Privacy and personal data protection policy

Identification and contact data During the account registration process, we collect information necessary to manage the user profile, such as full name, email address, active phone number, and exact date of birth. Age verification is an absolute legal requirement – access to the platform is allowed only for persons over 18 years of age. This data allows us to create a secure profile and ensure authorized access to the service's resources.

Technical data and system logs We automatically record data such as IP address, device type, operating system, browser version, and unique hardware identifiers. This information is critical for monitoring platform stability, preventing cyberattacks, and optimizing content display according to the technical specifications of the user's end device.

Activity and transaction data We process information about how the service is used, login sessions, and the status of completed technical operations. When using services requiring settlements, we process data on payment status, with detailed payment data usually isolated and handled by certified external entities to ensure the highest level of financial information protection.

Data processing processes at Casino Verde are based on the following legal foundations resulting from GDPR:

• Contract performance: When data is necessary to provide services requested by the user within the terms and conditions.
• Legal obligation: When Polish regulations impose on the administrator the obligation to verify identity, age, or report specific events.
• Legitimate interest: To ensure network cybersecurity, detect fraud, and improve the platform's analytical tools.
• User consent: In the case of voluntary additional services, such as subscribing to marketing notifications.

We use the collected data only to:

• Properly manage your account and verify access rights.
• Provide efficient technical support and resolve operational problems reported by the user.
• Analyze service performance to introduce ergonomic improvements and optimize code.
• Protect against cyber threats and actions that violate system stability.
• Meet regulatory requirements regarding operational transparency in Poland.
• Manage communication regarding technical updates and significant changes in regulations.

We store personal data only for the period necessary to achieve the purposes for which it was collected, or for the time required by Polish law (e.g., tax obligations or statute of limitations). After this time, the data is permanently and securely deleted from our servers or subjected to an anonymization process that prevents re-assigning information to a specific natural person.

We never sell or rent our users' data to commercial entities. Information may only be transferred to trusted technical service providers (e.g., server operators, cybersecurity companies) who act on our behalf based on data processing agreements. In situations provided for by law, we may be obliged to provide data to Polish law enforcement agencies or other authorized state institutions.

Most processing operations take place within the European Economic Area. In cases where our technical partners are located outside the EEA, we apply appropriate legal safeguards, such as Standard Contractual Clauses approved by the European Commission, to guarantee a level of data protection consistent with GDPR standards.

We use advanced solutions to protect data against loss, unauthorized access, or modification:

• Encryption of connections using SSL/TLS technology.
• Intrusion detection systems and advanced firewalls.
• Strict access control for technical personnel, based on the principle of minimal privileges.
• Regular security audits of IT infrastructure.

Every platform user has the right to:

• Right to access their data and receive a copy of it.
• Right to rectify incorrect information.
• Right to erasure of data ("right to be forgotten").
• Right to restriction of data processing in specific cases.
• Right to data portability to another administrator.
• Right to object to processing based on legitimate interest.

To exercise your rights or obtain additional explanations, please contact us at: [email protected]. We treat every request as a priority and respond to it within the deadlines provided by Polish law.

This policy is regularly reviewed and updated to adapt it to changes in law and technology. Any changes will be published in this section.