Scope and application of this document

Efbet collects only the information needed to provide and secure the services:

• Identity and contact details: name, date of birth, address, email, phone.
• Verification data: copies of identity documents, proof of address, payment ownership evidence, and checks required for KYC/AML and player protection.
• Account and transactional records: deposits, withdrawals, bets, gameplay, bonuses, communications, and responsible gambling settings.
• Technical data: device details, browser type, IP address, log files, and online identifiers (cookies, SDKs) for security and performance.
• Risk and compliance indicators: fraud signals, affordability assessments, dispute records, and sanctions screening results.

Protection measures

• Encryption in transit and at rest where appropriate.
• Strict access controls, role-based permissions, and audit trails.
• Network security, malware protection, and vulnerability management.
• Secure development practices, change control, and supplier due diligence.
• Incident response procedures and regular training.

User rights under Europe data protection laws (GDPR and related rules)

• Access to personal information.
• Rectification of inaccurate data.
• Erasure where legal grounds apply.
• Restriction and objection to certain processing.
• Portability for data provided by the user.
• Withdrawal of consent at any time, without affecting prior processing.
• Complaint to a supervisory authority in the EEA or the UK.

Compliance statement

Processing follows the GDPR, the ePrivacy rules, and applicable gambling, consumer protection, and AML/CTF regulations across Europe. Retention is limited to what the law or legitimate purposes require.

Personal data is used only for lawful, fair, and transparent purposes:

• Service delivery: account creation, verification, payments, gameplay, and customer support.
• Compliance and safety: KYC, AML/CTF screening, affordability and risk checks, age verification, dispute handling, and regulatory reporting.
• Responsible gambling: limits, self-exclusion, reality checks, and related interventions.
• Security and fraud prevention: monitoring, incident detection, and system integrity.
• Analytics and improvement: service quality, performance, and troubleshooting.
• Personalisation: content and feature settings based on user preferences.
• Marketing: email, SMS, in-product messages, and online advertising, only where consent or another lawful basis applies.

Legal bases

• Contract performance for providing services requested by the user.
• Legal obligations for AML/CTF, tax, and regulatory requirements.
• Legitimate interests for security, prevention of abuse, and service improvement, balanced against user interests.
• Consent for certain marketing, cookies, and optional features.

Users can manage account information in profile settings and may request access, correction, deletion, restriction, or portability through the contact options provided on the websites. Identity verification may be required before a request is fulfilled. Responses are provided without undue delay, typically within one month, subject to extensions allowed by law.

Correction and deletion procedures

• Incorrect information is rectified upon proof where needed.
• Deletion is carried out when no legal ground requires further retention. Some records must be kept for AML/CTF, tax, or regulatory duties.

By using Efbet , users consent to security checks, identity verification, and the processing of payment information by authorized providers to deliver the services and prevent fraud.

The services are intended for adults aged 18 or over, or the higher legal age in the user’s country. The operator cannot confirm age without documents and will request proof when required by law or risk assessments.

If a parent or guardian believes a minor has provided personal information, a request for deletion can be submitted through the website’s privacy contact channel. Once verified, the account will be closed and related data deleted where permitted by law.

Personal data may be processed in other countries where partners, processors, or group companies operate. Using the services constitutes consent to such transfers, subject to applicable law.

Safeguards

• Transfers rely on adequacy decisions, Standard Contractual Clauses, or other lawful mechanisms.
• Technical and organizational measures apply across the supply chain.
• Contractual obligations require partners to maintain confidentiality, security, and lawful processing.

This policy is intended to inform users and does not limit statutory rights granted under applicable laws. Any disclaimer in this document clarifies scope, lawful bases, and limits of responsibility as permitted by regulation. The policy takes effect when accepted by signature, affirmative acceptance on the websites, or accession through continued use of the services.

If a provision is invalid under local law, the remaining provisions continue to apply to the fullest extent allowed.

Cookies are small files placed on a device to store or retrieve information. They help provide statistics, analyze behavior, personalize content, and improve the websites and services.

Types and purposes

• Essential cookies: sign-in, security, and core features.
• Analytics cookies: usage metrics and performance.
• Functional cookies: preferences and personalization.
• Advertising cookies: only where consent is granted.

Retention and control

• Cookies set by this site are generally retained for up to 1 year, or shorter where appropriate.
• Users can manage preferences through the cookie banner and browser settings. Where required, consent is gathered and can be withdrawn at any time.

Using the services of Efbet means full acceptance of this Privacy Policy and any updates posted here. The current version on this page prevails over previous versions. Material changes will be communicated through the websites or by other reasonable means. Continued use after changes indicates acceptance of the updated terms.

Personal data may be shared where necessary to deliver services, comply with law, resolve disputes, or perform agreements. Typical recipients include payment processors, KYC/AML providers, IT and security vendors, analytics providers, customer support tools, auditors, and competent authorities. These parties are required to process information only for documented purposes and to protect confidentiality.

A list of key processors may be provided on the websites. If a new category of recipient is added, users will be informed of the purpose and scope as required. Providing data for a service that involves a named third party constitutes consent to that processing, in addition to other applicable legal bases.

The websites may contain links to third-party websites that operate their own privacy policies and security standards. Efbet is not responsible for how external sites collect, use, or protect information. Users should review the privacy notices and cookie practices of any external site before providing personal data.