Privacy Policy

Scope and Data Controller

Zenit, a brand operated by Zenit Gaming Ltd, acts as the data controller for the personal data you provide through our services. Our data protection framework complies with applicable data protection laws and regulatory requirements. If you have questions about this policy or your data, contact our Data Protection Officer at data.protection@zenit.com.

Categories of Personal Data We Collect

  • Identification and contact details (name, address, email, phone number) provided when you register or communicate with us.
  • Account information (user ID, login details, device identifiers).
  • Financial and transactional data (deposits, withdrawals, payment methods, transaction history).
  • Betting, gaming, and service usage data (bet history, session duration, preferences, feature usage).
  • Communications and support interactions (records of chats, emails, calls for training and security purposes).
  • Compliance and verification data (age verification, anti‑money‑laundering checks, identity verification, fraud prevention data).
  • Technical data (log data, IP address, browser type, geolocation, cookies and similar technologies).
  • Publicly available sources where reasonably obtained in connection with verification or fraud prevention activities.

How We Use Your Personal Data

  • To operate and provide the Zenit platform and services, including account setup, maintenance, and support (necessary for performance of the contract).
  • To verify identity, process transactions, and comply with regulatory obligations (legal obligation), including AML/KYC checks and age verification.
  • To respond to inquiries, manage communications, and address issues (necessary for the performance of the contract).
  • To monitor for fraudulent activity, protect against unauthorized transactions, and conduct security investigations (legitimate interests).
  • To conduct analytics and generate statistics regarding service use and user experience (legitimate interests) and to inform product improvements.
  • To provide and tailor marketing communications where you have consented, and to manage preferences (consent for marketing).
  • To support responsible gambling measures, including monitoring play patterns and taking actions where risk indicators are detected (legal obligation and legitimate interests).

Legal Bases for Processing

We rely on multiple lawful bases to process personal data, including: (i) contract performance or steps necessary to enter into or continue a contract; (ii) compliance with legal or regulatory obligations; (iii) consent for processing activities such as marketing; (iv) legitimate interests in maintaining secure, compliant, and high‑quality services; (v) vital interests where necessary to protect individuals in emergencies; and (vi) public interest in meeting regulatory requirements. Where consent is the basis, you may withdraw it at any time without affecting the lawfulness of processing prior to withdrawal.

Automated Decision-Making and Profiling

We may use automated decision‑making to detect patterns indicative of risk, fraud, or responsible gambling concerns. You may request human review of decisions affecting you, and we will provide an explanation of the decision where required by law.

Data Sharing and Third‑Party Processing

We may share personal data with: (i) service providers that process data on our behalf (e.g., payments, identity verification, analytics, customer support); (ii) regulators, law enforcement, or competent authorities as required by law; (iii) other entities within the Zenit Group for the purposes described in this policy; and (iv) third parties necessary to provide products or services you request. We ensure data processors implement appropriate technical and organizational measures to protect your data.

International Data Transfers

Your personal data may be transferred outside your country or the European Economic Area where necessary for the purposes described in this policy, including to entities within the Zenit Group or to trusted service providers. Such transfers are protected by safeguards required by applicable data protection laws, including contractual agreements and, where applicable, recognized data transfer mechanisms.

Data Retention

We retain personal data for as long as necessary to provide the Zenit services and to comply with legal, regulatory, and financial record‑keeping obligations. In general, data related to active accounts is retained for the duration of the relationship, and data may be kept for a period following account deactivation to satisfy AML, fraud prevention, taxation, and regulatory requirements. When no longer required, data is securely deleted or anonymized.

Cookies and Tracking Technologies

We use cookies and similar technologies to operate the service, analyze usage, and support security. Details are provided in our Cookies Policy, including categories of cookies, purposes, retention periods, and how to manage or disable them.

Your Rights

You have rights under applicable data protection laws, including:

  • Right of access to your personal data and information about its processing.
  • Right to rectify inaccurate or incomplete data.
  • Right to erasure in certain circumstances, subject to regulatory or contractual obligations.
  • Right to restriction of processing in specific scenarios.
  • Right to data portability in a structured, commonly used format where feasible.
  • Right to withdraw consent at any time (where consent is the basis for processing), noting potential impact on service provision.
  • Right to object to processing based on legitimate interests or public interests, and to contest automated decisions where applicable.
  • Right to lodge a complaint with a supervisory authority in your jurisdiction.

Consent, Marketing and Direct Communications

Marketing communications require explicit consent. You may opt in or out of marketing at any time by adjusting your account settings or contacting our support team. Non‑marketing communications may still be sent to address service needs, such as notices about changes to terms or service interruptions.

Responsible Gaming and AML Obligations

Zenit implements measures to promote responsible gaming, including activity monitoring and limit settings. We may automatically flag activity patterns that indicate risks, and we may adjust or suspend eligibility for features pending review. All AML and verification processes comply with applicable laws and are integral to our regulatory obligations.

Security of Your Data

We implement technical and organizational measures to protect your data from unauthorized access, alteration, disclosure, or destruction. Access to personal data is restricted to personnel with a legitimate business need, and all processing is conducted under appropriate confidentiality obligations.

Children’s Privacy

Zenit services are not directed at individuals under the age of 18. We implement age verification procedures and shall suspend or terminate accounts found to involve underage participation.

Changes to This Policy

We may update this Privacy Policy from time to time. When material changes occur, we will provide notice via in‑platform messaging and, where appropriate, by email, and the revised policy will take effect upon posting. Continued use after changes constitutes acceptance of the updated policy.

Exercising Your Rights and Contacting Us

To exercise any of your rights or to raise concerns about our processing of your personal data, contact our Data Protection Officer at data.protection@zenit.com. You may also lodge a complaint with the relevant supervisory authority in your jurisdiction.