Cricket Betting

Privacy Policy

This Privacy Policy governs the collection, use, disclosure, and protection of personal information by our online gaming platform operating within the United Kingdom. We are committed to maintaining the highest standards of data protection in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and applicable gambling regulations. Last updated: January 20, 2026.

1. Data Controller and Contact Information

We act as the data controller for all personal information collected through our platform. Our commitment to data protection is overseen by our dedicated Data Protection Officer who ensures compliance with all applicable UK data protection legislation. Users may contact our Data Protection Officer regarding any privacy concerns, requests for information access, or data protection queries through our customer support channels or designated privacy contact form.

Our processing activities are conducted under the authority of our UK Gambling Commission licence, which requires strict adherence to responsible gambling practices and comprehensive data protection measures. We maintain detailed records of all data processing activities as required by UK GDPR Article 30, ensuring transparency and accountability in our data handling procedures.

2. Types of Personal Data Collected

Data CategoryExamplesCollection Method
Identity InformationFull name, date of birth, gender, nationalityRegistration process, identity verification
Contact DetailsEmail address, phone number, postal addressAccount creation, communications
Financial InformationPayment methods, transaction history, banking detailsDeposits, withdrawals, payment processing
Gaming ActivityGame preferences, betting patterns, session durationPlatform usage, gameplay tracking
Technical DataIP address, device information, browser typeAutomatic collection via cookies and tracking
Verification DocumentsPassport, driving licence, utility billsKnow Your Customer procedures

We collect additional behavioural data to support responsible gambling initiatives, including spending patterns, session lengths, and frequency of play. This information helps us identify potential signs of problem gambling and implement appropriate player protection measures as required by UK gambling regulations.

3. Legal Bases for Data Processing

Our data processing activities are founded upon several legal bases as defined within UK GDPR Article 6. Contract performance represents our primary legal basis, enabling us to provide gaming services, process payments, and maintain user accounts in accordance with our terms and conditions. We rely on legitimate interests for fraud prevention, marketing communications to existing customers, and platform security measures.

Legal compliance obligations require us to process personal data for anti-money laundering checks, responsible gambling monitoring, tax reporting, and regulatory compliance with UK Gambling Commission requirements. In specific circumstances, we may seek explicit consent for particular processing activities, such as promotional communications or enhanced personalisation features.

  1. Contract performance for service delivery and account management
  2. Legal compliance with gambling regulations and financial crime prevention
  3. Legitimate interests in fraud prevention and platform security
  4. Consent for marketing communications and optional services
  5. Vital interests in cases involving player welfare concerns

4. Purposes of Data Processing

We process personal data to facilitate comprehensive gaming services while maintaining the highest standards of player protection and regulatory compliance. Account management encompasses user registration, identity verification, payment processing, and ongoing customer support services. Our Know Your Customer procedures ensure compliance with UK anti-money laundering regulations and help prevent underage gambling.

Platform security measures utilise personal data to detect fraudulent activities, prevent unauthorised access, and maintain the integrity of our gaming environment. We analyse gaming behaviour patterns to identify potential signs of problem gambling and implement appropriate intervention measures, fulfilling our duty of care obligations under UK gambling legislation.

Marketing communications are tailored to individual preferences and gaming history, providing relevant promotional offers and gaming recommendations. Technical data supports platform optimisation, ensuring optimal performance across various devices and browsers while enhancing user experience through personalised content delivery.

5. Data Sharing and Third-Party Disclosures

We maintain strict controls over third-party data sharing, ensuring all disclosures serve legitimate business purposes and comply with UK data protection requirements. Payment processors receive necessary financial information to facilitate secure transactions, while identity verification services access relevant personal data to confirm user credentials and prevent fraudulent registrations.

Regulatory authorities, including the UK Gambling Commission, HM Revenue and Customs, and the Financial Conduct Authority, may receive personal data as required for compliance investigations, licence obligations, and statutory reporting requirements. We cooperate fully with law enforcement agencies when presented with valid legal requests for information disclosure.

  1. Payment service providers for transaction processing and fraud prevention
  2. Identity verification services for Know Your Customer compliance
  3. Regulatory authorities for licensing and compliance obligations
  4. Law enforcement agencies pursuant to legal requirements
  5. Professional advisors bound by confidentiality obligations
  6. Technology partners providing platform security and maintenance services

6. International Data Transfers

When business operations necessitate international data transfers, we implement robust safeguards ensuring adequate protection levels equivalent to UK standards. All transfers to countries outside the European Economic Area undergo careful assessment for data protection adequacy, utilising European Commission adequacy decisions where available.

For transfers to countries without adequacy decisions, we implement appropriate safeguards including Standard Contractual Clauses approved by the European Commission, binding corporate rules, or certification schemes recognised under UK GDPR. Our transfer impact assessments evaluate potential risks to data subjects’ rights and freedoms, implementing additional protective measures where necessary.

We maintain detailed records of all international transfers, including recipient details, transfer purposes, data categories, and implemented safeguards. Users receive notification of significant changes to our international transfer arrangements that may impact their data protection rights.

7. Data Retention Periods

Our data retention schedule balances operational requirements with privacy principles, ensuring personal data is retained only for necessary periods. Active account information remains accessible throughout the customer relationship, supporting ongoing service provision and regulatory compliance obligations.

Following account closure, we retain essential records for seven years to satisfy UK gambling regulations, anti-money laundering requirements, and potential dispute resolution needs. Marketing data is deleted within two years of account closure unless explicit consent exists for continued retention.

  1. Account information: Duration of customer relationship plus seven years
  2. Transaction records: Seven years from transaction date for regulatory compliance
  3. Identity verification documents: Seven years from account closure
  4. Marketing communications data: Two years from last engagement or consent withdrawal
  5. Technical logs and security data: Twelve months unless required for ongoing investigations
  6. Responsible gambling records: Ten years to support long-term player protection

8. Data Security Measures

We implement comprehensive technical and organisational measures protecting personal data against unauthorised access, alteration, disclosure, or destruction. Our security framework encompasses encryption protocols, access controls, regular security assessments, and employee training programmes ensuring consistent application of data protection principles.

Advanced encryption technologies protect data both in transit and at rest, utilising industry-standard protocols including TLS 1.3 for data transmission and AES-256 encryption for stored information. Multi-factor authentication systems secure administrative access, while regular penetration testing identifies potential vulnerabilities.

  1. End-to-end encryption for all data transmissions and storage
  2. Multi-factor authentication for all administrative access
  3. Regular security audits and penetration testing
  4. Employee background checks and confidentiality agreements
  5. Incident response procedures for data breach management
  6. Regular backup systems with secure off-site storage
  7. Network segregation and firewall protection
  8. Continuous monitoring for suspicious activities

9. Individual Rights and Data Subject Requests

Under UK GDPR, individuals possess comprehensive rights regarding their personal data processing. We facilitate the exercise of these rights through dedicated request procedures, ensuring prompt responses within statutory timeframes. Our customer support team provides assistance with rights requests and clarification of available options.

The right of access enables individuals to obtain confirmation of processing activities, copies of personal data, and information about processing purposes and recipients. Rectification rights allow correction of inaccurate or incomplete personal information, while erasure rights enable data deletion in specific circumstances, subject to regulatory retention requirements.

Data portability rights facilitate transfer of personal data to alternative service providers in structured, commonly used formats. Objection rights permit individuals to challenge processing based on legitimate interests, including direct marketing activities, while restriction rights enable limitation of processing in disputed circumstances.

  1. Access: Obtain copies of personal data and processing information
  2. Rectification: Correct inaccurate or incomplete personal information
  3. Erasure: Request deletion subject to legal retention requirements
  4. Portability: Receive personal data in structured, machine-readable format
  5. Objection: Challenge processing based on legitimate interests
  6. Restriction: Limit processing in specific circumstances
  7. Consent withdrawal: Revoke consent for consent-based processing

10. Updates and Contact Information

This Privacy Policy undergoes regular review to ensure continued accuracy and compliance with evolving legal requirements and business practices. Significant updates receive prominent notification through our website, email communications, or account notifications, providing users adequate time to review changes before implementation.

We encourage users to review this Privacy Policy periodically to stay informed about our data processing practices and their privacy rights. For privacy-related inquiries, data subject requests, or concerns about our data processing activities, users may contact our Data Protection Officer through designated customer support channels.

Complaints regarding our data processing practices may be directed to the UK Information Commissioner’s Office, which serves as the supervisory authority for data protection matters within the United Kingdom. We remain committed to resolving privacy concerns promptly and transparently, working collaboratively with users and regulatory authorities to maintain the highest standards of data protection.