GAMBLIMITS PRIVACY POLICY

This website is operated by AREKKZ GAMING LTD (Company Number: 09558326), trading as Gamblimits

At Gamblimits, we are committed to protecting and respecting your privacy while maintaining the trust and confidence of our customers. This Privacy Policy (“Privacy Policy”) explains what personal information we collect, why we collect it, and how we keep it secure.

This Privacy Policy governs how Gamblimits collects, uses, maintains, and discloses information from users (each a “User”) through www.gamblimits.com, including any subdomains, subpages, successor sites, or applications accessible via our Website (the “Website”). It applies to the Website and to all products and services offered through it.

Scope of This Policy

This policy applies to information we collect:

• Through the Website;
• In email, text, or other electronic messages between you and the Website;
• Through mobile and desktop applications you download from this Website or otherwise, which provide dedicated non-browser-based interaction between you and the Website; and
• When you interact with our advertising and applications on third-party websites and services, if those applications or advertising include links to this policy.

This Privacy Policy does not apply to information:

• That we may collect offline or through any other means; or
• That any third party may collect, including through any application or content (including advertising) that may link to or be accessible from or through the Website.

Please read this Privacy Policy carefully to understand our practices regarding your personal information and how we will handle it. If you do not agree with these practices, you should not use our Website. By accessing or using the Website, you agree to this Privacy Policy.

This Privacy Policy may be updated from time to time (see “Changes to This Privacy Policy” below). Your continued use of the Website after any changes are made constitutes your acceptance of those changes, so we recommend reviewing this policy periodically.

DATA CONTROLLER

This Privacy Policy is issued on behalf of the Gamblimits so when we mention “Gamblimits”, “we“, “us” or “our” in this Privacy Policy, we are referring to the relevant company in the Gamblimits responsible for processing your data.

2. TYPE OF INFORMATION WE COLLECT AND HOW LONG WE WILL RETAIN THAT INFORMATION

Types of data collected - We collect personal information (as defined below) and anonymous information (as defined below) and we may use personal and anonymous information to create a third type of information, aggregate information (also defined below; see “Definitions”). For example, we collect:

• contact details, such as your first name and surname, email address, residential address and mobile or other phone numbers;
• personal information such as gender, age, age range or your image;
• account login details, including your username, password and pictures associated with your profile;
• transaction information you provide when you make a purchase, request a redemption or otherwise use our Website or contact customer service, such as your postal address, phone number and payment or redemption information including banking and financial details, credit card details and bank account statements;
• information sent bilaterally or within a small group using text message, live chat, post or other similar methods of communication;
• information we obtain from a third party, such as a site or platform provider (including Facebook), about your use of or interest in our services;
• location information, including location information provided by a mobile or other device interacting with our Website, or associated with your IP address, where we are permitted by law to process this information;
• activity, technical and device information about your use of our Website, such as the content you view, the time and duration of your visit on our Website, how often you use our services, how you first heard about our Website, your preferences and information about your interaction with the content offered through our Website, your hardware model, device type, other unique device identifiers, operating system version, browser type and IP address; and
• Social Security Number, or other form of government-issued identification, where we are required to do so for tax or other legal reasons, such as “know your customer” or anti-money laundering requirements.

How long we retain data – We will retain your information for the period of time required to fulfil the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law. For UK residents, we provide the below table which details the categories of personal information (as defined by UK law) collected or processed in the last 12 months and how long we intend to retain that information.

3. HOW WE COLLECT YOUR INFORMATION/SOURCES OF INFORMATION

We collect information that Users provide to us in a variety of ways, including when Users visit our Website, register on the Website, purchase products on our Website, respond to a survey, fill out a form, and in connection with other activities, services, features or resources we make available on our Website. In addition to collecting information via our Website, we collect information from Users by telephone, video or in correspondence (including email, live chat, mail, text message or social media). All telephone or video calls between Users and Gamblimits representatives may be recorded for training, quality control and compliance purposes and by continuing with any such call you consent to it being recorded.

We also collect information about your use of our products and services through a variety of technologies that are present when you visit our Websites or use our applications on third party sites or platforms (whether or not you are logged in or registered) including cookies, flash cookies, pixels, tags and application program interfaces (“API”). Please see the section entitled “Personal Data Collected via Technology” below for further information.

Analytics tools are also used by us to collect information, including when you visit our Website or use our applications or services on third party sites or platforms. Finally, we also use trusted sources to update or supplement the information you provided, or we collected, including in order to verify or validate information (for example, postal address, documentation and names).

4. HOW WE USE COLLECTED INFORMATION

The Data Controller is responsible for and may use your information for the purposes described in this Privacy Policy. Other members of Gamblimits may access your information where they act on behalf of the Data Controller as a data processor for the purposes described in this Privacy Policy.

In summary, we use the information collected to operate our Website and to provide our products and services, to facilitate your financial transactions, to respond to your questions and to fulfil all applicable regulatory requirements such as anti-fraud checks and other checks required by applicable anti-money laundering and other legislation.

In accordance with applicable law and any elections made available to you, Gamblimits may collect and use the information of Users for the following specific purposes:

• To provide and manage the services you request – This includes, for example, processing your registration and setting up and looking after your account, including checks made to guard against fraud.
• To improve customer service and our services – Information you provide helps us respond to your customer service requests more efficiently; we may use feedback you provide to improve our products and services.
• To process payments – We may use the information Users provide about themselves when making a purchase or placing an order to service that purchase or order (including to satisfy our customer due diligence requirements and to establish the source of funds where necessary). We do not share this information with third parties except to the extent necessary to provide the service.
• To personalize user experience – We may use information which has been aggregated to understand how our Users as a group use the services and resources provided on our Website.
• To contact you about our services – For example by email, live chat, mail or social media; to manage promotions and competitions you choose to enter. We may periodically contact you with offers and information about our products and services, including in connection with your accounts, promotions, contests, online surveys, new features that you are entitled to access, and other important information. As set out in clause 13, provision of your telephone information, will be deemed as your consent to receive text messages sent by automatic telephone dialling systems. Consent to receive direct advertising is not a condition of purchase.
• To send important notices to you – From time to time, we may send important notices to you, such as communications about purchases you have made, or legal notices regarding the changes to our terms and conditions or other policies. This information is important to your interactions with us and you acknowledge that you may not opt-out of receiving these communications.
• To comply with our legal and regulatory obligations – We may use information we collect about you to assess your social gaming activity for responsible social gaming purposes, for taxation purposes, to comply with fraud and anti-money laundering laws (including to establish the source of funds where a transaction is involved) or to comply with any other legal or regulatory obligations (including the detection, investigation and prevention of activity that violates our terms and conditions or that may be illegal).
• To offer alternative dispute resolution services – We may provide information we collect about you to our third party partner for the specific purpose of resolving any disputes that have not been satisfactorily resolved through our internal processes.

We do not use automated decision making within the meaning of European data protection laws.

5. PERSONAL DATA COLLECTED VIA TECHNOLOGY

When you interact with our Website, we try to make that experience simple and useful. We and our partners use industry standard identifiers, such as cookies or other similar technologies. Our Website may use technologies to enhance User experience. These technologies are small files that are placed on your computer, tablet, mobile phone or other devices when you visit a website. They allow us to record certain pieces of information whenever you visit or interact with the website. The following are examples of these types of technologies:

• Cookies – These are small text files placed in your device browsers to store your preferences. Most browsers allow you to block and delete cookies. However, if you do that, the service may not work properly. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you direct your browser to our Website.
• Pixel tags/web beacons – A pixel tag (also known as a web beacon) is a piece of code embedded on the Website that collects information about Users’ engagement on that web page. The use of a pixel allows us to record, for example, that a user has visited a particular web page or clicked on a particular advertisement. We may also include web beacons in emails to understand whether messages have been opened, acted on or forwarded.
• Mobile device identifiers – We may share the advertising identifier associated with your mobile device or tablet (such as the Apple IDFA and Google Advertising ID) with advertisers. It is used to identify your device for internet-based advertising.
• Event tagging – Event tagging (including Facebook App Events) allows us to track actions that occur in the Website such as application installs and purchase events. By tracking these events we can view analytics, measure ad performance, and build audiences for ad targeting.
• Behavioral advertising – We may partner with a third party to either display advertising on our Website or any application accessible via our Website or to manage our advertising on other websites (for example, using custom audiences on Facebook). Our third-party partner may use technologies such as cookies to gather information about your activities on our Website and other websites in order to provide you advertising based on your browsing activities and interests. We do not control these third parties’ tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the responsible party directly.

6. YOUR RIGHTS OVER YOUR INFORMATION

General rights

We appreciate that by law and subject to certain conditions, you may have a number of rights concerning the personal information we hold about you. If you wish to exercise these rights, you should contact our Data Protection Officer. These rights include the right to access the personal information we hold about you, the right to object to the processing of your data, the right to correct the information we hold about you, the right to obtain a portable copy of personal information you have provided to us, and the right to withdraw any consent provided. In some circumstances, you can ask us to delete the personal information we hold about you. You will not be discriminated against or treated differently should you choose to exercise any of your rights.

Please note that these rights are not absolute and requests are subject to any applicable legal requirements, and other legal obligations. We may also rectify, replenish or remove incomplete or inaccurate information, at any time and at our own discretion, in accordance with our internal policies.

Right to complain to a supervisory authority

You also have the right to complain to the relevant data protection supervisory authority about our processing of your personally identifiable information.

Rights in direct advertising

If we process your personal information for the purpose of direct advertising, you have the right to object at any time to the processing of personal information relating to you for the purpose of such advertising; this also applies to profiling, where appropriate, insofar as it is associated with such direct advertising.

You may opt-out of receiving commercial messages from us by following the instructions contained in those messages or by contacting Customer Support. In the event of your objection to processing for the purpose of direct advertising, we will no longer process your personally identifiable information for these purposes.

Data deletion request

To ensure the security and privacy of our users, we now require all users to verify their identity before we can process any request to delete their account data. This additional step helps us confirm that the request is being made by the rightful account holder.

If you wish to submit a data deletion request, you will be asked to complete a verification process, which may include confirming your identity through email, phone, or other secure methods. We appreciate your understanding and cooperation as we work to maintain a secure and trustworthy platform. For further information, please contact our customer support team.

Opt-Out Preference Signals

You have the right under UK GDPR to limit or prevent the collection of non-essential data from your device while using our website. You can manage your preferences by adjusting your browser or device settings to block cookies or other tracking technologies. Additionally, you may enable Global Privacy Control in your web browser or browser extension to signal your privacy preferences automatically.

Please note that by blocking or deleting cookies and similar technologies, you may not be able to access certain features or fully use our Site and services. If you wish to opt out of interest-based advertising, you can do so by clicking here [insert link]. For users located in other jurisdictions, such as the EU, please refer to the applicable regional opt-out mechanisms. We will respect opt-out signals for each browser where such signals are implemented.

UK Data Subject Rights

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, UK residents are entitled to a range of rights regarding the processing of their personal data. These rights include, but are not limited to:

1. Right to Access (Subject Access Request) – You have the right to request access to personal data we hold about you, including information about the purposes of processing, categories of personal data, recipients of your data, and the retention period.
2. Right to Rectification – You may request correction of any inaccurate or incomplete personal information we hold about you.
3. Right to Erasure (Right to be Forgotten) – You may request that we delete personal data we hold about you, subject to certain legal or contractual obligations that require us to retain it.
4. Right to Restriction of Processing – You may request that we limit the processing of your personal data in certain circumstances, for example, if you contest its accuracy or object to its use.
5. Right to Object – You may object to the processing of your personal data for direct marketing, profiling, or other legitimate interests. We will honor such requests unless there is a compelling lawful basis for continued processing.
6. Right to Data Portability – Where applicable, you may request a copy of your personal data in a structured, machine-readable format for transfer to another data controller.

How to Submit a Request

To exercise your rights, you (or a legally authorized representative) must:

1. Provide sufficient information to verify your identity, such as your full name, email address, and other details we may reasonably require.
2. Clearly describe your request, specifying whether you seek access, correction, deletion, restriction, objection, or portability of your personal data.

We will respond to your request within one month of receipt, in accordance with UK GDPR requirements. If your request is complex or numerous, we may extend this period by up to two additional months, but we will inform you of the reason for the delay.

How to Exercise your rights

To exercise any of these rights please email us at [email protected]. We may need to verify your identity and place of residence before completing your rights request. Please provide (1) sufficient information to allow us to verify that you are the person about whom we collected personal information (this will require you to send an email from the account in question or login credentials). Please also provide (2) a sufficient detail in your request to allow us to understand, evaluate, and respond. Each request that meets both of these criteria will be considered a “Valid Request.” We will contact you if we need additional information to verify your identity. We will only use personal information provided in a Valid Request to verify you and complete your request. You do not need an account to submit a Valid Request. We do our best to ensure that we respond to Valid Requests within one month unless