Log InJoin Now

PRIVACY POLICY

Last Updated: 04.12.2025
1. General Information

At www.luckywins.com (hereinafter also 'Casino,' 'website,' 'we,' 'us,' or 'our'), we recognize the importance of protecting your personal information.

This Privacy Policy (hereinafter also 'Policy') outlines how we and our subsidiaries collect, use, disclose, and safeguard your personal data in compliance with applicable laws, including but not limited to the Personal Information Protection and Electronic Documents Act (PIPEDA) and the General Data Protection Regulation (GDPR).

This Privacy Policy applies to our website (www.luckywins.com), services, and any interaction you have with us.

This website is intended solely for individuals aged 18 and over. We do not knowingly collect personal data from anyone under this age.

If we become aware that we have inadvertently collected personal data from a person under 18— particularly due to misuse of our website—we will take appropriate steps to handle such data in accordance with applicable laws.

2. About Us

The website www.luckywins.com is owned and operated by Novatrix SRL (hereinafter also 'Company,' 'website,' 'we,' 'us,' or 'our') that is incorporated under the laws of COSTA RICA with company registration number 3-102-893958 and having its registered address at PROVINCE 03 OF CARTAGO, COUNTY 07 OF OREAMUNO, POTRERO CERRADO, NORTH SIDE OF MANUEL ÁVILA CAMACHO SCHOOL, COSTA RICA.

As the owner and operator of the website, we serve as the Data Controller. We hold this role because, within our business relationship with you, we determine how and why your data is processed, as outlined in this Policy.

To ensure that we comply with all legal requirements regarding the processing of your personal information, we have designated a Data Protection Officer (hereinafter also DPO).

The DPO is available to address any questions you may have about this Privacy Policy and to assist with any concerns related to your personal data.

If you have any questions, wish to exercise your legal rights, or need to file a complaint about the handling of your data, please reach out to our DPO at [email protected].

3. Types of Personal Data, Processing Purposes, Legal Basis, and Data Sources

We collect and process personal data to deliver our services, meet legal requirements, and maintain a safe and secure gaming environment.

Personal data includes any information that can identify you directly or indirectly. Below, we outline the types of data we collect, why we process them, the legal basis for doing so, and the sources from which we obtain this data.

4. Categories of data we process:
  • Identity Data: full name, username, date of birth, gender, nationality, and identification numbers (e.g., ID or passport).
  • Contact Details: residential address, documents confirming proof of address, email address, phone number, and other available means of communication.
  • Financial Data: bank account details, payment card information, documents confirming your source of funds or source of wealth (bank statements or proof of income).
  • Transaction Data: details about your deposits, withdrawals, and other financial transactions.
  • Gaming Data: details about the games you play on our website, login/logout times, wagering activity, bonuses claimed, and history of responsible gaming measures.
  • Technical Data: IP address / location data, login information, browser type and version, time zone settings, operating system, platform, and other technology used to access our website.
  • Marketing and Communication Data: your marketing preferences and communications with us. Or other data you provide us during communication.
5. Purposes of Processing and Legal Basis:
  • Service Delivery: managing accounts, processing transactions, verifying identity, responding to queries, and providing access to promotions. (Basis: performance of a contract).
  • Compliance with Legal Obligations: Anti-Money Laundering (AML) laws, KYC checks, and regulatory reporting. (Basis: legal obligation).
  • Fraud Prevention and Risk Management: detecting and preventing fraud, bonus abuse, unauthorized activities. (Basis: legitimate interest).
  • Marketing and Personalization: sending promotional offers, personalized advertisements. (Basis: consent and/or legitimate interest).
  • Analytics and Service Improvement: analyzing website traffic, resolving technical issues. (Basis: legitimate interest).
  • Security Assurance: monitoring and enhancing platform security. (Basis: legitimate interest and legal obligation).
6. Sources from Which We Collect Data:
  • Directly from you: Information you provide when registering, using our services, or communicating with us.
  • Verification providers: Services that confirm your identity, age, or address.
  • Financial institutions: Banks and payment service providers involved in processing transactions.
  • AML and PEP databases: Databases used for anti-money laundering (AML) checks.
  • Regulatory authorities and responsible gaming databases: Official sources for legal and responsible gaming obligations.
  • Business partners: Affiliate networks and analytics providers.
7. Disclosure of Personal Information
  • Group Members: Within our group for fraud prevention, AML, and Responsible Gaming purposes.
  • Game Providers: Access to specific data (e.g., username, IP address) to offer games.
  • Payment Providers: Data shared to process transactions.
  • Marketing Partners: Contact details for promotional emails, SMS, and calls (with consent).
  • Regulatory Authorities: Law enforcement or regulatory bodies if required by law.
  • Third-Party Communication Software: Services to assist with email and live chat.
  • AML and KYC Verification Tools: Third-party tools for age, identity, and fraud checks.
  • Business Transfers: In the event of a merger, acquisition, or sale.
  • Data Processors: Lawyers, consultants, and regulatory bodies under strict data processing agreements.
8. International Data Transfers

If your personal data is transferred outside of the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).

9. Data Retention

We will retain your personal data only for as long as necessary. Due to anti-money laundering regulations, we are required to keep your personal data for a minimum of five years from your account closure.

10. Consent and Your Rights
  • Withdraw consent at any time.
  • Access, correct, or request deletion of your personal information.
  • Restrict or object to data processing.
  • Request data portability.
  • Opt-out of marketing communications.
  • Lodge a complaint with a data protection authority.
11. Automated Decision Making

We generally do not rely on fully automated decision-making. If we do use such processes in specific cases, we will inform you separately.

12. Data Security

We maintain reasonable technical, physical and administrative security safeguards. Your Player Account is protected by a unique ID and password. Two-factor authentication (2FA) is recommended.

13. Changes to This Privacy Policy

We may update, modify, or revise our Privacy Policy periodically. We encourage you to review it stay informed.

Contact Information

If you have any questions about this Privacy Policy, please contact our DPO at [email protected].

You can also contact our support teams via [email protected] and livechat.

cookies policy
We use Cookies.