Privacy overview and scope

Personal data collected may include:

• Identity and contact details: name, date of birth, address, email, phone.
• Verification data: identification documents, selfies, proof of address, self-exclusion status.
• Account and usage data: username, preferences, game and bet history, responsible gambling settings, support communications.
• Payment and transaction information: deposits, withdrawals, partial card details or tokens, bank details handled by payment providers.
• Technical data: IP address, device identifiers, browser type, operating system, language, time zone, basic location derived from IP, cookies.

Why this information is collected:

• To provide and operate the services, manage accounts and process transactions.
• To meet legal and regulatory duties under UK law, including age and identity checks, anti-money laundering and safer gambling obligations.
• To prevent fraud, secure systems, and maintain service integrity.
• To improve website performance and user experience.

Protection measures:

• Encryption in transit and at rest, secure key management and TLS.
• Strict access controls, multi-factor authentication and least-privilege permissions.
• Network monitoring, logging, vulnerability management and periodic penetration testing.
• Data minimisation, role-based segregation and secure backup and retention controls.
• Staff training and confidentiality commitments, plus third-party due diligence.

Legal compliance:

• UK GDPR and the Data Protection Act 2018.
• Gambling Commission Licence Conditions and Codes of Practice.
• Money Laundering Regulations 2017 and related guidance.
• PECR for cookies and electronic communications.

User rights:

• Access: request a copy of personal information.
• Rectification: correct inaccurate or incomplete data.
• Erasure: request deletion, subject to legal and regulatory retention.
• Restriction: limit processing in specific circumstances.
• Portability: receive data in a usable format and transfer it where feasible.
• Objection: object to processing based on legitimate interests or direct marketing.
• Automated decisions: request human review of decisions that have legal or significant effects.
• Withdraw consent: where processing relies on consent, it can be withdrawn at any time.

Contact for rights requests: [email protected]. You may also contact the Information Commissioner’s Office at ico.org.uk, 0303 123 1113, or: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.

Personal data is used for lawful and transparent purposes:

• Account services and support: to create accounts, verify age and identity, enable login, and respond to user queries. Lawful basis: contract, legal obligation.
• Payments and transactions: to process deposits and withdrawals and detect payment fraud. Lawful basis: contract, legitimate interests, legal obligation.
• Service improvement and safety: to analyse performance, fix issues and enhance the online experience. Lawful basis: legitimate interests.
• Responsible gambling and compliance: to apply limits, monitor activity for safer gambling, and meet regulatory and AML duties. Lawful basis: legal obligation, substantial public interest where applicable.
• Personalisation: to tailor content and settings. Lawful basis: legitimate interests or consent where required.
• Analytics and statistics: to understand usage and improve services. Lawful basis: legitimate interests or consent for non-essential cookies.
• Marketing: to send permitted communications. Lawful basis: consent or soft opt-in under PECR, with opt-out available at any time.

Processing is designed to be proportionate, limited to the purposes described, and subject to safeguards appropriate to the risk.

Exercising your rights:

• Access or portability: send a request to [email protected]. Identity verification may be required. A response will be provided within one month, extendable in complex cases.
• Correction: update details in account settings or contact support to fix inaccuracies.
• Deletion: request erasure. Some information must be retained to meet anti-money laundering, tax and regulatory duties for a defined period.
• Objections and restrictions: submit a request explaining the basis. Processing will be limited where legally required.

Security and payment checks:

• By using the services, the user consents to necessary security checks, including identity verification, fraud screening and sanctions or PEP screening carried out by compliant providers.
• Payment data is processed by authorised payment service providers to complete transactions and prevent misuse.

Automated decisions may be used to prevent fraud or manage AML risk. Users can request human review and express their point of view where the decision has legal or similarly significant effects.

The services are for persons aged 18 or over. Accounts must not be created or used by minors. Age cannot be verified without suitable documents, and verification will be requested where required by law or risk.

If a parent or guardian believes a minor has provided personal information, contact [email protected]. Any account identified as belonging to a minor will be closed and personal data deleted, subject to necessary retention for regulatory purposes.

Personal information may be processed in other countries where service partners, payment providers or support teams operate. Using the website constitutes consent to such transfers where consent is the applicable lawful basis.

Safeguards are applied to protect confidentiality and rights, including adequacy regulations, the UK International Data Transfer Agreement or the UK Addendum to the EU Standard Contractual Clauses, plus technical and organisational controls. All partners must handle information securely and only for documented purposes.

This policy may include disclaimer sections that explain limits or scope of the rules and how they apply in practice. Where permitted by law, those sections guide interpretation and may affect the operation of specific terms.

The disclaimer applies when the user accepts this policy by creating an account, ticking acceptance boxes, signing electronically or otherwise indicating agreement during use of the services.

Cookies are small text files placed on a device by websites to store settings and recognise the user. They help compile statistics, analyse behaviour, personalise content and improve site performance.

Types used:

• Strictly necessary cookies for core functions.
• Preference cookies for settings.
• Analytics cookies for usage and performance metrics.
• Advertising cookies where permitted by law and consent.

Retention: non-essential cookies are stored for up to 1 year unless deleted earlier. Users can manage cookies through the browser or the on-site controls. Further details are available in the Cookie Policy.

By using the website and services, the user accepts the terms of this Privacy Policy. The most current version of this document prevails over previous versions. Continued use after changes are posted indicates acceptance of the updated terms.

Last updated: 2 December 2025.

Personal data may be shared where necessary for law, dispute handling or to perform agreements. Typical recipients include payment processors, identity verification and AML providers, fraud and risk platforms, hosting and security vendors, analytics providers, customer support tools, auditors, regulators, law enforcement and dispute resolution bodies. A current list or examples may be provided on the website; where not listed, users will be informed of the purpose and scope where required by law.

Sharing is limited to defined purposes and is subject to confidentiality and data protection obligations. Providing personal information constitutes consent to sharing where consent is the lawful basis. In other cases sharing is based on contract, legal obligation or legitimate interests.

The website may include links to third-party websites that have their own privacy policies and security practices. Raptorwins is not responsible for how those sites collect, use or disclose personal information.

Users should review the privacy information provided on any external site before submitting personal data or continuing their visit.