Privacy Policy
This page sets out, in plain terms, the personal information that F7 Casino gathers from visitors: what is collected, the reason for collecting it, where it ends up being held, who it is passed on to, and the route to exercising your statutory rights under UK privacy law. Its technical sibling — covering cookies, analytics tooling and equivalent browser storage — sits separately on the Cookie Policy page; what you are reading here is the human-readable side of the same setup.
F7 Casino runs as an independent informational platform; the wider context is on the About page. This privacy policy covers the F7 Casino website only. Once a reader clicks through to an operator's site, that operator's own privacy policy takes over; F7 Casino does not share data with operators beyond the limited form described below.
1. What F7 Casino is
F7 Casino publishes reviews and guides on online casinos accessible to UK players. The flagship operator review is the F7 Casino homepage. The site hosts no games, runs no player accounts, accepts no deposits, holds no funds and processes no withdrawals. There is no signup. There is no login. The default visit involves no data exchange beyond standard web traffic. Where F7 Casino does collect personal data — for example, when you contact us through the listed channels — this page describes exactly what happens to it.
2. UK privacy law context
Personal information at F7 Casino is processed under the UK GDPR plus the Data Protection Act 2018, in tandem with the thirteen UK GDPR principles administered by the Information Commissioner's Office (ICO). Visitors arriving from continental Europe see their GDPR rights respected on equivalent terms. Californian visitors get CCPA rights honoured to the extent the statute reaches them. Where two of those frameworks overlap and one is stricter, the stricter version always governs.
3. What data F7 Casino collects
The set splits into three buckets: technical traffic data picked up automatically, voluntary contact data submitted by the visitor, plus aggregated analytics on top.
| Category | What is collected | Why | Legal basis |
|---|---|---|---|
| Technical traffic data | IP address (anonymised after 24h), browser type, device type, page URL requested, timestamp, referrer. | Serve pages, prevent abuse, debug performance issues. | Legitimate interest under UK GDPR Article 6 legitimate interest. |
| Voluntary contact data | Name, email address, message content, supporting documents you choose to attach. Submitted only if you write to us. | Reply to your enquiry. | Consent under UK GDPR consent basis (you provide the data; we use it for the stated purpose). |
| Aggregated analytics | Pseudonymous traffic statistics generated by Google Analytics 4 with IP anonymisation enabled. | Understand which pages are useful and which are not. | Consent (you can decline analytics cookies on first visit). |
Items that F7 Casino explicitly does not collect: payment or financial data (no transaction processing runs on this domain), gambling-account credentials (no accounts are operated here), biometric markers, location to anything more precise than country (and even country level is derived from an anonymised IP), and special-category data (race, religion, health information, sexual orientation, political opinion). Behavioural advertising and remarketing are entirely absent here as well; the underlying funding model is set out on the Affiliate Disclosure page.
4. Cookies and similar technologies
The Cookie Policy page goes through F7 Casino's cookie stack in detail: the cookies actually deployed, the third-party services responsible for each of them, and how to manage them locally. Headline summary: the strictly-necessary tier (page load, recording the consent banner choice, abuse prevention) is always written; analytics and affiliate-tracking cookies appear only after you grant consent inside the cookie banner; and your prior selection can be revised at any later point through the link in the footer.
5. Affiliate links and operator-side tracking
Three things take place when you click on an outbound operator link from F7 Casino. The first thing — an internal redirect served at /go logs the click into our analytics regardless of whether you actually carry on to the destination. The second — your browser is then handed off to the operator's own site. The third — once you arrive, the operator may set its own cookies and treat the visit as referral attribution. No personal identifier — your name, email or anything similar — is passed by F7 Casino to the operator at any point. All the operator learns is the bare fact that "the visitor came in from F7 Casino". Should you go on to register an account on the operator's side, that registration falls under the operator's privacy policy and not this one.
6. How long data is retained
- IP addresses: the raw IP is kept on hand for up to 24 hours strictly for abuse prevention; after that window it is anonymised, with the final octet (IPv4) or final 80 bits (IPv6) truncated off. The anonymised IP is then retained for up to 14 months for traffic-statistics use only.
- Contact correspondence: emails plus any attachments stay on file for 24 months to allow follow-up handling and audit trails, and are deleted afterwards unless the thread is still being actively worked.
- Analytics events: Google Analytics 4 data is retained for 14 months under our configuration, after which it is deleted automatically.
- Cookie consent record: the record of your choice is held locally inside your own browser for 12 months, after which the consent banner reappears for a fresh decision.
Where retention is required by law for longer — for example, tax records under HMRC record-keeping rules covering affiliate-related accounting — the relevant data is held only for the legally required period and is not used for any other purpose.
7. Who F7 Casino shares data with
Three controlled buckets exist. Bucket one — service providers that run pieces of the F7 Casino infrastructure, covering web hosting, content delivery and email; each one operates under a written data-processing agreement that confines their use of the data strictly to delivering the service. Bucket two — analytics providers (Google Analytics 4): IP-anonymised traffic data only, with zero personally identifying information attached. Bucket three — law-enforcement bodies and regulators, accessed only against a valid legal demand and only insofar as the demand requires. Selling, renting, or trading personal data is something F7 Casino does not do under any circumstances.
8. Where data is stored
F7 Casino runs its infrastructure on cloud providers physically based across the UK and the broader European Economic Area. A handful of supporting service providers — Google Analytics 4 in particular — process data inside the United States. Whenever data leaves UK borders, the receiving party is bound by either Standard Contractual Clauses or an equivalent transfer regime which the ICO has already assessed as offering protection at least as strong as UK law.
9. Your rights
Under the UK GDPR and equivalent international laws, you have the following rights in respect of any personal data F7 Casino holds about you.
- Access: request what we hold and receive a copy.
- Correction: request that inaccurate data be corrected.
- Deletion: request deletion of your data, subject to legal retention requirements.
- Withdrawal of consent: where processing is based on consent, you can withdraw it at any time without affecting prior lawful processing.
- Complaint: if you believe F7 Casino has handled your data improperly, you can complain directly to the ICO at ico.org.uk. UK readers should ordinarily contact us first so we have a chance to fix the issue.
To put any of these rights into action, drop a note to the privacy address shown on the Contact page. F7 Casino comes back within 30 days, which is the response window mandated by the UK GDPR.
10. Children's privacy
The content published on F7 Casino is written for adult readers in the UK. The platform is not pointed at, nor designed for, anyone below 18. Personal data submitted by minors is not knowingly retained here at all. Should it come to our attention that data has reached us from a visitor under 18, the data in question is removed, and where the circumstances allow, the parent or legal guardian is informed.
11. Security
The security baseline at F7 Casino follows the industry-standard pattern: TLS 1.2 or higher across every data-in-transit channel; access controls plus least-privilege rules layered onto internal systems; rolling reviews of who currently has access to what; logging of administrative actions for traceability; and periodic third-party penetration testing run against the public site. No system on the internet is unbreakable, so if a personal-data breach were to occur and was likely to cause serious harm, affected individuals would be contacted directly and the ICO informed under its breach-notification regime as set out in the UK GDPR.
12. Changes to this policy
Whenever the policy on this page changes, the "Last updated" date sitting at the top moves forward. Substantive shifts — additional categories of data collected, fresh third-party processors entering the mix, retention periods being reset — are accompanied by a homepage banner running for at least 30 days. Light housekeeping (rewording for clarity, link tidying) does not raise a banner of its own.
13. Contact
Privacy-related questions are best routed through the privacy contact listed on the Contact page. Editorial questions about F7 Casino content go through the editorial channel; correction requests follow the procedure set out on the Editorial Policy page. Player-safety guidance applicable to anyone reading this site sits on the Responsible Gambling page.