burger icon
Kingmaker United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how Rabidi N.V., trading as "Kingmaker" and operating the Kingmaker version of the online casino at kingmeker.bet, collects, uses, discloses, and protects your personal data. It applies to visitors to our website, registered players, and any person who contacts us or uses our services. By using kingmeker.bet you acknowledge this Privacy Policy. The effective date of this version is 6 November 2025.

Who We Are

The data controller responsible for your personal data in connection with Kingmaker and the website kingmeker.bet is:

Rabidi N.V.
Scharlooweg 39, Willemstad, Curaçao
Legal entity type: N.V. (Naamloze Vennootschap)
Online gambling licence no. 8048/JAZ, issued by Antillephone N.V., Curaçao.

Rabidi N.V. owns and operates Kingmaker Casino and related brands. Kingmaker targets, among others, players located in the United Kingdom as a non-GamStop, grey-market online casino. It is not licensed by the UK Gambling Commission (UKGC), and UK-specific gambling protections such as GamStop self-exclusion and IBAS-approved ADR do not apply. This does not affect your rights under applicable data protection laws when you use kingmeker.bet.

For certain payment services, Tilaros Limited, established in Cyprus, acts as a payment processor or payment agent on our behalf. We may also operate through a shared backend platform provided by the Soft2Bet group and may share infrastructure with sister brands such as Wonaco, Lunubet, and Cazimbo, all under the Rabidi N.V. network, in line with this Privacy Policy.

Data protection contact / DPO-equivalent
Email (primary contact for privacy matters): [email protected]
Email (complaints and escalations): [email protected]
Postal: Data Protection Team, Rabidi N.V., Scharlooweg 39, Willemstad, Curaçao.

When contacting us about privacy, please indicate that your query relates to Kingmaker and include your account details (if any) to help us identify you.

What Personal Data We Collect

Account and Identity Data

  • Registration data: username, password, full name, date of birth, country of residence, preferred currency, chosen language, and contact details (email address, telephone number where provided).
  • Verification / KYC data: copies or details of identity documents (e.g. passport, ID card, driving licence), proof of address (e.g. utility bills, bank statements), source of funds/source of wealth information, and any information you provide to satisfy our "Know Your Customer" (KYC) and Anti-Money Laundering (AML) obligations.

Contact, Support and Communications Data

  • Support interactions: records of emails, messages and attachments you send to [email protected], [email protected], and via any live chat or contact forms available on kingmeker.bet.
  • Complaint and dispute records: internal notes, correspondence, outcomes and resolutions relating to service complaints, gambling disputes and privacy-related complaints.

Technical and Usage Data

  • Technical identifiers: IP address, device identifiers, browser type and version, operating system, time zone setting, and similar device information.
  • Log and security data: login dates and times, login attempts, session tokens, device fingerprints, approximate location derived from IP, error logs, and security-related events (e.g. failed logins, detected suspicious activity).
  • Website usage data: pages viewed, navigation paths, clicks, scrolls, time spent on pages, referring URLs, and interactions with banners, pop-ups, and cookie consent tools.

Gaming, Behavioural and Profile Data

  • Gaming history: bets placed, games played, outcomes, stakes, winnings and losses, bonus use, tournament participation, and in-game actions necessary to provide the service.
  • Behavioural data: frequency and timing of play, session duration, use of responsible gambling tools (e.g. deposit limits, wagering limits, reality checks), internal risk scores for fraud and AML, and generic player segmentation for operational and marketing purposes.
  • Self-exclusion and limitation data: where you set limits or request temporary or permanent exclusion using our internal tools, we process the related data. We do not integrate with UK GamStop, so any self-exclusion there does not automatically apply on kingmeker.bet.

Payment and Financial Data

  • Payment records: deposits, withdrawals, payment method type, account holder name, partial bank or card details (masked where possible), wallet identifiers, transaction identifiers, and payment status.
  • Processing partners data: identifiers and metadata generated by payment providers such as Tilaros Limited (Cyprus) and other financial intermediaries, including anti-fraud signals and risk flags.
  • We do not store full card numbers or CVV codes on our own systems where this can be avoided; this information is usually processed by PCI-DSS compliant payment processors acting on our instructions.

Marketing, Preferences and Cookies Data

  • Marketing preferences: your choices regarding email, SMS or push notifications, your consent status for promotional communications, and records of opt-ins/opt-outs.
  • Cookies and similar technologies: unique cookie identifiers, advertising IDs, pixels and web beacons that track visits and interactions as explained in the Cookies & Tracking Technologies section.

Legal Basis for Processing

Contractual Necessity

  • We process your personal data where it is necessary to perform the contract between you and Rabidi N.V. (UK GDPR Article 6(1)(b)), including:
    • creating and managing your Kingmaker player account at kingmeker.bet;
    • allowing you to place bets, participate in games and promotions, and receive payouts;
    • providing customer support and communicating about your use of our services.

Compliance with Legal Obligations

  • We process your personal data where necessary to comply with legal obligations (UK GDPR Article 6(1)(c)) under:
    • AML and counter-terrorist financing laws and regulations applicable to Rabidi N.V. and its payment partners;
    • record-keeping, accounting, tax and corporate governance obligations in Curaçao, Cyprus and other relevant jurisdictions;
    • responsible gambling, fraud and crime-prevention obligations imposed by our licence and by applicable laws;
    • data protection laws (for example, handling your rights requests and complying with retention requirements).

Legitimate Interests

  • We process personal data based on our legitimate interests (UK GDPR Article 6(1)(f)), provided these are not overridden by your rights and freedoms, including:
    • maintaining and improving the security, integrity and reliability of kingmeker.bet, including fraud detection and abuse prevention;
    • developing, testing and enhancing our games, systems and user experience;
    • performing statistical and analytical research to understand performance and player behaviour at an aggregated level;
    • protecting our legal rights, pursuing or defending legal claims, and managing business risks.

Consent

  • We rely on your consent (UK GDPR Article 6(1)(a)) where required by law, for example:
    • sending certain types of marketing communications by email, SMS or push notification;
    • placing and accessing non-essential cookies or similar tracking technologies on your device;
    • processing any additional information you voluntarily provide that is not strictly necessary for our services.
  • You may withdraw your consent at any time, as described in the "Your Rights" and "Cookies & Tracking Technologies" sections. Withdrawal will not affect the lawfulness of processing carried out before withdrawal.

Vital Interests and Legal Claims

  • In rare cases, we may process data to protect the vital interests of you or another person (UK GDPR Article 6(1)(d)), for example where we reasonably believe someone is at serious and imminent risk of harm.
  • We may also process data where necessary to establish, exercise or defend legal claims, which may rely on legitimate interests or, where applicable, on specific legal grounds under relevant laws.

Purpose of Processing

Provision and Management of Casino Services

  • Account operation: to register your account on the Kingmaker environment of kingmeker.bet, authenticate you, manage your profile, and administer your balances, bonuses and loyalty features.
  • Gaming and betting: to enable you to place bets, participate in casino games and tournaments, credit winnings, and implement game rules and mechanics.

Payments, Verification and Compliance

  • Payments: to process deposits and withdrawals through payment partners such as Tilaros Limited and other financial institutions, and to prevent fraud or unauthorised transactions.
  • KYC/AML: to verify your identity, age, location and source of funds, and to monitor transactions for suspicious activity in line with AML laws and our licence 8048/JAZ obligations.
  • Responsible gambling: to manage internal self-exclusion and limitation tools, monitor problematic behaviour and implement protective measures, even though GamStop and other UKGC-mandated schemes are not integrated.

Service Improvement and Analytics

  • Service optimisation: to analyse performance, fix bugs, improve site stability, and adapt games and features to player preferences.
  • Analytics and statistics: to produce aggregated or anonymised reports about site usage, game popularity and marketing performance, without identifying individual players in published statistics.

Marketing and Personalisation

  • Promotional communications: to send you offers, bonuses, surveys and news about Kingmaker and, where permitted, other brands in the Rabidi N.V. network, based on your preferences and consent.
  • Personalised content: to tailor bonuses, recommendations and website content based on your previous activity, within the limits of applicable laws and your consent choices.

Security, Fraud Prevention and Legal Protection

  • Security and integrity: to protect our systems and players from fraud, hacks, bots, abuse, money laundering, and other prohibited activities.
  • Legal and regulatory purposes: to comply with applicable laws, respond to lawful requests from authorities, cooperate with regulators (including Curaçao authorities and, where applicable, UK or EU agencies), and enforce our Terms and Conditions.

Disclosure & Sharing

Group Companies and Operational Partners

  • Rabidi N.V. group: we may share personal data with other entities under the Rabidi N.V. network (e.g. sister brands such as Wonaco, Lunubet, and Cazimbo) and with the Soft2Bet platform provider, where necessary for centralised operations, IT support, risk management and internal reporting.
  • Payment partners: banks, card schemes, e-wallets, payment gateways and processors such as Tilaros Limited in Cyprus, which handle deposits and withdrawals, fraud screening and chargeback management.

Service Providers and Contractors

  • Technical and security providers: hosting providers, cloud infrastructure services, content delivery networks (CDNs), cybersecurity and anti-fraud solution providers, and analytics providers.
  • KYC, AML and verification providers: identity verification services, sanctions and PEP screening tools, and transaction monitoring systems that assist us in complying with AML/CTF requirements.
  • Marketing and advertising networks: email delivery platforms, customer relationship management tools, affiliate tracking systems, and where consented, advertising networks and partners that assist in running campaigns for kingmeker.bet.

Authorities, Regulators and Dispute Bodies

  • Regulators and law enforcement: Curaçao licensing and supervisory bodies, tax authorities, financial intelligence units, courts and law enforcement agencies in relevant jurisdictions where we are legally required to disclose information.
  • Alternative dispute channels: in the event of gambling disputes, we may share necessary data with the Curaçao licensing authority or via the Antillephone N.V. licence validator linked through the shield icon in our website footer. This is separate from data protection supervisory authorities mentioned in the Complaints & Contacts section.

Corporate Transactions and Legal Protection

  • Corporate events: in connection with any merger, sale of assets, restructuring, acquisition or similar transaction involving Rabidi N.V. or its group, your data may be disclosed to potential or actual purchasers, their advisers, and our advisers, subject to confidentiality.
  • Legal claims: we may share data with legal advisers, auditors, consultants and other professionals where necessary to obtain advice, protect our rights, or defend claims.

We do not sell your personal data in the sense of transferring it to third parties for their independent marketing purposes without a lawful basis and, where required, your consent.

International Transfers

Countries and Regions Involved

  • Curaçao: your data is processed and stored by Rabidi N.V. in Curaçao, where we are registered and licensed under number 8048/JAZ.
  • Cyprus and other EEA states: payment and technical services, including Tilaros Limited, may be located in Cyprus or elsewhere in the European Economic Area (EEA).
  • United Kingdom and other regions: some service providers and infrastructure may be located in the UK or in other countries outside Curaçao and the EEA, including, where relevant, the United States or other third countries.

Legal Safeguards

  • Where we transfer personal data from the UK or EEA to a country that is not deemed to provide an adequate level of protection, we implement appropriate safeguards, such as:
    • Standard Contractual Clauses (SCCs) and/or the UK International Data Transfer Agreement (IDTA) or Addendum approved by the Information Commissioner's Office (ICO);
    • technical and organisational measures (encryption, access controls, minimisation) to reduce transfer-related risks;
    • regular assessments of the laws and practices of the recipient country.
  • Where we transfer data to providers in countries covered by an adequacy decision or similar arrangement (for example, where a UK-US or EU-US data transfer framework applies), we rely on those decisions where appropriate.

You may request more information about the safeguards used for international transfers, or a copy of the relevant contractual commitments, by contacting us using the details in the "Who We Are" or "Complaints & Contacts" sections (subject to redactions for security and confidentiality).

Data Retention

Retention Principles

  • We retain personal data only for as long as necessary to fulfil the purposes set out in this Privacy Policy, including to meet legal, accounting, AML and reporting requirements.
  • We apply specific retention periods depending on the category of data, and we securely delete, anonymise or irreversibly de-identify data when the relevant period expires or when the data is no longer required.

Retention Periods by Category

  • Account and identity data: typically retained for up to 5 years after account closure or our last interaction with you, to comply with AML and record-keeping obligations and to handle potential disputes.
  • KYC and AML documentation: copies of ID documents, proof of address and related AML records are usually retained for 5 years following the end of the business relationship or the date of the last transaction, unless a longer period is legally required.
  • Transaction and payment data: financial and accounting records are generally kept for up to 7 years from the relevant transaction date, in line with tax and accounting laws.
  • Gaming and behavioural data: betting history, game logs and responsible gambling records are usually kept for up to 5 years from creation or account closure, to support responsible gambling, security and regulatory obligations.
  • Marketing data: information about your marketing preferences is kept until you withdraw consent or object, and for a limited period (typically up to 3 years) after your last interaction with us to evidence compliance.
  • Complaints and dispute files: records of complaints, regulatory investigations and legal disputes are normally retained for up to 6 years after closure of the matter, in line with typical limitation periods.
  • Cookies and similar technologies: stored for the duration indicated in our cookie tools and browser settings, usually from the end of the session up to 24 months, depending on the cookie type.

In exceptional circumstances (e.g. ongoing investigations, legal claims, or requests from authorities), we may retain relevant data beyond the standard periods until the matter is fully resolved. Once data is no longer needed, we will delete or anonymise it in a secure manner.

Your Rights

Rights under UK GDPR and EU GDPR

  • Right of access: to obtain confirmation whether we process your data and to receive a copy of your personal data, together with information about how and why we process it.
  • Right to rectification: to ask us to correct inaccurate or incomplete personal data. You can update some details directly through your kingmeker.bet account.
  • Right to erasure ("right to be forgotten"): to request deletion of your data where there is no compelling reason for us to continue processing (for example, where it is no longer necessary for the purposes collected, or you withdraw consent and we have no other lawful basis). This right may be limited by AML, accounting and regulatory obligations.
  • Right to restriction: to request that we temporarily restrict the processing of your data, for example while we verify its accuracy or our grounds for processing.
  • Right to object: to object to processing based on our legitimate interests, including profiling, and to object at any time to direct marketing (including profiling for marketing purposes).
  • Right to data portability: to receive certain personal data you have provided to us in a structured, commonly used, machine-readable format and to request that we transmit that data to another controller where technically feasible.
  • Rights related to automated decision-making: to request human review of decisions that are based solely on automated processing, where such decisions have legal or similarly significant effects on you (for example, certain fraud or risk decisions).
  • Right to withdraw consent: where processing is based on your consent (e.g. marketing, non-essential cookies), you may withdraw consent at any time without affecting prior lawful processing.

Alignment with Mexican ARCO Rights

Although Rabidi N.V. is established in Curaçao and focuses on players from the UK and other markets, we aim to align our practices with international standards, including the Mexican Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP) and its Regulations. In particular, we support rights that correspond to the Mexican ARCO framework:

  • Access: you may request confirmation of whether we hold your personal data and receive information about its processing, equivalent to the access right under LFPDPPP.
  • Rectification: you may correct or update inaccurate or incomplete personal data.
  • Cancellation: you may request that we cancel (delete) your personal data when it is excessive, unnecessary or no longer needed for the purposes that justified its processing, subject to AML and legal retention obligations.
  • Opposition: you may oppose certain processing activities, particularly those related to marketing or profiling, when you have a legitimate reason to do so.
  • Revocation and limitation of use/disclosure: where we rely on consent, you may revoke it and request that we limit the use or disclosure of your data, especially for promotional purposes.

How to Exercise Your Rights

  • Submitting a request: you can exercise your rights by emailing [email protected] or [email protected] with the subject "Data Protection Request - Kingmaker". Please describe your request clearly and include sufficient information to identify you (such as your username, registered email address and country of residence).
  • Verification: to protect your privacy, we may ask you for additional information or documentation to verify your identity before executing your request.
  • Timeframe: we aim to respond to all valid requests within 30 days of receipt and verification. For complex or multiple requests, we may extend this period by up to two further months, in which case we will inform you of the extension and reasons.
  • Cost: we handle rights requests free of charge. However, where a request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to act, as permitted by law.

These rights apply in addition to any rights you may have under the laws of the country where you reside. Where local law provides stronger protections, we will respect those to the extent required.

Cookies & Tracking Technologies

Types of Cookies We Use

  • Strictly necessary cookies: essential for the operation of kingmeker.bet, enabling core functions such as page navigation, secure login, account management and placing bets. These cookies are usually session-based and do not require your consent.
  • Functional cookies: enable enhanced functionality and personalisation, such as remembering language, region, or your preferences for the Kingmaker interface.
  • Analytics and performance cookies: help us understand how visitors use the site, which pages are most popular, and how campaigns perform, so we can improve our services. These may be set by us or by third-party analytics providers.
  • Advertising and targeting cookies: used to deliver relevant marketing content on and off kingmeker.bet, measure campaign effectiveness, and limit the number of times you see a particular advert. These may involve third-party ad networks and affiliate partners.

Similar Technologies

  • We may use tracking pixels, web beacons, SDKs, device fingerprinting and server logs to collect information about your interactions with our emails, banners, and website features, for security, analytics and marketing purposes.

Managing Cookies and Preferences

  • Consent and preference centre: on your first visit, and periodically thereafter, you may be presented with a cookie banner or preferences panel that allows you to accept or reject non-essential cookies and manage categories of tracking technologies.
  • Browser settings: you can configure your browser to block or delete cookies. Doing so may impact the functionality of kingmeker.bet, particularly strictly necessary and functional cookies.
  • Advertising choices: you may use tools offered by some advertising industry bodies or device settings (e.g. "Limit Ad Tracking" on mobile devices) to limit targeted advertising.

For more detailed information about specific cookies and lifetimes used on kingmeker.bet, you can consult the cookie information provided in our consent tools or by contacting us.

Data Security

Technical and Organisational Measures

  • Encryption: data in transit between your browser and kingmeker.bet is protected using TLS 1.2+ or higher. Where appropriate, we apply strong encryption (such as AES-256) to data at rest.
  • Access controls: personal data is stored in secure environments with strict access controls based on job role and need-to-know principles. Administrative access is protected using strong authentication methods, including multi-factor authentication where feasible.
  • Network and application security: we use firewalls, intrusion detection/prevention systems, anti-malware tools, and secure development practices to reduce vulnerabilities and protect against unauthorised access.
  • Logging and monitoring: key systems and transactions are logged and monitored for suspicious activity, fraud indicators and operational anomalies.

Governance, Training and Assurance

  • Policies and procedures: we maintain internal policies for data protection, information security, access management, incident response and retention, aligned with recognised industry standards.
  • Staff training: employees and contractors with access to personal data receive training on confidentiality, information security, AML/KYC requirements and data protection responsibilities.
  • Audits and testing: we conduct regular security assessments, including vulnerability scans and, where appropriate, penetration testing, and address identified risks in a prioritised manner.
  • Standards alignment: our controls are designed to be consistent with widely recognised frameworks such as ISO 27001 and SOC 2. Unless explicitly stated, kingmeker.bet is not formally certified under these standards, but we adopt many of their core principles.

Incident Response and Breach Notification

  • We maintain incident response procedures to detect, respond to and remediate suspected personal data breaches.
  • Where a breach is likely to result in a risk to your rights and freedoms, we will notify the appropriate data protection supervisory authority (such as the UK ICO) without undue delay and, where required by law, inform affected individuals as soon as reasonably practicable, providing information and guidance to help reduce any potential impact.

Complaints & Contacts

Contacting Us

  • General support and privacy queries: [email protected]
  • Complaints and escalations: [email protected]
  • Postal address: Data Protection Team, Rabidi N.V., Scharlooweg 39, Willemstad, Curaçao
  • Via website: through any live chat or contact form made available on https://kingmeker.bet, referencing that your issue relates to Kingmaker.

Internal Complaint Procedure

  1. Step 1 - Initial contact: contact our customer support team or Data Protection Team with details of your concern, including relevant dates, screenshots and correspondence.
  2. Step 2 - Investigation: we will acknowledge receipt of your complaint and investigate it. For privacy-related issues, we aim to provide a substantive response within 30 days of receiving all necessary information.
  3. Step 3 - Escalation: if you are not satisfied with the initial outcome, you may request escalation to a senior manager or our Data Protection contact. We will review the matter again and provide a final internal response.

External Escalation to Data Protection Authorities

  • United Kingdom: if you are located in the UK and are unhappy with how we handle your personal data or any privacy complaint, you have the right to contact the Information Commissioner's Office (ICO):
    Website: https://www.ico.org.uk.
  • Mexico: individuals in Mexico may raise concerns with the National Institute for Transparency, Access to Information and Personal Data Protection (INAI) in relation to rights under the LFPDPPP:
    Website: https://www.inai.org.mx.
  • European Union/EEA: if EU/EEA data protection law applies to you, you may lodge a complaint with your local data protection authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement.

You are encouraged to first give us the opportunity to address your concern directly, but you are not obliged to contact us before approaching a supervisory authority.

Gambling-Related Disputes

Gambling-related service disputes (such as bet settlement or game outcomes) are handled under our Terms and Conditions and Curaçao licence framework. After exhausting our internal procedure, you may, where applicable, escalate certain disputes via the Antillephone N.V. licence validator accessible through the shield icon in the footer of kingmeker.bet. This process is separate from your data protection rights and from complaints to data protection authorities.

Updates

Changes to This Privacy Policy

  • We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, technology or business structure, including changes affecting Kingmaker and the operation of kingmeker.bet.
  • Each version will be identified by a "Last updated" date, and where appropriate a version reference. The current version is:
    Last updated: November 2025.

Notification of Material Changes

  • Where we make material changes that significantly affect how we process your personal data, we will provide you with advance notice, normally at least 30 days before the changes take effect, by:
    • emailing the address associated with your kingmeker.bet account;
    • displaying prominent notices or banners on the website;
    • providing alerts within your account dashboard.
  • During this notice period, you will have the opportunity to review the revised policy and, if you do not agree with the changes, you may close your account and request the deletion or restriction of your personal data, subject to legal retention obligations (for example, under AML laws).

Version History and Access

  • We keep records of previous material versions of this Privacy Policy. You may request copies of earlier versions relevant to your relationship with us, for example to understand which terms applied at a given time.
  • Continued use of kingmeker.bet after the effective date of an updated Privacy Policy will be deemed acceptance of that updated version, to the extent permitted by applicable law.