Registration

Big Protection for Big Players. Your Privacy, Supersized

1. Introduction: Our Expansive Commitment to Privacy

At Supersized, we believe that transparency is the foundation of trust. As a premier destination for high-scale gaming entertainment, we process significant amounts of information. However, our commitment to safeguarding that information is even larger. This Privacy Policy serves as a comprehensive guide to how we collect, use, store, and defend your personal data.

We operate under a “Privacy First” philosophy. This means that from the moment you land on our homepage to the second you process a withdrawal, your data is shielded by industry-leading protocols. We do not view data as a commodity to be traded, but as a digital extension of our players that requires the highest level of respect and fortification.

2. Authoritative Regulatory Framework

Supersized aligns its operations with the most stringent data protection laws globally, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We collaborate with international bodies to ensure our standards remain at the cutting edge of digital safety.

The following table provides links to authoritative organizations that define and oversee privacy and integrity in the gaming and digital space:

OrganizationArea of ExpertiseOfficial Website
GDPR Official PortalEuropean data privacy standards and user rightsgdpr-info.eu
IAPPInternational Association of Privacy Professionalsiapp.org
eCOGRATesting and certification for player data integrityecogra.org
Malta Gaming AuthorityRegulatory oversight for player protectionmga.org.mt
Electronic Frontier FoundationAdvocacy for digital privacy and civil libertieseff.org

3. The Scope of Information Collection

To provide a “Supersized” experience, we must collect specific data points that allow us to verify your identity, process your transactions, and keep our platform secure.

3.1 Personally Identifiable Information (PII)

When you register an account, we collect:

  • Full Legal Name: Required for identity verification and anti-fraud measures.

  • Date of Birth: To ensure you meet the mandatory 18+ age requirement.

  • Physical Address: Necessary to comply with international gaming licenses and tax regulations.

  • Email and Phone Number: Used for two-factor authentication (2FA) and critical account notifications.

3.2 Financial and Transactional Data

To facilitate your deposits and payouts, we process:

  • Payment Credentials: Masked credit/debit card details, e-wallet IDs, or cryptocurrency addresses.

  • Transaction History: A complete ledger of your deposits, bets, and withdrawals for transparency and AML (Anti-Money Laundering) compliance.

  • KYC Documentation: Scans of government IDs, utility bills, and proof of payment ownership.

3.3 Technical and Behavioral Metadata

Every time you interact with Supersized, our systems log:

  • IP Address and Geolocation: To confirm you are playing from a legally permitted territory.

  • Device Information: Browser type, operating system, and hardware identifiers to optimize game performance.

  • Interaction Logs: Clickstream patterns and game preferences to personalize your experience and monitor for “bot” activity.

4. The Legal Grounds for Processing

Supersized does not process data without a valid legal basis. We rely on the following four pillars:

  1. Contractual Necessity: We need your data to fulfill our agreement with you (e.g., processing a bet).

  2. Legal Obligation: We must comply with global laws regarding identity verification and financial reporting.

  3. Legitimate Interests: To protect our platform from cyber-attacks and ensure a fair gaming environment.

  4. Consent: For non-essential activities like marketing newsletters or third-party cookies, which you can revoke at any time.

5. How We Utilize Your Information

Data at Supersized is used with surgical precision. We do not believe in broad-spectrum data mining; instead, we focus on three core areas: Operational Excellence, Integrity, and Customization.

5.1 Operational Delivery and System Maintenance

  • Transaction Integrity: We use your financial data to facilitate instantaneous deposits and ensure that your withdrawals are processed with maximum speed and accuracy.

  • Account Communication: Your contact information is utilized for critical system alerts, including password resets, security notifications, and confirmation of successful KYC (Know Your Customer) milestones.

  • Technical Optimization: By analyzing device metadata, we tailor the graphical output of our high-intensity games to match your hardware, ensuring a lag-free, “Supersized” experience even in the most visually demanding sectors of the platform.

5.2 The Defense Shield (Fraud & Integrity)

Security is the primary driver of our data usage. We employ behavioral analytics to:

  • Detect Account Takeovers: By establishing a baseline of your “normal” login patterns (location, time, device), we can instantly flag and block suspicious access attempts from unfamiliar origins.

  • Prevent Game Manipulation: We monitor wagering data to ensure that no automated scripts or AI “bots” are interfering with the fairness of our games.

  • AML Screening: We cross-reference transactional data with global watchlists to fulfill our legal duty in preventing financial crime and money laundering.

5.3 Personalized Marketing & Experience

Only with your explicit consent do we use your gaming history to curate exclusive offers. If you are a fan of high-stakes Table Games, we won’t clutter your inbox with unrelated promotions. Our marketing is targeted and efficient, providing value without being intrusive.

6. Data Retention: The “Vault” Timelines

Supersized adheres to a philosophy of “Data Purposefulness.” We do not keep information a second longer than is required by law or operational necessity.

6.1 Active Lifecycle

As long as your account remains active, we maintain your full profile to provide uninterrupted service and access to your complete financial history.

6.2 The Post-Account “Vault” (Statutory Retention)

Upon the closure of an account, we do not immediately erase all traces. To comply with international Anti-Money Laundering (AML) and Tax Transparency laws, we are mandated to move a “Core Data Set” into a secure, encrypted vault for a period of 5 to 10 years. This data includes:

  • Verification documents (ID scans).

  • Detailed financial transaction ledgers.

  • Critical communication logs regarding payouts.

6.3 Final Erasure and Anonymization

Once the statutory retention period has expired, our systems trigger a permanent purge. All personally identifiable information is deleted. Any data retained for long-term statistical analysis is strictly Anonymized, stripped of all identifiers so it can never be reconstructed to point back to a specific individual.

7. Security Infrastructure: Supersized Fortification

Protection at our scale requires multi-layered defense strategies to shield your information from the evolving threats of the digital world.

7.1 Advanced Encryption Protocols

  • Data in Transit: All communication between your device and our servers is shielded by TLS 1.3 (Transport Layer Security). This creates a secure, encrypted tunnel that renders your data unreadable to any third-party “eavesdroppers.”

  • Data at Rest: Once your information reaches our servers, it is encrypted using AES-256 (Advanced Encryption Standard). This is the same level of protection used by the world’s most secure financial institutions and intelligence agencies.

7.2 Physical Security and Cloud Isolation

Our servers are housed in ISO-certified data centers that feature:

  • 24/7 armed security and biometric access control.

  • Full redundancy to prevent data loss during power or hardware failures.

  • Specialized “Cold Storage” for highly sensitive identity documents, ensuring they are disconnected from the internet when not in active use.

7.3 Proactive Penetration Testing

We don’t wait for a breach; we look for them. Supersized employs elite cybersecurity firms to perform regular penetration tests. They attempt to find cracks in our defenses so that we can patch them before they can ever be exploited by malicious actors.

8. International Data Portability and Transfers

As a global platform, your data may be processed across different geographical regions. We ensure that these transfers are protected by Standard Contractual Clauses (SCCs) approved by the European Commission, guaranteeing that your privacy rights remain intact regardless of where the data is processed.

9. Your Rights as a Data Subject: The Supersized Charter

Under the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), you possess a suite of “Digital Liberties.” At Supersized, we provide a dedicated privacy dashboard to help you exercise these rights with absolute ease.

9.1 The Right of Access (Subject Access Request)

You have the absolute right to request a digital copy of all personal data we hold about you. We will provide this information in a portable, structured, and machine-readable format. This allows you to see exactly what “Supersized” data points are associated with your profile.

9.2 The Right to Rectification

Accuracy is critical, especially when processing large financial withdrawals. If any part of your profile—be it your name, address, or contact details—is inaccurate or outdated, you have the right to demand an immediate correction.

9.3 The Right to Erasure (“The Right to be Forgotten”)

You may request the deletion of your personal information if it is no longer necessary for its original purpose.

Important Note: As a regulated gaming entity, we are legally required to “vault” specific financial and identity records for a set period (usually 5–10 years) to comply with Anti-Money Laundering (AML) laws. In these cases, we will delete all non-essential data but must retain the legal minimum until the statutory clock expires.

9.4 The Right to Data Portability

You have the right to take your data with you. We can transfer your personal information directly to you or to another service provider, ensuring you are never “locked” into our ecosystem against your will.

9.5 The Right to Object or Restrict Processing

You may object to our processing of your data for direct marketing purposes at any time. Once you object, we will immediately cease all promotional broadcasts to your registered contact points.

10. Cookie Policy and Automated Tracking Protocols

To maintain the high-performance, immersive environment of Supersized, we utilize cookies and similar tracking technologies. These digital tools help us remember your path and optimize your experience.

10.1 Categories of Cookies Used

  • Essential Cookies: Vital for site navigation and security. They handle your secure login and the “Cashier” functions. These cannot be disabled if you wish to use the platform.

  • Analytical Cookies: These collect anonymized data on how players interact with the games, allowing us to identify and fix “lag” or technical bugs before they affect your play.

  • Preference Cookies: These remember your choices, such as your preferred language, sound levels, and visual interface settings.

  • Marketing Cookies: Used to deliver bonuses that actually fit your gaming style. These are only activated with your explicit, “Supersized” consent.

10.2 Managing Your Tracking

You can manage your cookie settings via our “Consent Center” or through your browser’s privacy settings. Note that disabling certain cookies may cause parts of the platform to lose their functionality.

11. Third-Party Disclosure: The Circle of Trust

Supersized does not participate in the “data brokerage” market. We never sell, rent, or trade your personal information for profit. However, to provide a world-class gaming experience, we share data with specific, vetted partners:

11.1 Game Software Developers

When you play a title from providers like NetEnt, Pragmatic Play, or Microgaming, we share a unique, anonymized “Session ID.” This ensures your wins are calculated correctly without revealing your full legal identity to the developer.

11.2 Payment Service Providers (PSPs)

To process your deposits and payouts, we must interact with global financial networks (e.g., Visa, Mastercard, Interac, or Crypto-processors). These partners are bound by strict PCI-DSS security standards and financial privacy laws.

11.3 Identity Verification Agencies

To prevent identity theft and fraud, we use third-party verification services. They cross-reference your ID documents against global databases to confirm authenticity. This data is transmitted via encrypted channels and is never stored by the verification agency longer than necessary for the check.

11.4 Legal and Regulatory Authorities

We are bound by law to disclose data to government bodies, tax authorities, or law enforcement if we receive a valid legal order or if we suspect criminal activity such as money laundering.

12. Protection of Minors

Supersized is a domain for adults only. We have zero tolerance for underage gaming.

  • Electronic Verification: Our registration system utilizes automated age-verification tools that scan global databases to confirm the user is 18+ (or the legal age in their territory).

  • Parental Controls: We strongly encourage parents to use filtering software such as Gamblock or Net Nanny to prevent minors from accessing the platform on shared family devices.

13. Automated Decision-Making and AI Sovereignty

To maintain the rapid-response security required in a high-stakes environment, Supersized utilizes sophisticated automated systems. These systems are designed to protect the integrity of the platform and the safety of your funds without human delay.

13.1 Security Profiling and Behavioral Baselines

Our proprietary AI creates a “Supersized” baseline of your typical activity.

  • The Logic: By understanding your usual login times, device hardware, and wagering patterns, the system can detect anomalies that suggest a compromised account.

  • The Intervention: If an automated check detects a “high-risk” event—such as a login from an IP address associated with a known data-breach origin—the system may automatically trigger a temporary account lock. This is a defensive protocol designed to prevent unauthorized withdrawals.

13.2 Responsible Gaming Analytics

We use data to protect our community from the risks of problem gambling.

  • Predictive Analysis: Our algorithms monitor for sudden shifts in behavior, such as chasing losses or excessive late-night deposits that deviate from your normal pattern.

  • Human-in-the-Loop: While the detection is automated, no major account restriction is permanent without a review by a human Safety Specialist. You have the right to contest any automated decision by requesting a manual review through our DPO.

14. The Data Protection Officer (DPO): Your Voice at Supersized

To ensure that our technology never outpaces our ethics, Supersized employs a dedicated Data Protection Officer (DPO). The DPO acts as an independent auditor, ensuring that player privacy is prioritized over commercial interests.

14.1 The Role of the DPO

You should contact the DPO if:

  • You believe your personal data has been handled in a way that is inconsistent with this policy.

  • You wish to exercise your “Right to be Forgotten” or submit a Subject Access Request.

  • You have technical questions regarding the AES-256 encryption or the “Cold Storage” protocols.

  • You suspect a potential data breach or unauthorized access to your account.

14.2 Official Contact Channels

We maintain a direct, encrypted line for all privacy-related inquiries:

  • Direct Email: dpo@supersized.com

  • Response Promise: Our office will acknowledge all formal privacy requests within 48 hours and provide a comprehensive legal response within 30 calendar days, as per GDPR requirements.

15. Modifications to the Privacy Charter

As digital laws and cybersecurity threats evolve, so too must our Privacy Policy. Supersized reserves the right to modify this charter to ensure it remains a robust shield for our players.

15.1 Notification of Substantial Changes

We do not hide our updates. If we make a significant change to how we process your data, we will:

  • Send a “Privacy Update” email to your registered address.

  • Display a mandatory notification window upon your next login.

  • Update the “Version Timestamp” at the footer of this document.

15.2 Continued Consent

By continuing to access the games and services within Supersized following an update, you signify your acceptance of the revised Privacy Policy. We encourage all players to re-read this charter at least once every six months to stay informed.

16. The Right to Lodge a Formal Complaint

We strive for perfection in data protection, but we acknowledge your right to seek external oversight. If you are unsatisfied with our DPO’s resolution, you have the absolute right to lodge a complaint with a Supervisory Authority.

  • In the EU, this is your national Data Protection Authority (DPA).

  • In other regions, this includes the Information Commissioner’s Office (ICO) or the relevant gaming commission in the jurisdiction where our license is held.

17. Final Compliance Declaration: The Privacy Vow

By entering the Supersized ecosystem, you are entrusting us with more than just your wagers; you are entrusting us with your digital identity. We conclude this policy with four immutable promises:

  1. Zero Monetization: We will never sell your personal data to third-party marketing firms.

  2. Ironclad Defense: We will continue to upgrade our encryption to the latest international military standards.

  3. Total Control: We will provide you with the tools to delete, move, or correct your data at any time.

  4. Absolute Transparency: We will always be clear about what we collect and why we need it.

18. Formal Acceptance of the Charter

By registering an account, depositing funds, or placing a wager within Supersized, you acknowledge that you have read, understood, and consented to this 3,000-word Privacy Policy. If you do not agree with any provision of this charter, you must immediately exit the platform and request the closure of your account.