Privacy Policy and How We Handle Your Data

Last updated: Reading time: 6 min

This privacy policy explains how GamStop Bypass Casino collects, uses, stores and protects personal data, and the rights you have over your information. It is written to reflect the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. The operator and contact details below are placeholders to be replaced with the real data controller’s information before publication.

Key definitions used in this policy

To keep this policy clear, a few terms are used throughout. “Personal data” means any information relating to an identified or identifiable living individual, such as a name, email address or, in some circumstances, an online identifier like an IP address. “Processing” means any operation performed on personal data, including collecting, storing, using, disclosing or deleting it. The “data controller” is the person or organisation that decides why and how personal data is processed, and for this site that is the operator named in the impressum. A “data processor” is a third party that processes personal data on the controller’s behalf, such as a hosting or analytics provider.

What data we collect and why

This site is an informational resource and does not require you to create an account, make a payment or submit identity documents. Most visitors can read the entire site without providing any personal data at all. We collect personal data only in two limited situations. The first is when you contact us voluntarily, for example by using the contact form or emailing the editorial address, in which case we receive the name, email address and message content you choose to send. The second is the limited technical data your browser sends automatically when you load any website, which may include your IP address, browser type, device information and the pages you view, together with any data collected through cookies as described in the cookies policy.

The legal basis for processing (Article 6 UK GDPR)

We process personal data only where we have a lawful basis under Article 6 of the UK GDPR. When you contact us, our basis is either your consent or our legitimate interest in responding to and managing your enquiry. For the limited technical and analytics data, our basis is your consent where the law requires it (for non-essential cookies) and our legitimate interest in operating, securing and improving the website for strictly necessary technical data. Where processing relies on consent, you are free to withhold or withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.

Cookies and analytics

This site may use cookies and similar technologies to make the site function and, with your consent, to understand in aggregate how the site is used. Cookies are categorised as strictly necessary, functional, analytical or marketing, and non-essential categories are only set where you have given consent through the cookie banner. The specific cookies, their purposes and their retention periods are listed in the dedicated cookies policy, which forms part of this privacy policy. Any analytics data is used in aggregate to improve content and is not used to build individual profiles for advertising on this informational site.

Disclosure to third parties

We do not sell personal data, and we do not share it with third parties for their own marketing. Personal data may be processed on our behalf by service providers that help us run the site, such as a hosting provider, an email provider or an analytics provider, each of which acts as a data processor under a contract that requires appropriate safeguards. We may also disclose personal data where we are legally required to do so, for example in response to a valid request from a public authority or to establish, exercise or defend a legal claim. If any processor is located outside the United Kingdom, transfers are made only where an adequate level of protection is ensured through an approved transfer mechanism.

How long we keep data

We retain personal data only for as long as necessary for the purpose for which it was collected. Correspondence sent through the contact form or by email is kept for as long as needed to deal with your enquiry and for a reasonable period afterwards to handle any follow-up, then deleted. Technical and analytics data is retained for the limited periods set out in the cookies policy. When data is no longer required, it is securely deleted or anonymised.

Your rights as a data subject

Under the UK GDPR you have a number of rights over your personal data. You have the right to be informed about how your data is used, which this policy provides; the right of access to a copy of the personal data we hold about you; the right to rectification of inaccurate or incomplete data; the right to erasure of your data in certain circumstances; the right to restrict processing; the right to data portability, allowing you to obtain and reuse your data; and the right to object to processing based on legitimate interests. Where processing is based on consent, you also have the right to withdraw that consent at any time. To exercise any of these rights, contact us at [email protected] or through the contact page; we will respond within the statutory time limit, normally one month.

Data protection contact and complaints

Questions about this policy or about how your data is handled can be directed to the data protection contact at [email protected] (placeholder). If you are not satisfied with how we have handled your personal data, you have the right to lodge a complaint with the UK supervisory authority, the Information Commissioner’s Office (ICO). We would, however, appreciate the chance to address your concern directly before you do so. This policy may be updated from time to time, and the review date at the top of the page shows when it was last revised.