Your data, your control

BetNinja Casino Privacy Policy

How BetNinja handles your personal data.

Why this exists

Introduction

In short

BetNinja takes the protection of your personal data seriously. This policy describes what we collect, how we use it and the rights you hold. By using the platform you accept the processing described below.

It applies to all services: casino, live casino, sports betting and related features.

Five categories

What data do we collect?

Account data

Name, email, date of birth and country at sign-up — needed to create and manage your account.

Financial data

Transaction details for deposits and withdrawals. Full card numbers are never stored on our systems.

Usage data

Which games you play and session length, used to improve the platform and support safer gambling.

Technical data

IP address, browser type, device and OS — collected automatically to keep the platform working and detect issues.

Communication data

Contents of your messages to support, kept so we can answer faster and improve the service.

Purpose

How do we use your data?

What we do

Manage your account, process transactions, comply with legal obligations, prevent fraud and improve the service. We also notify you of important changes.

What we never do

We never sell your personal data. We only share with third parties when necessary for the service (like payment processors) or when legally required.

How long

Retention periods

Account data: Kept while your account is active and up to 5 years after closure, unless legal obligations require longer.
Financial transaction data: Kept for 7 years after the transaction date, in line with statutory record-keeping rules.
Usage and technical data: Kept for a maximum of 2 years in identifiable form, then anonymised for statistical purposes.
Communication data: Customer service interactions are kept for a maximum of 1 year after the last contact.

Across borders

International data transfer

Where your data may live

BetNinja may process data on servers outside your country of residence. We use standard contractual clauses approved by relevant supervisory authorities and encrypt data in transit.

We only work with payment and technical providers that meet strict security standards and comply with applicable privacy laws.

Defence in depth

Security

Bank-level SSL encryption on every transfer.
Firewalls, access controls and regular audits.
Staff access only when role-required, under confidentiality.
Regular security checks and updates to the systems.

Strictly 20+

Privacy of minors

No data from minors

BetNinja is strictly for people aged 20 and over. We don't knowingly collect data from minors. If we discover such data, we delete it immediately and close the account.

Parents or guardians who suspect a minor created an account should contact support so we can act straight away.

Smart systems

Automated decision-making

When automation kicks in

Automated processes support fraud detection, identity verification and play behaviour monitoring as part of safer gambling. They can lead to account restrictions, like a temporary block on suspicious transactions.

If an automated decision affects your account, you have the right to a human review through customer service.

Your rights

Access, correct, delete: Request access to your data, correct it or have it deleted via customer service.
Object & restrict: Object to certain processing activities or ask for processing to be restricted.
Data portability: Receive your data in a structured format you can take elsewhere.
Close your account: Want to close everything? Follow the steps on the close account page.

Cookies

We use cookies to keep the platform working and improve your experience. Details in the cookie policy.

Changes

We may update this policy. Important changes are notified by email or in-platform. The most recent date sits at the top of the policy.

Contact

Questions about your data? Reach our team via live chat. We respond within 30 days at the latest.

In summary

How BetNinja Casino actually handles your data

We collect what we need and nothing more. Your name, date of birth, address, contact details and payment method are required to open an account and to comply with anti-money-laundering law. Your gameplay activity is recorded so we can pay you out, run loyalty programmes and detect fraud. That's the entire core dataset — there's no shadow profile, no third-party data enrichment, no reselling to data brokers.

Data is encrypted in transit (TLS) and at rest (AES-256) on infrastructure that meets ISO 27001 controls. Access internally is role-based: a customer support agent sees what they need to help you, a payments specialist sees what they need to process a withdrawal, and most staff see neither. Every access is logged and audited.

You have full rights over your data. You can request a copy of everything we hold, ask us to correct anything that's wrong, or ask us to delete it entirely once any legal retention period has expired. Requests are processed within 30 days and confirmed by email. To start a request, contact our support team directly.

We use a small number of trusted third-party processors — payment gateways, KYC verification providers, email delivery, fraud screening — and each one is contracted with strict data-processing agreements. We don't transfer data outside the EEA without the appropriate safeguards in place. Cookie use is covered separately on the cookie policy.