GoldenMister Privacy Policy

GoldenMister acts as the data controller for users in the UK.

Personal data collected may include:

• Identity and contact details: name, username, address, email, phone.
• Age and verification data: date of birth, ID documents, facial or liveness checks where required by regulation.
• Account and transaction information: deposits, withdrawals, bets, gameplay logs, responsible gambling settings.
• Payment information: masked card details, bank data processed by payment providers.
• Technical and usage data: device identifiers, IP address, browser, app version, log data, cookies and similar technologies.
• Marketing preferences and communications history.

Why this information is collected:

• To create and manage accounts and provide gambling services.
• To process payments, verify identity, and meet anti-money laundering and affordability obligations.
• To support safer gambling, monitor activity, and apply player protection tools.
• To operate, secure and improve websites and apps, and to perform analytics.
• To comply with legal and regulatory requirements and respond to lawful requests.

Protection measures:

• Encryption in transit (TLS) and at rest for sensitive data.
• Strict access controls, multi-factor authentication, and role-based permissions.
• Vendor due diligence, UK-approved transfer safeguards, and confidentiality commitments.
• Regular security testing, logging, incident response, and staff training.
• Payment data handled in line with industry norms such as PCI DSS by authorised providers.

Compliance framework:

• UK GDPR and the Data Protection Act 2018.
• Privacy and Electronic Communications Regulations (PECR) for cookies and electronic marketing.
• Gambling Commission Licence Conditions and Codes of Practice (LCCP).
• UK Money Laundering Regulations 2017 for customer due diligence and record-keeping.

Retention:

• Kept only for as long as necessary for the purposes set out here.
• Records needed for AML and gambling regulation are typically retained for up to 5 years after the relationship ends.
• Support records and logs may be kept for defined periods to protect legal rights.
• Marketing data is retained until consent is withdrawn or an objection is made.

Your rights under UK law:

• Access, rectification, and erasure of personal data.
• Restriction of processing and objection to processing, including for direct marketing.
• Data portability where technically feasible.
• Withdraw consent at any time, where processing relies on consent.
• Lodge a complaint with the Information Commissioner’s Office (ICO): ico.org.uk, 0303 123 1113, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.

GoldenMister uses personal information to provide and administer accounts and services in a lawful and transparent manner.

Typical uses include:

• Account setup, identity checks, age verification, and security checks.
• Processing deposits, withdrawals, refunds, and chargebacks via payment providers.
• Delivering online gaming and sportsbook functionality, customer support, and service notifications.
• Assessing affordability, preventing fraud, and meeting AML and safer gambling duties.
• Improving services through analytics, testing, and troubleshooting.
• Personalising content and remembering preferences.
• Sending marketing where consent exists or where PECR allows contact to existing customers; users can opt out at any time.

Lawful bases:

• Contract: to deliver requested services and manage the account.
• Legal obligation: AML/CTF, responsible gambling, taxation, and regulatory reporting.
• Legitimate interests: network and information security, fraud prevention, and service improvement, balanced against user interests.
• Consent: non-essential cookies, certain marketing, and optional features.

Some checks use automated tools to detect fraud or harmful play. Human review is available on request where legally required.

Users can access, update, or delete certain account information through profile settings or by contacting the Data Protection Officer at [email protected].

How to request changes:

• Access: request a copy of personal data. A response is provided within one month, extendable by up to two months if requests are complex.
• Correction: provide updated details or documents so records can be kept accurate.
• Deletion: request erasure. Some data must be retained to meet legal duties, such as AML, gambling regulation, or to establish or defend legal claims.
• Objection/restriction/portability: requests are assessed under UK GDPR.
• Identity verification may be required before actioning any request.

By using GoldenMister, the user consents to security checks, identity verification, and processing of payment information by authorised payment service providers, subject to their privacy policies and applicable law.

The services are intended for individuals aged 18 and over only, in line with UK gambling law. The operator performs age verification and may request official documents to confirm age.

If a person under 18 has provided information, a parent or legal guardian can contact [email protected] to request deletion. Where feasible and lawful, the account will be closed and related data removed, subject to preservation required for fraud prevention or legal duties.

Personal data may be processed outside the United Kingdom where partners, suppliers, or group companies operate. By using the site and services, the user consents to such transfers as needed to deliver the services.

Safeguards are applied to protect confidentiality and integrity, including adequacy regulations, the UK International Data Transfer Agreement, or standard contractual clauses, plus technical and organisational measures. Recipients are required to protect information and use it only for specified purposes.

This disclaimer may limit or clarify the scope and effect of certain rules in this Privacy Policy, subject to applicable law. It applies once the user accepts the policy, including by signature, electronic acceptance, or accession through continued use of the services.

Nothing in this document removes statutory rights under UK law or limits obligations imposed by regulators or courts.

Cookies are small text files placed on a device by websites or apps. They help remember preferences, measure usage, analyse behaviour, personalise content, and improve performance.

How cookies are used:

• Essential cookies for security, login, and core functionality.
• Functional cookies to remember preferences.
• Analytics cookies to understand usage and improve services.
• Advertising cookies where consent is obtained.

Retention: non-essential cookies are set for up to 1 year unless removed earlier. Users can manage consent through the cookie banner and adjust browser settings. Non-essential cookies are used only where consent is given, in line with PECR and UK GDPR.

Using GoldenMister constitutes full acceptance of this Privacy Policy. The current version published on this page prevails over prior versions.

Continued use of the services after changes are posted indicates agreement to the updated policy, subject to applicable law.

Personal information may be shared with third parties for lawful purposes, including:

• Payment service providers, banks, and card schemes to process transactions and combat fraud.
• Identity, age, affordability, and AML/CTF providers, including credit reference and fraud prevention agencies.
• Hosting, IT support, analytics, customer support tools, auditors, and professional advisers.
• Regulators, dispute resolution bodies, law enforcement, and courts when required.

Where third parties are listed on the site, their role and the scope of information sharing are described there. If not listed, users will be informed of purpose and scope when appropriate. Providing information may indicate consent where consent is the lawful basis; otherwise, sharing occurs under contract, legal obligation, or legitimate interests. Third parties must protect data and use it only for the stated purposes.

The site may contain links to external websites or services that operate their own privacy policies. GoldenMister is not responsible for how those websites process information.

Users should review the privacy notices of any external service and exercise caution when providing personal data on third-party platforms.