Privacy Policy

Effective date: [Insert Date] Website: ca-winsharkcasino.com Brand: WinShark Contact: [email protected]

Introduction

This Privacy Policy explains how WinShark, WinShark Casino, WinShark Casino Canada, Casino WinShark, and related services available through ca-winsharkcasino.com collect, use, disclose, store, and protect personal data. For the purposes of applicable privacy law, WinShark acts as a data controller in relation to the personal information collected from users of the website and registered players using the WinShark online casino platform.

WinShark provides gambling-related digital services and must process personal data to create and manage player accounts, deliver games, process bets and withdrawals, verify identity, comply with anti-money laundering and counter-terrorist financing obligations, detect fraud, and maintain the integrity and security of the platform. In the Canadian market, privacy compliance is informed by the Personal Information Protection and Electronic Documents Act and, where relevant, substantially similar provincial private-sector privacy legislation. In addition, where certain processing operations involve international standards or suppliers that apply equivalent privacy principles, WinShark may implement controls aligned with broader gdpr-style data processing safeguards.

By registering an account, using WinShark online, submitting documents, placing bets, contacting support, or otherwise interacting with the website, you acknowledge that your personal data will be processed as described in this Privacy Policy. Where consent is required under applicable law, registration, account use, or a specific opt-in action may constitute consent to the relevant collection, use, and disclosure of personal information. Where processing is necessary to meet a legal obligation, contract performance requirement, or legitimate compliance and security purpose, WinShark may process data on that basis without requiring separate optional consent.

This Privacy Policy is intended to be clear, formal, and transparent. It applies to users located in Canada and to processing carried out in connection with WinShark casino CA services.

Information We Collect

WinShark may collect personal data directly from you, automatically from your device and use of the website, and from approved third-party sources. The categories of information collected may include the following.

Personal Identification Information

When you register or update your account, WinShark may collect:

• Full name
• Date of birth
• Residential address
• Postal code
• Country and province of residence
• Email address
• Telephone number, where provided
• Username or account identifier
• Government-issued identification details where legally required

This information is used for account management, eligibility checks, age verification, identity verification, and compliance with legal obligation requirements applicable to gambling operators.

Financial and Transaction Information

To process deposits, withdrawals, refunds, chargeback reviews, and account reconciliation, WinShark may collect or receive:

• Payment method type
• Partial card or account identifiers, where relevant
• Billing information
• Deposit and withdrawal history
• Betting activity and staking records
• Bonus usage records
• Account balance history
• Payment processor references
• Records related to disputed transactions or failed payments

WinShark does not describe in this Privacy Policy that full payment card data is stored unless such storage is necessary and handled by appropriately authorized service providers under strict security controls.

KYC, AML, and CFT Verification Documents

As part of identity verification, source checks, aml controls, and cft compliance, WinShark may request and process copies or images of:

• Passport, driver’s licence, or other government-issued ID
• Proof of address documents such as utility bills or bank statements
• Payment method ownership evidence
• Selfie or liveness verification submissions
• Source of funds or source of wealth documentation
• Affordability or risk-based verification information where required

Such information is necessary to meet legal and regulatory obligations, reduce fraud risk, prevent underage gambling, and support responsible account management.

Correspondence and Support Records

If you contact WinShark, the following information may be retained:

• Email correspondence
• Customer support requests
• Complaint details
• Feedback and survey responses
• Responsible gambling or account restriction communications
• Internal notes related to resolving disputes, technical incidents, or compliance reviews

Technical Data and Usage Logs

When you access ca-winsharkcasino.com or use WinShark casino CA services, certain information may be collected automatically, including:

• IP address
• Device type
• Browser type and version
• Operating system
• Language settings
• Login timestamps
• Logout activity
• Geolocation indicators derived from IP or device signals
• Website navigation data
• Clickstream activity
• Game session logs
• Error logs and crash diagnostics
• Cookies and similar tracking technologies, subject to applicable consent rules

This technical data supports platform administration, security, fraud prevention, analytics, service improvements, and legal compliance.

How We Use Your Information

WinShark processes personal data only where there is an appropriate legal basis and a legitimate business or compliance purpose. Depending on the context, processing may be necessary for contract performance, legal obligation, consent, fraud prevention, security, or operational necessity.

Core Service Delivery

WinShark uses personal data to:

• Create and administer player accounts
• Authenticate logins and secure account access
• Process bets, game participation, winnings, deposits, and withdrawals
• Deliver customer support services
• Maintain transaction records
• Manage bonuses, promotions, and account features where applicable
• Enforce platform rules, terms, and eligibility criteria

Compliance and Regulatory Purposes

WinShark must process personal data to comply with gambling-related compliance requirements and financial crime controls. This includes:

• Age and identity verification
• KYC reviews
• aml screening and transaction monitoring
• cft controls
• Detection of suspicious or prohibited behaviour
• Reporting to competent authorities when legally required
• Maintaining records for regulatory audits, investigations, and dispute handling

Fraud Prevention and Security

Personal data is also used to:

• Detect account misuse, collusion, or bonus abuse
• investigate suspicious deposits, withdrawals, or gameplay patterns
• prevent unauthorized access and account takeover
• identify duplicate or linked accounts where prohibited
• monitor technical anomalies and cyber threats
• preserve evidence in relation to chargebacks, fraud claims, or internal reviews

Service Analysis and Improvement

WinShark may use personal information and aggregated data for:

• Website analytics
• platform diagnostics
• improving user experience
• evaluating customer support performance
• internal reporting and service improvements
• research into fraud trends, payment risks, and system resilience

Where possible, analytics and research activities may use aggregated, de-identified, or minimized data.

Marketing Communication

WinShark may use your contact details and account preference data to send information about services, updates, offers, responsible use tools, or other account-related communications. Marketing communication practices are structured to respect applicable privacy and anti-spam rules in Canada, including consent and unsubscribe requirements where relevant.

How Marketing Data May Be Used

Marketing-related data may be processed to:

• Send promotional emails where permitted
• Inform users about new features, games, or service updates
• Tailor communications based on account activity or preferences
• Measure campaign effectiveness and user engagement
• Maintain suppression lists to ensure opt-out requests are honoured

Opt-Out and Consent Withdrawal

You may opt out of non-essential marketing communications at any time by:

• Using the unsubscribe mechanism contained in a marketing email, where available
• Contacting WinShark at [email protected]

If you withdraw consent or opt out, WinShark will stop sending non-essential marketing communications within a reasonable period, subject to technical processing time. However, WinShark may still send service-related or legally required communications concerning your account, transactions, security issues, or compliance matters.

Obtaining Personal Information

WinShark obtains personal data through several lawful channels.

Information Provided Directly by You

You may provide personal data when you:

• Register an account
• Complete forms on the website
• Upload KYC or identity verification documents
• Make a deposit or request a withdrawal
• Contact customer support
• Participate in surveys or promotional campaigns
• Submit complaints or responsible gambling requests

Information Collected Automatically

Certain data is collected automatically through your interaction with WinShark online, including technical logs, cookie-based identifiers, device metadata, and gameplay records.

Information from Third Parties

WinShark may also receive personal data from trusted third-party sources such as:

• Identity verification providers
• Payment processors
• fraud prevention and risk screening vendors
• sanctions and politically exposed person screening databases
• game providers and platform vendors
• analytics and cybersecurity service providers
• public registries or lawfully accessible databases where necessary for compliance

Third-party information is used only where there is a valid legal basis and where such collection is necessary for account management, verification, security, or legal obligation purposes.

Data Recipients

Access to personal data within WinShark is limited to authorized personnel and service functions that require the information for legitimate operational, legal, or security purposes.

Your information may be accessed by:

• Customer support personnel
• Compliance and verification teams
• Fraud and risk management teams
• Finance and payment operations staff
• Technical security and platform administration teams
• Senior personnel responsible for legal, audit, or dispute resolution functions

All such access is expected to follow internal confidentiality, role-based access, and data minimization principles.

Releasing Data to Third Parties

WinShark may disclose personal data to third parties where necessary to operate the service, comply with the law, or protect the rights, safety, and integrity of the platform.

Categories of Third-Party Recipients

Personal data may be shared with:

• Payment processors and financial institutions to process deposits, withdrawals, and transaction reviews
• Identity verification and KYC providers
• aml and cft screening service providers
• Fraud prevention vendors and cybersecurity providers
• Cloud hosting, storage, and technical infrastructure providers
• Game providers, where account or transaction linkage is necessary to deliver games or investigate irregular activity
• Professional advisers such as auditors, legal advisers, or consultants under confidentiality obligations
• Regulators, law enforcement agencies, courts, or other competent authorities where disclosure is legally required or lawfully requested

Conditions for Disclosure

WinShark may release data to third parties under one or more of the following conditions:

• The disclosure is necessary for contract performance or account servicing
• The disclosure is required to comply with a legal obligation
• The disclosure is necessary to investigate fraud, suspicious transactions, or security incidents
• The disclosure is required to verify identity, age, source of funds, or payment ownership
• The user has provided consent, where consent is the appropriate legal basis
• The disclosure is necessary to establish, exercise, or defend legal claims

Where service providers process personal data on behalf of WinShark, they are expected to act as data processors or equivalent contracted service providers under terms requiring confidentiality, security, and use limitations.

International Processing and Transfers

Depending on the technical infrastructure and service providers used by WinShark Casino Canada, personal data may be processed or stored outside your province or outside Canada. Such cross-border processing may occur where hosting, support, fraud screening, analytics, payment processing, or identity verification services are delivered from other jurisdictions.

Where international transfers occur, WinShark will take reasonable steps to ensure that personal data remains protected by contractual safeguards, internal controls, vendor due diligence, and security standards appropriate to the sensitivity of the information. Users should understand that foreign laws may permit courts, regulators, or law enforcement authorities in those jurisdictions to access personal information in accordance with local law.

Data Retention

WinShark retains personal data only for as long as necessary for the purposes described in this Privacy Policy, including legal, regulatory, security, tax, accounting, dispute-resolution, and operational requirements.

Retention Periods

Retention periods may vary depending on the data category, but generally include:

• Account registration and profile records for the lifetime of the account and an additional period required by law or operational necessity
• Transaction, betting, and payment records for the period required by financial, audit, and gaming compliance rules
• KYC, aml, and cft verification records for at least 5 years where retention is required for anti-money laundering compliance
• Support communications and complaint records for a reasonable period necessary to handle disputes, legal claims, and service reviews
• Security logs and technical records for as long as needed to investigate incidents, preserve evidence, and maintain platform integrity

Right to Erasure

Subject to applicable law, you may request the deletion of personal data that is no longer necessary for the purposes for which it was collected. However, the right to erasure is not absolute. WinShark may decline or defer deletion where retention is required by legal obligation, regulatory requirements, fraud prevention needs, ongoing investigations, legal claims, or mandatory aml recordkeeping. After the applicable mandatory retention period has expired and where no overriding legal ground applies, WinShark will take reasonable steps to erase or anonymize relevant data.

Security of Your Data

WinShark applies technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, disclosure, or destruction. While no internet-based system can guarantee absolute security, WinShark seeks to maintain a level of protection appropriate to the nature and sensitivity of gambling-related information.

Security Measures

Measures may include:

• ID and password protection for account access
• Role-based access controls for internal personnel
• Encryption of data in transit through ssl or equivalent secure protocols
• Secure storage environments and network protections
• Monitoring for suspicious activity and unauthorized access attempts
• Logging and audit controls
• Vendor due diligence and contractual security requirements
• Restricted access to verification documents and sensitive records
• Internal procedures for incident management and investigation

Users also play an important role in account security. You should keep your login credentials confidential, avoid sharing your password, and notify WinShark immediately through [email protected] if you suspect unauthorized access or misuse of your account.

Cookies and Similar Technologies

WinShark may use cookies and similar technologies to support website functionality, remember preferences, maintain session integrity, analyze traffic, detect fraud, and improve service performance. Some cookies may be strictly necessary for the operation of WinShark online casino services, while others may relate to analytics or personalized communications.

Where required by applicable law, WinShark will seek consent before placing non-essential cookies or similar technologies on your device. You may also manage cookie settings through your browser or device controls, although disabling certain cookies may affect website functionality, login persistence, or game performance.

Your Rights and Contacting Us

Subject to applicable Canadian privacy law and any lawful exceptions, you may have rights in relation to your personal data.

Your Privacy Rights

Depending on the circumstances, these rights may include:

• The right to request access to personal data held about you
• The right to request correction of inaccurate or incomplete information
• The right to withdraw consent where processing is based on consent withdrawal
• The right to request information about how your personal data is used and disclosed
• The right to challenge compliance with applicable privacy requirements
• The right to request erasure of certain data where no overriding legal basis for retention applies

To exercise your rights, submit a request by email to [email protected]. WinShark may request sufficient information to verify your identity before processing a privacy request. This is necessary to protect personal data from unauthorized disclosure.

Complaints

If you believe your personal information has been handled in a manner inconsistent with applicable law, you may contact WinShark first at [email protected] so that the matter can be reviewed. You may also have the right to lodge a complaint with the Office of the Privacy Commissioner of Canada or, where applicable, a relevant provincial privacy authority.

References:

• Personal Information Protection and Electronic Documents Act, SC 2000, c 5
• Office of the Privacy Commissioner of Canada guidance on private-sector privacy obligations
• Proceeds of Crime (Money Laundering) and Terrorist Financing Act, SC 2000, c 17, where applicable to relevant compliance activities
• Canada’s Anti-Spam Legislation, SC 2010, c 23, for electronic marketing compliance where applicable

Policy Updates

WinShark may update this Privacy Policy from time to time to reflect changes in legal requirements, regulatory expectations, technical systems, business practices, or service features. The most current version will be published on ca-winsharkcasino.com with the updated effective date. Continued use of the website or services after an updated policy becomes effective will indicate acknowledgment of the revised terms, except where additional consent is required by law.

Final Note

This Privacy Policy applies to the use of WinShark, WinShark Casino, WinShark Casino Canada, Casino WinShark, WinShark online casino, WinShark casino CA, WinShark online, Win Shark, and Win Shark casino services made available through ca-winsharkcasino.com. The purpose of this document is to provide a transparent explanation of how personal data is handled, how data processing decisions are made, and how users can exercise their privacy rights in a legally grounded and practical way.