About this Privacy Document

• What we collect
  • Identification and contact: full name, CPF or other ID data, date of birth, address, email, phone.
  • Account and compliance: KYC documents, selfies, proof of address, sanctions and PEP screening results, responsible gaming settings (limits, self-exclusion).
  • Payment and transactions: PIX identifiers and payer details as provided by payment service providers, bank account information required to complete deposits or withdrawals, card or e-wallet tokens (no storage of full card PANs), transaction amounts, timestamps, and receipts.
  • Technical and usage: device identifiers, IP address, browser type, operating system, app version, language, geolocation approximations, access logs, interaction data, cookies.
  • Preferences and communications: marketing preferences, communication history, support tickets, surveys.
• Why we collect it
  • To create and manage accounts, provide services, process payments, verify identity, prevent fraud, enforce betting and gaming rules, support responsible gambling, and meet legal and regulatory requirements.
• Legal bases for processing under Brazilian LGPD
  • Consent for optional features and marketing communications.
  • Contract performance for account creation, wagers, and payment processing.
  • Legal or regulatory obligation, including anti-money laundering and recordkeeping.
  • Legitimate interests such as service security, fraud prevention, analytics, and improvement, balanced against user rights.
• Security measures
  • Encryption in transit (TLS) and at rest for sensitive records.
  • Strict access controls, least-privilege permissions, multi-factor authentication for staff.
  • Network segmentation, firewalls, and continuous monitoring.
  • Vendor due diligence and confidentiality obligations for processors.
  • Incident response procedures and audit logging.
• Rights of users under LGPD
  • Confirmation of processing and access to personal data.
  • Correction of incomplete, inaccurate, or outdated data.
  • Anonymization, blocking, or deletion of unnecessary or excessive data, or data processed in non-compliance.
  • Portability to another service provider where applicable.
  • Deletion of data processed on the basis of consent.
  • Information about public and private entities with whom data is shared.
  • Information about the possibility of refusing consent and the consequences.
  • Revocation of consent at any time.
  • Review of automated decisions that affect interests.

Cassino Pix operates in accordance with the Brazilian General Data Protection Law (LGPD, Law No. 13,709/2018), the Brazilian Internet Act (Marco Civil da Internet, Law No. 12,965/2014), and guidance from ANPD. Processing also aligns with recognized international standards such as GDPR principles where relevant.

• Account and service delivery
  • Register and authenticate users, manage profiles, provide casino and sportsbook services, process wagers, and settle outcomes.
• Payments and withdrawals
  • Process deposits and payouts through PIX and other providers, verify ownership, prevent chargebacks, and keep transaction records.
• Security and compliance
  • Conduct KYC/AML checks, sanctions screening, fraud prevention, geolocation controls, responsible gaming monitoring, and risk assessments.
• Support and operations
  • Provide customer support, investigate incidents, respond to requests, and maintain logs for troubleshooting.
• Improvement and analytics
  • Analyze usage to enhance performance, usability, and reliability of online services, and to develop new features.
• Communications and marketing
  • Send service notices and, where consented, personalized offers and newsletters. Users may change preferences at any time.

Processing is lawful, necessary for specified purposes, and carried out transparently. Data is not sold. Profiling may be used for fraud detection and responsible gambling, subject to rights to request human review.

• Submitting a request
  • Email the Data Protection Officer at privacy@cassinopix.com and specify the right you wish to exercise. A verification step will confirm identity.
  • A simplified statement is provided promptly and comprehensive responses are provided within applicable LGPD timelines.
• Updates and corrections
  • Users can update certain information in account settings. For records locked by compliance, requests are reviewed case by case.
• Deletion and retention
  • Deletion requests for data processed on consent are honored unless retention is required for legal or regulatory reasons. Financial and AML records may be retained for at least 5 years or longer where law requires.

By using Cassino Pix, users consent to identity verification, security checks, and the processing of payment information by approved providers to complete transactions and prevent fraud.

• Services are intended for individuals aged 18 or older in Brazil.
• Age cannot be verified without documents. Proof of age may be requested during verification.
• If a child’s personal data is identified, a parent or legal guardian may contact privacy@cassinopix.com to request deletion. Reasonable steps will be taken to remove the information and disable any related account.

Personal data may be stored or processed outside Brazil where technology, payment, compliance, or support partners operate. Appropriate safeguards are applied, including data processing agreements, Standard Contractual Clauses where applicable, and confidentiality commitments. Use of the site signifies consent to international transfers needed to provide services and fulfill legal obligations. All partners are required to protect confidentiality and use information only for contracted purposes.

A legal disclaimer may clarify or limit how rules are interpreted in specific cases, such as compliance, risk, or security incidents. The disclaimer takes effect when the user indicates agreement to this Privacy Policy, whether by signature, acceptance during registration, or accession through continued use. Updates may occur to reflect changes in law or services. Material changes will be highlighted by updating the effective date and making the revised document available on the websites.

• What cookies are
  • Small text files placed on a device to store settings and identifiers that help operate and improve online services.
• How we use them
  • Strictly necessary cookies for core functions such as login and security.
  • Preference cookies to remember language and region.
  • Analytics cookies to understand behavior and measure performance.
  • Advertising cookies to deliver relevant content where permitted by consent.
• Retention
  • Non-essential cookies are retained for up to 1 year, after which they expire or are refreshed if consent remains valid.
• Control
  • Browser settings and the on-site cookie manager can be used to manage preferences. Certain features may not function without required cookies.

Use of Cassino Pix signifies full acceptance of this Privacy Policy and any future amendments. The current version published on the websites prevails over any prior versions. Continued use after updates indicates ongoing agreement, subject to applicable consent requirements for material changes.

Personal data may be shared in the following situations:

• Service providers acting on instructions, such as payment processors (including PIX participants), banks, identity verification vendors, fraud-prevention agencies, analytics platforms, cloud hosting, and customer support tools.
• Legal, regulatory, and dispute matters, including courts, regulators, ANPD, law enforcement, and alternative dispute resolution bodies when required by law or to establish, exercise, or defend legal claims.
• Corporate transactions, such as mergers or transfers, subject to confidentiality and continued protection.

Where a list of third parties is published on the site, that list governs. If not, the purpose and scope will be communicated before or at the time of sharing whenever required. Providing personal information constitutes consent to such sharing for the stated purposes, along with other applicable legal bases.

Websites or apps may include links to external services that operate their own privacy practices. Cassino Pix does not control those websites and is not responsible for how they process information. Users should review the privacy policy of each external site and proceed carefully when leaving our environment.

Contact and Complaints

• Data Protection Officer: privacy@cassinopix.com
• If a concern remains unresolved, users may contact the Brazilian National Data Protection Authority (ANPD) to lodge a complaint.