information about your gaming activities:
- Game preferences and play history - Which slots, table games, and live casino games you enjoy
- Device information - IP address, operating system, browser type, and unique device identifiers
- Session duration and frequency - To monitor account security and usage patterns
- Geographic location data - To ensure you're within UK jurisdiction and comply with local regulations
Communication Records
We maintain records of:
- Customer support interactions - Chat logs, email correspondence, and support tickets
- Promotional communications - Which offers you've interacted with and email open rates
- Compliance documentation - Any identity verification submissions or responsible gambling declarations
π How We Use Your Information
Your data serves specific, legitimate purposes outlined in our terms and conditions. We never use your information beyond what's necessary for these purposes.
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Account Management | Name, email, address, phone | Contract Performance |
| Payment Processing | Financial data, transaction records | Contract Performance & Legal Obligation |
| Age & ID Verification | DOB, ID documents, address | Legal Obligation (UKGC Regulations) |
| Fraud Prevention | Device data, IP address, location | Legitimate Interest & Legal Obligation |
| Responsible Gambling | Gaming patterns, session data, spending | Legitimate Interest & Legal Obligation |
| Marketing Communications | Email, gaming preferences, activity | Consent (Can be withdrawn anytime) |
| Statistical Analysis | Anonymized gaming data | Legitimate Interest |
| Legal Compliance | All collected data | Legal Obligation |
β‘ Key Uses Explained
Gaming Service Delivery - We use your data to enable account creation, process payments, track bonuses, and provide customer support. This is essential to our contract with you.
Regulatory Compliance - As a UK-licensed casino operating in 2026, we're required by the UKGC to verify player identity, age, and location. We also conduct AML (Anti-Money Laundering) checks and maintain records for regulatory inspection.
Fraud & Security Prevention - We analyse gaming patterns, device information, and transaction data to detect suspicious activities, prevent account takeovers, and protect you and our platform.
Responsible Gambling - We monitor your gaming behaviour to identify potential problem gambling signals. This allows us to offer tools like deposit limits, self-exclusion, and time-out periods to support your wellbeing.
Marketing & Personalisation - With your consent, we send promotional offers tailored to your gaming preferences. You can manage these communications anytime.
π Data Protection Measures
At Wicked Jackpots Casino, we implement enterprise-grade data security measures to protect your information from unauthorised access, loss, or misuse.
Encryption & Secure Transmission
SSL/TLS 256-bit encryption protects all data transmitted between your device and our servers. This means your passwords, card details, and personal information are never visible to third parties during transmission.
Our website uses HTTPS across all pages. You'll notice the padlock icon in your browser's address bar - this confirms a secure connection.
Payment Card Security
We maintain PCI-DSS Level 1 compliance, the highest payment card industry security standard. We do NOT store complete card numbers on our servers. Instead:
- Card data is tokenized and encrypted
- Payment processing is handled by certified third-party providers (Stripe, PayPal, etc.)
- We store only transaction references for your records
- Regular security audits verify PCI-DSS compliance
Access Controls & Authentication
We restrict employee access to your data on a "need-to-know" basis. Multi-factor authentication protects admin accounts. All access to sensitive data is logged and monitored.
Data Storage & Backups
Your information is stored on secure servers located within the UK, protected by:
- Redundant firewalls and intrusion detection systems
- Regular automated backups with encryption
- Physical security measures at data centres
- Disaster recovery protocols ensuring data availability
Employee Training & Confidentiality
All staff members handling player data receive mandatory data protection training. Employees sign confidentiality agreements and understand their responsibilities under GDPR and data protection laws.
Third-Party Vendor Security
Any third-party service providers we work with (payment processors, marketing platforms, customer support tools) must comply with equivalent security standards. We conduct regular audits and maintain data processing agreements.
π§βπ UK GDPR Compliance
Wicked Jackpots Casino operates in full compliance with the UK General Data Protection Regulation (UK GDPR) as of 2026. Here's how we meet these requirements:
Legal Basis for Processing
We only process your data where we have a legitimate legal basis:
| Legal Basis | Applications at Wicked Jackpots |
|---|---|
| Contract Performance | Account management, payment processing, gaming services |
| Legal Obligation | Identity verification, AML checks, regulatory reporting, responsible gambling |
| Legitimate Interest | Fraud prevention, security, platform improvement, statistical analysis |
| Consent | Marketing emails, newsletter subscriptions, non-essential cookies |
| Vital Interest | Protecting player safety in responsible gambling situations |
Data Minimisation & Purpose Limitation
We collect only the minimum data necessary for each specific purpose. We don't use your information for unrelated purposes without your consent. This principle guides all our data practices.
Transparency & Privacy Notice
This privacy policy provides complete transparency about our data handling. You have the right to access this information anytime, and we regularly update it to reflect current practices and regulations.
Rights of Data Subjects
Under UK GDPR, you have specific rights regarding your data (see "Your Privacy Rights" section below). We've designed our systems to facilitate these rights easily.
Data Protection Impact Assessments
For high-risk processing activities, we conduct Data Protection Impact Assessments (DPIAs) to identify and mitigate privacy risks before implementation.
Data Protection Officer
Our designated Data Protection Officer oversees GDPR compliance across all operations. Contact us with privacy concerns at our contact page.
π± Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience, analyse usage patterns, and personalise content. Understanding these is essential to your privacy.
What Are Cookies?
Cookies are small text files stored on your device that identify you and remember your preferences. They enable features like auto-login and personalised game recommendations.
Cookie Categories
- Essential Cookies - Required for platform functionality (session management, security). No consent needed
- Performance Cookies - Track how you use the site to improve speed and functionality. Require consent
- Marketing Cookies - Remember your interests to deliver targeted promotions. Require consent
- Analytics Cookies - Aggregate usage data via Google Analytics to understand player behaviour. Require consent
Your Cookie Choices
When you first visit Wicked Jackpots Casino, a cookie consent banner appears. You can:
- Accept all cookies
- Decline non-essential cookies
- Customise individual categories
- Manage preferences anytime in account settings
Declining non-essential cookies won't affect core functionality, but may limit personalisation.
Third-Party Trackers
We may embed analytics from Google Analytics, HotJar (for user behaviour heatmaps), and affiliate tracking pixels. These partners process data according to their own privacy policies. You can opt-out of these services independently.
Local Storage & Device Identifiers
Beyond cookies, we use browser local storage and device identifiers (IP address, device fingerprinting) to enhance security, prevent fraud, and ensure compliance. These serve similar purposes to cookies but persist differently.
π Your Privacy Rights
Under UK GDPR 2026, you have robust rights regarding your personal data. Wicked Jackpots Casino is committed to facilitating these rights efficiently.
Right to Access (Subject Access Request)
You can request a copy of all personal data we hold about you. We'll provide this within 30 days in a structured, common format. Submit requests via our contact page.
Right to Rectification
If your information is inaccurate or incomplete, you can request correction. You can also update most information directly in your account dashboard.
Right to Erasure ("Right to be Forgotten")
You can request deletion of your data in certain circumstances - for example, if data is no longer necessary for its original purpose. However, we must retain data for:
- Legal obligations (tax records, AML compliance)
- Fraud prevention and security
- Dispute resolution and contractual obligations
- Gaming history (typically 6 years minimum)
Right to Data Portability
You can obtain your data in a portable format and transmit it to another provider. This is particularly relevant for gaming history and account data. Contact us to initiate this process.
Right to Restrict Processing
You can ask us to limit how we use your data while a complaint is investigated or if you dispute its accuracy.
Right to Object
You can object to processing based on legitimate interest (such as direct marketing). We'll stop processing unless we have overriding legal reasons. Marketing opt-outs are immediate.
Rights Related to Automated Decision-Making
You have rights regarding fully automated decisions affecting you (such as bonus eligibility). You can request human review of such decisions.
Submitting Rights Requests
To exercise any of these rights:
- Contact our privacy support team
- Provide sufficient information to identify you (account details, email)
- Specify which right you're exercising
- We'll respond within 30 days (extendable to 90 days for complex requests)
β Third-Party Data Sharing
We share your information with trusted third parties only where necessary and lawful. Here's complete transparency about these relationships.
Payment Processors
Deposits and withdrawals are processed by licensed payment providers (Stripe, PayPal, Skrill, Neteller, bank transfers). We share only:
- Your name and email
- Transaction amount and type
- Device and IP information (fraud prevention)
These providers maintain separate privacy policies. We don't control their data handling beyond contractual data processing agreements.
Identity Verification Services
To comply with UKGC regulations, we use third-party ID verification services (Jumio, Onfido). We submit:
- Name, DOB, address
- ID document images (processed but not permanently stored by these services)
These are legitimate legal obligations. Verification typically completes within hours.
Customer Support Platforms
Our support team uses platforms like Zendesk or Intercom to manage tickets. Your chat history and personal data are encrypted and accessible only to authorized support staff.
Marketing & Analytics Partners
With your consent, we share anonymized data with:
- Google Analytics - Aggregated usage patterns (no personal identifiers)
- Facebook Pixel - For retargeting ads (hashed data only)
- Email marketing platforms - Your email for promotional communications (you control this)
These partners process data under strict data processing agreements complying with UK GDPR.
Affiliate & Referral Partners
If you joined via an affiliate link, basic information (email, registration date, bonus claimed) may be shared with that affiliate solely for commission purposes. You can opt-out in account settings.
Regulatory & Law Enforcement
We may disclose your data to:
- UKGC (UK Gambling Commission) - Regulatory audits and compliance checks
- Law enforcement - If required by court order or to prevent illegal activity
- Tax authorities - Winnings reports and tax compliance
We'll inform you of legal demands unless legally prohibited.
Business Transfers
If Wicked Jackpots Casino is acquired or merges with another company, your data may be transferred. You'll be notified with at least 30 days' notice and the right to opt-out.
Data Processing Agreements
All third-party processors sign Data Processing Agreements (DPAs) committing to:
- GDPR compliance
- Restricted data access
- Secure encryption and storage
- Incident notification procedures
- Deletion or return of data on contract termination
π± Privacy Support and Questions
If you have questions about your privacy, data security, or this policy, we're here to help. Contact our dedicated privacy support team anytime.
For account security concerns, visit our security measures page for additional information about how we protect your account.
Contact Options
- Email: [email protected]
- Live Chat: Available 24/7 on our website
- Contact Form: Submit privacy inquiries here
- Postal Address: Privacy Department, Wicked Jackpots Casino, UK (provided upon request)
Response Times
We aim to respond to all privacy inquiries within 24-48 hours. Subject Access Requests and formal rights exercises receive responses within the legal 30-day timeframe.
Complaints & Escalation
If you believe we've violated your privacy rights, we encourage you to:
- Contact us directly - we'll investigate and respond
- File a formal complaint with the Information Commissioner's Office (ICO) - the UK's independent data protection regulator
- Seek legal advice if necessary
Complaints to the ICO can be submitted at ico.org.uk.
Policy Updates
We update this privacy policy regularly to reflect regulatory changes and operational improvements. Current version: 2026. Subscribe to our privacy updates via our contact page to receive notifications of material changes.
π Your Privacy is Our Priority
Wicked Jackpots Casino takes data protection seriously. By understanding our privacy practices, you can play with confidence knowing your information is secure, protected, and used only for legitimate purposes. Thank you for trusting us with your personal data.
