burger icon
Yukon Gold Casino
Log In

Privacy Policy

A privacy policy is required to inform players and website visitors about how their personal information is collected, used, disclosed, and protected when using yukon-gold-casino through yukon-gold-casino-ca.com. This policy applies to all users accessing the site and its services as of November 6, 2025.

Who We Are

OBSERVE: Review corporate legal structure and contact details as per regulatory demands.
EXPAND: Include all operator entities, addresses, and compliance points.
REFLECT: Present a transparent operator profile with key compliance contacts for data protection.

  • Operator Legal Entities:
    • Fresh Horizons Limited (Headquarters): Road Town, Tortola, British Virgin Islands
    • Apollo Entertainment Ltd. (Ontario operations): Regional office in Malta
  • Licensing:
    • Kahnawake Gaming Commission (Canada, excl. Ontario), valid until 2025
    • Alcohol and Gaming Commission of Ontario (AGCO) & iGaming Ontario (iGO) (Ontario), valid until 2025
  • Data Protection Contact: For privacy queries or to exercise your rights, contact the Data Protection Department at [email protected] (email monitored by the DPO). If further assistance is required, users may write to the legal address listed above.

Regional Compliance Note: All processing activities are performed in compliance with Canadian law and local Ontario regulations.

What Personal Data We Collect

OBSERVE: Identify all categories of data collected.
EXPAND: Cover both direct and indirect data points, including technical and behavioral.
REFLECT: Provide a comprehensive breakdown for user awareness and legal transparency.

  • Personal Data: Full name, date of birth, address, email, phone number, identification documents.
  • Technical Data: IP address, device ID, browser type, operating system, access logs, session timestamps.
  • Payment Data: Bank card details, payment provider information, transaction history.
  • Behavioral Data: Game and betting history, site navigation, clicks, interaction logs.
  • Cookies and Tracking Technologies: Session cookies, persistent cookies, third-party analytics and advertising cookies (see "Cookies & Tracking Technologies" section).

Legal Basis for Processing

OBSERVE: Legal grounds for data processing required by CA law.
EXPAND: Consider contract, consent, legal obligations, and legitimate interests.
REFLECT: Clearly link processing activities to their legal justifications.

  • User Consent: Obtained for marketing, cookies, and optional features. Consent is revocable at any time.
  • Contract Fulfillment: Processing is necessary to create, manage, and operate user accounts, process payments, and deliver gaming services.
  • Legal Obligations: Compliance with KYC/AML regulations, reporting to gaming authorities, fraud prevention, and responsible gambling requirements.
  • Legitimate Interests: Security monitoring, service improvement, analytics, and regulatory compliance, balanced against user privacy rights.

Purpose of Processing

OBSERVE: Define all operational purposes for data use.
EXPAND: Break down into service delivery, compliance, marketing, and risk management.
REFLECT: Articulate each purpose transparently for user understanding.

  • Account and Service Delivery: To register users, verify identity, provide access to games, process deposits/withdrawals, and deliver customer support.
  • Compliance and Security: To meet legal requirements (KYC/AML), verify age and location, detect and prevent fraud, and ensure regulatory reporting.
  • Analytics and Service Improvement: To analyze gameplay and usage patterns, optimize website functionality, and enhance user experience.
  • Marketing and Communications: To send promotional offers or newsletters, subject to user consent and opt-out rights.

Disclosure & Sharing

OBSERVE: Identify all potential recipients of user data.
EXPAND: Specify categories and circumstances for sharing.
REFLECT: Provide legal safeguards and transparency for each sharing scenario.

  • Payment Processors: Data is shared with licensed financial institutions and payment providers for processing deposits, withdrawals, and anti-fraud checks.
  • Service Providers: IT, cloud hosting, analytics, marketing, and customer service vendors engaged under confidentiality agreements.
  • Regulatory Authorities: Kahnawake Gaming Commission, AGCO, iGO, and other regulators for compliance and reporting.
  • Affiliates and Partners: Data may be shared with Casino Rewards Group subsidiaries and trusted affiliates for service delivery, only with user consent where required.
  • Advertising Networks: Limited data may be shared with advertising partners, strictly subject to user consent for targeted marketing.

International Transfers

OBSERVE: Determine where data may be transferred outside CA.
EXPAND: Address risks and safeguards for cross-border transfers.
REFLECT: Specify mechanisms to guarantee adequate protection.

  • Countries/Regions: User data may be stored or processed in Canada, the British Virgin Islands, Malta, the UK, and other countries where yukon-gold-casino and its partners operate.
  • Protection Measures:
    • Standard Contractual Clauses (SCCs) for non-CA/EU transfers
    • Binding corporate rules and data-processing agreements with service providers
    • Regular risk assessments to ensure ongoing compliance
  • User Rights: Users may request information about international transfers and obtain a copy of relevant safeguards upon request.

Data Retention

OBSERVE: Set out retention periods for each data type.
EXPAND: Base on legal, regulatory, and operational requirements.
REFLECT: Define clear deletion and review criteria.

  • Personal Data: Retained for the duration of the customer relationship and up to 5 years after account closure or final transaction, in line with legal obligations (e.g., anti-money laundering).
  • Payment and Transaction Data: Maintained for a minimum of 5 years for audit and regulatory purposes.
  • Behavioral and Technical Data: Stored for up to 24 months for analytics; anonymized or deleted thereafter.
  • Deletion Criteria: Data is deleted upon user request (if legally permissible), after retention period expiration, or when processing purposes are fulfilled.

Your Rights

OBSERVE: Align user rights with GDPR and Canadian privacy law.
EXPAND: Include detailed rights, procedures, and response timeframes.
REFLECT: Ensure users are empowered to control their data.

  1. Access: Users have the right to request confirmation of whether their personal data is being processed and obtain a copy of such data.
  2. Rectification: Users may request the correction of inaccurate or incomplete personal data.
  3. Erasure ("Right to be Forgotten"): Users may request deletion of their data in accordance with legal limitations.
  4. Restriction of Processing: Users may request limiting the processing of their data under specific circumstances.
  5. Objection: Users may object to processing activities based on legitimate interests or direct marketing.
  6. Data Portability: Users may request their data in a structured, commonly used, and machine-readable format for transfer to another provider.
  7. Withdrawal of Consent: Users may withdraw consent for marketing communications or other optional processing at any time.
  8. Procedure: To exercise these rights, contact the Data Protection Department at [email protected] or use the online feedback form (where available). Requests will be answered within 30 days, free of charge, unless otherwise permitted by law.

Regional Compliance Note: All user rights are provided as per the Personal Information Protection and Electronic Documents Act (PIPEDA) and aligned with international standards (including GDPR). Where applicable, users may also refer to the Mexican Federal Law on Protection of Personal Data Held by Private Parties for cross-jurisdictional operations.

Cookies & Tracking Technologies

OBSERVE: List types, purposes, and management of cookies.
EXPAND: Explain user control mechanisms.
REFLECT: Ensure transparency and regulatory compliance.

  • Session Cookies: Temporary cookies essential for site navigation and secure login, deleted after browser session ends.
  • Persistent Cookies: Remain on the device to remember preferences and login status for up to 12 months.
  • Third-Party Cookies: Placed by analytics (e.g., Google Analytics) and advertising partners to measure site performance and deliver targeted ads, subject to user consent.
  • Cookie Management: Users may manage or disable cookies via browser settings or, where available, through the site's internal privacy panel. Disabling cookies may affect site functionality.

Data Security

OBSERVE: Detail all technical and organizational security measures.
EXPAND: Reference international standards and specific controls.
REFLECT: Demonstrate comprehensive risk mitigation and incident readiness.

  • Encryption: All data in transit is protected with TLS 1.2 or higher; sensitive data is encrypted at rest.
  • Access Controls: Multi-factor authentication, strict access rights, and user activity monitoring are enforced.
  • Security Audits: Regular internal and third-party security audits, including annual eCOGRA certification and ISO 27001/SOC 2 alignment.
  • Staff Training: Ongoing training for all staff on data protection, privacy best practices, and incident response.
  • Incident Response: Formal procedures for detecting, reporting, and mitigating data breaches, with prompt notification to affected users and authorities as required by law.

Regional Compliance Note: Security practices comply with CA privacy regulations and international standards.

Complaints & Contacts

OBSERVE: Provide comprehensive complaint and contact mechanisms.
EXPAND: Detail process steps and escalation options.
REFLECT: Empower users to resolve issues efficiently and escalate where necessary.

  • Data Protection Contact: For all privacy-related inquiries or complaints, email [email protected]. Where available, complete the online feedback form on yukon-gold-casino-ca.com.
  • Complaint Procedure:
    1. Submit your concern via email or feedback form, providing relevant details.
    2. The Data Protection Department will acknowledge receipt within 3 business days.
    3. A full response will be provided within 30 days. If more time is needed, you will be informed of the expected timeline and reasons for delay.
  • Escalation: If unsatisfied, users may escalate complaints to:
    • Office of the Privacy Commissioner of Canada (OPC): Contact OPC
    • Alcohol and Gaming Commission of Ontario (AGCO): Contact AGCO
    • EU Data Protection Authorities: For users in the EU, contact your national supervisory authority.

Updates

OBSERVE: Specify update and notification procedures.
EXPAND: Include version control, changelog, and user rights.
REFLECT: Ensure transparency and user empowerment regarding policy changes.

  • Notification Procedures: Material changes to this privacy policy will be communicated via email (where available), website banners, and account dashboard alerts.
  • Advance Notice: Users will be notified at least 30 days in advance of significant changes, with an opportunity to object or close their account if they disagree with the new terms.
  • Version Control: Last updated: November 6, 2025. A changelog of material modifications will be available upon request.

For continued use of yukon-gold-casino through yukon-gold-casino-ca.com, users are encouraged to review this policy regularly.