Privacy Policy

1. Introduction

IZIGROUP understands that your privacy is important to you and that you care about how your personal data is used and shared. We respect and value the privacy of everyone who visits any of our gaming premises or the websites, https://izigroup.com (the “Online Site”), and will only collect and use personal data in ways that are described here, and in a manner that is consistent with our obligations and your rights under the law.

Please read this Privacy Policy (the “Policy”) carefully and ensure that you understand it. Your acceptance of Our Privacy Policy is deemed to occur upon your first use of Our Service. If you do not accept and agree with this Privacy Policy, you must stop using Our Service immediately.

We promise:

• To keep your data safe and private
• To give you ways to manage and review your marketing choices at any time

2. Definitions and Interpretation

In this Policy, the following terms shall have the following meanings:

“Cookie” means a small text file placed on your computer or device by Our Online Site when you visit certain parts of the Online Site and/or when you use certain features of the Online Site.

“Data Controller” is the company that determined the purposes and means of the processing of personal data under this Privacy Policy. JGS Corporate Holdings Limited acts in its capacity of Data Controller in terms of the EU Regulation 2016/679, determining the purposes and means of the processing of your personal data.

“Data Processor” is the person that processes the personal data registered and provided to the Data Controller on its behalf. The Data Processor includes the various subsidiaries forming part of IZIGROUP, who has the right to access and process all your personal data registered with Us.

“Personal Data” means any and all data that relates to an identifiable person who can be directly or indirectly identified from that data. In this case, it means personal data that you give to Us in person or via Our Online Site. This definition shall, where applicable, incorporate the definitions provided in the EU Regulation 2016/679 – the General Data Protection Regulation (“GDPR”);

“Service(s)” means the purchasing of a ticket and/or making use of a gaming service from our group of companies’ gaming premises and/or from the Online Site.

“We/Us/Our” means the IZIGROUP, and the Online Site ( https://izigroup.com ) is owned by JGS Corporate Holdings Limited, a Maltese registered company pursuant to section 77 of the Companies Act 1995, holder of company registration number C34215, with its registered offices situated at The Quad Central, Q3, Level 11, Triq l-Esportaturi, Zone 1, Central Business District, Birkirkara, CBD 1040, Malta.

3. What Does This Policy Cover?

This Privacy Policy applies only to your use of our premises and the Service. Our Online Site may also contain links to other websites. Please note that We have no control over how your data is collected, stored, or used by other websites and We advise you to check the privacy policies of any such websites before providing any data to them.

4. Your Rights

You have the following rights under the GDPR, which this Policy and Our use of personal data have been designed to uphold:

• The right to be informed about Our collection and use of personal data
• The right of access to the personal data We hold about you
• The right to rectification if any personal data We hold about you is inaccurate or incomplete
• The right to be forgotten – i.e., the right to ask Us to delete any personal data We hold about you
• The right to restrict (i.e., prevent) the processing of your personal data
• The right to data portability (obtaining a copy of your personal data to re-use with another service or organization)
• The right to object to Us using your personal data for particular purposes
• The right to lodge a complaint to the relevant supervisory authority.

5. Data Collection

There are two (2) types of data We collect.

Data you give us:

When using any of Our Services you will be asked to provide Us with true, updated, and accurate information that will allow Us to identify you. We ask for and collect the following personal information about you when you use Our Services. This information is necessary for the adequate performance of the contract between you and Us and to allow Us to comply with Our legal obligations. Without it, We may not be able to provide you with all the requested services. We collect personal data, including your name and surname, date of birth, national identity document, ID document number, nationality, residential address, postal code, phone number, and email address. This data is processed for the purposes of player verification and customer due diligence measures arising out of the Know-Your-Customer Procedures (‘KYC’). The legal basis for this processing is Our legal obligation to comply with anti-money laundering laws and regulations and other regulatory requirements, such as age verification requirements.

When you use payment services, We need to collect certain financial information like banking details, your (encrypted) payment card information, and other documentation to process payments and to comply with applicable law, such as anti- money laundering regulations. Without it, you will not be able to use the payment services.

When you communicate with Us, We collect your personal data, including your name and surname, your email address, and any information about your communication. This data is processed for the purposes of providing you with a support service and in order to maintain accurate records of the information that We have received from you. We may combine the information provided by you with other information about you which is available from publicly available sources that may be relevant to your use of Our Services, for the purposes of verifying your identity and to prevent and detect crime and money laundering activities.

When you provide such information directly to us, including:

• When you create an account or use our interactive tools and Services.
• When you voluntarily provide information in free-form text boxes through the Services or through responses to surveys or questionnaires.
• When you send us an email, letter or otherwise contact us.

When We provide, customize and improve the Services by:

• Creating and managing your account or other user profiles.
• Processing orders or other transactions; billing.
• Providing you with the products, services or information you request.
• Meeting or fulfilling the reason you provided the information to us.
• Providing support and assistance for the Services.
• Improving the Services, including testing, research, internal analytics and product development.
• Personalizing the Services, website content and communications based on your preferences.
• Doing fraud protection, security and debugging.
• Carrying out other business purposes stated when collecting your personal data or as otherwise set forth in applicable data privacy laws.
• Marketing and selling the Services, including sending emails and other communications according to your preferences or that display content that We think will interest you.

Categories of third parties with whom we share this personal data:

• Credit and/or financial institutions
• Parties you authorize, access or authenticate
• Business partners, including software providers and fraud & risk management providers
• Payment Service providers including payment gateway providers

Data We automatically or manually collect:

When you use Our gaming premises and Our Online Site and the payments service, We automatically or manually collect information, including personal information and other information, about the Services you use and how you use them. This information is necessary for the adequate performance of the contract between you and Us and to allow Us to comply with legal obligations. Such information is also necessary on the basis of Our legitimate interest in being able to provide and improve the functionalities of Our Service and in preventing fraud.

When you access or use Our Services, We collect information such as your personal details, IP address location, information about the device(s), the domain server and the browser you use, and details of the web pages you have viewed. When payment services are used, We collect information related to payment transactions through Our Site including payment types, time and dates, payment amounts, payment type expiry date, email address, IBAN information and other related transactional details. This information is necessary for the provision of the payment services, to comply with applicable law and regulations (such as anti-money laundering regulations) and for anti-fraud monitoring purposes.

Categories of third parties with whom we share this personal data

• Service providers
• Parties you authorize, access or authenticate

We use Cookies and other tools for the purposes described above and to analyse traffic to the Online Site and customise content and advertising. For more information, please read Our Cookies Policy. We will ask you to consent to Our Cookies in accordance with the terms of this Policy when you first visit Our Site.

When you download our mobile application, Power Web Application (PWA), or use a location-enabled browser, we may receive information about your location and mobile device, as applicable.

When you download and install certain applications and software we make available, we may receive and collect information transmitted from your computing device for the purpose of providing you the relevant Services, such as information regarding when you are logged on and available to receive updates or alert notices.

Web Analytics

Examples of personal data we collect

• Web page interactions
• Referring webpage/source through which you accessed the Services
• Non-identifiable request IDs
• Statistics associated with the interaction between device or browser and the Services

Categories of Third Parties with whom we share this personal data

• Service providers
• Parties you authorize, access or authenticate
• We may use analytics providers to analyze how you interact and engage with the Services, or third parties may help us provide you with customer support.

Social Network Data

Examples of personal data we collect

• Email
• Phone number
• User name
• IP address
• Device ID

• Categories of third parties with whom we share this personal data

• Service providers
• Parties you authorize, access or authenticate

6. How Do We Use Your Data?

All personal data is processed and stored securely, for no longer than is necessary considering the reason(s) for which it was first collected. We will comply with Our obligations and safeguard your rights under the GDPR at all times.

Our use of your personal data will always have a lawful basis, either because it arises from a legal obligation due to the services provided, is necessary for Our performance of a contract with you, because you have consented to Our use of your personal data (e.g., by subscribing to emails or sending an email through a form), or because it is in Our legitimate interests. Specifically, We may use your data for the following purposes:

• To personalize and tailor your experience on Our records and Online Site.
• To provide Our Services to you (to fulfil this we require your personal data to enter a contract with you).
• To personalise and tailor Services for you.
• To reply to emails that you may send Us from time to time.
• To provide you with emails that you have opted into (you may unsubscribe or opt-out at any time by unsubscribing to this Service. This can be done by clicking on the unsubscribe link at the base of emails or by emailing Us directly.
• To conduct market research through which We can analyse the performance of Our Services. This will be in the form of requesting feedback from your end.

With your permission and/or were permitted by law, We may also use your data for marketing purposes which may include contacting you by email, telephone, text message, or post with information, news, and offers on the Online Site. We will not, however, send you any unsolicited marketing or spam and will take all reasonable steps to ensure that We fully protect your rights and comply with Our obligations under the GDPR.

Where and if applicable, the Data Controller uses the information collected to:

• Enable you to access and use the payment services;
• Investigate suspected unlawful, fraudulent or other improper activity connected with the use of the Site and to report a crime or suspected crime, including money laundering or fraud;
• Conduct security investigations and risk assessments;
• Conduct checks against databases and other information sources;
• Comply with legal obligations;
• Comply with requests for information from the relevant competent authorities;

7. Transactional and Security Updates

Whenever you complete a transaction on pur iGaming websites to play any one of the games online, We will inform you that your transaction has been processed successfully. Each transaction concluded with Us will trigger an automated email that will provide you with the details of the transaction, which can also serve as a written receipt of your transaction.

In terms of security, We want to assure you that We protect all the personal and financial information you provide to us.. We use industry-standard encryption technology to safeguard your data and employ strict security protocols to protect against any unauthorised access to your information. We will keep you informed of all security updates that We will upload to the system. If you have any questions or concerns about the security of your transaction, please do not hesitate to contact Us.

8. Storing your data

We do not keep your personal data for any longer than is necessary in light of the reason(s) for which it was first collected. Some or all of your data may be stored outside of the European Economic Area (“the EEA”) (The EEA consists of all EU member states, plus Norway, Iceland, and Liechtenstein). You are deemed to accept and agree to this by using Our Online Site and submitting information to Us. If We do store data outside the EEA, We will take all reasonable steps to ensure that your data is treated safely and securely under the GDPR.

9. Do We Share Your Data?

In certain circumstances, We may be legally required to share certain data held by Us, which may include your personal data, for example, where We are involved in legal proceedings, where we are complying with legal obligations, and/or requests made by a court order, or a governmental authority. We may access and share your data in response to a legal request if we believe, in good faith, that the law required us to do so, and/or if it is an international recognised standard which is necessary to:

• detect, prevent and address fraud, unauthorised use of the service, breaches of our Terms or Policies, or other harmful or illegal activity;
• protect Ourselves (including Our rights, property or Service), you, or others, including as part of investigations or regulatory enquiries;

The legal basis for this processing is Our legitimate interests, namely the protection and assertion of Our legal rights and proper protection of Our business against risks. Where appropriate, We may notify you about legal requests unless:

• providing notice is prohibited by the legal process itself, by any court order we receive, or by applicable law;
• We believe that providing notice would be futile, ineffective, or create or increase a risk of fraud upon us.

In those instances where We comply with any legal requests without providing you with a notice for these above reasons, We will attempt to notify you about the request after, when it is appropriate and where We deem fit and in good faith, provided further that We are no longer prevented from doing so.

We may sometimes contract with third parties to supply products and services to you on Our behalf. These may include payment processing, delivery of goods, search engine facilities, advertising, and marketing. In some cases, the third parties may require access to some or all of your data. Where any of your data is required for such a purpose, We will take all reasonable steps to ensure that your data will be handled safely, securely, and in accordance with your rights, Our obligations, and the obligations of the third party under the law.

We may compile statistics about the use of Our Services including data on traffic, usage patterns, user numbers, sales, and other information. All such data will be anonymized and will not include any personally identifying data, or any anonymized data that can be combined with other data and used to identify you.

We may share your personal data registered with Us to any member of Our group of companies operating under IZIGROUP, including all of Our subsidiaries, insofar as is reasonably necessary for the purposes of and on the legal bases set out in this Policy.

We may also share aggregated information (information about Our users that We combine together so that it no longer identifies or refers to one particular individual) and other anonymised information for regulatory compliance, industry and market analysis, demographic profiling, marketing and advertising, and other business purposes.

If We undertake or are involved in any merger, acquisition, sale of assets, bankruptcy, or insolvency event, then We may sell, transfer or share some or all of Our assets, including your information in connection with such transaction or in contemplation of such transaction. In this event, We will notify you before your personal information is transferred and becomes subject to a different privacy policy.

10. Protecting Your Information

The security of your personal data is important to Us. We have appropriate information policies, standards, and technologies in place, ensuring the security of Our Services and to protect your personal data from the point of collection to the point of destruction (including but not limited to encryption of personal data, data masking, administrative and technical access controls, security policy, etc).

11. How Can You Control Your Data?

When you submit personal data in person or via Our Online Site, you may be given options to restrict Our use of your data. In particular, We aim to give you strong controls on Our use of your data for direct marketing purposes (including the ability to opt-out of receiving emails from Us).

We will retain your personal data for the period necessary to perform the contract between you and Us and to comply with applicable regulations and standards relating to gambling and gaming, anti-money laundering, taxation, payment processing, complaint handling, the need to prevent or detect crime or another misuse of Our Services, audit requirements and marketing purposes. Accordingly, the Data Controller and/or the Payments Data Controller shall maintain your personal data for up to ten (10) years following the last data recorded by you. Where it is no longer necessary to process your personal data, it will be deleted or anonymized. Please note, however, that We may be subject to legal and regulatory requirements to keep your personal data for a longer period.

You have the right to have certain personal data erased or anonymised in the following cases:

• where it is no longer necessary for us to process;
• where you have withdrawn your consent, in those cases where the processing of date is based on your consent;
• where you have objected pursuant to section 4;
• where your personal data has been unlawfully processed;
• where erasing your personal data is required in accordance with a legal obligation

If you wish your data to be erased from Our database, please contact Us by email at [email protected].

If you request the erasure of your personal information:

• We can retain and use your personal information to the extent necessary to comply with Our legal obligations. For example, We may keep some of your information for tax, anti-money laundering reporting, and auditing obligations.
• We can retain some of your personal information as necessary for Our legitimate business interests, such as fraud detection and prevention, and enhancing safety.
• We can retain and use your personal information which We receive about you (including financial transaction data) which can be accessed and persevered for an extended period when it is the subject of a legal request or obligation, governmental investigation or investigations of possible breaches of Our Terms or Policies, or otherwise to prevent harm.
• We can retain some personal information in order to protect information from accidental or malicious destruction, when we delete/anonymise information from Our system, We may not immediately delete/anonymise residual copies from Our server or remove information from our backup systems. If deletion/ anonymisation is not possible (because the data has been stored in backup archives) then we will securely store, isolate, and safeguard your information from any further use until deletion/anonymisation can be possible.

Where We have specifically requested your consent to process your personal data and have no other lawful conditions to rely on, you have the right to withdraw this consent at any time by changing your Account setting or by sending an email to [email protected] specifying which consent you are withdrawing. Please note that the withdrawal of your consent does not affect the lawfulness of any processing activities based on such consent before the withdrawal. Applicable law may give you the right to limit the ways in which We use your personal information, in particular where:

• you contest the accuracy of your personal information;
• the processing is unlawful and you oppose the erasure of your personal information;
• We no longer need your personal information for the purposes of the processing, but you require the information for the establishment, exercise or defence of legal claims;
• you have objected to the processing pursuant to the next section and pending the verification whether the legitimate grounds of the Data Controller override your own.

Pursuant to section 4, you have the right to object to:

• the processing of your data where lawful basis exists, only if it is made in Our legitimate interest. We retain the right to process your personal data where We have compelling grounds to continue processing your personal data in Our interests which are not overridden by your rights, interests or freedoms.
• direct marketing, which can be done by opting-out of direct marketing either via your Account setting or by opting out via the communication itself.

To any profiling to the extent that it related to direct marketing only.

12. How Can You Access Your Data?

You have the right to ask for a copy of any of your personal data held by us (where such data is held). Under the GDPR, no fee is payable, and We will provide any and all information in response to your request free of charge. Please Contact Us for more details at [email protected] or via Live Chat if available.

13. Contacting Us

If you have any questions about this Privacy Policy or Our information handling practices, or if you are seeking to exercise any of your rights under the General Data Protection Regulation please contact Our Data Protection Officer at: [email protected].

The Data Controller responsible for your information is:

JGS Corporate Holdings Limited, a Maltese registered company pursuant to section 77 of the Companies Act 1995, holder of company registration number C34215, with its registered offices situated at The Quad Central, Q3, Level 11, Triq l-Esportaturi, Zone 1, Central Business District, Birkirkara, CBD 1040, Malta.

Please ensure that your query is clear, particularly if it is a request for information about the data We hold about you.

14. Changes to Our Privacy Policy

We may change this Privacy Policy from time to time. Any changes will be immediately posted on Our Online Site and you will be deemed to have accepted the terms of the Privacy Policy on your first use of Our Online Site following the alterations. We recommend that you check this page regularly to keep up to date.

Ver. 3.0.0 – 30th Septemeber 2025