1. Who We Are
Tower Casino ("we", "us") operates towercasino.ca and is the data controller for personal information processed through the Site. Privacy questions and requests: [email protected].
2. Information We Collect
- Identity data: name, date of birth, address, province — provided at registration and verified during KYC.
- Contact data: email address and phone number.
- Verification documents: photo ID, proof of address and masked payment images, where required by law.
- Transaction data: deposits, withdrawals, wagers and balances.
- Technical data: IP address, device and browser type, session logs.
- Usage data: pages visited, games played and preferences that shape what we show you.
3. Why We Use It
We process personal information to operate your account and wallet; to meet legal obligations including age verification, anti-money-laundering and responsible gambling monitoring; to prevent fraud and secure the platform; to provide support; and — only with your consent — to send marketing you can switch off in one click. We do not sell personal information. Automated risk checks may flag accounts for human review; no account is closed by an algorithm alone.
4. Cookies
Cookies keep you logged in, remember preferences and help us understand which pages work. Essential cookies are required for the Site to function; analytics and marketing cookies are optional.
| Category | Purpose | Control |
|---|---|---|
| Essential | Login sessions, security, cookie consent itself | Always on |
| Preferences | Language, display settings | Browser settings |
| Analytics | Anonymous usage statistics | Cookie banner / browser |
| Marketing | Campaign measurement, affiliate attribution | Cookie banner / browser |
5. Sharing & Transfers
We share data only with service providers who need it to run the Tower — payment processors, identity-verification providers, game studios (anonymised play data), hosting and analytics vendors — all bound by contract to protect it. We disclose information to regulators and law enforcement where legally required. Where data leaves Canada, we apply contractual safeguards consistent with PIPEDA.
6. Retention & Security
Account and transaction records are kept for the period required by anti-money-laundering law (typically five years after account closure), then deleted or irreversibly anonymised. Data is encrypted in transit (TLS) and at rest, access is role-restricted and logged, and verification documents live in segregated encrypted storage.
7. Your Rights
Under PIPEDA you may request access to your personal information, correction of inaccuracies, withdrawal of marketing consent, and deletion where no legal retention duty applies. Write to [email protected]; we respond within 30 days. If you are unsatisfied, you may complain to the Office of the Privacy Commissioner of Canada.
Responsible gambling note: self-excluded players' core details are retained for the exclusion term — deleting them would defeat the protection.