Maximum Casino UK Privacy Policy

• Information we collect may include account details, identity and age verification data, contact information, transaction records, gameplay data, device identifiers, IP address, cookies, and communication history.
• Purposes cover account set-up, safer gambling measures, payments, fraud prevention, customer support, dispute handling, compliance checks, analytics, and service improvement.
• Lawful bases include consent (for marketing and certain cookies), contract (to provide services), legal obligations (KYC/AML and regulatory reporting), and legitimate interests (security and service integrity).
• Security controls include encryption in transit and at rest, access controls, multi-factor authentication for staff, network segmentation, and continuous monitoring.
• Organisational measures include staff training, role-based access, incident response plans, and regular audits.
• Payment processing is handled by authorised providers; card data is tokenised and not stored in plain text.
• Age and identity checks may involve electronic verification, document checks, and screening against sanction or exclusion lists.
• Retention follows legal and regulatory timeframes, including AML and gambling regulation requirements.
• Data minimisation ensures only relevant information is collected and kept for no longer than necessary.
• Transparency is maintained through this document, in-product notices, and user controls.

Users have rights to access their personal data, request correction, deletion, restriction, or portability, and to object to certain processing. Users may withdraw consent for marketing at any time. Requests are normally answered within one month.

The platform complies with UK GDPR and the Data Protection Act 2018, and aligns practices with the Gambling Commission’s Licence Conditions and Codes of Practice. Guidance from the Information Commissioner’s Office informs our approach to privacy and data protection in the United Kingdom.

Personal data is used to operate the online casino and sportsbook services, manage accounts, and process transactions securely. Information supports safer gambling tools, KYC/AML checks, and risk management in line with United Kingdom regulations. Data may be analysed to improve website performance, user experience, and service quality. Marketing communications are sent only where consent is given or where permitted by law. Aggregated and anonymised insights help enhance systems and detect misuse.

• Set up and manage user accounts and preferences.
• Verify identity, age, and address to meet regulatory standards.
• Process deposits, withdrawals, and wagers, and manage payment reconciliation.
• Prevent fraud, financial crime, and abuse of services.
• Provide customer support and handle complaints or disputes.
• Personalise content, features, and safer gambling interventions.
• Conduct analytics and performance monitoring of the websites and apps.
• Meet legal obligations, respond to regulators, and maintain audit records.
• Send service notices and, where consent exists, marketing communications.
• Maintain security, system integrity, and service reliability.

All processing is conducted on a lawful basis, documented, and proportionate to the purpose. Users can contact us for details of purposes and legal grounds relevant to their account.

Users can access, review, and update personal information through account settings or by contacting the Privacy Team. Requests to correct inaccurate information, delete data where permitted, or limit processing are managed in line with UK GDPR. Verification may be required before changes are made to protect users. Security checks form part of the account lifecycle and users consent to the handling of payment information by regulated electronic service providers and payment institutions. The service uses providers that apply recognised security standards to process transactions and store tokens rather than raw card numbers. A record of requests and changes is maintained to ensure auditability. The platform remains committed to privacy and data security throughout the user journey.

The services are intended for users aged 18 and over only. The operator cannot verify age without appropriate documents and may request evidence where required. If a parent or guardian informs us that a minor’s information was provided, the account will be closed and data deleted as permitted by law.

• Age verification checks are conducted before access to gambling services.
• Accounts suspected of being used by minors are suspended and investigated.
• Any funds held in an underage account are handled in line with legal requirements.
• Parents or guardians may contact the Privacy Team to request deletion of a minor’s data.
• Records are retained only where necessary to meet legal obligations.
• Information about self-exclusion and blocking tools is provided to support responsible use.

Personal information may be processed outside the United Kingdom where service partners or group companies operate. Use of the online services constitutes acknowledgement that such transfers can occur subject to safeguards. All partners handling data must maintain confidentiality and comply with contractually binding privacy and security terms. Data transfers follow recognised transfer tools to protect user information.

• Transfers rely on adequacy regulations, the UK International Data Transfer Agreement, or the UK Addendum to SCCs.
• Contracts require equivalent protection, confidentiality, and security controls.
• Only the minimum information necessary is shared for the stated purpose.
• Technical measures such as encryption and access controls are applied.
• Regular reviews of partner compliance and data protection practices are conducted.
• Users can request details of transfer safeguards relevant to their data.

This section explains how specific disclaimers may affect the scope of rules set out in this document. The disclaimer applies when the user accepts the policy by account registration, affirmative acceptance in the product, or other valid forms of accession permitted by law.

• This document does not limit statutory rights under UK law.
• Terms may be updated to reflect legal or operational changes; the latest version applies.
• If any provision is found invalid, remaining parts continue in effect.
• Nothing herein creates rights for third parties beyond what the law provides.
• Conflicts between this document and product notices are resolved in favour of the most recent notice consistent with law.
• Governing law is that of the United Kingdom where the user resides for these services, unless required otherwise by regulation.

Cookies are small text files placed on a device by websites to remember a user, improve functionality, and measure performance. The service uses cookies for statistics, behaviour analysis, personalisation, and site improvement so that content and features remain relevant and reliable. Essential cookies support login Maximum Casino, security, and core functions; analytics and marketing cookies operate subject to consent where required. Users can manage preferences through the browser or the on-site controls. Unless a shorter period is stated in the preference centre, non-essential cookies are retained for up to 1 year before expiry or renewal.

Use of the services in the United Kingdom signifies full acceptance of the current Privacy Policy and any related notices. The latest published version replaces previous versions from its effective date. Continued use after updates indicates agreement to the revised terms to the extent permitted by law.

Personal data may be shared where required by law, to resolve disputes, to perform a contract, or as set out in agreements with trusted providers. The website lists key third parties or categories; where a named list is not available, users will be informed of the purpose and scope upon request. Providing information to use the services constitutes consent for sharing where consent is the lawful basis; other sharing may rely on contract, legal obligation, or legitimate interests. All recipients must protect confidentiality and use data only for the stated purposes.

• Payment service providers and banks for deposits, withdrawals, and chargebacks.
• Identity, age verification, and credit reference agencies for KYC/AML checks.
• Fraud prevention and sanctions screening providers.
• Hosting, cloud, and cybersecurity vendors supporting the platform.
• Analytics partners for performance and usage insights, subject to consent where required.
• Customer support and communications tools for service delivery.
• Regulators, law enforcement, tax authorities, and dispute resolution bodies.
• Professional advisers such as auditors and legal counsel under confidentiality.

The website may contain links to external websites that have their own privacy policies and practices. Responsibility does not extend to how those websites collect, use, or protect personal information. Users should review the privacy information of any external site before providing data. Caution is advised when leaving this service to ensure data is shared only where intended.

• Linked sites may apply different data protection rules and retention periods.
• Clicking a link may allow the third party to collect device and referral information.
• Details about cookies and tracking on external sites are available in their documents.
• Any transactions on third-party platforms are subject to their terms.
• Security of data provided to external sites is managed by those operators.
• Users can return to account settings to manage their preferences on this site.
• Reports of suspicious links can be made to the Support or Privacy Team.
• Verification of the domain and certificate is recommended before sharing data.