burger icon
Plaza Royal Casino
Log In

Privacy Policy

This privacy policy explains how your personal data is collected, used, disclosed, and protected when you interact with plaza-royal-casino through the plaza-royal-ca.com website. It applies to all players and visitors residing in Canada (excluding Ontario), and is effective as of November 6, 2025.

Who We Are

OBSERVE: plaza-royal-casino is operated for Canadian users via plaza-royal-ca.com by AG Communications Limited, a Malta-based subsidiary of Aspire Global International LTD, under license from the Malta Gaming Authority (MGA/CRP/148/2007). Marketplay Ltd. is the brand owner, and NeoGames is the ultimate parent company.
EXPAND: AG Communications Limited's registered address is High Street 135, Sliema, SLM 1548, Malta. The company is legally registered in Malta and holds all necessary remote gaming licenses for its operations. All regulatory matters for plaza-royal-ca.com are managed from this location.
REFLECT: For privacy and data protection inquiries, the designated contact is our Data Protection Officer (DPO).

  • Legal Entity: AG Communications Limited (Malta-registered, subsidiary of Aspire Global International LTD)
  • Legal Address: High Street 135, Sliema, SLM 1548, Malta
  • Contact Email (DPO/Data Protection): [email protected]
  • Website: https://plaza-royal-ca.com

What Personal Data We Collect

OBSERVE: plaza-royal-casino collects a range of personal and technical data to provide regulated online gambling services via plaza-royal-ca.com.
EXPAND: Data categories include information necessary for user identification, service provision, security, and regulatory compliance.
REFLECT: The following types of data may be collected and processed:

  • Personal Data: Full name, date of birth, residential address, email address, phone number, account ID, identification documents (as required by KYC/AML regulations).
  • Technical Data: IP address, device identifiers, browser type, operating system, access times, system logs, session activity, and error reports.
  • Payment Data: Credit/debit card numbers (tokenized), e-wallet details, banking information, transaction records, and withdrawal requests.
  • Behavioral Data: Betting and gaming history, deposit and withdrawal patterns, clickstream data, navigation logs, and session behavior.
  • Cookies and Tracking Technologies: Session cookies, persistent cookies, third-party analytics and advertising cookies, device fingerprinting, and similar technologies.

Legal Basis for Processing

OBSERVE: All data processing by plaza-royal-casino via plaza-royal-ca.com is governed by applicable Canadian data privacy laws and international standards.
EXPAND: Legal grounds align with user consent, contractual necessity, legitimate interests, and statutory obligations.
REFLECT: The primary legal bases for data processing include:

  1. User Consent: Personal data is processed based on your explicit consent, obtained during account registration and for specific processing activities (e.g., marketing communications).
  2. Contractual Necessity: Data is processed to establish, manage, and fulfill your account and service agreements (including verifying identity, processing payments, and providing customer support).
  3. Legitimate Interests: Processing is necessary for the legitimate business interests of plaza-royal-casino, such as fraud prevention, network security, analytics, service improvements, and ensuring fair gaming.
  4. Legal Obligations: Processing is required to comply with statutory or regulatory obligations, including Know Your Customer (KYC), Anti-Money Laundering (AML), responsible gambling, and tax reporting requirements under Maltese and Canadian law.

Purpose of Processing

OBSERVE: Data collected via plaza-royal-ca.com is used for specific and legitimate operational purposes.
EXPAND: All processing activities are limited to those necessary for regulated online gambling service provision and compliance.
REFLECT: Data is processed for the following purposes:

  • Service Delivery: To create and manage user accounts, process transactions, verify identity, and provide customer support.
  • Regulatory Compliance: To fulfill legal obligations under KYC/AML, responsible gambling, and reporting frameworks.
  • Service Improvement: To analyze usage patterns, troubleshoot issues, and improve website functionality and user experience.
  • Marketing: To send promotional offers, newsletters, and updates (subject to your explicit consent).
  • Analytics: To conduct statistical analysis, performance monitoring, and market research.
  • Fraud Detection & Prevention: To monitor, detect, and prevent fraudulent or suspicious activities.

Disclosure & Sharing

OBSERVE: plaza-royal-casino shares data only as necessary for regulatory compliance, service provision, and with user consent via plaza-royal-ca.com.
EXPAND: Data may be disclosed to trusted third parties under strict contractual and legal safeguards.
REFLECT: Data recipients and circumstances of disclosure include:

  • Payment Processors: For secure handling of deposits and withdrawals, data is shared with verified payment partners.
  • Technical Service Providers: IT support, hosting, security, analytics, and game platform vendors may access data under data processing agreements.
  • Regulatory Authorities: Data is disclosed to the Malta Gaming Authority (MGA), Canadian regulators, and law enforcement as required by law.
  • Affiliates & Advertising Networks: Data may be shared for marketing purposes only with your consent, and subject to strict data protection agreements.
  • Corporate Structure: Data may be shared within the group of companies (Marketplay Ltd., Aspire Global International LTD, AG Communications Limited, NeoGames) for operational or compliance reasons.

Protective Clauses: All third parties are contractually bound to apply adequate technical and organizational measures for data protection, and may use your data solely for the agreed purposes.

International Transfers

OBSERVE: plaza-royal-casino operates internationally, with data processing and storage in Malta and potentially other jurisdictions.
EXPAND: International transfers are subject to compliance with Canadian, Maltese, and EU data protection requirements.
REFLECT: When transferring personal data outside Canada, the following safeguards are applied:

  • Standard Contractual Clauses: Data transfers to third countries are governed by EU-approved standard contractual clauses ensuring adequate data protection.
  • Data Processing Agreements: All service providers outside Canada are contractually obliged to maintain data protection standards equivalent to those in Canada and the EU.
  • Security Measures: Encryption, access controls, and regular audits are implemented to protect transferred data.

Regional Compliance Note: plaza-royal-ca.com ensures all international transfers are fully compliant with Canadian privacy laws and industry best practices.

Data Retention

OBSERVE: plaza-royal-casino retains personal data for only as long as necessary for legal and operational purposes.
EXPAND: Retention periods are determined by the type of data and applicable legal requirements.
REFLECT: Retention practices include:

  • Personal Data: Retained for up to 5 years after account closure or the end of the business relationship, to comply with anti-money laundering and legal obligations.
  • Transaction Records: Maintained for at least 5 years as required by financial regulations.
  • Cookies & Technical Data: Retained according to cookie type and relevant technical necessity, typically 13-24 months.
  • Deletion Criteria: Data is securely deleted or anonymized upon expiry of retention periods, upon user request (where applicable), or when processing is no longer required.

Legal Compliance: plaza-royal-ca.com applies secure deletion procedures and ensures all retention practices comply with Canadian regulations and international standards.

Your Rights

OBSERVE: plaza-royal-casino upholds user privacy rights in line with GDPR principles and Canadian federal/provincial privacy laws (PIPEDA, applicable local statutes).
EXPAND: Users are entitled to exercise a comprehensive set of privacy rights regarding their data processed via plaza-royal-ca.com.
REFLECT: The following rights and procedures apply:

  1. Access: You may request confirmation of whether your personal data is being processed and obtain a copy of your data within 30 days, free of charge.
  2. Correction (Rectification): You have the right to request correction of inaccurate or incomplete personal data held by plaza-royal-ca.com.
  3. Erasure: You may request deletion of your personal data, subject to legal and regulatory retention obligations (e.g., AML laws may require data retention for 5 years).
  4. Restriction: You may request restriction of processing under certain circumstances (e.g., contesting accuracy or lawfulness).
  5. Objection: You may object to processing based on legitimate interests, including profiling for marketing purposes.
  6. Data Portability: You may request to receive your personal data in a structured, commonly used format, or have it transmitted to another controller where technically feasible.
  7. Withdrawal of Consent: Where processing is based on your consent (e.g., marketing), you may withdraw consent at any time without affecting the lawfulness of prior processing.

How to Exercise Your Rights

  • Submit requests by emailing [email protected]. Please specify your request and provide sufficient information to verify your identity.
  • plaza-royal-ca.com will respond within 30 days of receiving a valid request. Extensions may apply in complex cases, but you will be notified in advance.
  • All requests are handled free of charge unless manifestly unfounded or excessive. In such cases, a reasonable fee may apply or the request may be refused, with justification provided.

Note: While plaza-royal-ca.com is not subject to Mexican data protection law, principles of transparency and user rights are aligned to international standards (GDPR, PIPEDA).

Cookies & Tracking Technologies

OBSERVE: plaza-royal-casino uses cookies and similar technologies to enhance user experience, ensure website functionality, and support analytics and marketing on plaza-royal-ca.com.
EXPAND: Users are informed of cookie usage and provided with options to manage their preferences.
REFLECT: The types and purposes of cookies include:

  • Session Cookies: Temporary cookies that enable essential website functions and expire when you close your browser.
  • Persistent Cookies: Remain on your device for a defined period to remember preferences and login details.
  • Third-Party Cookies: Set by analytics and advertising partners for performance measurement, behavioral analytics, and targeted advertising (only with user consent).

Managing Cookies

  • Users can manage and disable cookies via browser settings or through the cookie management panel available on plaza-royal-ca.com.
  • Disabling cookies may affect certain website features and functionality.

Legal Compliance: All cookie practices comply with Canadian and EU ePrivacy requirements. Consent is requested for all non-essential cookies.

Data Security

OBSERVE: plaza-royal-casino implements advanced security measures across plaza-royal-ca.com to protect all user data.
EXPAND: Security protocols are continuously updated to address evolving threats and regulatory requirements.
REFLECT: Key safeguards include:

  • Encryption: All data is encrypted at rest and in transit using TLS 1.2+ and industry-standard encryption algorithms.
  • Access Controls: Strict user authentication protocols, including multi-factor authentication (MFA), to restrict access to authorized personnel only.
  • Security Audits: Regular internal and external security audits, penetration testing, and vulnerability assessments.
  • Staff Training: Ongoing employee training on privacy, security, and data protection best practices.
  • Incident Response: Formal incident response procedures to detect, investigate, and mitigate data breaches or security incidents, with mandatory user notification as required by law.
  • International Standards: plaza-royal-ca.com aligns with ISO 27001 and SOC 2 standards for information security management where applicable.

Complaints & Contacts

OBSERVE: plaza-royal-casino ensures transparent channels for privacy-related complaints and inquiries via plaza-royal-ca.com.
EXPAND: Multiple contact avenues and clear procedures are available for users to seek resolution.
REFLECT: The complaint process is as follows:

  1. Initial Contact: Submit your complaint or inquiry to the Data Protection Officer via email: [email protected]. Please provide detailed information about your concern.
  2. Written Complaints: Written complaints may also be submitted by postal mail to: Data Protection Officer, AG Communications Limited, High Street 135, Sliema, SLM 1548, Malta.
  3. Online Feedback: If available, use the contact form on plaza-royal-ca.com to submit your complaint or feedback.
  4. Response Time: plaza-royal-ca.com will acknowledge receipt of your complaint within 5 business days and provide a substantive response within 30 days.
  5. Escalation: If you are unsatisfied with the response, you may escalate your complaint to the Office of the Privacy Commissioner of Canada (OPC):

Legal Note: plaza-royal-ca.com will cooperate fully with supervisory authorities and comply with all dispute resolution processes as required by law.

Updates

OBSERVE: plaza-royal-casino regularly reviews and updates this privacy policy to reflect changes in legal requirements, operational practices, or technology.
EXPAND: Users will be notified of any material changes in advance.
REFLECT: The update process is as follows:

  • Notification: Updates to this policy will be communicated via email (where consent is given), website banners, and account dashboard notifications at plaza-royal-ca.com.
  • Advance Notice: For significant changes, users will be given a minimum of 30 days' advance notice before the updated policy takes effect.
  • User Options: Users may object to material changes or close their account if they do not agree to the updated policy, without penalty.
  • Version Control: This policy was last updated on November 6, 2025. A changelog of material changes will be made available on plaza-royal-ca.com.

Changelog: - Privacy policy updated to reflect new regulatory requirements and improved user rights procedures.