Privacy Policy

Effective Date: January 15, 2025

Real talk: privacy policies are usually written by lawyers for lawyers. This one's different. We collect data because it helps us serve gaming operators better - not to sell your info or spam you into oblivion.

What We Collect (and Why)

When you use our site, we gather three types of data:

  • Account Information: Email, company name, jurisdiction focus. Helps us tailor resources to your licensing needs.
  • Usage Data: Which guides you read, tools you use, time spent. Shows us what operators actually find valuable vs. what collects dust.
  • Technical Data: IP address, browser type, device info. Standard stuff to keep the platform running smoothly and catch security issues.

We don't ask for personal details we don't need. No phone numbers unless you request a callback. No physical addresses unless you're downloading jurisdiction-specific reports that require verification.

How We Use Your Data

Here's the thing - your data serves exactly three purposes:

  1. Improve Your Experience: Recommend relevant licensing guides based on your jurisdiction. If you're focused on New Jersey, we won't push Macau content.
  2. Platform Improvements: Analytics tell us which compliance roadmaps need updating or where operators get stuck. We fix those gaps.
  3. Essential Communications: Licensing deadline alerts, regulatory changes in your tracked jurisdictions, platform updates. Not promotional noise.

We never sell your data. Period. No "anonymized datasets" to third-party aggregators, no affiliate marketing schemes.

Cookies and Tracking

We use cookies to remember your preferences and keep you logged in. Analytics cookies (Google Analytics) track how operators navigate the site - which helps us understand content performance.

You can disable cookies in your browser, but some features won't work properly. The compliance tracker needs cookies to save your jurisdiction watchlist.

Data Sharing (The Short List)

We share data only when legally required or operationally necessary:

  • Service Providers: Hosting (AWS), email delivery (SendGrid), analytics (Google). All under strict data processing agreements.
  • Legal Obligations: If a regulator or court compels disclosure. We notify you unless prohibited by law.
  • Business Transfers: If we're acquired, your data transfers with the platform. You'll be notified with opt-out options.

Your Rights

You control your data. Request access, corrections, or deletion anytime by emailing privacy@[domain].com. We respond within 72 hours.

GDPR/CCPA covered operators get full data portability - we'll export your entire account history in machine-readable format.

Data Security

We encrypt data in transit (TLS 1.3) and at rest (AES-256). Access controls limit who sees what - our content team can't touch your account details, for example.

But let's be honest: no system is bulletproof. If we detect a breach affecting your data, you'll know within 24 hours - not buried in fine print weeks later.

Changes to This Policy

When we update this policy, the effective date changes and we email active users. Material changes get 30-day notice before taking effect.

Questions? Email privacy@[domain].com. Actual humans respond, usually same-day.