Privacy Policy WonderLuck Casino

Scope

This Privacy Notice (hereinafter referred to as the “notice”) explains how WonderLuck Online Casino and its direct and indirect subsidiaries (collectively, “Wonderluck,” “we,” “us,” “our”) handle your personal data.

This Privacy Notice applies to the personal data collected from registered users (“Player(s)”) who have an account on our website and from visitors to our website.

Who we are

The operator of this website is the controller of your personal data. We are the controller of your personal data because, in the context of our business relationship with you, we decide how and why it is processed, as explained in this notice. Together with our joint controller, we ensure the ownership and security of the personal data you provide to us.

If you have any questions about this notice, including any requests to exercise your privacy and data protection rights, you can contact our Data Protection Officer by sending an email to [email protected].

What personal data do we collect?

  • Publicly available sources, such as public and governmental databases, the Internet, social media platforms, print and online media, etc.
  • Commercial databases and third-party entities, such as financial and credit institutions, fraud prevention agencies, and public authorities. These sources help us verify your information and investigate suspicious activities, especially for fraud prevention and anti-money laundering purposes.
  • Inferences. We may infer additional personal data based on the personal data described above. For example, we may infer your Wonder Luck gaming interests and preferences based on the web pages you visit and the games you play.

Why do we collect your data?

  • To provide you with our services.
  • To respond to your questions or requests.
  • To test, investigate, troubleshoot, and analyze data to develop and improve our products and services.
  • To prevent, detect, and manage the risk of harmful behaviors, fraud, and illegal activities.
  • To send you marketing content, newsletters, and to personalize our marketing for you.
  • To resolve disputes that may arise, including investigations by competent authorities or regulatory bodies.
  • To comply with regulatory and legal obligations.

What is our legal basis for processing your personal data?

  • To verify your age and identity as part of our KYC and AML obligations.
  • To determine your location and the applicable legal requirements using your IP data.
  • Risk management, including the prevention of problem gambling and the promotion of responsible WonderLuck gaming.
  • To ensure network and information security.
  • To comply with legal processes such as search warrants, subpoenas, or court orders.
  • Prevention of crimes related to money laundering, terrorist financing, fraud, or computer claims.
  • Periodic reporting activities to meet economic, financial, technical, and legal requirements.
  • To process your requests to exercise your rights under data protection laws.
  • To initiate legal claims and prepare our defense in litigation/administrative proceedings.
  • To conduct IT and systems security procedures to prevent potential crimes, ensure asset security, protect intellectual property, and guarantee the technical availability and proper functioning of our website and applications.
  • To manage our business relationship and improve our products and services.
  • To participate in analysis, data aggregation, and research for service development/improvement and/or marketing purposes.
  • Customer segmentation to manage risks, identify potential harmful behaviors, and ensure responsible gaming.
  • We analyze your gaming behaviors using machine learning algorithms to recommend games and features that might interest you.
  • To detect and prevent activities that compromise the integrity of our services, such as fraud, use of unauthorized software or tools, abnormal patterns, or cheating.
  • Send direct marketing messages via email, SMS, phone calls, websites, or app notifications.
  • Personalize offers and promotions based on your gaming history and preferences.
  • We use data about your online behavior to show you targeted ads that may interest you.
  • To customize and evaluate the effectiveness of our marketing to better align it with your interests and preferences.
  • To manage your participation in competitions, tournaments, rewards, loyalty programs, and promotional events.

How we share your personal data

  • Internally with authorized employees, brands within the same entity/operator, contractors, agents, joint controllers, affiliates, and subsidiary companies within our business group or linked to our parent company.
  • Payment providers and financial institutions. For the use of our services, withdrawals, and deposits, we offer various trusted third-party payment providers. We may share the following personal data with them: first name, last name, date of birth, email, address, postal code, city, country, phone number, and alias. We may also share your KYC documents with payment providers so they can comply with their legal and anti-money laundering obligations.
  • Third-party service providers, as necessary to provide, manage, and improve our services, including but not limited to customer support service providers, email delivery, SMS and voice call providers, technology providers, and cloud hosting service providers.
  • Marketing partners.
  • Fraud prevention agencies.
  • Third parties in the event of/in connection with a corporate transaction or proceeding such as a merger, financing, acquisition, bankruptcy, dissolution, transfer, divestiture, or sale of all or a portion of our business or assets.
  • Game providers.
  • Data aggregators or analytics providers for the purpose of conducting market research, data analysis, and improving service offerings.
  • Law enforcement agencies, regulatory authorities, and licensors.

How long do we keep your data?

We will retain your personal data only for as long as you maintain an account with us and to fulfill the purposes described in this privacy notice.

Additionally, we may retain your data for a longer period as required by applicable legal obligations, such as anti-money laundering (AML) regulations or other regulatory requirements.

Once your account is closed and there is no longer a legal or business need to retain your data, your personal data will be deleted or anonymized so that it can no longer be associated with you.

Your rights

  • Right to request access to the personal data we hold about you and to obtain information about how we process it.
  • Right to rectify or correct any inaccurate or incomplete personal data about you.
  • Right to erase, delete, or remove your personal data when there is no compelling legal or business reason to continue its processing.
  • Right to restrict the processing of your personal data in certain circumstances.
  • Right to request the transfer of your personal data to another controller in a structured, commonly used, and machine-readable format.
  • Right to object to the processing of your personal data, particularly if we are processing it on the grounds of legitimate interests or for direct marketing purposes.
  • Right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to lodge a complaint with a supervisory authority. You can do this in your EU Member State of residence, place of work, or the place where the alleged infringement occurred. To exercise your rights, please contact our customer service at [email protected].

Cookies and other tracking technologies

We use cookies, tags, pixels, web beacons, and other similar technologies to enhance your experience on our website and applications. On your first visit to our website or applications, we will ask for your consent to use non-essential cookies. Cookies that are strictly necessary for the functioning of the website do not require your consent. For more information on the specific cookies we use, their purposes, and how to manage your preferences, please see our Cookie Notice.

Data security

We prioritize the security of your personal data and implement robust measures to protect it from unauthorized access, loss, theft, and misuse. Our security strategy includes a combination of administrative, technical, and physical security measures designed to protect your data against unauthorized disclosure, alteration, and destruction. While we use advanced security measures to protect your data, no system will be completely safe from security breaches. The Internet, by its nature, cannot guarantee the complete security of data transmission or storage. While we strive to protect your personal information, we cannot guarantee its absolute security. However, we will continuously evaluate and improve our security practices to optimize the protection of your data.