Privacy Policy Overview

Basswin collects only the information needed to deliver and secure the services, meet legal duties and support responsible gambling.

Personal data we may collect:

• Identity and contact details – name, date of birth, address, email, phone.
• Account and verification documents – ID, proof of address, age checks, affordability and source of funds information.
• Payment and transaction information – deposits, withdrawals, card details processed by approved providers.
• Gameplay and betting activity – session data, stakes, wins, losses, limits and self-exclusion status.
• Technical and device data – IP address, device identifiers, browser type, operating system, security logs.
• Location information – region or city-level signals for licensing and risk controls.
• Communications and preferences – messages, support history, marketing choices.

Why we collect this information:

• To provide the online services and manage the user account.
• To complete payments and prevent fraud.
• To carry out age, identity and affordability checks under UK rules.
• To support safer gambling and comply with licensing, AML and sanctions requirements.
• To maintain platform security and improve user experience.

Technical and organisational measures:

• Encryption in transit and at rest.
• Strict access controls, logging and multi-factor authentication.
• Network segregation and regular vulnerability testing.
• Data minimisation, pseudonymisation and secure disposal.
• Supplier due diligence and contractual data protection obligations.
• Documented incident response and breach notification procedures.

User rights under UK GDPR:

• Access, rectification and deletion.
• Restriction, objection and data portability.
• Withdraw consent where consent is the basis for processing.
• Lodge a complaint with the Information Commissioner’s Office (ICO).

Compliance: UK GDPR, the Data Protection Act 2018, UK Gambling Commission Licence Conditions and Codes of Practice, and the Money Laundering Regulations 2017.

We process personal data for lawful purposes and keep processing fair and transparent.

Uses of information:

• Account creation, identity verification and age checks.
• Processing deposits, withdrawals and chargeback management.
• Security controls, fraud prevention, sanctions screening and AML monitoring.
• Providing and improving online services, site performance and personalisation.
• Analytics and statistics to understand service usage and reliability.
• Responsible gambling measures, including limits, self-exclusion and interventions.
• Regulatory reporting and dispute handling where required by law.
• Marketing communications where the user has consented, with an option to opt out at any time.

Legal bases include consent, performance of a contract, legal obligation and legitimate interests, assessed through proportionate balancing tests.

Users can access and export personal information through account tools or by submitting a request using the contact options on the website. Corrections can be made in profile settings or by contacting support; we may ask for a document to verify changes. Deletion requests are honoured where no legal or regulatory retention duty applies, such as AML records that must be kept for set periods.

Response times:

• We aim to respond within one month of verifying identity.
• Complex requests may take up to a further two months; we will inform the user if an extension is needed.

By using Basswin, the user consents to necessary security checks and the processing of payment data by approved payment providers in order to provide and protect the services.

The services are for persons aged 18 or over. We cannot confirm age without appropriate documents and may ask for proof of identity and address. If it is discovered that a minor has provided personal information or opened an account, the account will be closed and the data deleted where required by law. A parent or guardian can request deletion by contacting us and providing proof of responsibility.

Personal data may be processed in other countries where our partners and service providers operate. Using the site constitutes consent to such international transfers, subject to safeguards under UK data protection law. Safeguards include adequacy regulations, the UK International Data Transfer Agreement or Addendum to EU Standard Contractual Clauses, transfer risk assessments and technical protections. All partners are bound by confidentiality and data protection obligations.

Notices or a legal disclaimer linked to this policy may clarify or limit how the rules apply in specific situations. The disclaimer takes effect when the user accepts the policy by signature, in-account acceptance or accession through continued use. If any inconsistency arises, the latest published version of this policy and any specific notices take precedence, subject to applicable law and licensing conditions.

Cookies are small files stored on a device by websites to remember preferences and understand usage. We use cookies for statistics, behaviour analysis, personalisation and site improvement. Cookie retention is 1 year unless the user deletes them sooner. Types include essential, performance, functional and advertising cookies. Users can manage cookies in browser settings or through on-site controls; some features may not function without essential cookies.

Using the website means full acceptance of this Privacy Policy and any updates. The current version on this page prevails over previous versions. Continued use after a change indicates acceptance of the revised terms, subject to applicable law.

Personal data may be shared where necessary to comply with law, resolve disputes, perform agreements or provide the services. Typical recipients include payment processors, identity and credit reference providers, fraud prevention agencies, analytics vendors, marketing platforms where consent applies, customer support tools, hosting providers, regulators, law enforcement and alternative dispute resolution bodies. A list of key third parties is maintained on the website; where not listed, we will explain the purpose and scope before sharing when feasible. Providing data constitutes consent where consent is the lawful basis, and all third parties are bound by contract to protect information.

The website may contain links to third-party websites that have their own privacy policies. Basswin is not responsible for how external sites collect, use or protect information. Users should review those policies before providing any personal data and exercise caution when navigating to other services.