Bounty reels Privacy Policy

This section outlines what personal information is collected, why it is needed, and how it is protected.

What is collected

• Identity and verification data: name, date of birth, address, proof of identity and proof of address for age checks and due diligence.
• Contact details: email address and telephone number.
• Account and service data: username, preferences, responsible gambling settings, support history, and game or sportsbook activity logs.
• Transaction and payment information: deposit and withdrawal records, payment method identifiers or tokens, billing address, and anti-fraud signals.
• Technical and usage data: IP address, device identifiers, browser type, operating system, app version, session logs, and cookies.
• Compliance and risk data: results of sanctions and politically exposed person screening, affordability indicators, and fraud prevention flags where permitted by law.
• Communications: emails, chat transcripts, and call recordings where lawful.

Why it is collected

• To provide and operate the services, create and manage accounts, and deliver customer support.
• To process payments, issue refunds, and keep accurate records.
• To verify age and identity, prevent fraud and money laundering, and meet licensing obligations.
• To improve websites and apps, test features, and maintain service quality.
• To send service messages and, where permitted, marketing communications that the user can control.

Protection measures

• Encryption in transit and at rest, strong access controls, and multi-factor authentication for sensitive systems.
• Network monitoring, logging, vulnerability management, and regular security testing.
• Staff training, confidentiality commitments, and limited access on a need-to-know basis.
• Vendor due diligence, contractual safeguards, and oversight of third-party processors.
• Payment card data handled using industry-standard security by approved payment providers.
• Incident response and, where required, notification to the Information Commissioner’s Office and affected users.

User rights

• Access a copy of personal data.
• Rectify inaccurate or incomplete information.
• Erase data in line with legal retention rules.
• Restrict or object to certain processing, including direct marketing.
• Port data to another provider where technically feasible.
• Withdraw consent where consent is the legal basis.
• Lodge a complaint with the Information Commissioner’s Office.

Compliance

Processing is carried out in line with UK GDPR, the Data Protection Act 2018, the Licence Conditions and Codes of Practice of the UK Gambling Commission, anti-money laundering regulations, and applicable payment and consumer laws.

Personal data is used only for specified, explicit, and legitimate purposes.

How information is used

• Account management: registration, authentication, account settings, responsible gambling tools, and service communications.
• Transactions: deposits, withdrawals, chargeback handling, and record keeping.
• Service improvement: diagnostics, quality checks, feature testing, and security analytics.
• Marketing and preferences: personalisation and offers based on consent or legitimate interests, with opt-out at any time.
• Analytics and statistics: understanding how users interact with the services to improve reliability and usability.
• Compliance: identity and age verification, fraud detection, sanctions and PEP screening, affordability checks, dispute handling, and regulatory reporting.

Lawful bases

• Contract: to provide services requested by the user.
• Legal obligation: to meet regulatory and tax duties.
• Legitimate interests: to run, secure, and improve the services balanced against user rights.
• Consent: for activities such as non-essential cookies or direct marketing where required.

Processing is carried out in a lawful, fair, and transparent manner, limited to what is necessary for the stated purposes.

Users can access, update, or delete personal data, subject to legal and regulatory requirements.

How to make a request

• Submit a request through account settings or email [email protected]. Proof of identity may be required to protect the account.
• A response is normally provided within one month. Complex or numerous requests may take longer, in line with UK GDPR.

Updates and corrections

• Update most account details directly in profile settings.
• Request correction of inaccurate information. Reasonable verification may be needed before changes are applied.

Deletion

• Request erasure of personal data. Some information must be kept for statutory periods, including anti-money laundering and gambling regulation retention.
• When retention periods expire, data is securely archived or deleted.

Security checks and payments

• By using Bountyreels, the user consents to necessary security checks for age, identity, and risk control.
• Payment data is processed by approved payment service providers for transaction processing, fraud prevention, and chargeback handling.

Users may also contact the Data Protection Officer at [email protected] for privacy enquiries.

The services are intended for persons aged 18 or over. Accounts for minors are not permitted under UK law.

• Age cannot be verified without suitable documents. Verification is required before withdrawals and may be required earlier based on risk.
• If a parent or guardian believes a minor has provided personal information, contact [email protected]. Any such account will be closed and the data deleted where lawful.
• Records required by law may be retained for the minimum period necessary.

Personal information may be processed in other countries where partners and service providers operate.

• Using the site constitutes consent to such transfers and processing outside the UK where needed to deliver the services.
• Appropriate safeguards are applied, including adequacy decisions, the UK International Data Transfer Agreement or the UK Addendum to the EU Standard Contractual Clauses, and risk assessments.
• All partners are required by contract to protect confidentiality, use data only for agreed purposes, and apply robust security measures.

This disclaimer may alter the scope or effects of certain rules in this Privacy Policy where required by law, regulation, or regulator instructions.

• It applies once the user accepts the policy, including by signature, affirmative acceptance online, or accession through continued use of the services.
• If any part of this document conflicts with mandatory law, the applicable law will prevail and the remainder will continue to apply.
• Nothing in this policy limits statutory rights granted to the user under data protection legislation.

Cookies are small files stored on a device by websites and apps. They help remember preferences and improve how services work.

Purposes

• Statistics and analytics: measure traffic and performance.
• Behaviour analysis: understand how users interact to enhance usability.
• Personalisation: remember settings and tailor content.
• Site improvement and security: keep sessions stable and detect misuse.

Types

• Essential cookies: required for core functions such as login and security.
• Functional cookies: remember preferences.
• Analytics cookies: aggregate usage information.
• Advertising cookies: manage advertising relevance and frequency where permitted.

Retention

• Cookies are retained for up to 1 year from the last visit, after which they expire or are refreshed on new consent.

Control

• Users can manage preferences in the cookie banner and browser settings. Blocking non-essential cookies may affect some features.

Using Bountyreels constitutes full acceptance of this Privacy Policy and any terms referenced here.

• The current version published on the websites applies to all processing of personal data.
• Material changes will be communicated through the site or by email where appropriate. Continued use after updates indicates acceptance of the revised policy.

Personal data may be shared with third parties where necessary for law, disputes, or to perform agreements.

Possible recipients

• Payment service providers, banks, and fraud prevention services.
• Identity verification and due diligence providers.
• Game studios, platform operators, and technical hosting partners.
• Analytics and marketing partners where permitted by law and user preferences.
• Professional advisers, insurers, and auditors.
• Law enforcement, courts, and regulators when required.

Information on specific partners is provided on the site. If a party is not listed, the purpose and scope of sharing will be explained at or before the time of collection where practicable. Providing data constitutes consent to such sharing to the extent consent is the applicable basis. Each third party is responsible for its own privacy practices under its policy.

The site may contain links to third-party websites that operate their own privacy policies.

• Bountyreels does not control external sites and is not responsible for how they use personal information.
• Users should review the privacy policy of any external site and proceed with care when providing data.