Privacy Policy

Last Updated: 22 September 2025

Introduction

Drop The Boss is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, process, and safeguard your personal information when you use our website and gaming services.

This policy applies to all users of our website and services, regardless of how you access or use them. By using our website, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your personal information as described herein.

Data Controller Information
Address: 42 Berkeley Square, Mayfair, London W1J 5AW, United Kingdom
Email[email protected]

Information We Collect

Personal Information You Provide

Account Information

  • Full name and date of birth for age verification
  • Email address for account communication
  • Username and password for account access
  • Payment information for transactions (processed securely through third parties)
  • Identity verification documents when required by law

Gaming and Transaction Data

  • Gaming activity and session information
  • Betting history and transaction records
  • Game preferences and settings
  • Deposit and withdrawal records
  • Bonus and promotional activity

Communication Data

  • Customer support interactions and correspondence
  • Feedback, complaints, and survey responses
  • Marketing communication preferences
  • Social media interactions with our brand

Information We Collect Automatically

Technical Information

  • IP address and geographical location data
  • Device type, operating system, and browser information
  • Website usage data and navigation patterns
  • Session duration and frequency of visits
  • Referral sources and exit pages

Gaming Analytics

  • Game performance and interaction data
  • Feature usage and player behavior patterns
  • Error logs and technical diagnostics
  • Load times and system performance metrics

Cookies and Tracking Technologies

  • Cookie identifiers and preferences
  • Web beacons and pixel tags
  • Local storage data
  • Analytics and advertising identifiers

How We Use Your Information

Primary Purposes

Account Management and Service Provision

  • Creating and maintaining your user account
  • Processing gaming transactions and managing your balance
  • Providing customer support and technical assistance
  • Ensuring account security and preventing unauthorized access

Legal and Regulatory Compliance

  • Age verification and responsible gaming measures
  • Anti-money laundering (AML) and fraud prevention
  • Compliance with UK gambling regulations
  • Tax reporting and record-keeping requirements
  • Identity verification as required by law

Gaming Experience Enhancement

  • Personalizing your gaming experience
  • Providing game recommendations and content
  • Managing bonuses, promotions, and rewards
  • Improving game functionality and performance

Secondary Purposes

Marketing and Communication

  • Sending promotional offers and gaming updates
  • Providing information about new features and games
  • Conducting customer satisfaction surveys
  • Delivering targeted advertising (with your consent)

Analytics and Improvement

  • Analyzing website and game performance
  • Conducting market research and trend analysis
  • Developing new features and services
  • Optimizing user experience and interface design

Legal Basis for Processing

Under UK data protection law, we process your personal information based on the following legal grounds:

Contract Performance

  • Processing necessary to provide our gaming services
  • Managing your account and processing transactions
  • Delivering customer support and technical assistance

Legal Obligations

  • Age verification and identity checks
  • Anti-money laundering and fraud prevention
  • Regulatory compliance and reporting
  • Tax obligations and record-keeping

Legitimate Interests

  • Website analytics and performance optimization
  • Fraud prevention and security measures
  • Business development and service improvement
  • Direct marketing (where we have not obtained consent)

Consent

  • Marketing communications (where required)
  • Optional cookies and tracking technologies
  • Sharing information with third parties for marketing purposes

Information Sharing and Disclosure

Third-Party Service Providers

We share your information with carefully selected service providers who assist us in operating our business:

Payment Processors

  • Processing deposits, withdrawals, and refunds
  • Fraud detection and prevention services
  • Currency conversion and international transfers

Technical Service Providers

  • Website hosting and maintenance
  • Data analytics and performance monitoring
  • Customer support tools and platforms
  • Security services and threat detection

Marketing and Analytics Partners

  • Email marketing service providers
  • Social media advertising platforms
  • Website analytics tools
  • Customer research and survey platforms

Regulatory and Legal Disclosures

We may disclose your personal information when required by law or to protect our legitimate interests:

  • Compliance with legal obligations and court orders
  • Regulatory investigations and licensing requirements
  • Fraud prevention and criminal investigations
  • Protection of rights, property, and safety

Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the new entity, subject to the same privacy protections outlined in this policy.

Data Retention

We retain your personal information for different periods depending on the purpose and legal requirements:

  • Account Information: Retained for the duration of your account plus 7 years after closure
  • Transaction Records: Retained for 7 years to meet financial and tax obligations
  • Gaming Data: Retained for 3 years for regulatory compliance and dispute resolution
  • Marketing Data: Retained until you withdraw consent or 2 years of inactivity
  • Technical Data: Retained for up to 2 years for security and analytical purposes

International Data Transfers

Some of our service providers are located outside the United Kingdom. When we transfer your personal information internationally, we ensure appropriate safeguards are in place:

  • Adequacy decisions by the UK government
  • Standard contractual clauses approved by UK authorities
  • Certification schemes and codes of conduct
  • Binding corporate rules where applicable

Your Rights Under UK Law

You have the following rights regarding your personal information:

Right of Access Request copies of your personal information we hold

Right to Rectification Correct any inaccurate or incomplete personal information

Right to Erasure Request deletion of your personal information (subject to legal obligations)

Right to Restrict Processing Limit how we use your personal information

Right to Data Portability Receive your personal information in a structured, machine-readable format

Right to Object  to processing based on legitimate interests or direct marketing

Rights Related to Automated Decision-Making Request human intervention in automated decisions that significantly affect you

To exercise these rights, contact us using the details provided in this policy. We will respond within one month of receiving your request.

Data Security

We implement appropriate technical and organizational measures to protect your personal information:

Technical Measures

  • Encryption of data in transit and at rest
  • Secure server infrastructure and firewalls
  • Regular security testing and vulnerability assessments
  • Access controls and authentication systems

Organizational Measures

  • Staff training on data protection principles
  • Regular review of privacy policies and procedures
  • Incident response and breach notification procedures
  • Third-party security certifications and audits

Automated Decision-Making and Profiling

We may use automated decision-making for:

  • Fraud detection and risk assessment
  • Responsible gaming interventions
  • Personalized marketing and content delivery
  • Account security and access management

You have the right to request human intervention in these decisions and to challenge any automated decisions that significantly affect you.

Children’s Privacy

Our services are intended for adults aged 18 and over. We do not knowingly collect personal information from individuals under 18. If you believe we have inadvertently collected information from someone under 18, please contact us immediately so we can delete the information.

Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or business operations. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Sending email notifications (where we have your email address)
  • Displaying prominent notices on our website
  • Updating the “Last Updated” date at the top of this policy

Contact Information and Complaints

If you have questions, concerns, or complaints about this Privacy Policy or our data handling practices, please contact us:

Email[email protected]
Address: 42 Berkeley Square, Mayfair, London W1J 5AW, United Kingdom

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s data protection supervisory authority:

ICO Websitewww.ico.org.uk
ICO Helpline: 0303 123 1113
ICO Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF