Privacy and Personal Data Protection Policy

Identification and contact data During the account registration and identity verification process, we collect information such as first name, last name, email address, phone number, and exact date of birth. Age verification is an absolute legal requirement in Poland – access to the Pelican Casino platform is permitted only for individuals over 18 years of age. This data is essential for creating a secure profile and ensuring authorized access to the service's resources.

Technical data and system logs We automatically record data such as IP address, device type, operating system, browser version, and unique hardware identifiers. This information is critical for monitoring platform stability, preventing DDoS attacks, and optimizing content display according to the end-user's device technical specifications.

Activity and transaction data We process information about how the service is used, login sessions, time spent in individual sections, and the statuses of performed technical operations. When using services that require billing, we process data about payment status, with detailed financial data being isolated and handled by certified third-party entities to ensure the highest level of protection.

Data processing operations at Pelican Casino are based on the following legal foundations:

• Contractual performance: When data is necessary for providing services requested by the user.
• Legal obligation: When Polish regulations impose on us the obligation to verify identity or report specific technical events.
• Legitimate interest: To ensure network cybersecurity, detect fraud, and improve analytical tools.
• User consent: For voluntary additional services, such as subscribing to informational messages.

Collected data is used for:

• Proper management of the user's account and verification of their permissions.
• Providing efficient technical support and resolving reported operational issues.
• Analyzing service performance to implement ergonomic improvements and code optimization.
• Protection against cyber threats and actions that compromise system stability.
• Fulfilling regulatory requirements regarding operational transparency in Poland.

We store personal data only for the period necessary to achieve the purposes for which it was collected, or for the time required by Polish law (e.g., archival obligations or statute of limitations). After this period, the data is permanently and securely deleted from our servers or subjected to anonymization, which prevents the re-assignment of information to a specific natural person.

We never sell or rent user data to commercial entities. Data may only be transferred to trusted technology providers (e.g., cloud server operators, cybersecurity companies) who act on our behalf based on strict data processing agreements. In situations provided for by law, we may be obliged to disclose data to state authorities in Poland.

Most processing operations take place within the European Economic Area. In cases where our technical partners are located outside the EEA, we apply appropriate legal safeguards, such as Standard Contractual Clauses approved by the European Commission, to guarantee a level of data protection consistent with EU standards.

We apply advanced solutions to protect data against loss, unauthorized access, or modification. Our protocols include:

• Encryption of connections using SSL/TLS technology.
• Intrusion detection systems and firewalls.
• Strict access control for authorized personnel.
• Regular security audits and infrastructure penetration tests.

According to regulations, every user is entitled to:

• The right to access their data and receive a copy thereof.
• The right to rectify inaccurate or incomplete information.
• The right to erasure of data ('right to be forgotten').
• The right to restrict data processing in specific cases.
• Right to data portability to another provider.
• Right to object to processing based on legitimate interest.

To exercise your rights or obtain further clarification, please contact our data protection team at: [email protected]. We treat every inquiry as a priority and respond to them within the timeframes provided by Polish law.

This policy is regularly reviewed and updated. Any changes will be published on this page, allowing Pelican Casino users to constantly monitor how their private sphere is managed.