1. About This Policy
Coral Casino Online (coral-online-casino-uk.com) takes the privacy of its users seriously. This Privacy Policy explains what personal data we collect, why we collect it, how it is used, and the rights available to you as a user based in the United Kingdom.
This policy applies to all individuals who visit, register with, or otherwise interact with the Coral Casino Online website. By creating an account or continuing to use our services, you confirm that you have read and understood this policy.
We operate in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the regulatory requirements set by the UK Gambling Commission (UKGC).
2. Who We Are
The data controller responsible for your personal information is Coral Casino Online, operated from:
- Level 7, Beaumont Business Centres, 16 Berkeley Street, London, W1J 8DZ, United Kingdom
- Email: support@coral-online-casino-uk.com
- Phone: +44 20 3917 3500
If you have any questions about how your data is handled, you may reach our support team Monday to Sunday, 10AM to 8PM.
3. Data We Collect
3.1 Information You Provide Directly
When you register an account or interact with our platform, we collect:
- Full name, date of birth, and gender
- Residential address, postcode, and country of residence
- Email address and telephone number
- Username and password (stored in encrypted form)
- Payment details, including card numbers, bank account information, and e-wallet identifiers
- Copies of identity documents submitted for verification purposes (e.g. passport, driving licence, utility bill)
- Responses to responsible gambling questionnaires or self-exclusion requests
3.2 Information Collected Automatically
When you access our website, we automatically collect certain technical data:
- IP address and approximate geolocation
- Browser type and version, operating system
- Pages visited, session duration, and navigation paths
- Device identifiers and screen resolution
- Referring URLs and search terms used to reach our site
- Cookie data and similar tracking technologies (see Section 9)
3.3 Information from Third Parties
We may receive personal data about you from:
- Identity verification and fraud prevention services
- Payment processors and financial institutions
- Credit reference agencies, where applicable
- The UK Gambling Commission or other regulatory bodies
- Responsible gambling databases such as GamStop
- Publicly available sources, including electoral registers
4. How We Use Your Data
4.1 To Provide Our Services
We process your personal data to:
- Create, maintain, and administer your account
- Process deposits, withdrawals, and gameplay transactions
- Provide customer support and respond to your enquiries
- Verify your identity and age before allowing access to gambling services
- Detect and prevent fraud, money laundering, and other financial crime
4.2 To Comply with Legal and Regulatory Obligations
As a gambling operator serving UK customers, we are required by law and by the UK Gambling Commission to:
- Conduct Know Your Customer (KYC) checks before processing withdrawals or when prompted by account activity
- Monitor transactions for signs of problem gambling or suspicious activity under the Proceeds of Crime Act 2002
- Implement responsible gambling tools including deposit limits, cool-off periods, and self-exclusion
- Retain records of gambling transactions for a minimum of five years
- Report certain activity to the National Crime Agency (NCA) where legally required
- Share data with GamStop and other self-exclusion schemes in which we participate
4.3 For Legitimate Business Purposes
Where it is in our legitimate interests and does not override your rights, we use your data to:
- Improve the functionality and user experience of our website
- Analyse player behaviour to develop and refine our games and promotions
- Monitor and ensure the integrity of our platform
- Carry out internal audits and risk management processes
4.4 For Marketing Communications
If you have opted in, we may contact you with information about promotions, bonuses such as free spins or welcome offers, and new game releases. You can withdraw your consent at any time by contacting us at support@coral-online-casino-uk.com or by updating your account preferences.
We do not send unsolicited marketing communications to users who have not given explicit consent.
5. Legal Bases for Processing
We rely on the following legal bases under UK GDPR:
- Contract performance – processing necessary to provide the gambling services you have signed up for
- Legal obligation – processing required to meet our duties under the Gambling Act 2005, the Money Laundering Regulations 2017, and UKGC licence conditions
- Legitimate interests – processing for fraud prevention, security, business analysis, and platform improvement, where these do not outweigh your fundamental rights
- Consent – processing for direct marketing communications and non-essential cookies, where you have given clear and specific agreement
6. Sharing Your Data
We do not sell your personal data. We may share it with trusted third parties only where necessary and appropriate:
- Payment service providers to process transactions securely
- Identity verification partners to confirm your identity and age as required by UKGC licensing conditions
- Fraud and AML screening services to fulfil our obligations under anti-money laundering legislation
- IT and infrastructure providers who host or maintain our platform under strict data processing agreements
- Responsible gambling organisations such as GamStop, where you have self-excluded or where we are required to share data by licence conditions
- Regulatory and law enforcement bodies including the UK Gambling Commission, HMRC, and the National Crime Agency, where disclosure is required by law
- Analytics and marketing partners only where you have given consent and subject to appropriate data protection safeguards
All third parties who process data on our behalf are bound by written agreements requiring them to handle your information securely and only for the purpose for which it was shared.
7. International Data Transfers
In some cases, data may be transferred to or processed by organisations located outside the United Kingdom. Where this occurs, we ensure that appropriate safeguards are in place, including:
- Transfers to countries with an adequacy decision from the UK government
- Use of UK International Data Transfer Agreements (IDTAs) or equivalent standard contractual clauses
- Binding corporate rules where applicable within corporate group structures
You may request further information about the specific safeguards used for any international transfer by contacting us at support@coral-online-casino-uk.com.
8. Data Retention
We retain personal data only for as long as it is needed for the purpose for which it was collected, or as required by law.
- Account data and transaction records are kept for a minimum of five years following account closure, in line with UKGC requirements and anti-money laundering regulations
- Identity verification documents are retained for at least five years from the end of the business relationship
- Marketing preferences and consent records are kept for as long as you hold an active account and for a reasonable period thereafter
- Website usage data collected through cookies and analytics is typically retained for no longer than 13 months
After the applicable retention period has expired, data is securely deleted or anonymised so it can no longer be associated with you.
9. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to deliver a functional and personalised experience. Cookies are small text files stored on your device when you visit a website.
9.1 Types of Cookies We Use
- Strictly necessary cookies – required for the website to function, including session management and security. These cannot be disabled.
- Functional cookies – remember your preferences such as language, login details, and display settings
- Analytics cookies – help us understand how visitors use our site so we can improve it. This includes data on page views, session lengths, and navigation
- Marketing and targeting cookies – used to deliver relevant promotions and track the effectiveness of our advertising, only where you have given consent
9.2 Managing Cookies
You can manage your cookie preferences through our consent tool when you first visit the site, or at any time via your browser settings. Please note that disabling certain cookies may affect the functionality of the website. For further guidance on managing cookies, visit www.aboutcookies.org.
10. Responsible Gambling and Data
Coral Casino Online is committed to promoting responsible gambling in line with UKGC Social Responsibility Code requirements. In connection with this:
- We collect and retain data about your gambling activity, including deposit history, session lengths, and betting patterns, to identify signs of problem gambling
- We may use this data to apply responsible gambling interventions, such as spending alerts, cooling-off suggestions, or account restrictions
- If you register with the GamStop self-exclusion scheme, we are required to share information to prevent you from accessing our platform during your exclusion period
- Data shared with responsible gambling organisations is processed solely for the purpose of player protection and is handled in accordance with applicable data protection law
11. Your Rights Under UK GDPR
As a UK resident, you have the following rights in relation to your personal data:
- Right of access – you may request a copy of the personal data we hold about you (a Subject Access Request)
- Right to rectification – you may ask us to correct inaccurate or incomplete data
- Right to erasure – in certain circumstances, you may request that we delete your personal data
- Right to restriction – you may ask us to limit how we use your data while a complaint or query is being resolved
- Right to data portability – where processing is based on consent or contract, you may ask us to provide your data in a structured, machine-readable format
- Right to object – you may object to processing based on legitimate interests, including profiling and direct marketing
- Rights related to automated decision-making – you have the right not to be subject to decisions made solely by automated processes where those decisions have a significant effect on you
To exercise any of these rights, please contact us at:
- Email: support@coral-online-casino-uk.com
- Phone: +44 20 3917 3500
- Post: Level 7, Beaumont Business Centres, 16 Berkeley Street, London, W1J 8DZ, United Kingdom
We will respond to your request within one month. In complex cases we may extend this period by a further two months, and we will let you know if this is necessary.
We may need to verify your identity before processing your request. This is to protect your data from being disclosed to an unauthorised person.
12. Right to Complain
If you believe we have not handled your personal data in accordance with the law, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s independent authority for data protection matters:
- Website: ico.org.uk
- Helpline: 0303 123 1113
We do ask that you contact us first so that we have the opportunity to address your concern directly before you escalate to the ICO.
13. Children and Minors
Our services are strictly for individuals aged 18 and over. We do not knowingly collect personal data from anyone under the age of 18. As part of our registration process, all users must confirm their age, and we carry out age verification checks in line with UKGC licence conditions.
If we discover that personal data has been collected from a person under 18, we will delete that data without delay and close the associated account. If you have reason to believe a minor has registered on our platform, please notify us immediately at support@coral-online-casino-uk.com.
14. Security of Your Data
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure. These include:
- Encryption of sensitive data in transit using SSL/TLS protocols
- Secure storage of passwords using industry-standard hashing techniques
- Restricted internal access to personal data on a need-to-know basis
- Regular security assessments and staff data protection training
- Incident response procedures to address any data breaches promptly
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the ICO within 72 hours of becoming aware of the incident, and will contact you directly where the risk is high.
15. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or regulatory requirements. When we make material changes, we will notify you via email or a prominent notice on our website. Continued use of our services following notification of any changes constitutes acceptance of the revised policy.
We encourage you to review this page periodically to stay informed about how we protect your information.
16. Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or the way we handle your personal data, please get in touch:
- Email: support@coral-online-casino-uk.com
- Phone: +44 20 3917 3500
- Address: Level 7, Beaumont Business Centres, 16 Berkeley Street, London, W1J 8DZ, United Kingdom
- Support hours: Monday to Sunday, 10AM to 8PM