Privacy Policy

Last updated: 8 April 2026. This Policy explains how topfactslist.com (“we”, “us”) handles information when you visit our website. We aim to meet UK GDPR expectations and provide clear choices.

1. Who we are

The Site is an independent information and comparison resource focused on UK-facing gambling brands. For privacy questions contact info@topfactslist.com.

2. Data we collect

• Technical data: browser type, device category, rough region (from IP), timestamps, and pages viewed—typically via server logs or essential analytics if enabled.
• Cookies and similar tech: see our Cookie Policy for categories and controls.
• Email correspondence: if you write to us, we keep the message content needed to respond.

We do not run real-money gaming accounts on this Site; operators you visit apply their own privacy notices.

3. Purposes and legal bases

We process data to operate and secure the Site, remember cookie preferences, measure aggregate traffic, attribute affiliate referrals where applicable, and comply with law. Legal bases may include consent (cookies where required), legitimate interests (fraud prevention, service improvement), and legal obligation.

4. Sharing

We may share limited data with hosting providers, analytics or affiliate tracking partners bound by contract, and authorities when required. We do not sell personal data in the common sense of exchanging lists for cash.

5. Retention

Logs and messages are kept only as long as needed for the purpose collected, then deleted or anonymised unless law requires longer storage.

6. Your rights

UK residents may request access, correction, erasure, restriction, objection, and portability where applicable, and may complain to the ICO. Contact us first so we can resolve issues quickly.

7. International transfers

If processors sit outside the UK/EEA, we rely on appropriate safeguards such as UK IDTA-style clauses where required.

8. Updates

We may revise this Policy; the “Last updated” date will change. Material changes may be highlighted on the Site.

9. Security measures

We implement administrative, technical, and organisational measures appropriate to the nature of the data we process. These may include access controls, transport encryption (HTTPS), patching of underlying software, monitoring for unusual activity on our hosting stack, and contractual security commitments from subprocessors. No online service can guarantee absolute security; you should protect your own devices with up-to-date browsers, reputable anti-malware where sensible, and strong unique passwords for any accounts you create with third-party operators.

10. Children

The Site is not directed at individuals under 18. We do not knowingly collect personal data from children. If you believe a minor has provided information to us, please contact info@topfactslist.com so we can review and delete records where appropriate, subject to legal retention duties.

11. Automated decision-making and profiling

We do not use fully automated decisions that produce legal or similarly significant effects about you in the GDPR Article 22 sense. Aggregate analytics may segment traffic patterns (for example, device type or referral channel) to improve layout and measure campaign performance, but such processing is not used to deny you services on this Site in an individualised automated way.

12. Marketing communications

We do not operate a bulk newsletter mailing list as a core feature of the Site. If we introduce optional marketing emails in future, we will rely on consent or another valid basis, provide an unsubscribe mechanism, and describe retention in an updated Policy. Operator partners may send their own marketing under separate consents you give them directly.

13. Complaints to the ICO

If you remain dissatisfied after contacting us, you may lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection. We encourage you to reach us first so we can attempt resolution without unnecessary delay. The ICO’s website explains how to submit a complaint and what to expect from the process.

14. Data minimisation for affiliate attribution

Where affiliate networks or operators provide tracking pixels, postback URLs, or click identifiers, we aim to configure them to collect only what is needed to attribute referrals and prevent fraud. That may include pseudonymous identifiers, timestamps, and campaign codes rather than full contact details. When a partner requests broader data, we assess necessity and contractual safeguards before enabling additional collection.

15. Corporate transactions

If ownership of the Site changes due to merger, acquisition, or asset sale, personal data may transfer to the successor entity under commitments comparable to this Policy. We will notify you through a prominent notice on the Site if required by law or if the change materially affects how your data is processed.