Privacy Policy
Last updated: 5 May 2026
This Privacy Policy explains how bof casino, operating through casinobof.site, collects, uses, stores, shares and protects personal data in connection with its online gambling services. It is written for users in the United Kingdom and is intended to provide clear information about how personal information is handled in accordance with applicable data protection law, including the UK General Data Protection Regulation and the Data Protection Act 2018.
For the purposes of data protection law, bof casino acts as a data controller in relation to the personal data processed through casinobof.site, except where another party clearly acts as an independent controller for its own purposes, such as certain payment providers, identity verification suppliers, regulators or law enforcement bodies.
By registering an account, using the website, submitting documents, placing bets, contacting support, or otherwise interacting with the services, you acknowledge that your personal data will be processed as described in this Privacy Policy. Where consent is relied upon for specific processing activities, such as certain forms of direct marketing, you have the right to withdraw that consent at any time. However, please note that much of the personal data processing necessary to provide gambling services is based on legal obligations, contractual necessity, and legitimate interests rather than consent alone.
Introduction
As a provider of remote gambling-related services, bof casino may be required to process personal data to comply with legal and regulatory duties, to deliver account functionality, to protect users and the business from fraud, and to support safer gambling obligations. This includes obligations relating to anti-money laundering, counter-terrorist financing, fraud prevention, sanctions screening, age verification, identity checks, transaction monitoring, complaint handling and security management.
Registration of an account does not remove your statutory rights under data protection law. Rather, it means that certain core processing activities are necessary for the provision of the services you request. If you do not provide the information required to create and maintain an account, we may be unable to register you, process deposits or withdrawals, verify your identity, or allow continued access to the platform.
Information We Collect
We may collect and process the following categories of personal data.
Personal details and account registration information
This may include:
- full name
- date of birth
- residential address
- billing address where different
- e-mail address
- telephone number, if provided during account use or verification
- username or account identifier
- nationality and country of residence
- account preferences and selected settings
Identity and verification information
To comply with legal and regulatory requirements, particularly in relation to age verification, know your customer requirements, anti-money laundering and fraud prevention, we may collect:
- copies of passport, driving licence or other government-issued identification
- proof of address documents such as utility bills or bank statements
- source of funds or source of wealth information where required
- selfie, liveness check or facial comparison data where used by verification providers
- sanctions, politically exposed person and adverse media screening results
- information received from identity verification partners, fraud databases or public registers
Financial and transaction information
We may collect details relating to your use of payment services and gambling activity, including:
- deposit and withdrawal history
- payment method type and limited payment instrument details
- transaction identifiers
- currency used
- account balance
- bonus or promotion application records
- betting, gaming and wagering history
- chargeback, reversal or failed payment records
- affordability or financial risk indicators where legally required or reasonably necessary
Correspondence and support records
When you contact bof casino or when we contact you, we may retain:
- e-mail correspondence
- support requests and complaint details
- account review outcomes
- responsible gambling interactions
- records of disputed transactions or self-exclusion requests
- internal notes created in the course of customer support, compliance review or security investigation
Technical, device and usage information
We may automatically collect technical information when you use casinobof.site, including:
- IP address
- browser type and version
- device type and operating system
- language settings
- date and time of access
- pages viewed and website navigation paths
- login attempts and session activity
- cookie identifiers and similar tracking technologies
- geolocation data derived from IP or device data where necessary for legal compliance, fraud controls or service integrity
- security and audit logs
Sensitive or special category data
As a general rule, bof casino does not seek to collect special category personal data unless necessary and legally permitted. In limited circumstances, information relating to health or vulnerability may be processed where relevant to safer gambling interactions, self-exclusion, customer support, dispute handling or legal obligations. Such data will only be processed where a valid legal basis and, where required, an additional condition for processing exists under UK law.
How We Use Your Information
We use personal data only where there is a lawful basis to do so. Depending on the circumstances, the lawful bases may include performance of a contract, compliance with legal obligations, legitimate interests, and consent.
To provide and manage your account
We use your information to:
- create and administer your account
- verify eligibility to use the services
- enable deposits, bets, gameplay and withdrawals
- maintain transaction records
- communicate important service information
- resolve technical issues and account queries
The principal legal basis for this processing is contractual necessity.
To comply with legal and regulatory obligations
We process data to comply with obligations that may apply under gambling, anti-money laundering, sanctions, fraud prevention, tax, consumer protection and data protection laws. This may include:
- age and identity verification
- know your customer checks
- source of funds and source of wealth assessments
- anti-money laundering and counter-terrorist financing monitoring
- sanctions screening
- record keeping and reporting to competent authorities
- responding to legal requests, court orders and regulatory enquiries
The principal legal basis for this processing is compliance with legal obligations.
To protect the platform, users and the integrity of gambling services
We may use personal data to:
- detect and prevent fraud, collusion, bonus abuse, account misuse and criminal activity
- secure the website, systems and user accounts
- investigate suspicious betting or payment patterns
- enforce our terms and conditions
- support dispute resolution and evidence preservation
The principal legal basis for this processing is legitimate interests, and where applicable, legal obligations.
To support customer service and responsible gambling
We may process your information to:
- respond to account enquiries and complaints
- monitor customer welfare and signs of gambling-related harm
- apply account restrictions, cooling-off measures or self-exclusion requests
- maintain records of responsible gambling interactions
- review affordability or risk information where necessary and proportionate
This processing may be based on contractual necessity, legal obligations and legitimate interests. Where health-related or similar sensitive information is involved, additional legal conditions will be applied as required.
To improve services, analytics and internal research
We may use personal data to analyse website usage, service performance, user experience, product issues, and operational trends. Where possible, aggregated or anonymised data will be used. This helps us improve site security, usability, service reliability and compliance controls.
The principal legal basis for this processing is legitimate interests.
Marketing Communication
bof casino may process certain personal data for marketing purposes where permitted by law. This may include your e-mail address, account activity, broad preferences, and records of whether you have opted in or opted out of receiving promotional messages.
Marketing communications may include:
- information about new games or products
- updates on features or services
- promotional offers, where lawful
- customer engagement campaigns
Where consent is required under applicable electronic marketing rules, marketing e-mails will only be sent where you have given that consent. In other cases, marketing may be based on lawful soft opt-in rules where available, subject always to your right to object.
You can opt out of marketing communications at any time by:
- using the unsubscribe option in the marketing e-mail, where available
- changing account preferences, if such functionality is available on the website
- contacting support at [email protected]
Opting out of marketing will not prevent us from sending service-related communications that are necessary for account administration, legal compliance, security alerts, transaction confirmations or important changes to the service.
Obtaining Personal Information
We collect personal information from a variety of sources, depending on how you interact with casinobof.site.
Information obtained directly from you
This includes information you provide when you:
- register an account
- complete forms on the website
- upload verification documents
- make deposits or request withdrawals
- contact customer support
- submit complaints or dispute claims
- participate in safer gambling or compliance reviews
- update account details or preferences
Information obtained automatically
Certain technical and usage data is collected automatically through cookies, server logs and similar technologies when you access or use the website. This helps us operate the service, ensure security, diagnose faults, monitor fraud risks and understand website performance.
Information obtained from third parties
We may receive personal data from third-party providers and external sources, including:
- identity verification and age verification providers
- payment processors and financial institutions
- fraud prevention and risk intelligence services
- anti-money laundering and sanctions screening providers
- game and platform suppliers where relevant to gameplay records or incident investigation
- publicly available registers, databases and lawful open-source information
- regulators, law enforcement agencies, courts and other competent authorities
- corporate group entities involved in compliance, operational support or risk management
Data Recipients
Access to personal data is restricted to those persons and organisations who need it for legitimate business, legal or compliance purposes.
Within bof casino and any relevant corporate group structure, your data may be accessed by personnel involved in:
- customer support
- payments and finance
- compliance and anti-money laundering checks
- fraud and security monitoring
- safer gambling and risk management
- legal and dispute handling
- technical operations and systems administration
- internal audit and governance
All such access should be limited on a need-to-know basis and subject to confidentiality obligations.
Releasing Data to Third Parties
We may share your personal data with third parties where necessary, lawful and proportionate. Such sharing may include the following categories.
Payment and banking partners
To process deposits, withdrawals, payment verification, chargeback handling and transaction security, we may share relevant data with payment service providers, banks, card schemes or related financial intermediaries.
Verification and compliance providers
We may disclose relevant personal data to service providers who assist with:
- identity verification
- age verification
- address verification
- sanctions and politically exposed person screening
- anti-money laundering checks
- fraud detection and prevention
- document authentication
- source of funds assessment
Game, software and platform suppliers
Where necessary for game provision, technical operations, fraud investigation, dispute resolution or regulatory audit, data may be shared with software vendors, hosting providers, analytics providers and game suppliers.
Professional advisers and auditors
We may share information with legal advisers, accountants, consultants, insurers, auditors or similar professional service providers where reasonably necessary for compliance, risk management or dispute handling.
Regulators, law enforcement and public authorities
We may disclose personal data where required or permitted by law, including where necessary to:
- comply with a legal obligation
- respond to a lawful request from a regulator or supervisory authority
- prevent, investigate or report suspected crime, fraud or money laundering
- protect the rights, property or safety of bof casino, its users or others
- establish, exercise or defend legal claims
Corporate transactions
If bof casino undergoes or considers a business sale, merger, acquisition, restructuring, financing transaction or similar event, personal data may be disclosed to relevant counterparties and advisers subject to appropriate confidentiality and legal safeguards.
We do not sell personal data in the ordinary commercial sense.
International Transfers
Where personal data is transferred outside the United Kingdom, bof casino will take reasonable steps to ensure that such transfers are carried out lawfully and that an appropriate level of protection is applied. This may include reliance on adequacy regulations, approved contractual safeguards, or another lawful transfer mechanism recognised under UK data protection law.
Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including for legal, regulatory, tax, accounting, fraud prevention, dispute resolution and record-keeping requirements.
In the gambling and anti-money laundering context, certain records may need to be retained for a minimum period of five years following the end of the business relationship or completion of a relevant transaction, where such retention is required by law or regulatory expectations.
Retention periods may vary depending on the category of data, but generally we will consider:
- legal and regulatory retention obligations
- limitation periods for legal claims
- the need to investigate fraud or suspicious activity
- account closure status
- unresolved disputes or complaints
- whether continued retention is necessary to enforce exclusions or responsible gambling protections
After the applicable retention period expires, personal data will be deleted, anonymised or securely archived where appropriate. If you request erasure, we will assess that request against our legal obligations and legitimate grounds for continued retention. Where anti-money laundering or other legal retention duties still apply, immediate erasure may not be possible. Once those duties no longer apply, eligible data may be erased in accordance with applicable law.
Security of Your Data
bof casino applies technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.
These measures may include:
- account access controls using unique ID and password protections
- role-based access restrictions for staff and service providers
- encryption of data in transit using current transport security protocols where appropriate
- encryption or secure storage methods for sensitive records
- system monitoring, logging and intrusion detection measures
- secure document handling procedures
- staff confidentiality obligations and training
- incident response and breach management procedures
- periodic review of vendors and security arrangements
No internet-based system can be guaranteed to be completely secure. Users are responsible for keeping login credentials confidential, using strong passwords, and notifying support promptly if they suspect unauthorised access or compromise.
Cookies and Similar Technologies
c asinobof.site may use cookies and similar technologies to operate the website, remember settings, analyse traffic, detect fraud, maintain session integrity and support security. Some cookies may be strictly necessary for the operation of the site, while others may be used for analytics or user preference management.
Where required by law, non-essential cookies will be used only with appropriate consent. You can control cookie preferences through your browser settings and, where available, through website consent tools. Disabling certain cookies may affect website functionality.
Your Rights
Subject to applicable law and certain exceptions, you may have the following rights in relation to your personal data:
- the right to be informed about how your data is used
- the right to request access to your personal data
- the right to request correction of inaccurate or incomplete data
- the right to request erasure in certain circumstances
- the right to request restriction of processing in certain circumstances
- the right to object to processing based on legitimate interests, including direct marketing
- the right to data portability where applicable
- the right to withdraw consent where processing is based on consent
- the right not to be subject to a decision based solely on automated processing where such right applies under law
These rights are not absolute. For example, we may refuse or limit a request where processing is required to comply with a legal obligation, prevent crime, protect others, or establish, exercise or defend legal claims.
To exercise your rights, please contact [email protected]. We may need to verify your identity before responding to a request. We will respond in accordance with applicable legal time limits.
Contacting Us
If you have questions about this Privacy Policy, how your personal data is used, or if you wish to exercise your rights, please contact:
If you are not satisfied with our response, you may have the right to lodge a complaint with the Information Commissioner’s Office in the United Kingdom, which is the supervisory authority responsible for data protection matters.
Changes to This Privacy Policy
bof casino may amend this Privacy Policy from time to time to reflect changes in legal requirements, regulatory expectations, technology, business operations or service features. The most recent version will be made available on casinobof.site and the date of the latest update will be shown at the top of the policy.
Legal and Reference Framework
This Privacy Policy has been prepared with regard to the following legal and regulatory sources, as applicable to the United Kingdom:
- UK General Data Protection Regulation
- Data Protection Act 2018
- Privacy and Electronic Communications Regulations 2003, as amended
- relevant anti-money laundering and counter-terrorist financing legislation and guidance applicable to gambling operators
- applicable consumer protection, fraud prevention and regulatory reporting obligations
- Information Commissioner’s Office guidance on transparency, lawful basis, retention, data subject rights and international transfers
Where this Privacy Policy refers to legal obligations related to gambling compliance, retention, identity verification or crime prevention, such obligations should be interpreted in line with the laws, regulatory conditions and guidance applicable to the operation of the services in the United Kingdom.
By continuing to use casinobof.site, you acknowledge that you have read and understood this Privacy Policy.