Privacy Policy
Effective Date: 16th May 2026.
Last Updated: 16th May 2026.
Operated by: Ghostino Casino.
Platform URL: ghostinocasino.co.
Contact Email: [email protected].
1. Introduction and Overview
Welcome to Ghostino Casino. This Privacy Policy outlines how we collect, use, process, and safeguard your personal data when you visit our website, register an account, deposit your wedge, or participate in any gaming activity on ghostinocasino.co.
We operate as a "Data Controller" under applicable data protection laws. As an online casino operator catering specifically to punters in the United Kingdom, we are strictly bound by the provisions of the UK General Data Protection Regulation (UK GDPR), tailored by the Data Protection Act 2018 (DPA 2018), and the regulatory frameworks established by the UK Gambling Commission (UKGC).
Your privacy is paramount to us. Whether you are placing a small flutter on your favourite online slot or managing your account balances in British Pounds Sterling (GBP), we ensure that your personal information is treated with the highest standard of security, transparency, and integrity.
By accessing our services, creating an account, or interacting with our promotional offers, you acknowledge the collection and processing of your personal data as described in this Privacy Policy. If you do not agree with any terms within this document, you must cease using our services immediately.
2. Regulatory Framework & Age Restrictions
2.1 The UK Gambling Commission (UKGC) Compatibility
This Privacy Policy is designed to comply not only with data protection laws but also with the strict licensing conditions and codes of practice (LCCP) mandated by the UKGC. To maintain a safe, fair, and transparent environment for every punter, we collect extensive validation data to fulfill statutory requirements concerning anti-money laundering (AML), countering the financing of terrorism (CFT), and social responsibility.
2.2 Strict 18+ Verification Policy
Our services are exclusively available to individuals who are at least 18 years of age. It is illegal for anyone under the age of 18 to open an account or gamble on Ghostino Casino.
We implement comprehensive, automated, and manual age-verification checks. When you sign up, your data is checked against various national databases. If we cannot verify your age conclusively from these sources, we will restrict your account and request official documentary proof (such as a valid passport or UK driving licence) before allowing any deposits or flutters. Any personal data collected during this verification process is stored securely and handled strictly in accordance with legal obligations.
3. Information We Collect
To provide a fully compliant gaming experience, we collect various categories of personal data. This information is gathered directly from you, automatically through your device interaction, or via trusted third-party partners.
3.1 Information You Provide to Us Directly
- Identity Data: First name, maiden name, last name, username or similar identifier, date of birth, gender, and national identification details.
- Contact Data: Billing address, residential address (proof of address required), email address, and telephone numbers.
- Financial Data: Bank account details, payment card details (Visa/Mastercard), and information regarding your digital wallets (PayPal, Neteller, Skrill, Apple Pay, Google Pay).
- Verification Data: Copies of identity documents (passports, driving licences), utility bills, bank statements, or source of funds documentation (such as payslips or tax returns) required to establish the legitimacy of a substantial wedge deposited into your account.
- Profile and Communication Data: Your chosen username and password, game preferences, customer support interactions (emails, live chat transcripts), responses to surveys, and feedback.
3.2 Information Collected Automatically
- Technical Data: Internet Protocol (IP) address, login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and the specific device fingerprint utilized to access ghostinocasino.co.
- Usage Data: Detailed records of your gaming activity, including total stakes, game choices, wins and losses, duration of gaming sessions, specific pages visited, transaction history, and how you interact with our user interface.
3.3 Information Received from Third Parties
- Credit Reference and Fraud Prevention Agencies: For identity verification, financial health profiling, and AML checks.
- National Self-Exclusion Database: Integration with GamStop to identify players who have registered for national self-exclusion.
- Affiliates and Marketing Partners: Data regarding the specific marketing channels or links that brought you to Ghostino Casino.
4. Legal Basis and Purposes for Processing Personal Data
Under the UK GDPR, we must have a valid lawful basis to process your personal data. The table below outlines the core purposes for which we process your data and the corresponding legal grounds.
| Purpose / Activity | Type of Data | Lawful Basis for Processing |
|---|---|---|
| Account Creation & Management: Registering you as a new punter, setting up your gaming profile, and administering your account. | Identity, Contact, Profile | Performance of a contract with you. |
| Financial Transactions: Processing deposits and withdrawals, managing fees, and tracking individual transactions in GBP (£). | Identity, Contact, Financial, Transaction | Performance of a contract with you; Compliance with legal obligations (AML laws). |
| Regulatory & Identity Verification: Verifying your age, checking identity documents, preventing fraud, and executing Know Your Customer (KYC) protocols. | Identity, Contact, Financial, Verification | Compliance with legal obligations (UKGC licensing, AML regulations). |
| Responsible Gambling Obligations: Monitoring patterns of play to identify signs of problem gambling, implementing deposit limits, administering cooling-off periods, and screening against GamStop records. | Identity, Contact, Technical, Usage | Compliance with legal obligations (Social Responsibility codes); Public interest. |
| Customer Support: Managing interactions, answering queries, resolving technical glitches, and handling complaints. | Identity, Contact, Profile, Communications | Performance of a contract; Legitimate interests (to improve our services). |
| Security & Fraud Prevention: Safeguarding the integrity of ghostinocasino.co, identifying multi-accounting, preventing bonus abuse, and defending against cyber-attacks. | Technical, Usage, Identity, Transaction | Compliance with legal obligations; Legitimate interests (protecting our business and our customers). |
| Marketing & Promotions: Sending tailored offers, bonuses, and news about Premier League football promotions or major horse racing events like the Grand National or Cheltenham Festival. | Identity, Contact, Profile, Marketing | Explicit consent (where required); Legitimate interests (to grow our brand, provided fair wagering is transparent). |
5. Responsible Gambling and Data Processing
Ghostino Casino is dedicated to fostering a safe environment for all players. Our obligations under the UKGC require us to use behavioral data to proactively spot indicators of gambling-related harm.
5.1 System Monitoring and Behavioral Profiling
We run automated systems that analyze transaction sizes, velocity of deposits, rapid increases in stakes, and extended playing hours. If our algorithms indicate that a punter may be experiencing distress or losing control of their finances, we will utilize your contact data to intervene. This might include sending helpful alerts, suggesting deposit limits, or restricting access to promotional materials.
5.2 Mandatory National Databases (GamStop Integration)
In accordance with UK regulatory mandates, we regularly check registration data against GamStop, the national online self-exclusion scheme. When an individual joins GamStop, we must immediately process that status change to freeze their account, reject attempts to place a flutter, and prevent any future communications. This processing is a strict statutory requirement to uphold player safety.
5.3 Help and Support Reference
If you or someone you know is affected by gambling problems, we strongly encourage reaching out to professional helplines. Your interactions with these independent bodies are confidential and separate from our internal data stores:
- GamCare: Call free on 0808 8020 133 for immediate support.
- BeGambleAware: Offering resources and paths to recovery to ensure gambling remains a form of entertainment.
6. Data Sharing and Third-Party Disclosures
We do not sell your personal data to third parties. However, to operate effectively and meet legal and financial criteria, your personal data may be shared with specific classes of recipients.
6.1 Regulatory Bodies and Law Enforcement
We have an absolute legal obligation to disclose your personal data, including transaction details, account history, and verification files, to the UK Gambling Commission (UKGC), HM Revenue and Customs (HMRC), and other authorised law enforcement bodies if we suspect fraudulent behavior, money laundering, or if required by a formal statutory order.
6.2 Financial Institutions and Payment Processors
To facilitate swift transfers of a single quid or a massive wedge, we integrate securely with regulated financial entities. Your details will be processed by providers managing:
- Credit and debit systems (Visa/Mastercard).
- Digital Wallets (PayPal, Neteller, Skrill, Apple Pay, Google Pay).
- Direct electronic bank.
6.3 Identity and Credit Reference Agencies
We partner with specialized screening corporations to execute automated electronic identity checks. These third parties match your details against electoral rolls, credit histories, and utility records to confirm you are of legal age and that you reside at the declared address. These checks leave a soft footprint on your record which does not impact your credit rating.
6.4 Industry Shared Databases
To mitigate widespread bonus abuse — such as systematic exploitation of upfront fair wagering offers across multiple platforms — and to counter coordinated fraud rings, we may share basic identifier profiles with industry-wide security databases. This ensures a clean ecosystem for legitimate punters.
7. International Data Transfers
As Ghostino Casino utilizes international server networks, cloud infrastructure, and technical service providers, your personal data may occasionally be transferred to and processed in countries outside the United Kingdom.
Whenever your personal data is transferred out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the UK Government.
- Where we use certain service providers based outside an adequacy zone, we may use specific Standard Contractual Clauses (SCCs) or the UK International Data Transfer Addendum (IDTA) approved by the Information Commissioner's Office (ICO), which give personal data the same protection it has in the UK.
8. Data Security and Integrity
We have put in place robust security measures to prevent your personal data from being accidentally lost, used, accessed in an unauthorised way, altered, or prematurely disclosed.
8.1 Technical Defenses
- Encryption: All data transmitted between your device and ghostinocasino.co is encrypted using cutting-edge Secure Socket Layer (SSL) and Transport Layer Security (TLS) protocols.
- Access Controls: Access to your personal data is strictly limited to employees, contractors, and agents who have a operational need to know. They process your data only on our instructions and are subject to strict duties of professional confidentiality.
- Firewalls and Monitoring: Continuous monitoring of network entry points helps identify and neutralize potential cyber threats, hacking attempts, or unauthorized access vectors.
8.2 Payment Card Industry Compliance
All financial payments are handled in strict compliance with the Payment Card Industry Data Security Standard (PCI DSS). We do not store unencrypted raw card verification values (CVVs) on our operational servers.
9. Data Retention Policy
How long will we keep your personal data? Only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
9.1 Standard Statutory Retention
Even if you decide to close your account, wipe your profile, or step away from gambling, we are legally required under the UK Money Laundering Regulations and UKGC guidelines to retain your core profile information, financial transactional records, and identity verification documentation for a minimum of five (5) to seven (7) years following the termination of our contract.
9.2 Marketing Data Retention
Where you have given consent to receive information about upcoming sports promotions (such as major football fixtures or racing event packages), we will retain your contact details until you withdraw your consent or opt out of our marketing lists.
10. Your Legal Rights Under the UK GDPR
As a resident of the United Kingdom, you possess clear, powerful rights concerning your personal information. You can exercise these rights at any time by contacting our dedicated compliance team via [email protected].
- The Right of Access (Subject Access Request): You have the right to request a complete copy of the personal data we hold about you. We will fulfill this request free of charge within one calendar month, provided the request is not manifestly unfounded or excessive.
- The Right to Rectification: If any information we hold is outdated, incomplete, or incorrect (for instance, if you change your residential address or spell your name incorrectly), you have the right to demand its correction.
- The Right to Erasure ("Right to be Forgotten"): You can ask us to delete your personal data. However, please note that this right is not absolute. If statutory requirements (such as UKGC licensing or AML record-keeping rules) conflict with your request, our legal obligation to retain the data will override your request to delete it.
- The Right to Restrict Processing: You can request that we suspend the processing of your data in specific scenarios — for example, if you want us to establish its accuracy or if you object to our legitimate business interests.
- The Right to Data Portability: You can request the transfer of certain segments of your automated information to yourself or directly to another service provider in a structured, commonly used, machine-readable format.
- The Right to Object: You have an absolute right to object to the processing of your data for direct marketing purposes. If you click "unsubscribe" or change your preferences, we will stop sending promotional materials immediately.
- Rights Related to Automated Decision-Making and Profiling: You have the right to obtain human intervention, express your point of view, and contest automated outcomes if those outcomes carry significant legal implications, except where such profiling is essential for entering into a contract or fulfilling statutory player safety mandates.
11. Cookie Policy Integration
To optimize your browsing experience on ghostinocasino.co, our platform uses small text files known as cookies. These elements track your session data, remember your login state, and log technical preferences.
11.1 Types of Cookies Used
- Essential Cookies: Crucial for the technical stability of our platform. They enable secure transfers of your fiver, tenner, or larger deposits, and keep you securely authenticated.
- Performance and Analytics Cookies: Help us observe how visitors move around the site, track game load speeds, and spot broken links.
- Functional Cookies: Used to remember your specific settings, language preferences, and interface layouts.
11.2 Managing Cookies
You have the choice to accept or decline non-essential cookies via our interactive pop-up banner when you first land on our site. Alternatively, you can modify your personal web browser configurations to reject cookies completely. However, doing so may degrade your user experience and break core gaming functionalities.
12. Strict Rules on Bonus Abuse and Promotional Fairness
Our approach to marketing and promotions is heavily guided by transparency and consumer fairness. In accordance with UKGC requirements, all bonus conditions, structural limits, and fair wagering rules must be presented clearly upfront before a player commits any funds.
12.1 Monitoring for Exploitation
We process data related to promotional participation to ensure fair play. If our records reveal structured patterns of bonus abuse — such as creating duplicate profiles to harvest introductory offers, hedging bets across identical markets, or collaborating with a group to exploit promotions — we reserve the right to restrict access, freeze the affected balances, and share anonymous metrics with regulatory fraud databases to maintain the integrity of our gaming environment.
13. Updates to This Privacy Policy
We may update this Privacy Policy from time to time to mirror adjustments in our operational workflows, shifting business structures, or updates to local laws.
When material changes are made, we will notify you through a prominent notice on ghostinocasino.co or by emailing your registered address. We encourage you to review this page periodically to stay informed about how we safeguard your data.
14. Contacting the Regulatory Authority
If you have a concern or complaint about how we handle your personal data, we ask that you contact our internal support staff first via [email protected] so we can try to resolve the matter directly.
If you remain unsatisfied with our response or believe we are processing your personal data unlawfully, you have a statutory right to lodge a formal complaint with the UK supervisory authority:
Information Commissioner’s Office (ICO) Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
Helpline Number: 0303 123 1113
