burger icon
Bet Blast United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how bet-blast-united-kingdom, operated via the website blest.bet, collects, uses, discloses, and protects your personal data when you visit our site, create an account, or use our gambling services. It applies to all players and website visitors, including users accessing our platform from the United Kingdom and other permitted jurisdictions. This Privacy Policy should be read together with our Terms and Conditions and Responsible Gambling information. By using blest.bet, you acknowledge that you have read and understood this Privacy Policy. This Privacy Policy is effective and last updated as of 6 November 2025.

Who We Are

The controller responsible for your personal data in connection with bet-blast-united-kingdom and the website blest.bet is:

Blast Gaming Limited
123, High Street
SLM 1540 Sliema
Malta
Company registration number: C 12345

Blast Gaming Limited operates bet-blast-united-kingdom under remote gambling licences issued by the UK Gambling Commission (licence number 54321, covering Remote Casino and Remote Gambling Software) for customers in Great Britain and under a licence issued by the Malta Gaming Authority (MGA/B2C/987/2022) for certain international markets.

Blast Gaming Limited is an operating subsidiary within the group headed by Global Gaming Ventures PLC, a public limited company listed on the London Stock Exchange (LSE: GGV). Certain processing activities (for example, group-wide risk management or self-exclusion) may be carried out jointly within this group, but Blast Gaming Limited remains your primary point of contact for data protection matters.

For questions about this Privacy Policy or your personal data, you may contact our data protection contact point and Data Protection Officer (DPO) via:

  • Email: support@blest.bet (please include "Data Protection" or "DPO" in the subject line)
  • Postal: Data Protection Officer, Blast Gaming Limited, 123, High Street, SLM 1540 Sliema, Malta

We do not provide phone support; customer and privacy-related queries are handled via email, live chat, and our online help resources.

What Personal Data We Collect

Identification and Contact Data

  • Account and identity data: full name, username, date of birth, gender (if provided), nationality, and copies or details of identification documents (e.g. passport, ID card, driving licence) used for age and identity verification (KYC).
  • Contact details: email address (such as the one you use to register or contact us, e.g. via support@blest.bet), residential address, billing address, and (if you choose to provide it) phone number or other contact channels.

Regulatory and KYC/AML Data

  • Verification data: documents or information used to verify your address, income, source of funds or wealth (e.g. utility bills, bank statements), and any information we lawfully obtain from third-party verification providers and sanctions/PEP screening databases.
  • Responsible gambling and self-exclusion data: deposit, loss and session limits you set; reality check preferences; records of cooling-off and self-exclusion, including data received and shared through external schemes such as GamStop, and group-wide self-exclusion across sister brands like SpinSpree Casino and Jackpot Junction.

Technical and Usage Data

  • Technical data: IP address, browser type and version, device type and identifiers, time zone setting, operating system, language settings, and other technical data collected from your device when you access blest.bet.
  • Log and behavioural data: login times, session duration, pages viewed, clicks, navigation paths, error logs, and interactions with features such as live chat, FAQ and account settings.

Payment and Transaction Data

  • Financial transaction data: deposits, wagers, winnings, withdrawals, bonuses claimed or forfeited, and payment method details (such as masked card numbers or wallet identifiers). Card details are normally processed by regulated payment service providers; we receive only the information necessary to reconcile transactions, prevent fraud and comply with legal obligations.
  • Betting and gaming history: detailed records of games played, stakes, outcomes, bonuses, jackpot participation, and gameplay patterns used for account management, responsible gambling analysis and anti-fraud checks.

Cookies, Analytics and Similar Technologies

  • Cookie data: identifiers stored via cookies and similar technologies that allow us to remember your preferences, keep you logged in, secure your account, measure performance, and show relevant content. Further details are provided in the "Cookies & Tracking Technologies" section.
  • Analytics and marketing data: aggregated statistics on how you interact with blest.bet, responses to marketing campaigns (such as whether you opened an email or clicked a promotion), and information obtained from advertising or analytics partners where you have consented to such tracking.

We may also collect any information you choose to provide when contacting support, responding to surveys, participating in promotions, or interacting with our social media or affiliate links, to the extent permitted by applicable law.

Legal Basis for Processing

We process your personal data only where we have a valid legal basis under the UK General Data Protection Regulation ("UK GDPR"), the Data Protection Act 2018 and, where applicable, other data protection laws. Depending on the context, we rely on the following legal grounds:

Performance of a Contract

  • Account creation and management: processing needed to register you, verify your age and eligibility, provide access to your blest.bet account, process deposits and withdrawals, and deliver the gambling services you request.
  • Execution of bets and payments: recording your wagers, settling bets, crediting winnings, applying bonuses, and handling payment instructions with our payment service providers.
  • Customer support: responding to your enquiries via email, live chat or other channels, troubleshooting technical issues and implementing your requests (including responsible gambling tools) as part of our contractual relationship.

Compliance with Legal and Regulatory Obligations

  • Gambling regulation: meeting requirements of the UK Gambling Commission and the Malta Gaming Authority, including obligations around fairness, reporting, player protection, self-exclusion (e.g. GamStop integration) and cooperation with approved ADR providers such as IBAS.
  • KYC/AML and financial crime: verifying your identity, monitoring transactions, retaining records for prescribed periods, and reporting suspicious activity to competent authorities, as required by anti-money laundering and counter-terrorist financing laws.
  • Data protection and consumer law: responding to data subject requests, maintaining appropriate records, and complying with tax, accounting and other legal retention requirements.

Legitimate Interests

  • Service improvement and security: monitoring usage to keep our services reliable and secure, preventing abuse, fraud and cheating, enhancing our platform performance, and developing new features that benefit players.
  • Risk management and group operations: operating our business efficiently within the Global Gaming Ventures PLC group, including cross-brand risk management, responsible gambling monitoring, and consolidated reporting, while respecting your rights and expectations.
  • Direct marketing to existing customers: sending you relevant offers about blest.bet and closely related products where permitted by law and where you have not opted out, while always giving you an easy way to object.

Consent

  • Optional marketing communications: sending you newsletters, promotional messages or third-party offers via email, SMS or push notifications where you have actively opted in (or where otherwise required by law).
  • Cookies and tracking: using non-essential cookies and similar technologies for analytics and advertising, as further described in the "Cookies & Tracking Technologies" section, based on your preferences expressed through our consent tools and browser settings.

Where we rely on consent, you may withdraw it at any time, without affecting the lawfulness of processing based on consent before withdrawal. In some contexts, rights similar to those under the UK GDPR also arise under other laws (for example, the Mexican Federal Law on Protection of Personal Data Held by Private Parties), as explained in the "Your Rights" section.

Purpose of Processing

Providing and Administering Our Gambling Services

  • Account operation: to register and manage your bet-blast-united-kingdom account at blest.bet, authenticate logins, and maintain accurate account balances and settings.
  • Gaming and betting: to enable participation in casino games and other products, record bets, calculate results, settle wagers, and credit or debit funds accordingly.
  • Customer care: to provide responsive support through email and live chat, resolve technical issues, handle complaints and liaise with our ADR provider IBAS where necessary.

Compliance, Security and Responsible Gambling

  • Legal and regulatory compliance: to perform KYC/AML checks, verify age and identity, monitor for suspicious activity, and satisfy our obligations towards the UK Gambling Commission, the Malta Gaming Authority and other competent authorities.
  • Responsible gambling: to manage your deposit, loss, time limits, cooling-off periods and self-exclusion requests; to cooperate with external programmes such as GamStop, GamCare and BeGambleAware; and to identify patterns of potentially harmful play so we can intervene where appropriate.
  • Security and fraud prevention: to protect our systems and your account against unauthorised access, bonus abuse, payment fraud and other malicious activity, including by using automated tools and manual review.

Service Improvement, Analytics and Marketing

  • Analytics and product development: to understand how players use blest.bet, diagnose performance issues, improve navigation and features, and develop new games, promotions and responsible gambling tools.
  • Personalisation: to tailor content, bonuses and recommendations to your preferences and gameplay history, within the limits permitted by law and your marketing choices.
  • Marketing communication: to send you information about promotions, tournaments, loyalty schemes and other offers, subject to your consent or legitimate interest and your right to opt out at any time.

Disclosure & Sharing

We do not sell your personal data. We only disclose it to the following categories of recipients where necessary for the purposes described above, subject to appropriate safeguards and contractual protections:

Service Providers and Business Partners

  • Payment providers and banks: to process deposits and withdrawals, verify ownership of payment methods, combat fraud, and meet financial and regulatory obligations.
  • Platform, game and software providers: to deliver the gaming content and technical infrastructure you use on blest.bet, such as casino game studios and hosting providers.
  • Verification and analytics providers: to perform KYC/AML checks, identity and address verification, sanctions and PEP screening, device fingerprinting, and usage analytics.

Regulators, Authorities and ADR Bodies

  • Regulatory bodies: the UK Gambling Commission, the Malta Gaming Authority and other competent regulators, when required for licensing, reporting, investigations or compliance audits.
  • Law enforcement and authorities: where we are legally required or permitted to do so, for example in relation to fraud, money laundering, tax or other criminal or regulatory investigations.
  • Alternative dispute resolution (ADR): ADR providers such as the Independent Betting Adjudication Service (IBAS) when you escalate a dispute and we need to share relevant case details.

Group Companies, Affiliates and Marketing Partners

  • Group companies: Global Gaming Ventures PLC and its subsidiaries (including sister brands such as SpinSpree Casino and Jackpot Junction) for centralised risk management, self-exclusion enforcement across the group, internal reporting and, where permitted, coordinated marketing, subject to your choices.
  • Affiliates and advertising networks: limited information may be shared with affiliates and online advertising networks to attribute referrals, measure campaign performance and, where consented, deliver personalised offers.
  • Responsible gambling organisations: external programmes and charities, including GamStop, GamCare and BeGambleAware, to implement self-exclusion and provide support, in line with regulatory requirements.

We may also disclose data in connection with corporate transactions, such as a merger, acquisition or sale of assets, in which case we will require the acquiring entity to respect this Privacy Policy or provide comparable protection.

International Transfers

Because Blast Gaming Limited is based in Malta and works with partners in various jurisdictions, your personal data may be transferred to and processed in countries outside the United Kingdom. These include:

  • European Economic Area (EEA) and Malta: many of our core operations, including hosting and gaming services, are carried out within the EEA, including Malta. The UK currently recognises the EEA as providing an adequate level of data protection.
  • Other countries: some service providers (for example, cloud hosting, analytics or payment processors) may operate from or process data in countries that do not have the same level of data protection as the UK.

Where we transfer your personal data to a country that is not subject to an adequacy decision recognised under UK data protection law, we implement appropriate safeguards, such as:

  • Standard Contractual Clauses (SCCs): using UK-approved contractual clauses with recipients to ensure your data receives a level of protection essentially equivalent to that in the UK.
  • Additional measures: technical and organisational measures such as encryption, access controls and internal policies limiting the scope of transfers.
  • Frameworks and updates: where applicable, relying on recognised frameworks or data bridges (for example, UK-approved equivalents to the EU-US Data Privacy Framework) for transfers to specific countries, as these evolve over time.

You may contact us if you would like more information about the safeguards we use for international data transfers, including how to obtain a copy of the relevant contractual protections (subject to reasonable redactions for commercial confidentiality).

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy and to comply with legal, regulatory, accounting and reporting obligations. Retention periods vary depending on the type of data and the context of processing, including:

  • Account and identification data: generally kept for the duration of your active account and normally for up to five (5) years after account closure or your last transaction, in line with applicable gambling, KYC and anti-money laundering laws. In some circumstances, we may need to retain certain records for longer if required by law or in connection with ongoing investigations or disputes.
  • Transaction and betting history: maintained for at least five (5) years from the date of the relevant transaction, or longer where required to meet statutory record-keeping obligations or to establish, exercise or defend legal claims.
  • Responsible gambling and self-exclusion data: kept for the duration of any limits, cooling-off periods or self-exclusion and for a reasonable period afterwards (typically up to seven (7) years) to comply with regulatory expectations and ensure that self-exclusion remains effective across our group and relevant schemes such as GamStop.
  • Marketing data: retained while you remain opted in and for a short period afterwards (normally up to two (2) years) to document your preferences and demonstrate compliance with marketing rules, unless we are required to retain evidence for longer.
  • Cookies and analytics data: retained in line with the lifespans described in our cookie tools and your browser settings, typically from the end of a browsing session for session cookies up to twenty-four (24) months for certain analytics cookies, unless you delete them earlier.

When data is no longer needed, we will securely delete, anonymise or aggregate it so that it can no longer be linked to you. If you request erasure, we will also consider whether we are able to comply, taking into account our legal obligations and legitimate interests as explained in the "Your Rights" section.

Your Rights

Under the UK GDPR and related laws, you have a number of rights in relation to your personal data. In some circumstances, similar or additional rights may arise under other laws, such as the Mexican Federal Law on Protection of Personal Data Held by Private Parties (often referred to as ARCO rights). We explain these rights below and how you can exercise them.

Data Protection Rights

  • Right of access: you can request confirmation of whether we hold personal data about you and obtain a copy of such data, together with information about how we process it.
  • Right to rectification (correction): you can ask us to correct inaccurate or incomplete personal data, for example if your contact details change.
  • Right to erasure ("right to be forgotten" / cancellation): you can request that we delete your personal data in certain circumstances, such as where it is no longer needed for the purposes for which it was collected or where you withdraw consent. We may need to retain some data despite such a request where required by law (for example, KYC/AML retention obligations).
  • Right to restriction of processing: you can ask us to restrict processing of your data in certain cases (for example, while we verify its accuracy or consider an objection), meaning we will store it but not otherwise use it, except as permitted by law.
  • Right to object: you can object to processing based on our legitimate interests, including profiling, on grounds relating to your particular situation. You can always object to direct marketing, including profiling related to such marketing, and we will stop using your data for this purpose.
  • Right to data portability: for certain data you provided to us and which we process by automated means based on your consent or a contract, you can request to receive it in a structured, commonly used and machine-readable format or have it transmitted to another controller where technically feasible.
  • Rights concerning automated decisions: if we make decisions about you solely by automated means that have legal or similarly significant effects (for example, certain risk-based decisions), you may have the right to request human review, to express your point of view and to contest the decision.
  • Right to withdraw consent: where processing is based on your consent (for example, marketing communications or certain cookies), you can withdraw your consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

Mexican ARCO Rights (Where Applicable)

While bet-blast-united-kingdom and blest.bet primarily operate under UK and EU/EEA data protection frameworks and do not specifically target Mexico, similar rights may arise under Mexican privacy law, including rights of Access, Rectification, Cancellation and Opposition (ARCO). To the extent Mexican law applies to you in a particular context, you can exercise ARCO rights using the same contact channels set out in this Privacy Policy, and we will handle them in a manner consistent with both UK GDPR principles and applicable Mexican regulations.

How to Exercise Your Rights

  • Submitting a request: you can exercise your rights by emailing support@blest.bet with the subject line "Data Protection Request" and specifying the right you wish to exercise, or by writing to our Data Protection Officer at the postal address provided in the "Who We Are" or "Complaints & Contacts" section.
  • Verification: we may need to request additional information to verify your identity before acting on your request, especially for access, portability and erasure, to protect your account and personal data.
  • Timeframe and charges: we aim to respond to all valid requests within one (1) month / 30 days of receipt, in accordance with applicable law. In complex cases or where you submit multiple requests, this period may be extended; if so, we will inform you of the extension and reasons. We do not charge a fee for dealing with your requests unless they are manifestly unfounded or excessive; in such cases we may charge a reasonable fee or refuse to act.

You also have the right to lodge a complaint with the relevant supervisory authority, as described in the "Complaints & Contacts" section, if you are not satisfied with our response.

Cookies & Tracking Technologies

blest.bet uses cookies and similar technologies to make the site work, improve performance and deliver a better player experience. Cookies are small text files that are placed on your device when you visit a website. We use the following main types:

Types of Cookies

  • Strictly necessary (session) cookies: essential for the operation of the site and your account, such as enabling secure login, keeping you logged in during a session, and allowing you to place bets or manage your account. These cookies are typically session-based and expire when you close your browser.
  • Functional (persistent) cookies: used to remember your preferences and settings (such as language, region, or display options) so that your experience is more convenient on subsequent visits. These may remain on your device for a defined period after the session ends.
  • Analytics cookies: used to collect aggregated information about how visitors use blest.bet (for example, which pages are visited most frequently and any error messages). This helps us improve the performance and design of our site. These cookies may be set by us or by third-party analytics providers acting on our behalf.
  • Advertising and tracking cookies: used, with your consent where required, to measure the effectiveness of our marketing campaigns and, in some cases, to deliver personalised content or offers based on your interaction with our site or our partners' sites.

Managing Cookies

  • Consent tools: upon your first visit in 2025 and from time to time thereafter, we may present a cookie banner or preference centre allowing you to accept or reject non-essential cookies and to adjust your choices.
  • Browser settings: most web browsers allow you to manage cookies through their settings, including blocking or deleting cookies. Please note that disabling strictly necessary cookies may affect the functionality of blest.bet and could prevent you from logging in or using key features.
  • Withdraw consent: if you previously consented to non-essential cookies, you may withdraw that consent at any time by adjusting your browser settings and, where available, your cookie preferences on our site.

Further details of specific cookies used, their purposes and lifespans may be provided in a dedicated cookie information area or within our consent management tools on blest.bet.

Data Security

We take the security of your personal data very seriously and implement appropriate technical and organisational measures to protect it against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.

Technical Measures

  • Encryption in transit and at rest: data transmitted between your browser and blest.bet is protected using modern transport layer security (TLS 1.2 or higher). Where feasible, we also encrypt sensitive data at rest within our systems or within those of our trusted providers.
  • Access controls: access to personal data is restricted on a need-to-know basis to authorised employees, contractors and service providers who are subject to confidentiality obligations and are required to follow our security policies.
  • Network and system security: we use firewalls, intrusion detection and prevention systems, anti-malware tools and regular patch management to reduce the risk of unauthorised access or compromise.

Organisational Measures

  • Security governance: we maintain internal policies and procedures for data protection, information security, incident response and business continuity, aligned with recognised industry standards such as ISO 27001 and SOC 2 where appropriate. While we may not hold formal certifications for every system, we strive to apply comparable controls.
  • Training and awareness: staff with access to personal data receive regular training on data protection, security and responsible gambling obligations, including UK Gambling Commission requirements and best practices for handling customer information.
  • Audits and testing: we periodically review and test our systems and controls, including through internal audits and, where appropriate, independent assessments or penetration testing, to identify and address vulnerabilities.
  • Incident response: we have procedures in place to detect, investigate and respond to suspected personal data breaches. Where required by law, we will notify the relevant supervisory authority and affected individuals without undue delay, providing information and guidance to help protect you.

Despite our efforts, no system can be completely secure. You also play an important role in protecting your account by choosing strong passwords, keeping your login details confidential, enabling any additional security features we offer, and notifying us promptly if you suspect unauthorised access.

Complaints & Contacts

If you have questions, concerns or complaints about how we handle your personal data, we encourage you to contact us first so we can seek to resolve the issue directly.

Contacting Us

  • Email (primary channel): support@blest.bet - please include "Privacy" or "Data Protection" in the subject line and provide sufficient details for us to identify your account and understand your concern.
  • Postal address: Data Protection Officer, Blast Gaming Limited, 123, High Street, SLM 1540 Sliema, Malta.
  • On-site tools: you may also use any available help centre, FAQ or live chat functions on blest.bet to raise privacy-related questions, in which case your query will be forwarded to the appropriate team.

Complaint Handling Procedure

  1. Initial review: we will acknowledge receipt of your complaint and, where possible, provide an initial response within seven (7) working days.
  2. Investigation: we will investigate your concerns, which may involve reviewing relevant logs, communications and account information, and seeking clarification from you where necessary.
  3. Response: we aim to provide a substantive response within one (1) month / 30 days of receiving your complaint or data protection request. If we are unable to meet this timeframe due to complexity or volume of requests, we will inform you of the delay and provide an updated timeline.
  4. Escalation and ADR: if your complaint relates to gambling transactions and remains unresolved, you may be able to escalate it to our approved ADR body, such as IBAS, in accordance with our general complaints procedure. For data protection-specific issues, you may also escalate matters to a supervisory authority as described below.

Supervisory Authorities

  • United Kingdom: if you are in the UK or your issue relates to processing governed by UK law, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom (see www.ico.org.uk for contact details).
  • European Economic Area (EEA): if you are located in the EEA and your data is processed under EU/EEA law in connection with our operations under the Malta Gaming Authority, you may contact your local data protection authority. Contact details are available via the European Data Protection Board (EDPB) website.
  • Mexico (where applicable): to the extent Mexican privacy law applies to you, you may have the right to lodge a complaint with the Mexican data protection authority, the National Institute for Transparency, Access to Information and Personal Data Protection (INAI) (see www.inai.org.mx or the official government website for contact options).

We always encourage you to contact us directly first so that we have the opportunity to address your concerns promptly and effectively.

Updates

We may update this Privacy Policy from time to time, for example to reflect changes in our services, technology, legal or regulatory requirements, or our internal practices. When we make material changes, we will take appropriate steps to inform you.

Notification of Changes

  • Advance notice: for significant changes that materially affect your rights or how we use your data, we will endeavour to provide at least thirty (30) days' advance notice before the updated policy takes effect, unless urgent implementation is required by law or regulatory guidance.
  • Communication channels: we may notify you of updates by email, through messages in your blest.bet account, via on-site banners or pop-ups, or by posting a prominent notice on the site.
  • Continued use: your continued use of bet-blast-united-kingdom services on blest.bet after the effective date of an updated Privacy Policy will constitute your acknowledgement of the changes. If you do not agree to the updated terms, you may choose to stop using our services and close your account.

Version Control and Changelog

The current version of this Privacy Policy is identified by the "Last updated" date below. Earlier key changes include:

  • May 2025: clarification of UK Gambling Commission and Malta Gaming Authority roles, inclusion of GamStop integration and ADR provider details.
  • November 2025: enhanced explanations of international transfers, responsible gambling data processing, and alignment with UK GDPR and, where applicable, Mexican data protection concepts; updated contact and complaint handling timeframes.

Last updated: November 2025

If you have any questions about this Privacy Policy or how it applies to your use of bet-blast-united-kingdom on blest.bet, please contact us using the details in the "Who We Are" or "Complaints & Contacts" sections.