Privacy Policy
This page covers what personal information Clover Casino picks up from visitors, why it does so, where the data lives, who it gets shared with, and the routes for exercising your rights under British privacy law. The technical counterpart — cookies, analytics, browser storage — sits on the Cookie Policy page; the page you're reading is the plain-English version of the same setup.
Clover Casino runs as an independent informational outlet; the surrounding context sits on the About page. The privacy policy below applies only to the Clover Casino site. The moment a reader clicks through to an operator's platform, the operator's own privacy policy takes over; Clover Casino doesn't hand operators any data beyond the limited form set out below.
1. What Clover Casino is
Clover Casino puts out write-ups and guides covering online casinos open to UK players. The flagship operator write-up lives at the Clover Casino homepage. The site itself doesn't host games, manage player accounts, take deposits, hold funds or move withdrawals. No signup. No login. A standard visit involves no data exchange beyond ordinary web traffic. Where Clover Casino actually picks up personal data — for instance, when you write in through the contact channels — the page below sets out exactly what happens with it.
2. UK privacy law context
Clover Casino processes personal information consistent with the UK GDPR and Data Protection Act 2018, plus the thirteen UK GDPR principles overseen by the Information Commissioner's Office (ICO). European visitors get their GDPR rights respected too. Californian visitors get CCPA rights respected to the extent those apply. Where any one of these frameworks imposes a tighter rule, the tighter rule applies.
3. What data Clover Casino collects
Three buckets in total. Technical traffic data, contact data you submit voluntarily, and aggregated analytics.
| Category | What is collected | Why | Legal basis |
|---|---|---|---|
| Technical traffic data | IP address (anonymised after 24h), browser type, device type, page URL requested, timestamp, referrer. | Serve pages, prevent abuse, debug performance issues. | Legitimate interest under UK GDPR Article 6 legitimate interest. |
| Voluntary contact data | Name, email address, message content, supporting documents you choose to attach. Submitted only if you write to us. | Reply to your enquiry. | Consent under UK GDPR consent basis (you provide the data; we use it for the stated purpose). |
| Aggregated analytics | Pseudonymous traffic statistics generated by Google Analytics 4 with IP anonymisation enabled. | Understand which pages are useful and which are not. | Consent (you can decline analytics cookies on first visit). |
Clover Casino does not gather: financial data (no payment processing happens on this domain), gambling-account credentials (we don't operate accounts), biometric data, location beyond country level (inferred from anonymised IP), or special-category data (race, religion, health, sexual orientation, political opinion). Targeted advertising and remarketing aren't part of the picture; the funding model that keeps the site running is on the Affiliate Disclosure page.
4. Cookies and similar technologies
The cookies Clover Casino relies on, the third-party services responsible for setting them, and how to manage them are laid out in detail on the Cookie Policy page. The short version: strictly necessary cookies (page rendering, consent banner state, abuse prevention) are always present; analytics and affiliate-tracking cookies fire only after you've consented through the cookie banner; the selection can be revised at any point via the link in the footer.
5. Affiliate links and operator-side tracking
Whenever you follow an outbound operator link on Clover Casino, three steps run in sequence. First, an internal redirect at /go logs the click into analytics (regardless of whether you actually proceed). Second, your browser gets passed along to the operator's site. Third, the operator can drop its own cookies and treat the arrival as a referral attribution. Clover Casino doesn't forward your name, email or any other identifying personal data to the operator. All the operator learns is that "a visitor came in from Clover Casino". If you later create an account on the operator's site, that signup falls under the operator's own privacy policy, not this one.
6. How long data is retained
- IP addresses: for abuse-prevention purposes a raw IP is held no longer than 24 hours, after which it gets anonymised — the trailing octet is stripped on IPv4, the trailing 80 bits on IPv6. From there the anonymised IP may stay in traffic-statistics storage for up to 14 months.
- Contact correspondence: emails plus any attachments are retained for 24 months to support follow-up and audit, then deleted unless the matter is still under active discussion.
- Analytics events: Google Analytics 4 data is held for 14 months under our configuration, then automatically purged.
- Cookie consent record: the consent record itself sits in your browser's local storage for 12 months, after which the consent banner shows up again.
Where the law mandates a longer retention — for instance, tax records under HMRC record-keeping rules covering affiliate accounting — the affected data is kept solely for the legally required window and isn't used for anything else.
7. Who Clover Casino shares data with
Three tightly controlled categories. Service providers running parts of the Clover Casino infrastructure — web hosting, content delivery, email — each working under a written data-processing agreement that confines their use of the data to delivering the service. Analytics providers (Google Analytics 4): IP-anonymised traffic data only, no personally identifying detail. Law-enforcement bodies and regulators: only in response to a valid legal demand, and strictly limited to the data covered by that demand. Clover Casino never sells, rents or trades personal data — full stop.
8. Where data is stored
Clover Casino infrastructure runs on cloud providers across the UK and the European Economic Area. A handful of service providers — Google Analytics 4 in particular — process data in the United States. Whenever data crosses the UK border, the recipient is tied either to Standard Contractual Clauses or to an equivalent regime that the ICO has judged to provide protection at least as strong as British law.
9. Your rights
Under the UK GDPR and matching international frameworks, the rights below apply to any personal data Clover Casino retains about you.
- Access: request what we hold on you and receive a copy in response.
- Correction: request that any inaccurate data is corrected.
- Deletion: request that your data is erased, subject to any legal retention obligations.
- Withdrawal of consent: where processing rests on consent, you can pull it at any point, with no effect on the lawfulness of processing already carried out.
- Complaint: if Clover Casino is seen to have mishandled your data, a complaint can be lodged with the ICO at ico.org.uk. UK readers should normally contact us first to give us a chance to put the issue right.
To act on any of the rights above, write to the privacy address published on the Contact page. A response from Clover Casino will be sent inside 30 days — the window required by the UK GDPR.
10. Children's privacy
Clover Casino content is intended for adult UK readers. The site is neither aimed at nor designed for anyone under 18. Personal data isn't knowingly collected from minors. If we learn that data has been submitted by an under-18, that data is wiped and, where applicable, the parent or guardian is notified.
11. Security
Clover Casino runs the standard security controls expected of the industry: TLS 1.2+ across all data in transit; access controls plus least-privilege rules on internal systems; regular audits of who can reach what; full logging of administrative actions; periodic third-party penetration testing of the public site. No system is bullet-proof; should a personal-data breach occur with the potential to cause serious harm, affected individuals get notified directly and the ICO is informed in line with the ICO breach-notification regime under the UK GDPR.
12. Changes to this policy
Where this policy is revised, the "Last updated" date at the top is moved forward. Material amendments — fresh data categories, additional third-party processors, revised retention windows — go alongside a homepage banner that stays up for a minimum of 30 days. Smaller housekeeping edits (rewording, link updates) don't warrant a banner.
13. Contact
Privacy-related queries are best routed through the privacy contact published on the Contact page. Editorial questions about Clover Casino content go via the editorial channel; correction requests follow the procedure documented on the Editorial Policy page. Player-safety guidance relevant to anyone visiting this site lives on the Responsible Gambling page.