Privacy Policy
This policy explains how Riviera Casino collects, uses, stores and protects your personal data. Last updated: November 2024.
By using rivieracasinologin.com, you accept the practices described in this document. If you disagree, do not use our services.
What data we collect
During your registration and use of our services, we collect several types of information:
Identification data
- Full name, date of birth, postal address
- Email address, phone number
- Copies of identity documents (ID card, passport, proof of address)
- Payment information (partial card numbers, e-wallet details)
Activity data
- Gaming history (games played, bets, wins, losses)
- Financial transactions (deposits, withdrawals, amounts, methods)
- Communications with customer support
- Gaming preferences and account settings
Technical data
- IP address, approximate geographic location
- Device type, operating system, browser
- Cookies and session identifiers
- Connection logs (dates, times, durations)
How we use your data
Your information serves several legitimate purposes:
Service provision
Manage your account, process your transactions, activate bonuses, resolve technical problems. Without this data, we cannot operate the casino.
Legal compliance
Verify your identity (KYC), prevent money laundering, comply with our Curaçao license obligations. It's legally mandatory, not optional.
Security and fraud prevention
Detect multiple accounts, identify suspicious gaming patterns, protect against unauthorized access. It protects you as much as us.
Marketing communications
Send promotional offers, newsletters, new game notifications. You can opt out by disabling communications in your settings or clicking "Unsubscribe" in each email.
Service improvement
Analyze usage behaviors in aggregate to optimize the interface, adjust game catalog, improve technical performance.
Who we share your data with
We never sell your personal data. But we must share it with certain third parties to function:
Payment processors
Visa, Mastercard, Skrill, Neteller and other providers need your payment information to process transactions. They're all PCI-DSS certified.
Game providers
NetEnt, Pragmatic Play, Evolution Gaming receive minimal technical data (session ID, bets) to run their games. No access to your complete personal information.
Verification services
Specialized KYC providers who verify your identity documents' authenticity via government databases and fraud detection tools.
Legal authorities
If required by law, court, or regulator, we must disclose your data. This happens rarely but is a non-negotiable legal obligation.
Technical providers
Server hosting, CDN, monitoring systems. They have access to technical data but are contractually bound to confidentiality.
How we protect your data
Security measures in place:
- 256-bit SSL encryption for all site connections
- Encrypted storage of sensitive data in our databases
- Restricted access to personal data, limited to authorized personnel only
- Regular security audits by external firms
- Intrusion detection systems and 24/7 monitoring
- Strong password policy and optional two-factor authentication
Despite these measures, no system is 100% inviolable. We do everything possible but cannot guarantee absolute security.
How long we keep your data
As long as your account is active, we keep all your data to provide our services.
After account closure:
- 5 years minimum for financial data and transactions (legal anti-money laundering obligation)
- 3 years for complete gaming history
- 1 year for technical logs and support communications
After these periods, data is either anonymized (aggregated statistics) or permanently deleted.
Exception: data linked to disputes, investigations, or ongoing legal obligations are kept until complete resolution.
Your data rights (GDPR)
If you're a European Union resident, you have specific rights:
Right of access
Request a copy of all data we hold on you. We respond within 30 days with a complete export.
Right to rectification
Correct inaccurate or incomplete information directly in your account or via support.
Right to erasure
Request deletion of your data. We do it unless we have a legal retention obligation (financial transactions, for example).
Right to restriction of processing
Request that we stop using your data for certain purposes (marketing, for example) while keeping the account active.
Right to portability
Receive your data in a structured, machine-readable format to transfer elsewhere.
Right to object
Refuse certain processing, notably marketing communications or profiling for advertising purposes.
To exercise these rights, contact [email protected] with "GDPR" in the subject. We process requests within 30 days maximum.
Minor protection
Riviera Casino is strictly prohibited for under-18s. We never knowingly collect data from minors.
If we discover a minor has created an account, we close it immediately and delete all their data.
Parents: monitor your children's online activity. Use parental control software to block access to gambling sites.
Changes to this policy
We may update this privacy policy periodically to reflect legal, operational, or technological changes.
Major changes will be notified by email and via a banner on the site. Your continued use after notification constitutes acceptance of new conditions.
Check this page regularly to stay informed. The last update date is indicated at the top of the document.
Questions about privacy
For any questions regarding processing of your personal data, exercising your GDPR rights, or this privacy policy:
Email: [email protected]
General support: [email protected]
Mail: Riviera Entertainment N.V., Heelsumstraat 51, Willemstad, Curaçao
If our response doesn't satisfy you, you can file a complaint with your country of residence's data protection authority.
