VivaSpin Casino logo
Register
Players Online
2,847
Live Jackpot
€2,478,340
🔥 Trending
Gates of Olympus slot HOT
Book of Dead slot 100 FS
Sweet Bonanza slot x25k
Crazy Time slot LIVE

Privacy Policy

Last updated: January 2026

Data We Collect

VivaSpin Casino collects personal details required for account verification under MGA regulations: name, date of birth, email, phone number (optional), Irish address, and ID documents for KYC. Payment data is tokenised by our processors (Revolut, PayPal, Stripe) — we never store raw card numbers.

How We Use It

Your data powers account authentication, deposit and withdrawal processing, KYC compliance, AML checks, responsible gaming monitoring, and relevant service communications. We don't sell data to third parties. Marketing emails are opt-in only and unsubscribable in one click from any email.

Cookies & Tracking

Essential cookies power session management, login state, and fraud prevention. Analytics cookies (Google Analytics, internal telemetry) track aggregate user behaviour — all anonymised. You can opt out of non-essential cookies from the banner on first visit or from your account settings.

Your Rights Under GDPR

As an Irish player, you have the right to access, correct, export, and delete your personal data. Access and export requests process within 30 days — request from your account dashboard or by emailing [email protected]. Account deletion is permanent: all personal data wiped, responsible-gaming records retained for 7 years as legally required.

Data Retention

Active account data is retained as long as the account is open. Closed account data retains for 7 years after closure as required by MGA and Irish anti-money-laundering law. Responsible-gaming self-exclusion records retain indefinitely to enforce the exclusion.

Security

All data encrypted in transit (TLS 1.3) and at rest (AES-256). Passwords hashed with bcrypt (cost factor 14). Database access is logged and audited monthly. In the event of a data breach affecting Irish users, VivaSpin Casino will notify affected parties within 72 hours and report to the Data Protection Commission as required by GDPR.

Contact

Privacy questions: [email protected]. Data Protection Officer contact available on request. You may also lodge complaints with Ireland's Data Protection Commission at dataprotection.ie.