Last updated: April 2026
This Privacy Policy explains how Casiflow ("we", "us", "our") collects, uses, stores and protects your personal data when you use our website at www.casiflow.com and our web application at app.casiflow.com (together, "the Service").
We are committed to protecting your privacy and handling your data responsibly and transparently. Please read this policy carefully before using the Service.
Casiflow is operated under the name Casiflow. For any privacy related enquiries please contact us at support@casiflow.com.
We collect the following personal data when you register and use Casiflow:
We use your personal data for the following purposes and on the following legal bases:
| Purpose | Legal Basis |
|---|---|
| To provide and operate the Casiflow Service | Performance of a contract |
| To display your gambling dashboard and calculate your net results | Performance of a contract |
| To send you account-related notifications and alerts | Performance of a contract |
| To respond to your enquiries and support requests | Legitimate interests |
| To improve and develop the Service | Legitimate interests |
| To comply with legal obligations | Legal obligation |
We do not sell your personal data to third parties.
We do not share your data with casinos.
We do not use your data for advertising purposes.
Casiflow may earn affiliate commission when users sign up to casino operators through links displayed within the Service. This is disclosed transparently and does not affect the data or insights we show you. We do not share your personal data with affiliate partners.
We use the following third party services to operate the Service. These providers process your data on our behalf and are bound by appropriate data processing agreements:
Supabase
Database and authentication provider. Your account data and gambling activity data is stored on Supabase's infrastructure. Supabase is SOC 2 compliant and stores data in secure, encrypted form. For more information visit supabase.com/privacy.
Vercel
Website and application hosting provider. For more information visit vercel.com/legal/privacy-policy.
Resend
Email delivery service used to send account notifications and transactional emails. For more information visit resend.com/privacy.
We will update this section if we add additional third party processors.
Some of our third party processors may store or process your data outside the European Economic Area (EEA) or United Kingdom. Where this occurs we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your data in accordance with GDPR requirements.
We retain your personal data for as long as your account is active. If you delete your account we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes.
Usage and analytics data may be retained in anonymised form for longer periods for the purpose of improving the Service.
Casiflow uses only essential cookies that are strictly necessary for the Service to function. These cookies cannot be disabled without affecting the functionality of the Service.
We do not use advertising cookies, tracking cookies or any third party analytics cookies.
For more information about the cookies we use please see our Cookie Policy.
If you are based in the European Union or United Kingdom you have the following rights regarding your personal data:
You can exercise your rights at any time by visiting your Profile page under My Data, or by contacting us at support@casiflow.com.
If you are unhappy with how we handle your personal data you have the right to lodge a complaint with your local data protection supervisory authority. In Malta this is the Information and Data Protection Commissioner (idpc.org.mt). We do, however, recommend that you first contact us so that we can address and/or answer your questions, concerns, or issues before you refer the matter to the supervisory authority.
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction or alteration. All data is stored in encrypted form. Access to personal data is restricted to authorised personnel only.
Despite these measures no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but we are committed to protecting your data to the highest standard.
Casiflow is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from anyone under 18. If you believe we have inadvertently collected data from a minor please contact us immediately at support@casiflow.com and we will delete it promptly.
The Service may contain links to third party websites including responsible gambling organisations and casino operators. We are not responsible for the privacy practices or content of those websites. We encourage you to read their privacy policies before providing any personal data.
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by email or through the Service. The date at the top of this policy indicates when it was last updated. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.
If you have any questions about this Privacy Policy or how we handle your personal data please contact us at:
Email: support@casiflow.com
Website: www.casiflow.com/contact