Privacy Policy Greece

This Privacy Policy Greece explains how we process personal data when you visit and interact with our online gambling website focused on Greece. We follow the General Data Protection Regulation and other applicable EU and Greek privacy rules. This policy describes what data we collect, why we process it, how we protect it, and what rights you have. It applies to your activity on bonanzademo.gr.

Data Controller and Contact

The Data Controller is the entity that determines how and why your personal data is processed for this website. If you have questions, or you want to submit a privacy request, contact our privacy team at [email protected]. To protect your account and your data, we ask for identity verification before we complete certain requests. We only request information that fits the request and the security risk involved.

Who This Policy Applies To

This policy applies to users in Greece, including visitors who browse the site, registered users who create an account, and customers who interact with casino style features and support services. Our services are intended for adults. We do not knowingly collect personal data from minors. If you believe a minor provided personal data, contact the privacy team so we can review and take appropriate steps.

What Personal Data We Collect

We collect personal data needed to operate an online gambling service for Greece in a secure and compliant way. This includes account and identity data such as name, date of birth, contact details, and account credentials. It also includes verification and compliance data, such as documents or checks used to confirm identity and eligibility, along with settings related to responsible gaming, limits, and self-protection options where available.

We also collect transaction records related to your activity on the platform, such as payment method details in tokenized or masked form where supported, account balance movements, and audit logs tied to compliance. We collect device and usage data such as IP address, device identifiers, browser type, timestamps, pages viewed, and in-site actions. We collect cookie data and similar identifiers, depending on your consent choices. If you contact us, we collect customer support communications, including messages, attachments you send, and the history of resolutions.

Why We Use Personal Data

We process personal data to create and manage accounts, deliver services you request, and maintain your profile and preferences. We process data to confirm eligibility, verify identity, and complete compliance checks required for Greece and the EU. We process data to respond to customer support requests and to communicate service related information.

We process data to keep the website secure, prevent fraud, detect abuse, and protect accounts. We process data to meet legal and regulatory obligations, including responsible gaming protections and risk controls. We process data to improve performance, troubleshoot issues, and develop features based on aggregated usage insights. We process marketing data where permitted by law and based on your settings and consent choices.

Legal Bases Under GDPR

We rely on several legal bases under GDPR, depending on the purpose. We process data for a contract when you create an account and request services, since we need data to provide those services and manage your relationship with the site. We process data under tells by law when regulations require identity checks, compliance records, reporting, or responsible gaming protections.

We process data based on legitimate interests when we secure the platform, prevent fraud, maintain service quality, and improve reliability, while balancing those interests against your rights. We process data based on consent when you choose non-essential cookies or when consent is required for certain marketing activities. In rare cases, we process data to protect vital interests, for example when there is an urgent safety risk and processing supports protection of a person.

Cookies and Similar Technologies

Cookies help the site function and help us understand how the service performs for users in Greece and the EU. Essential cookies support core features such as login, security, session management, and fraud prevention. Non-essential cookies support analytics and other features that are not required to provide the service.

Non-essential cookies require your consent. You can change your choices at any time through cookie settings. When you withdraw consent, we stop processing data collected through those non-essential cookies going forward, subject to technical limits and legal requirements.

Sharing Personal Data

We share personal data with service providers that act as processors on our behalf. These providers support hosting and infrastructure, analytics, customer support tools, identity and verification services, and security monitoring. Where relevant, we share data with payment providers involved in processing transactions and preventing fraud. We also share data with professional advisers such as legal, audit, and compliance advisers when needed.

We may share personal data within group companies where this structure applies, for example to centralize security, compliance, or support operations. We share personal data with authorities and regulators when required by law, or when a lawful request applies. We do not sell personal data.

International Transfers

Your data is primarily processed in the European Economic Area. If we transfer personal data outside the EEA, we apply safeguards to protect it. These safeguards include Standard Contractual Clauses and additional measures where needed based on transfer risk. You can request more information about safeguards by contacting [email protected].

Data Retention

We keep personal data only for as long as needed for the purposes described in this policy. Retention also depends on legal and regulatory obligations, dispute handling, fraud prevention, and security needs. When data is no longer required, we delete it or anonymize it so it no longer identifies you. We aim to apply retention rules that are consistent and proportionate to the data type and the purpose.

Your Rights Under GDPR

You have rights over your personal data. You can submit a request by emailing [email protected], and we may ask for identity verification before we act.

• Access
• Rectification
• Erasure
• Restriction
• Objection
• Portability
• Withdrawal of consent

Complaints in Greece

If you have a privacy concern, you can contact us first so we can address it quickly through the privacy team. You also have the right to lodge a complaint with the Hellenic Data Protection Authority in Greece. This option remains available if you are not satisfied with our response or if you prefer to contact the authority directly.

Security Measures

We apply technical and organizational measures designed to protect personal data. These measures include access controls, role-based permissions, monitoring for suspicious activity, and procedures for incident response. We apply encryption in transit where appropriate and maintain security controls for systems and accounts. No system is 100 percent secure, so we also encourage you to protect your login details and keep your device secure.

Automated Decisions and Profiling

We use automated systems to support fraud prevention, security screening, and responsible gaming protections. These systems help identify unusual patterns, reduce abuse, and apply risk-based checks. Where required, you can request human review of a decision by contacting [email protected], and we will assess the request according to applicable law.

Changes to This Policy

We update this policy when our practices change, when legal requirements change, or when we improve how we explain our processing. The latest version is posted with an updated Last updated date. If changes materially affect how we process personal data, we communicate them in an appropriate way for the context and the service.