Privacy Policy

1. Data Controller

The data controller responsible for personal data processed via Casinomarket is:

For privacy-related enquiries — including data access, correction, or deletion requests under GDPR or DPDPA — please contact privacy@casinomarket.com. Use the subject line “Privacy Request” to ensure prompt handling. We respond to all verified Data Subject Requests within 30 days.

2. What Data We Collect

Casinomarket collects personal data in three categories:

A. Automatically Collected (Server & Analytics)

When you visit Casinomarket, we automatically collect:

• IP address (typically pseudonymised before storage)
• Browser type, version, operating system, device type
• Referring URL and pages visited within Casinomarket
• Date, time, and duration of visit
• Approximate geographic location (typically country / region level)
• Aggregate engagement metrics (scroll depth, click events, search queries within site)

This data is collected through standard server logs and Google Analytics 4 (GA4), configured with IP-anonymisation enabled (see Section 5 for the full third-party processor list).

B. Voluntarily Submitted (Contact, Newsletter, Submissions)

If you contact us via email or any contact form, you may provide:

• Email address
• Name (optional)
• The content of your message and any attachments
• Other information you choose to include

C. Cookies & Tracking Technologies

See Section 4 below for cookies and similar technologies.

3. Why We Collect Data & Legal Basis (GDPR)

For users protected by the EU/UK General Data Protection Regulation, the legal basis for our processing is:

• Legitimate interest (Article 6(1)(f) GDPR) for analytics, security monitoring, fraud prevention, and improving the website. Our legitimate interest is in operating, securing, and improving an editorial publication.
• Consent (Article 6(1)(a) GDPR) for non-essential cookies (analytics tracking with personally-identifying capability). You can withdraw consent at any time via your browser settings or our cookie preferences mechanism.
• Contract performance (Article 6(1)(b) GDPR) where applicable for users who explicitly engage with services that may be added in future (e.g. newsletter subscriptions).
• Legal obligation (Article 6(1)(c) GDPR) where we are required to retain data for tax, accounting, or compliance purposes.

For Indian users, processing is conducted in alignment with the Digital Personal Data Protection Act 2023 (DPDPA). The lawful basis under DPDPA for our processing is your consent (where collected) and legitimate uses for which consent is implicit (e.g. responding to your enquiry when you contact us).

4. Cookies & Tracking Technologies

Casinomarket uses cookies and similar technologies for the following purposes:

Essential cookies

Required for the website to function correctly. These cannot be disabled. Examples: session identifiers, security tokens, basic preference cookies.

Analytics cookies

Collect aggregate data about how users interact with the website, helping us understand which content is useful and identify technical issues. We use [analytics provider] for this purpose. You can opt out via cookie preferences or your browser’s “Do Not Track” setting.

Functional cookies

Remember user preferences such as theme, language, or layout choices. Optional; can be disabled via browser settings.

Marketing / advertising cookies

As of April 2026, Casinomarket does not use marketing or advertising cookies. If this changes in future, this policy will be updated.

You can manage cookie preferences through your browser settings or, where applicable, through our cookie preferences mechanism. Disabling cookies may affect website functionality.

5. Third-Party Service Providers

Casinomarket uses third-party service providers for specific operational functions:

• Hosting: Cloudways (a managed hosting platform). Servers are typically located in Europe (specific data centre depends on hosting configuration).
• Content Delivery: Cloudflare (where active) for CDN and security purposes. Cloudflare may process IP addresses for security purposes.
• Email: Email correspondence may be processed via Google Workspace or similar email infrastructure.
• Analytics: Standard web analytics tooling (specific provider may evolve; current provider is identifiable in our cookie list).
• Search engine indexing: Search engines such as Google index publicly available website content; this is standard web operation, not a Casinomarket-specific data processor relationship.

Each third-party provider operates under its own privacy policy. Where transfers of personal data occur outside your jurisdiction (e.g. to data centres in Europe or the US), they are subject to appropriate safeguards including Standard Contractual Clauses where applicable.

6. Data Retention

We retain personal data for the following periods:

• Server logs and analytics data: typically 12–24 months, depending on the provider’s default retention. Aggregated, non-identifiable data may be retained longer for trend analysis.
• Email correspondence: retained for the duration of any active enquiry plus a reasonable record-keeping period (typically 24 months) unless deletion is requested earlier.
• User-submitted content (e.g. tip submissions, scam reports): retained for as long as the content remains relevant to our editorial coverage. Source identity is held separately and treated with confidentiality where requested.
• Tax and accounting records: retained for the period required by Swedish tax law (typically 7 years).

You may request earlier deletion of your data; see Section 7 for user rights.

7. Your Rights

Depending on your jurisdiction, you have the following rights regarding your personal data:

Under GDPR (EU/UK users)

• Right of access — obtain confirmation of whether we hold data about you and a copy of that data
• Right to rectification — correct inaccurate or incomplete data
• Right to erasure (“right to be forgotten”) — delete data where applicable conditions are met
• Right to restrict processing — limit how we use your data
• Right to data portability — receive your data in a structured, machine-readable format
• Right to object — object to processing based on legitimate interest
• Right to withdraw consent — for processing based on consent
• Right to lodge a complaint with a supervisory authority (e.g. the Swedish Authority for Privacy Protection, IMY)

Under DPDPA (Indian users)

• Right to access personal data we process about you
• Right to correction of inaccurate or incomplete data
• Right to erasure where lawful conditions are met
• Right to grievance redressal via the contact details provided
• Right to nominate another individual to exercise your rights in case of incapacity

To exercise any of these rights, contact editor@casinomarket.com with the subject line “Privacy Request”. We aim to respond within 30 days. Where a request is complex or involves multiple parties, we may extend this by an additional 60 days as permitted by GDPR / DPDPA, with notice to you.

We may need to verify your identity before processing certain requests, particularly where the data could be used to identify you. We may decline requests that are manifestly unfounded, excessive, or that conflict with our legal obligations.

8. International Data Transfers

Casinomarket is operated from Sweden. Some of our service providers (hosting, CDN, analytics) may process data outside the European Economic Area or your country of residence. Where transfers occur:

• Transfers within the EEA do not require additional safeguards
• Transfers to countries with adequacy decisions (e.g. UK, certain other jurisdictions) are subject to those decisions
• Transfers to other countries (e.g. US, India) are made under Standard Contractual Clauses or equivalent safeguards

For Indian users, data may be processed in the European Economic Area (where our hosting is typically located). This is permitted under DPDPA where appropriate safeguards are in place.

9. Data Security

We implement reasonable technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. Measures include:

• HTTPS encryption for all website traffic
• Access controls on backend systems and administrative interfaces
• Regular security updates and monitoring on hosting infrastructure
• Secure handling of email correspondence
• Limited data retention as documented above

No method of transmission over the Internet or method of electronic storage is fully secure. While we apply appropriate measures, we cannot guarantee absolute security. In the event of a data breach affecting your personal data, we will notify you and the relevant supervisory authorities as required by applicable law.

10. Children’s Privacy

Casinomarket is not directed at children under 18 years of age. We do not knowingly collect personal data from individuals under 18. If you believe we have inadvertently collected data from a minor, please contact us at editor@casinomarket.com and we will take steps to delete the information promptly.

11. Updates to This Privacy Policy

This Privacy Policy may be updated from time to time. Material changes will be indicated by an updated “Effective” date at the top of this page and, for significant changes, a brief change-log notice on the page or via the website footer.

For substantial changes affecting your rights or how we process your data, we will provide more prominent notice (for example, a notification when you next visit the website).

Current version: April 2026 (initial publication).

12. Contact & Complaints

If you are unsatisfied with our response to a privacy-related concern, you have the right to lodge a complaint with a supervisory authority:

• EU/EEA users: the data protection authority of your country of residence, or the Swedish Authority for Privacy Protection (IMY) at imy.se
• UK users: the Information Commissioner’s Office (ICO) at ico.org.uk
• Indian users: the Data Protection Board of India once operational under the DPDPA framework

Related