Table of Content

Who We Are

Gransino, as the operator of this website, acts as the Data Controller for your personal data, determining how and why it is processed as described in this Notice. Together with our joint controller, we ensure the security and ownership of the data you provide. For inquiries or to exercise your data protection rights, contact our Data Protection Officer at [email protected].

Personal Data We Collect

Data You Provide Directly

We collect personal data based on your interaction with our services, including:

  • Registration Data: To create an account, you must provide your email address, date of birth, country, phone number, gender, full name, social security number, zip code, and username. Your IP address and location data are automatically collected upon registration.
  • Due Diligence Data: To comply with Know Your Customer (KYC) and Anti-Money Laundering (AML) obligations, we may collect your ID card number, driver’s license, passport number, proof of address, social security number, source of wealth/funds, bank ID, and financial statements for age and identity verification or other legal requirements.
  • Financial Information: For deposits and withdrawals, we may collect your Bank ID, CPR number, CPF number, IBAN, and payment system details, which are also used for KYC and AML compliance.

Data Collected Automatically

  • Device Information: We gather details about your device and software, such as IP address, operating system version, and device identifiers.
  • Usage and Log Data: We automatically track your interactions with our services, including viewed content, ad clicks, searches, social media sharing, session dates and times, pages visited, links accessed, and session duration. Some data is collected via cookies and similar technologies.
  • Location Data: We may collect or infer your approximate location when using our services.

Data From Other Sources

To enhance our services and meet legal obligations, we may obtain your personal data from:

  • Public Sources: Government databases, social media, online/offline media, and other publicly available platforms.
  • Third-Party Entities: Commercial databases, financial institutions, fraud prevention agencies, and public authorities to verify information and prevent fraud or money laundering.
  • Inferred Data: We may derive insights, such as your gaming preferences, based on your website activity and gameplay.
  • Publicly Shared Data: Information you’ve made public, such as social media profiles or linked accounts (e.g., Facebook, Google).

Why We Collect Your Data

We use your personal data to:

  • Deliver our services effectively.
  • Address your inquiries or requests.
  • Conduct testing, research, and analysis to improve our products and services.
  • Prevent and detect harmful behavior, fraud, or illegal activities.
  • Send marketing materials, newsletters, and tailored promotions.
  • Resolve disputes, including those involving law enforcement or regulatory bodies.
  • Meet legal and regulatory requirements.
  • Ensure the security and functionality of our services, protecting systems and intellectual property from threats.

Lawful Basis for Processing

We process your personal data in compliance with GDPR and other applicable data protection laws, relying on the following lawful bases:

  • Contract Performance: To fulfill or enter into a contract with you, such as creating and managing your account or meeting Terms and Conditions obligations.
  • Legal Obligation: To comply with requirements like:
    • Age and identity verification for KYC and AML purposes.
    • Determining your location via IP data for legal compliance.
    • Managing risks to prevent problem gambling and promote responsible gaming.
    • Ensuring network and information security.
    • Responding to legal processes (e.g., subpoenas, court orders).
    • Preventing crimes like money laundering, fraud, or cybercrimes.
    • Meeting economic, financial, technical, and legal reporting obligations.
    • Addressing your data protection rights requests.
  • Legitimate Interest: To pursue our or a third party’s interests, provided they do not override your rights, for activities such as:
    • Initiating or defending legal claims.
    • Implementing IT and system security to protect assets and ensure website functionality.
    • Managing business relationships and improving services.
    • Conducting analytics, data aggregation, and research for service enhancement or marketing.
    • Segmenting customers to manage risks and ensure responsible gaming.
    • Analyzing gaming behavior to recommend personalized games or features.
    • Detecting fraud, unauthorized software, or irregular patterns.
  • Consent: With your permission, we may:
    • Send marketing messages via email, SMS, phone, or app notifications.
    • Personalize offers based on your gaming history.
    • Use online behavior data for targeted ads.
    • Assess marketing effectiveness.
    • Administer participation in competitions, tournaments, or loyalty programs.

How We Share Your Personal Data

We may share your data with:

  • Internal Entities: Authorized employees, brands, contractors, agents, joint controllers, affiliates, or subsidiaries within our business group.
  • Payment Providers: Trusted third-party providers for deposits and withdrawals, receiving data like your name, date of birth, email, address, phone number, alias, and KYC documents to meet AML obligations.
  • Service Providers: Third parties supporting customer support, email/SMS delivery, technology, or cloud hosting.
  • Marketing Partners: To deliver promotional content.
  • Fraud Prevention Agencies: To investigate suspicious activities.
  • Game Providers: To support gameplay.
  • Analytics Providers: For market research and service improvement.
  • Authorities: Law enforcement or regulatory bodies as required.
  • Corporate Transactions: Third parties in cases of mergers, acquisitions, or other business changes.

If you submit a complaint or review on a third-party platform (e.g., casino review sites or dispute resolution bodies), we may share limited data to respond, based on our legitimate interest in protecting our reputation and resolving disputes transparently. Shared data is restricted to what is necessary for clarification.

Data Retention

We retain your personal data only as long as you maintain an active account and for the purposes outlined in this Notice. Additional retention may occur to comply with legal obligations, such as AML regulations. Once your account is closed and no legal or business need remains, your data will be deleted or anonymized to prevent identification.

Your Rights

You have the following rights regarding your personal data:

  • Access: Request details about the data we hold and how it is processed.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your data when no legal or business reason justifies retention.
  • Restriction: Limit processing in specific circumstances.
  • Data Portability: Request your data in a structured, machine-readable format for transfer to another party.
  • Objection: Object to processing based on legitimate interests or for marketing purposes.
  • Withdraw Consent: Revoke consent at any time without affecting prior processing.
  • Lodge a Complaint: Contact a supervisory authority in your EU member state of residence, workplace, or where an alleged infringement occurred.

To exercise these rights, contact Customer Support at [email protected] or our Data Protection Officer at [email protected].

Cookies and Tracking Technologies

We use cookies, pixels, tags, web beacons, and similar technologies to improve your experience. Non-essential cookies require your consent, requested upon your first visit. Strictly necessary cookies, vital for website operation, do not require consent. For details on cookies and preference management, see our Cookie Notice.

Data Security

We prioritize your data’s security, employing administrative, technical, and physical safeguards to protect against unauthorized access, loss, theft, or misuse. While we use advanced measures, no system is entirely secure due to the nature of the internet. We continuously enhance our security practices but cannot guarantee absolute protection.

Data Transfers Outside the EU/EEA

We may process your data outside the EU/EEA, ensuring safeguards like Standard Contractual Clauses or transfers to countries with adequate protection, as recognized by the European Commission, to maintain high security standards.

Change in Ownership

In the event of a sale, merger, or other corporate transaction, your data may be shared as part of the process, but only in accordance with this Notice unless you consent to alternative uses.

Contact Us

For questions about this Notice or our data practices, email [email protected] or [email protected].

Updates to This Notice

We may update this Notice to reflect technological or legal changes. You are responsible for reviewing updates. The revised Notice will take effect on the date posted on our website.
Effective Date: October 2024