This policy explains, in operational language and without beating around the bush, how slots.casinodinero.es collects, uses, shares and protects the personal data of people who visit or use our website. The objective is twofold: to comply with current regulations and to let you know exactly what happens with your data at each stage of the life cycle (collection → use → storage → deletion). If something doesn’t add up, you can exercise your rights or write to us: below you’ll find the procedure, deadlines and channels.
By accessing or using the site, you confirm that you have read and understood this policy. If you do not agree, you must refrain from using the service. Yes, it sounds serious, because it is: this is about your personal information.
Scope, controller and regulatory framework
This policy applies to all areas of the slots.casinodinero.es website that collect or process personal data, including forms, authenticated areas, comment modules and integrated analytics/marketing tools. It does not cover third-party sites linked from our domain; when you leave our environment, their own rules apply.
We process data in accordance with applicable international regulations, including GDPR (EU), UK GDPR/DPA 2018 (United Kingdom), CCPA (California), LGPD (Brazil), PIPEDA (Canada), Privacy Act 1988 (Australia) and Privacy Act 2020 (New Zealand). The specific legal basis and associated rights may vary depending on your jurisdiction; in any case we apply the highest standard compatible with our operations.
2) Processing principles (how we make decisions about your data)
We operate under widely accepted principles: lawfulness, fairness and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality; and accountability. In other words: we collect what’s necessary, for specific purposes, for the essential time period and with adequate security measures.
Practical transparency means that each data category has a clear purpose, an identifiable legal basis and a documented retention period. And yes, if we detect inaccurate data, we correct or delete it diligently.
3) What data we collect
The categories of data we may process are grouped as follows. This doesn’t mean we collect everything, all the time; it depends on how you use the site:
- Contact data: email address.
- Profile data: alias/username, encrypted credentials, login/logout time.
- Preferences and communications: marketing choices, subscriptions, email or notification interactions, submitted content (comments, opinions, complaints).
- Technical data: IP, online identifiers, browser type/version, time zone, plugins, ISP, operating system, device and request headers.
- Usage data: URL paths, interaction with pages and elements, performance metrics.
- Aggregated/statistical data: metrics that don’t identify a person, unless combined with personal data (in which case the same guarantees apply).
We do not request or process special categories (ethnic origin, beliefs, health, biometrics, etc.). If you voluntarily publish such data in open spaces, we will apply moderation measures, but we recommend you don’t do so.
4) Why we use your data (purposes) and legal bases
Each use is supported by a valid legal basis. As an operational map:
- Registration and account management (contract execution/legitimate interest): create and maintain your access, apply changes to Terms/Policy, resolve incidents, prevent abuse.
- Site operation and security (legitimate interest/legal obligation): monitoring, troubleshooting, hosting, event logging, backups, incident defense.
- Analysis and improvement (legitimate interest): usage metrics, performance, A/B testing, content and experience optimization.
- Direct marketing (consent/legitimate interest, depending on jurisdiction): newsletters, communications about content and services, with opt-out available at any time.
- Targeted advertising (consent when required): use of cookies/identifiers to show relevant content/ads and measure their effectiveness.
- Regulatory compliance (legal obligation): response to valid authority requirements and management of rights requests.
When the legal basis is consent, you can withdraw it without affecting prior lawfulness. Where we use legitimate interest, we perform a balancing test to balance our interest with your expectations and rights.
5) Data sources and automation
Data comes through three channels: (i) provided by you (e.g., contact email), (ii) generated by your use of the site (technical/usage data) and (iii) obtained from integrated third-party tools (analytics, advertising, messaging).
Some integrations perform automated processing, including profiling to infer preferences or measure affinities. We avoid exclusively automated decisions with legal or similar effects without additional safeguards. If a platform (e.g., a social network) associates your ID with more information, that is governed by their terms; we don’t control their external processing.
6) Cookies and similar technologies
We use cookies/SDK/pixels for technical, statistical and—with your permission when necessary—advertising functions. You control their use: consent banner, browser settings and specific opt-outs.
- Essential: security, login, load balancing.
- Functional: language preferences, session reminders.
- Analytics: site usage, performance, errors.
- Advertising: campaign measurement, targeting (only with consent where applicable).
7) Disclosure to third parties and categories of recipients
We do not sell your personal data. We share information with data processors (vendors) under contracts that require adequate technical and organizational measures, and only according to our instructions.
We may also share data with independent third parties when required by law, to protect rights/security, or in corporate transactions (merger/acquisition). If there’s a change in ownership, we’ll notify you prominently along with your options.
8) International transfers
Some providers operate outside your country. When we transfer data to third countries, we apply appropriate safeguards (e.g., EU Standard Contractual Clauses) and impact assessments where applicable. Yes, security travels with your data.
We maintain records of transfers and periodically review the adequacy of recipients. If the legal framework changes, we’ll update our measures and this policy.
9) Retention periods
We keep data for the minimum time necessary for the stated purposes or to comply with legal obligations (taxation, auditing, claims defense). After that period, we delete or anonymize it.
If you request deactivation and deletion, we’ll disable your account and delete or anonymize the information except for legal holds. Backups are purged according to their cycle; no, they don’t remain “forever”.
10) Security: technical and organizational controls
We apply defense in depth including updated antivirus, next-generation firewalls, centralized logging, security event monitoring (SIEM), encryption of sensitive data in transit and at rest, key management in segregated environments, scheduled backups and multi-factor authentication for privileged access.
Provider remote access is through SSL-VPN with least privilege controls. We audit relevant accesses and transactions. Incidents are managed under a response plan with escalation, containment and notification to authorities and users when law requires. We don’t promise the impossible; we promise preparedness and traceability.
11) Minors
The site content is for those 18 years or older (or minimum equivalent age in your jurisdiction). We don’t direct marketing to minors nor knowingly process minors’ data. If we detect information from a minor, we delete it as quickly as possible.
If you believe a minor has provided us data, notify us immediately at our contacts below. We’ll act without undue delay.
12) Your rights (and how to exercise them painlessly)
Depending on your jurisdiction, you may have rights of access, rectification, deletion, objection, restriction, portability and not to be subject to solely automated decisions. In direct marketing, the right to object or withdraw consent is absolute.
Standard Operating Procedure (SOP):
- Send your request from the email associated with your account, describing the right you’re exercising and scope (e.g., “all my data” or “last 12 months”).
- We may request reasonable identity verification (without excess). We don’t store verification documents beyond what’s essential.
- Timeframes: we respond within the applicable legal deadline (usually 30 calendar days). If the request is complex, we may extend the deadline and will notify you.
13) Marketing preferences and profiling control
You can unsubscribe from promotional communications via the link in each email or by written request. Marketing opt-out doesn’t affect service communications (e.g., Terms change notices).
Where advertising profiling requires consent, we won’t activate it without your affirmative choice. You can change your preferences anytime (cookie banner or account settings, when available).
14) User obligations
You commit to: (i) provide truthful and updated data, (ii) safeguard your credentials and not share access, (iii) refrain from using automated data extraction methods (scraping) and (iv) respect the Terms of Use. Serious breach may result in permanent account blocking.
If you detect unauthorized use of your account or a security breach, notify us immediately. The sooner, the better the containment.
15) Changes to this policy
We may update this policy to reflect regulatory, technical or operational changes. We’ll publish the revised version on this same page indicating the effective date. If the change is substantial, we’ll communicate through appropriate channels.
If you don’t accept the updated version, you may request deletion of your account and data, except for retention obligations.
16) Contact and complaints
For questions, rights exercise or incident reporting, write to: support@slots.casinodinero.es, info@slots.casinodinero.es or contact@slots.casinodinero.es. Include in subject: “Privacy – [reason]”.
If you believe we haven’t properly handled your request, you can contact your local supervisory authority (for example, in Spain, the AEPD). We prefer to resolve it with you first, but the right to complain is yours.
17) Essential glossary (to avoid ambiguities)
Personal data: any information about an identified or identifiable person. Processing: operation performed on data (collection, use, communication, storage, etc.). Data processor: provider that processes data on behalf of the controller. Profiling: automated analysis to evaluate preferences or behaviors.
International transfer: sending data outside your country or to international organizations. Legal basis: foundation that enables processing (consent, contract, legal obligation, legitimate interest, etc.).
18) Executive summary (if you’re in a hurry)
We collect what’s necessary to operate and improve the site; we use providers under contract; we apply robust security; we respect your rights; we don’t sell your data; and we don’t process special categories. You can control cookies, marketing and request access/deletion. No smoke: if you have questions, write to us.Last updated: October 2025. When this date changes, you’ll see it here and in our key communications. Yes, we’ll make it easy.