Privacy policy

Data we collect

We collect the data you provide at sign-up (name, email, date of birth, residential address, phone number), the data needed for payments (method used, amounts, transaction references without the full card PAN), your technical data (IP address, browser, operating system, device type) and your gaming data (stakes, wins, sessions, favourite games). As part of our Know Your Customer (KYC) and source-of-funds obligations we may also collect identity documents, proof of address and proof of how you funded your account.

Purposes

Your data is used to create and manage your account, process deposits and withdrawals, prevent fraud and money laundering, meet our legal obligations to the licensing authority and the tax authorities, offer you relevant bonuses, measure site performance and improve the platform. Aggregated and anonymised data may also be used to produce statistical reports for management and regulators.

Legal basis

Processing rests on contract performance (account and transaction management), our legal obligations (KYC, anti-money-laundering, regulatory reporting), our legitimate interest (security, fraud prevention, continuous improvement of the service) and, for marketing communications and non-essential cookies, your explicit consent. You can withdraw consent at any time without affecting the lawfulness of processing carried out before the withdrawal.

Retention period

Account data is kept for the duration of the contractual relationship plus 5 years after closure to satisfy our legal obligations (anti-money-laundering, accounting, tax inspections). Technical browsing data is kept for 12 months. Marketing data is removed at the first unsubscribe request. Identity documents are kept for the same period as the account data to allow audits by the licensing authorities.

Your rights

You can request access to your data, its rectification, erasure (subject to legal retention duties), restriction of processing, portability in a structured machine-readable format and objection on legitimate grounds at any time. You can also set instructions on what happens to your data after your death. To exercise these rights, write to privacy@bettsio.com with a copy of your ID so we can verify your identity. We'll respond within one month, free of charge.

Complaints

If you believe your rights are not being respected, you can lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk, by post to Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, or by phone on 0303 123 1113. You can also contact the data protection authority of your country of residence.

Security

We protect your data with 256-bit SSL encryption across the entire site, enhanced two-factor authentication, detailed access logging and regular security audits run by independent providers. Payments go through PCI DSS Level 1 certified providers. Our staff sign confidentiality agreements and access is granted strictly on a need-to-know basis, with full traceability of any sensitive lookup.

International transfers

Some of our providers (hosting, analytics, fraud prevention, customer support) are located outside the UK or the EEA. Any transfer is governed by appropriate safeguards under UK GDPR: international data transfer agreements, adequacy decisions or the International Data Transfer Addendum to the EU Standard Contractual Clauses. The list of categories of recipients and countries involved is available on request at privacy@bettsio.com.

Minors

Betsio Casino is strictly reserved for people aged 18 and over. We never knowingly collect data about minors and we run age checks at sign-up. If you notice that a minor has nonetheless opened an account, contact us immediately at privacy@bettsio.com: the account will be closed and the associated data deleted as quickly as possible, in line with anti-money-laundering rules.

Marketing communications

If you've opted into marketing, we may contact you by email, SMS, in-app notification or telephone to share bonuses, tournaments, new game launches or VIP invitations. Every commercial message includes a one-click unsubscribe link, and an account-level switch lets you turn off all marketing in one move from the "Communication preferences" section of your account. The opt-out is taken into account immediately on email, within 24 hours on SMS and within 72 hours on postal mail. Transactional messages (verification codes, deposit and withdrawal confirmations, regulatory notices) are not affected by this choice because they are necessary for the proper operation of the contract.

Profiling and automated decisions

We use limited profiling for fraud prevention (checking the consistency of a transaction with your usual habits, detecting compromised accounts) and to suggest bonuses you'd be more likely to find relevant. No fully automated decision with significant legal effect is taken about you without human review: a bonus rejection or an account suspension always goes through an analyst. You have the right to ask for human review of any decision and to express your point of view before a final decision is taken on a sensitive matter.

Data Protection Officer

Our Data Protection Officer (DPO) is your single point of contact for any question about how your data is handled. You can write to them at dpo@bettsio.com or by post to the address shown in our terms and conditions. The DPO works independently from the operational teams and reports directly to senior management, in line with UK GDPR Article 38. They also liaise with the ICO when needed and oversee our annual data protection impact assessments.

Changes to this policy

This policy can be updated to reflect changes in the law, our technical infrastructure or the services on offer. Any significant change is notified to you by email and on your next login through a banner that asks you to acknowledge the new version. The change log at the bottom of the page lists every revision with its effective date so you can check exactly what's changed and when.

Categories of recipients

Your data may be shared with a limited list of categories of recipients, always on the basis of a binding agreement that imposes the same level of protection as we apply ourselves. The categories include our cloud hosting provider, our KYC and anti-fraud provider, our payment processors (Visa, Mastercard, e-wallet and instant bank transfer providers), our communication providers (email, SMS), our analytics provider configured in privacy-friendly mode, our live-game studios for the sole purpose of running the games you take part in, and, where required by law, the competent administrative, judicial, fiscal or regulatory authorities. The full and updated list is available on request to privacy@bettsio.com or to our DPO.

How we secure transactions

Every payment carried out through our platform is encrypted from end to end. We never store the full 16-digit card number nor the CVV: only a tokenised reference is kept, generated by our PCI DSS Level 1 processor. Withdrawals follow the same route in reverse, with an additional anti-fraud check on the destination account. For cryptocurrency operations, on-chain analysis tools (Chainalysis, Elliptic) help us check that the source of funds is not linked to an address flagged as risky. These checks protect both you and the integrity of the platform.

Notification in case of a data breach

In line with UK GDPR Article 33 and 34, in the unlikely event of a personal data breach likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of it and, when the risk is high, we will inform you directly without undue delay. The communication will set out the nature of the breach, the categories and approximate number of records concerned, the likely consequences and the measures taken or proposed to address it. A dedicated email channel (security@bettsio.com) is available to report any suspicious behaviour you might observe yourself on your account.

Cookies

The details of cookie processing are set out in our cookie policy. You'll find the types of cookies used, their duration and the procedure for managing your consent.

If you want to enjoy the casino in a transparent, UK GDPR-compliant setting, open your Betsio account in a few minutes and claim the welcome bonus. You'll be able to view or update your personal data at any time from your account area. 24+ Please gamble responsibly. GamCare 0808 8020 133.