Privacy Policy

At Crossy Road, we are committed to protecting your privacy and ensuring the security of your personal data when you use our gambling platform, crossyroadgambling.eu. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and relevant United States privacy regulations. Please read this policy carefully to understand our practices regarding your personal data and how we will treat it.

Introduction

Crossy Road values the trust you place in us when you use our online gambling services. We recognize that your privacy is paramount, especially given the sensitive nature of the data involved in gambling activities. This Privacy Policy outlines our commitment to protecting your personal information, maintaining transparency about our data processing activities, and ensuring that your data is handled lawfully, fairly, and securely. Whether you are registering for an account, playing games, or interacting with our website, we strive to uphold the highest standards of data protection to provide you with a safe and responsible gaming environment.

Data Controller Information

Crossy Road operates as the data controller for all personal data collected through crossyroadgambling.eu. As the data controller, we determine the purposes and means of processing your personal information. Should you have any questions, concerns, or requests regarding your privacy or this policy, you can contact our dedicated Data Protection Officer (DPO) through the contact details provided on our website. We are committed to responding promptly and transparently to all privacy inquiries to ensure your rights are respected and upheld.

Types of Data We Collect

We collect a variety of data to provide and improve our gambling services, ensure compliance with legal obligations, and enhance your user experience. The data we collect includes:

• Personal Data: This includes your full name, date of birth, email address, telephone number, residential address, and other identity verification information necessary for account creation, age verification, and compliance with anti-money laundering (AML) and responsible gambling regulations.
• Technical Data: We collect information such as your IP address, device type, browser type and version, operating system, and other technical identifiers. This data helps us optimize website performance, detect fraud, and maintain security.
• Cookies and Tracking Data: We use cookies and similar tracking technologies to collect data on your browsing behavior, preferences, and interactions with our website.
• Gaming Data: This includes your gameplay history, betting patterns, transaction records, wins and losses, session duration, and other activity logs essential for providing our gambling services, ensuring fair play, and complying with regulatory requirements.

How We Collect Data

We gather your data through various methods to ensure seamless service delivery and compliance:

• Registration Forms: When you create an account, you provide personal and contact information directly through our secure registration process.
• Cookies and Tracking Technologies: We deploy cookies and similar tools to collect technical and behavioral data. These technologies help us understand how you use our site and tailor your experience.
• Analytics Tools: We utilize third-party analytics services to monitor website traffic, user engagement, and detect anomalies or fraudulent activity.
• Gameplay Tracking: Our platform automatically records your gaming activity and transactions to maintain accurate records and support responsible gambling measures.
• Third-Party Sources: In some cases, we receive data from third parties such as payment processors, identity verification services, and regulatory bodies to verify your identity and comply with legal obligations.

Purposes and Legal Basis for Processing

We process your personal data for the following purposes, relying on appropriate legal grounds under GDPR and applicable U.S. laws:

• Provision of Services: To create and manage your account, facilitate deposits and withdrawals, provide games, and ensure smooth operation of our platform. Legal basis: performance of contract.
• Legal Compliance: To comply with gambling regulations, AML laws, tax obligations, and other statutory requirements. Legal basis: legal obligation.
• Marketing and Communications: To send you promotional offers, updates, and newsletters, subject to your consent where required. Legal basis: consent or legitimate interests.
• Security and Fraud Prevention: To detect, prevent, and investigate fraudulent activities, unauthorized access, and other security threats. Legal basis: legitimate interests.
• Customer Support: To respond to your inquiries, resolve disputes, and provide assistance. Legal basis: performance of contract and legitimate interests.

How We Use Your Data

Your personal data is used strictly in accordance with the purposes outlined above:

• Account Management: We use your data to verify your identity, manage your account settings, and ensure compliance with age and jurisdictional restrictions.
• Game Provision: Your gaming data enables us to offer personalized game experiences, track bets and winnings, and maintain fair play standards.
• Customer Support: We access your information to provide timely and effective support, including resolving technical issues and addressing complaints.
• Marketing Communications: With your consent, we may send you tailored promotions and offers. You can opt out at any time.
• Regulatory Compliance: We process your data to fulfill obligations such as reporting suspicious activities to regulatory authorities and conducting responsible gambling interventions.

Data Sharing and Third Parties

We may share your personal data with trusted third parties strictly for the purposes described in this policy:

• Payment Processors: To facilitate deposits, withdrawals, and financial transactions securely and efficiently.
• Regulatory Authorities: To comply with legal reporting requirements, including anti-fraud and AML obligations.
• Marketing Partners: Only with your consent, to deliver targeted advertising and promotional content.
• Service Providers: Including IT support, data hosting, identity verification, and analytics providers who assist us in operating our platform.

All third parties are contractually obligated to maintain the confidentiality and security of your data and are prohibited from using it for any other purpose.

International Data Transfers

Your data may be transferred and processed outside the United States and the European Union, including countries that may not have the same level of data protection laws. When such transfers occur, we ensure appropriate safeguards are in place to protect your data, such as:

• Standard Contractual Clauses (SCCs): We implement EU-approved SCCs to ensure compliance with GDPR requirements.
• Data Processing Agreements: We enter into binding agreements with third parties to enforce strict data protection obligations.
• Security Measures: We require all recipients of your data to implement robust security protocols.

These measures ensure that your personal data remains protected regardless of where it is processed.

Data Retention Periods

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal and regulatory obligations:

• Account and Transaction Data: Retained for a minimum of five years following account closure or last activity, in accordance with anti-money laundering and tax laws.
• Marketing Data: Retained until you withdraw consent or opt out of communications.
• Technical and Analytics Data: Retained for a limited period to improve our services and detect fraud, typically no longer than two years.
• Support and Complaint Records: Retained for up to three years to ensure proper resolution and compliance with regulatory requirements.

After these periods, your data is securely deleted or anonymized.

Your Rights Under GDPR

If you are a resident of the European Union or European Economic Area, you have the following rights regarding your personal data:

• Right of Access: You may request confirmation of whether we process your data and obtain a copy of that data.
• Right to Rectification: You can request correction of inaccurate or incomplete data.
• Right to Erasure: You may request deletion of your data, subject to legal and contractual limitations.
• Right to Data Portability: You can request your data in a structured, commonly used format to transfer to another controller.
• Right to Restrict Processing: You may ask us to limit the processing of your data under certain circumstances.
• Right to Object: You can object to processing based on legitimate interests or direct marketing.

To exercise these rights, please contact our Data Protection Officer using the contact details provided on our website. We will respond to your requests within the statutory timeframes and may require verification of your identity to protect your data.

Cookies and Tracking

Our website uses cookies and similar tracking technologies to enhance your experience, analyze usage, and deliver personalized content:

• Essential Cookies: Necessary for website functionality, such as login sessions and security.
• Performance Cookies: Collect anonymous data on website performance and user interactions to improve our services.
• Functional Cookies: Remember your preferences and settings for a more personalized experience.
• Advertising Cookies: Used with your consent to deliver relevant marketing and track campaign effectiveness.

You can manage your cookie preferences through your browser settings or via our cookie consent banner. Please note that disabling certain cookies may affect your ability to use some features of our site.

Data Security Measures

Crossy Road employs comprehensive technical and organizational measures to protect your personal data against unauthorized access, loss, alteration, or disclosure:

• Encryption: All sensitive data is encrypted during transmission using SSL/TLS protocols.
• Access Controls: Strict access restrictions and authentication procedures limit data access to authorized personnel only.
• Regular Audits: We conduct frequent security assessments and vulnerability testing to identify and mitigate risks.
• Data Minimization: We collect only the data necessary for our services and retain it only as long as required.
• Incident Response: We maintain procedures for promptly addressing data breaches and notifying affected individuals and authorities as required by law.

Our commitment to data security is ongoing, and we continuously update our practices to address emerging threats.

Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or technological advancements. When we make significant changes, we will notify you by posting the updated policy on our website and, where appropriate, by sending you a direct communication via email or through your account notifications. We encourage you to review this policy regularly to stay informed about how we protect your data.

Contact and Complaints

If you have any questions, concerns, or complaints regarding this Privacy Policy or our data processing practices, please contact Crossy Road’s Data Protection Officer using the contact information provided on our website. We are committed to addressing your concerns promptly and transparently.

Should you remain unsatisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction, including the U.S. Federal Trade Commission or the supervisory authority in your EU member state. We encourage you to contact us first so we can resolve your concerns directly.

Contact Information

Company: Crossy Road
Website: crossyroadgambling.eu
Email: [email protected]