Privacy Policy - Coolzino Casino

Coolzino Casino considera la protezione della tua privacy e dei tuoi dati personali una responsabilità fondamentale. Questa Privacy Policy articola in modo esaustivo quali informazioni raccogliamo, le modalità di utilizzo, le circostanze di condivisione, e i diritti che ti spettano in relazione ai tuoi dati.

Questa policy si applica universalmente a tutti gli utilizzatori di coolzino-login.com e servizi connessi. La lettura completa di questo documento ti fornirà una comprensione chiara delle nostre pratiche di data handling e dell'accountability che esercitiamo come data controller.

Ultima revisione: 19 Novembre 2025

Data Controller: Coolzino Casino, incorporated in Curaçao, operating under license 365/JAZ

1. Categorie di Dati Personali Raccolti

Raccogliamo molteplici tipologie di informazioni personali attraverso diverse modalità di interazione con la nostra piattaforma. Segue una tassonomia completa.

1.1 Dati Forniti Volontariamente dall'Utente

Informazioni che tu ci trasmetti consapevolmente durante l'utilizzo dei servizi:

Registration & Account Data

• Nome anagrafico completo (first name, surname)
• Email address valido
• Data di nascita (DOB) per age verification
• Numero telefonico mobile
• Indirizzo residenziale dettagliato (street, city, postal code, country)
• Username e password (password stored hashed)
• Preferred account currency

Documentazione Verifica Identità (KYC)

• Scan/foto documento identità ufficiale (ID card, passport, driver's license)
• Proof of address documentation (utility bill, bank statement)
• Payment card imagery (front/back - CVV redacted)
• Selfie holding ID per liveness verification

Financial Information

• Card details (last 4 digits, expiry - full PAN never stored by us)
• E-wallet account identifiers (PayPal email, Skrill ID, Neteller account)
• Bank account detail per withdrawal (IBAN, bank name, account holder)
• Cryptocurrency wallet address
• Comprehensive transaction ledger (deposit, withdrawal, wager, win)

Communication Records

• Live chat conversation transcripts
• Email correspondence con support team
• Feedback submission e user review
• Survey response data

1.2 Dati Raccolti Automaticamente

Quando interagisci con coolzino-login.com, i nostri sistemi collezionano automaticamente determinate informazioni tecniche:

Technical & Device Intelligence

• IP address (IPv4/IPv6)
• Browser type, version, language setting
• Operating system e version
• Device type classification (desktop, mobile, tablet)
• Screen resolution e viewport dimension
• Timezone offset e system locale
• Internet Service Provider (ISP) identification
• Device fingerprint per fraud detection

Behavioral & Usage Analytics

• Page view sequence e navigation path
• Session duration per page
• Click event tracking (link, button)
• Internal search query utilizzate
• Game played e session length detail
• Betting pattern e wager amount
• Feature adoption e usage frequency
• Error encounter e crash report

Geolocation Data

• Country derivato da IP address
• City/region approximate location
• Precise GPS coordinate (solo se explicit permission granted per regulatory compliance)

1.3 Informazioni da Fonti Esterne

In determinate circostanze, acquisiamo dati su di te da soggetti terzi:

• Identity verification provider: Per document authentication e fraud check
• Credit reference agency: Per AML screening quando legally mandated
• Affiliate partner: Se referral tramite affiliate link
• Social media platform: Profile basic info se social login utilizzato
• Public database: Per sanction list screening e PEP (Politically Exposed Person) check

2. Finalità del Trattamento e Basi Legali

Utilizziamo i tuoi dati per scopi precisi e legittimi, ciascuno supportato da una base legale conforme al GDPR (consenso, necessità contrattuale, obbligo legale, o legittimo interesse).

2.1 Service Provision & Account Management

Legal basis: Contract performance

• Player account creation e maintenance
• Deposit/withdrawal transaction processing
• Gaming content e sports betting access provision
• Bonus, promotion, loyalty program administration
• Customer support delivery e issue resolution
• Self-exclusion o account closure request handling

2.2 Identity Verification & Fraud Prevention

Legal basis: Legal obligation + legitimate interest

• Age verification (18+ compliance)
• Identity authentication via official documentation
• Anti-money laundering (AML) e counter-terrorism financing (CTF) compliance
• Duplicate/multi-account detection
• Suspicious activity pattern identification
• Unauthorized access e hacking attempt mitigation

2.3 Legal & Regulatory Compliance

Legal basis: Legal obligation

• KYC (Know Your Customer) e AML obligation fulfillment
• Legal request da competent authority response
• Gaming license record-keeping requirement adherence
• Suspicious transaction reporting a financial intelligence unit
• Responsible gambling limit enforcement

2.4 Marketing Communication

Legal basis: Consent (revocable anytime)

• Newsletter con promotional content e new game announcement
• VIP-tier personalized bonus notification
• Targeted offer via email, SMS, push notification
• Tournament e special event communication
• Satisfaction survey distribution

Opt-out: Click "Unsubscribe" in email footer o modify preference in account setting.

2.5 Experience Optimization & Personalization

Legal basis: Legitimate interest

• User interaction analysis per usability improvement
• Content e game recommendation personalization
• A/B testing per new feature validation
• Site performance e load time optimization
• Preference persistence (language, currency, layout)

2.6 Responsible Gambling & Player Protection

Legal basis: Legitimate interest + legal obligation

• Gambling behavior pattern monitoring per problem gambling detection
• Deposit, loss, session limit enforcement
• Proactive intervention quando compulsive gambling sign rilevato
• Responsible gambling resource e support provision
• Self-exclusion request management

3. Condivisione Dati con Terze Parti

Non commercializziamo mai i tuoi dati. Tuttavia, dobbiamo condividere informazioni specifiche con partner fidati per operational necessity e legal compliance.

3.1 Essential Service Provider

Condivisione con entità fornenti servizi critici:

• Payment processor: Per deposit/withdrawal handling (Stripe, PayPal, crypto gateway)
• Game provider: Per slot, live casino, other gaming content delivery (Pragmatic, Evolution, etc.)
• Sportsbook odds provider: Per betting market e live odds feed
• Hosting/cloud service: Per data storage e platform uptime (AWS, Curaçao datacenter)
• Email service provider: Per transactional e marketing communication dispatch
• Customer support platform: Per live chat e ticketing system operation

3.2 Verification & Security Provider

• KYC service: Per identity e document verification (Jumio, Onfido)
• AML screening: Per sanction list e PEP database checking
• Anti-fraud system: Per suspicious transaction e activity detection
• Cybersecurity service: Per vulnerability assessment e attack mitigation

3.3 Marketing Partner (Consent-Based Only)

• Advertising platform: Google Ads, Facebook Ads per campaign delivery
• Affiliate partner: Referral source (ricevono solo referral confirmation, non sensitive data)
• Analytics tool: Google Analytics, Hotjar per user behavior insight

3.4 Legal Authority & Regulator

Disclosure obligation verso:

• Curaçao gaming license authority
• Law enforcement quando legally compelled
• Tax authority per reporting obligation
• Financial intelligence unit per suspicious transaction report
• Court in response a judicial order

3.5 Business Transfer Scenario

In merger, acquisition, asset sale o bankruptcy event, i tuoi dati potrebbero transfer alla successor entity. Notifica verrà fornita su tale eventualità con opzione dettagliate.

3.6 Data Transfer Safeguard

Tutti i partner riceventi dati sono contrattualmente vincolati a:

• Implement adequate technical/organizational security measure
• Process data esclusivamente per specified purpose
• Prohibit onward sharing senza authorization
• Comply con applicable data protection law
• Delete data quando no longer necessary

4. Trasferimenti Dati Internazionali

I tuoi dati possono essere trasferiti e archiviati in jurisdizioni differenti dal tuo paese di residenza, inclusi paesi extra-Spazio Economico Europeo (SEE).

4.1 Storage Location

• Primary server: Curaçao (legal license domicile)
• Backup infrastructure: Global cloud (AWS - potentially USA, Europe)
• Third-party provider: May be globally distributed

4.2 Extra-EEA Transfer Protection

Per trasferimenti fuori SEE, garantiamo adequate safeguard tramite:

• Standard Contractual Clause (SCC): EU Commission-approved contract template
• Adequacy decision: Transfer verso country riconosciuto safe da UE
• Privacy Shield (where applicable): Per USA transfer
• Binding Corporate Rule: Per intra-corporate transfer di large vendor

4.3 Your Consent to Transfer

Utilizzando i nostri servizi, fornisci explicit consent al data transfer come descritto. Implementiamo rigorous security measure indipendentemente da data location.

5. Misure di Sicurezza dei Dati

La data security costituisce priorità assoluta. Implementiamo state-of-the-art technical/organizational measure per proteggere le tue informazioni.

5.1 Technical Safeguard

• SSL/TLS 256-bit encryption: All data transmission encrypted
• Database encryption: Data-at-rest protected con AES-256
• Password hashing: Bcrypt algorithm, never plaintext storage
• Advanced firewall: Perimeter defense contro intrusion
• Intrusion detection system: 24/7 monitoring per suspicious activity
• Regular backup: Encrypted backup ogni 6h con geo-distributed storage
• Penetration testing: Quarterly security assessment da third-party firm

5.2 Organizational Control

• Limited access: Only authorized personnel, need-to-know basis
• Staff training: Regular security/privacy training per all employee
• Non-disclosure agreement: Rigorous NDA signed by all staff
• Internal audit: Periodic review di data handling practice
• Incident response plan: Documented procedure per security breach
• Data Protection Officer: Dedicated privacy oversight role

5.3 User Responsibility

Anche tu contribuisci alla security:

• Keep password secure e confidential
• Never share login credential
• Use unique, complex password
• Enable two-factor authentication (2FA)
• Beware phishing email imitating Coolzino
• Logout dopo utilizzo su shared device
• Report immediately any suspicious account activity

5.4 Data Breach Protocol

Nonostante security measure, nessun sistema è 100% impenetrable. Se breach compromettente i tuoi dati personali occurs:

• Notification entro 72h dalla discovery
• Detail disclosure di compromised data category
• Action recommendation (password change, etc.)
• Authority notification as legally required
• Immediate corrective measure implementation

6. Periodo di Conservazione Dati

Conserviamo i tuoi dati solo per il tempo necessario agli scopi di raccolta, o as legally mandated.

6.1 Active Account

Durante account activity, conserviamo:

• Registration e profile data
• Verification documentation
• Complete transaction history
• Gaming/betting ledger
• Support communication record

6.2 Inactive Account

Se account rimane inactive (no login) per:

• 12 mesi: Email reminder per reactivation
• 24 mesi: Account flagged as dormant
• 36 mesi: Non-essential data deletion may proceed

Essential data per legal obligation conservato più lungo as delineato sotto.

6.3 Closed Account

Post voluntary closure o self-exclusion:

• Essential data: Retained 5 year (AML/KYC legal requirement)
• Transaction history: 5 year per financial compliance
• Verification document: 5 year per regulatory audit
• Marketing data: Immediate deletion (opt-out list maintained)
• Support communication: 2 year per dispute record

6.4 Legal Retention Obligation

Siamo legally mandated conservare specific data per defined period:

6.5 Secure Deletion

Quando dati no longer necessary, secure deletion include:

• Multiple overwrite su storage media
• Certified physical backup destruction
• Removal da all system e backup
• Third-party processor notification per deletion

7. Tuoi Diritti GDPR

Sotto GDPR e altre privacy law, possiedi significant right riguardo ai tuoi dati personali. Facilitiamo l'esercizio di questi diritti.

7.1 Right of Access

Diritto di ottenere:

• Confirmation di data processing
• Access ai tuoi personal data stored
• Info su usage purpose
• Data copy in readable format

Exercise: Account → "Privacy" → "Download My Data" oppure email [email protected]

7.2 Right to Rectification

Diritto di correggere inaccurate/incomplete data.

Exercise: Most info editable in account setting. Per sensitive data modification post-verification, contact support con proof.

7.3 Right to Erasure ("Right to be Forgotten")

Richiesta deletion in specific circumstance:

• Data no longer necessary per original purpose
• Consent withdrawal quando consent-based processing
• Data unlawfully processed
• Valid objection exercise

Limitation: Cannot delete quando legal retention obligation exist (AML, gaming license - typically 5 year).

Exercise: Email [email protected] con subject "GDPR Erasure Request"

7.4 Right to Restriction of Processing

Richiesta processing limitation quando:

• Data accuracy contested (durante verification)
• Processing unlawful ma no deletion desired
• Data needed per legal claim
• Objection exercised (pending verification)

Exercise: Contact [email protected] specificando data e reason

7.5 Right to Data Portability

Diritto receive data in structured, machine-readable format e transfer a altro controller.

Coverage: Data provided da te e generated da interaction (account info, transaction history, preference)

Format: CSV o JSON file

Exercise: Request via [email protected] o "Export My Data" in account privacy panel

7.6 Right to Object

Object to processing per:

• Direct marketing: Always, unconditionally. Use "Unsubscribe" o account preference
• Marketing profiling: Request no personalized offer targeting
• Legitimate interest: Object quando legitimate interest-based (must demonstrate override)

Exercise: Per marketing, use unsubscribe link. Per other processing, contact [email protected]

7.7 Right Against Automated Decision-Making

Diritto non essere subject a decision basata esclusivamente su automated processing producing significant effect.

Dove usiamo: Fraud detection, bonus calculation, AML risk assessment

Exercise: Request human review di any automated decision concerning you

7.8 Exercise Procedure

Per exercise any right:

1. Email: [email protected]
2. Include: Full name, username, registered email
3. Specify clearly quale right exercising
4. Identity verification may be required (protect contro unauthorized access)
5. Response entro 30 day (extendable a 60 day per complex request)

7.9 Right to Lodge Complaint

Se ritieni privacy law violation, diritto present complaint all'autorità data protection del tuo paese. Per Italia:

Garante per la Protezione dei Dati Personali
Piazza Venezia, 11 - 00187 Roma
Tel: +39 06 696771
Email: [email protected]
Web: www.garanteprivacy.it

8. Protezione Minori

I nostri servizi sono strictly prohibited a minor under 18 (o legal gambling age nella tua jurisdiction se higher).

8.1 Protection Measure

• Mandatory age verification durante registration
• Identity verification tramite official document pre-withdrawal
• Age estimation technology in verification photo
• Content filtering blocking access da parental control-enabled device
• Collaboration con child protection organization

8.2 Minor Discovery Protocol

Se minor account discovered:

• Immediate account closure
• Fund freeze
• Parent/legal guardian contact
• Deposit return (winning confiscated)
• Minor personal data deletion
• License authority reporting

8.3 Reporting

Se suspect minor usage, report immediately: [email protected]

9. Policy Amendment

Questa policy può subire periodic update per reflect practice change, technology evolution, legal requirement o operational reason.

9.1 Notification Method

• "Last updated" date always refreshed
• Minor change: Site notification
• Significant change: Email a all registered user + prominent site banner
• Previous version archive available on request

9.2 Continued Consent

Continued service usage post-modification publication implicitly accept new policy. Se non-acceptance, può close account contattando support.

9.3 Material Change

Per change significantly impacting right (new data usage, new sharing category), richiederemo explicit consent prima applying change a existing data.

10. Contatto Privacy

Per query, concern, o request riguardante questa policy o privacy practice:

Data Protection Officer

Other Contact

• General support: [email protected]
• Live chat: 24/7 on-site (per quick query)
• Compliance team: [email protected] (per legal/regulatory matter)

Request Content

Per faster/effective response, include:

• Full name e username
• Registered email address
• Clear request/concern description
• Relevant documentation (se applicable)
• Identity proof (per access/deletion request)

11. Glossario Termini

Definizioni key term utilizzati in questa policy:

• Personal data: Any info relating a identified/identifiable natural person
• Processing: Any operation performed su data (collection, storage, use, disclosure, deletion, etc.)
• Data controller: Coolzino Casino, determining processing purpose e means
• Data processor: Third party processing data on controller behalf (service provider)
• Data subject: You, la person a cui data pertain
• Consent: Free, specific, informed, unambiguous will manifestation
• GDPR: General Data Protection Regulation (EU 2016/679)
• KYC: Know Your Customer - customer identity verification process
• AML: Anti-Money Laundering - money laundering prevention norm
• EEA: European Economic Area (EU + Iceland, Liechtenstein, Norway)

Conclusion

La tua privacy è foundational per noi. Commitment trattare personal data con maximum respect, transparency, security. Questa policy riflette l'impegno giving you complete data control.

Se question o concern post-policy reading, don't hesitate contact us. Siamo here helping e garantendo ti senta secure quando using Coolzino Casino.

Grazie per la fiducia.