🔐 Privacy Policy

Your Privacy Matters

Tower Rush operates in full compliance with the General Data Protection Regulation (GDPR) and European data protection laws. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use towerush.com. We are committed to transparency and giving you control over your data.​

📊 Information We Collect

We collect several types of information to provide secure and compliant gaming services. Personal identification data includes your name, date of birth, address, email, and phone number provided during registration. Financial information encompasses payment method details, transaction history, and banking information necessary for deposits and withdrawals. Gameplay data tracks your betting patterns, game history, and account activity to ensure fair play and detect fraud. Technical information includes IP addresses, device identifiers, browser type, and cookies that help us improve your gaming experience.​

How We Use Your Data

Your personal data serves multiple legitimate purposes under GDPR Article 6. We process information to verify your identity and comply with Anti-Money Laundering regulations and licensing requirements. Account management requires data to operate your Tower Rush account, process transactions, and provide customer support. Fraud prevention and security measures analyze behavioral patterns to detect suspicious activity and protect both players and our platform. We also use data for responsible gambling interventions, identifying potentially harmful betting patterns and offering appropriate support.​

🔒 Data Security Measures

We implement industry-standard security protocols to protect your information from unauthorized access, breaches, and threats. Encryption technology secures all data transmissions between your device and our servers using SSL/TLS protocols. Access controls ensure only authorized personnel can access personal data on a need-to-know basis. Regular security audits and penetration testing identify and address potential vulnerabilities. In the event of a data breach affecting your information, we will notify you and relevant regulatory authorities within 72 hours as required by GDPR.​

Your GDPR Rights

European data protection law grants you specific rights regarding your personal information:​

• Right to Access: Request copies of your personal data we hold
• Right to Rectification: Correct inaccurate or incomplete information
• Right to Erasure: Request deletion of your data under certain circumstances
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Oppose processing based on legitimate interests
• Right to Withdraw Consent: Revoke permission for marketing communications​

📧 Consent & Marketing

We require explicit, informed consent before collecting and processing your personal data. No pre-ticked boxes or unclear language—you make active choices about your data. You can opt out of marketing communications at any time through your account settings or email unsubscribe links. Withdrawing marketing consent does not affect essential account communications related to security, transactions, or regulatory requirements.​

Data Retention & Deletion

We retain your personal data only as long as necessary to fulfill legal obligations and legitimate business purposes. Active account data is maintained while your account remains open and for the period required by Anti-Money Laundering regulations, typically five years after account closure. Closed account data is securely deleted after retention periods expire, except where longer storage is mandated by law. You can request account deletion at any time, subject to our legal retention obligations.​

🌍 International Data Transfers

Tower Rush may transfer your data to service providers located outside the European Economic Area. All international transfers comply with GDPR requirements using approved safeguards such as Standard Contractual Clauses. We ensure recipient countries or organizations provide adequate data protection equivalent to European standards.​

Changes to Privacy Policy

We may update this Privacy Policy to reflect regulatory changes, new features, or operational improvements. Material changes will be communicated via email or account notification with sufficient notice. The updated policy will display the revision date, and continued use of Tower Rush services constitutes acceptance of the revised terms.​

Contact Us

For privacy-related questions, data access requests, or to exercise your GDPR rights, contact our Data Protection Officer through the contact form on towerush.com or email us directly. We respond to all privacy inquiries within 30 days as required by GDPR.