Privacy Policy

This Privacy Policy explains how personal data is collected, used, and protected when you interact with cascades-casino via the cascades777.com website. It applies to all players, website visitors, and users of cascades777.com. The policy is effective as of November 6, 2025, and is designed to ensure transparency and compliance with applicable Canadian privacy and gambling legislation.

Who We Are

OBSERVE: The operator of cascades-casino at cascades777.com is Gateway Casinos & Entertainment Limited, with headquarters at 100-4400 Dominion Street, Burnaby, BC V5G 4G3, Canada. Part of The Catalyst Capital Group Inc., Gateway holds relevant gaming licenses in Ontario (AGCO, OLG) and British Columbia (BCLC), valid through 2025. While specific registration and tax numbers are not listed, all operations are conducted under applicable provincial gaming regulations.

Data Protection Contact: For privacy concerns, contact our data protection department at info@cascades777.com.
Press Inquiries: Email press@cascades777.com.
Physical Address: 100-4400 Dominion Street, Burnaby, BC V5G 4G3, Canada.

REFLECT: All privacy-related matters are managed in accordance with Canadian federal and provincial privacy laws and gambling regulations.

What Personal Data We Collect

OBSERVE: cascades-casino at cascades777.com collects the following categories of personal information:

Personal Identification Data: Full name, date of birth, address, email address, phone number, and other identifiers necessary for account creation and verification.
Technical Data: IP address, device information (model, operating system), browser type, access logs, and interaction timestamps collected for security and operational purposes.
Payment Data: Details provided for deposits and withdrawals, such as payment card or e-wallet information, transaction records, and billing addresses.
Behavioral Data: Game and betting history, website navigation patterns, click-stream data, preferences, and responsible gaming self-exclusion actions.
Cookies and Tracking Technologies: Session and persistent cookies, third-party analytics trackers, and advertising identifiers, used as detailed in the Cookies & Tracking Technologies section.

EXPAND: Data may also be received from third-party identity verification and payment service providers as required for compliance.

REFLECT: Collection is limited to what is necessary for lawful operation and regulatory compliance.

Legal Basis for Processing

OBSERVE: cascades-casino processes your personal data on the following legal grounds as established by Canadian law and industry standards:

User Consent: Explicit consent is obtained for optional activities such as marketing communications or non-essential cookies.
Contract Fulfillment: Processing is necessary for account creation, provision of casino services, payment transactions, and customer support under the user agreement.
Legitimate Interests: Data used for fraud prevention, system security, analytics, and service improvement, balanced against user privacy rights.
Legal Obligations: Compliance with KYC (Know Your Customer), AML (Anti-Money Laundering), gaming regulations, tax reporting, and responding to lawful requests from regulatory authorities.

REFLECT: All processing activities are documented and reviewed to ensure ongoing compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA), provincial privacy statutes, and applicable gambling laws.

Purpose of Processing

OBSERVE: Your personal data is processed for the following purposes:

Provision of Casino Services: Facilitating account management, game participation, payments, and customer support.
Service Improvement: Analyzing user behavior to enhance website functionality, game offerings, and user experience.
Marketing and Communications: Sending promotional offers and news, subject to your consent and opt-out rights.
Analytics: Aggregated data analysis to monitor site performance, detect trends, and ensure technical stability.
Fraud and Abuse Prevention: Monitoring for suspicious activity and ensuring compliance with gambling and financial regulations.

REFLECT: Each processing activity is aligned with a clearly defined legal purpose and subject to stringent access controls.

Disclosure & Sharing

OBSERVE: Personal data may be disclosed in the following circumstances, strictly for legitimate purposes:

Payment Partners: Sharing necessary data with banks, e-wallet providers, and payment processors to facilitate secure transactions.
Service Providers: IT, hosting, analytics, and security vendors who process data under contractual confidentiality and data protection obligations.
Regulatory Authorities: Disclosure to provincial gaming regulators (AGCO, OLG, BCLC) and law enforcement as required by law.
Affiliates: Data shared with affiliate marketing partners only with your consent or as required for campaign attribution.
Advertising Networks: Information shared with advertising partners for targeted marketing, always subject to your opt-in consent.

EXPAND: All third-party disclosures are governed by data processing agreements ensuring compliance with Canadian privacy standards.

REFLECT: Data is never sold or disclosed for unrelated purposes without explicit consent.

International Transfers

OBSERVE: While cascades-casino primarily operates and stores data within Canada, some data may be transferred to third parties or service providers in other countries when necessary for payment processing, IT services, or analytics.

Protection Guarantees: All transfers outside Canada are subject to adequate safeguards, including standard contractual clauses, data processing agreements, and, where relevant, adherence to international frameworks such as the APEC Cross-Border Privacy Rules.
Service Provider Locations: Data may be processed in the United States, European Economic Area, or other jurisdictions with comparable data protection regimes.

REFLECT: Users are notified where material international transfers occur, and cascades-casino ensures that your rights and protections remain in force regardless of location.

Data Retention

OBSERVE: Personal data is retained only for as long as necessary to fulfill the purposes described in this policy or to comply with legal and regulatory obligations:

Account Data: Retained for the duration of your active account and for up to five (5) years after closure to meet regulatory retention requirements.
Payment and Transaction Records: Maintained for at least five (5) years post-transaction, in compliance with AML/KYC regulations.
Behavioral and Technical Data: Aggregated or anonymized after one (1) year, unless required for ongoing dispute resolution or fraud investigations.
Deletion Criteria: Data is deleted upon user request (subject to regulatory limitations), expiration of retention periods, or when processing is no longer necessary.

REFLECT: All data deletion is logged and verified to ensure compliance with legal and regulatory standards.

Your Rights

OBSERVE: In accordance with Canadian law, cascades-casino at cascades777.com recognizes your fundamental privacy rights. These rights are harmonized with leading international standards, including the GDPR, for maximum user protection.

Right of Access: You may request a copy of your personal data held by cascades-casino, free of charge. Requests are processed within 30 days.
Right to Rectification: You can request correction of inaccurate or incomplete data at any time.
Right to Erasure: You may request deletion of your personal data, subject to regulatory retention requirements.
Right to Restrict Processing: You can request temporary suspension of data processing where accuracy or legal grounds are contested.
Right to Object: You have the right to object to processing for direct marketing or where processing is based on legitimate interests.
Right to Data Portability: You may request a structured, machine-readable copy of your data for transfer to another provider.
Withdrawal of Consent: You may withdraw consent for marketing communications or non-essential data processing at any time.

Exercising Your Rights: Submit requests to info@cascades777.com. All requests are processed within 30 days, free of charge unless manifestly unfounded or excessive.
Regional Compliance: While cascades-casino does not operate in Mexico, its privacy practices are aligned with global standards for user protection.

REFLECT: Rights are implemented in accordance with PIPEDA and provincial laws, with procedures in place to verify identity and ensure lawful processing.

Cookies & Tracking Technologies

OBSERVE: cascades-casino uses cookies and similar tracking technologies to deliver, analyze, and personalize services on cascades777.com.

Session Cookies: Enable core website functions and expire when you close your browser.
Persistent Cookies: Remember user preferences and login details for future visits.
Third-Party Cookies: Used by analytics providers (e.g., Google Analytics) and advertising partners, with user consent.
Functional Cookies: Necessary for website performance and user authentication.
Analytics Cookies: Collect anonymized data to improve service quality.
Advertising Cookies: Enable personalized marketing content, subject to your consent.

Managing Cookies: You can control or disable cookies via browser settings or internal account preferences. Blocking cookies may impact website functionality.

REFLECT: Full details are provided in the cascades-casino Cookie Policy at cascades777.com.

Data Security

OBSERVE: cascades-casino implements robust technical and organizational measures to protect your data:

Encryption: All data in transit is secured with TLS 1.2+; sensitive data at rest is encrypted using industry-standard protocols.
Access Controls: Strict access permissions, multi-factor authentication, and role-based controls for staff.
Security Audits: Regular internal and external security assessments, including penetration testing and vulnerability scans.
Staff Training: Ongoing privacy and security training for all employees handling personal data.
Incident Response: Documented procedures for detecting, reporting, and mitigating data breaches or unauthorized access, with prompt user notification where required by law.
Compliance: Security processes aligned with ISO 27001 and SOC 2, where applicable.

REFLECT: All measures are reviewed annually and updated in line with regulatory and technological developments.

Complaints & Contacts

OBSERVE: If you have questions, concerns, or wish to lodge a complaint regarding your personal data, please use the following channels:

Email: info@cascades777.com
Postal Address: 100-4400 Dominion Street, Burnaby, BC V5G 4G3, Canada
Online Feedback: Contact form functionality will be available via your account dashboard (if specified in future updates).

Complaint Procedure: Submit your concern in writing, including relevant details. You will receive an acknowledgment within 5 business days.
Investigation: cascades-casino will investigate and respond in detail within 30 days.
Escalation: If unsatisfied, you may escalate to the Office of the Privacy Commissioner of Canada:
- Website: https://www.priv.gc.ca/
- Phone: 1-800-282-1376
- Mail: 30 Victoria Street, Gatineau, Quebec K1A 1H3, Canada

REFLECT: All complaints are handled confidentially and in accordance with Canadian privacy law.

Updates

OBSERVE: cascades-casino at cascades777.com may update this Privacy Policy to reflect changes to legal requirements, technological advancements, or business practices. Users will be notified of material changes at least 30 days in advance via:

Email Notification: Sent to the registered email address.
Website Banner: Prominent message on cascades777.com.
Account Dashboard Alert: Notification upon login for affected users.

REFLECT: All updates are version-controlled, with a changelog summarizing substantive amendments. Users may object to changes or close their account within the notice period. The current version is effective as of November 6, 2025.

Last updated: November 6, 2025

Changelog: Updated retention periods, clarified international transfer safeguards, and expanded user rights procedures.