Data & privacy
Verde Casino Privacy Policy
The headline points
What we collect
Account details, payment info, device data, gameplay logs and identity verification documents.
How it is used
To run the platform, process payments, prevent fraud, meet licence rules and handle responsible gambling.
How it is protected
Encrypted at rest, encrypted in transit, segregated payment infrastructure, regular penetration testing.
Who it is shared with
Licensed payment partners, the regulator, fraud prevention networks and a small set of analytics vendors.
How long it is kept
Account data for the legal retention period, marketing data only while consent is active.
Your rights
Access, correction, deletion, restriction, portability and objection, exercised through support@verdecasino.live.
The data controller for Verde Casino is Wiraon B.V., registered at Korporaalweg 10, Willemstad, Curaçao, registration number 146886, licensed by the Curaçao Gaming Control Board under licence OGL/2024/686/0183. Payments are processed by Briantie Limited, registered at Perikleous, 32, Flat/Office 6, Strovolos, 2020, Nicosia, Cyprus, registration number HE 385770, acting as an authorised agent on behalf of Wiraon B.V. The two companies share the data needed to process payments and prevent fraud and nothing else.
The personal data we collect is split into four categories. Account data covers the details you give us when you register, including name, date of birth, address, phone number and email. Payment data covers the information needed to process deposits and withdrawals, including card details, e-wallet addresses, crypto wallet addresses and bank account details. Identity data covers the documents you supply during verification, including passport or driver licence scans, proof of address and source of funds documents where required. Behavioural data covers device fingerprints, IP addresses, gameplay logs, session length and bet history.
Why we collect each category
Account data is collected to set up and maintain the account itself, to send you the operational emails attached to a live account, and to verify that you are at least eighteen years of age. Payment data is collected to process deposits and withdrawals and to comply with the anti money laundering rules that the Curaçao licence imposes. Identity data is collected to meet the same anti money laundering rules and to confirm that the account holder is the person actually playing. Behavioural data is collected to run the platform itself, to detect fraud, to power the loyalty programme and to comply with the responsible gambling rules that require us to monitor for warning signs of problem play.
Who we share data with
We share data with a small set of carefully selected partners. Payment processors and banking partners receive the payment data needed to process the relevant transaction. Identity verification providers receive identity documents to confirm the documents are genuine. Fraud prevention networks receive device and behavioural data to compare against known fraud patterns across the wider industry. The Curaçao Gaming Control Board receives any data the licence requires us to report, which is a small subset focused on responsible gambling and anti money laundering. A small set of analytics vendors receive anonymised behavioural data to help us improve the platform. We do not sell personal data to anyone.
How long data is kept
Account, payment and identity data is kept for the legal retention period attached to gambling and anti money laundering law, which is five years from the closure of the account in most cases and longer where a specific regulator order requires it. Behavioural data is kept on the live platform for the duration of the account and archived for a further two years after closure. Marketing consent data is kept only while the consent is active, and is deleted within thirty days of withdrawal of consent.
Your rights under the GDPR
You have the right to access the data we hold on you, to ask us to correct any inaccuracies, to ask us to delete data that we no longer have a legal basis to keep, to restrict our processing of that data, to receive a portable copy of the data and to object to processing that is based on legitimate interest. The fastest way to exercise any of these rights is to email support@verdecasino.live with the request. We will respond within thirty days, which is the GDPR deadline, and the response is free of charge unless the request is manifestly unfounded or excessive.
What data does Verde Casino collect?
Verde Casino collects four categories of personal data. Account data covers name, date of birth, address, phone and email, collected at registration. Payment data covers card details, e-wallet addresses, crypto wallet addresses and bank account details, collected during deposits and withdrawals. Identity data covers verification documents like passport or driver licence scans, proof of address and source of funds where required. Behavioural data covers device fingerprints, IP addresses, gameplay logs and session length, collected automatically as you use the platform.
Does Verde Casino sell my data?
No. Verde Casino does not sell personal data to anyone. We share data with a small set of partners we need to run the platform, including payment processors, identity verification providers, fraud prevention networks and a small set of analytics vendors who receive anonymised behavioural data. The Curaçao regulator receives the small subset of data the licence requires us to report. Every share is governed by a written agreement that restricts the partner to using the data for the stated purpose only.
How long does Verde Casino keep my data?
Account, payment and identity data is kept for the legal retention period attached to gambling and anti money laundering law, which is five years from the closure of the account in most cases and longer where a specific regulator order requires it. Behavioural data is kept on the live platform for the duration of the account and archived for a further two years after closure. Marketing consent data is kept only while the consent is active and is deleted within thirty days of withdrawal of consent.
How do I exercise my GDPR rights at Verde Casino?
Email support@verdecasino.live with the request. State which right you are exercising, access, correction, deletion, restriction, portability or objection, and include enough detail for us to identify the account. We will respond within thirty days, which is the deadline set by the GDPR, and the response is free of charge unless the request is manifestly unfounded or excessive. The right to deletion is qualified by the legal retention periods above, so a deletion request on a closed account may be deferred until the retention period has passed.