Introduction & Controller: We respect your privacy and are transparent about how we process data. This website is designed with a security-first, data-minimization approach. We do not operate user accounts, comments, logins, or payments. Data Controller: The operator of Novatrixcasinosreviews.com (contact below).
What We Process (Data Minimization): We do not intentionally collect names, emails, phone numbers, or similar direct identifiers. When you visit our website, the following technical and non-direct identifiers may be processed to enable the site and keep it secure:
• Device and browser information (e.g., browser version, OS type).
• Display settings (e.g., screen resolution, language preferences).
• Referrer URL, visited pages, session timing, and aggregate usage metrics.
• Country-level location derived from your IP address (see Geo section).
• Standard web server security logs (IP address, user agent, timestamp, requested URL, HTTP status).
We do not maintain registration systems, comment forms, or contact forms on Novatrixcasinosreviews.com.
• Device and browser information (e.g., browser version, OS type).
• Display settings (e.g., screen resolution, language preferences).
• Referrer URL, visited pages, session timing, and aggregate usage metrics.
• Country-level location derived from your IP address (see Geo section).
• Standard web server security logs (IP address, user agent, timestamp, requested URL, HTTP status).
We do not maintain registration systems, comment forms, or contact forms on Novatrixcasinosreviews.com.
Analytics (No User-Level Tracking): We use Google Search Console for aggregate search performance insights (queries, impressions, clicks). This does not identify individual users and does not provide us with personal profiles.
Geo-Location & Regional Controls: To comply with local content restrictions and serve relevant information, we use a geolocation tool (Geo Targetly) to detect country/region from your IP address in real-time. This is used exclusively to:
• Redirect to localized or country-specific content where available;
• Limit access from specific regions when legally necessary.
We do not build user profiles from location data and do not associate location to an identity. IP-based detection is processed transiently for routing; Novatrixcasinosreviews.com does not store geolocation lookups. Geo Targetly’s privacy policy: geotargetly.com/privacy-policy.
Note: Under GDPR, an IP address can be personal data. We handle it strictly for security, routing, and compliance purposes (see Legal Basis & Retention).
• Redirect to localized or country-specific content where available;
• Limit access from specific regions when legally necessary.
We do not build user profiles from location data and do not associate location to an identity. IP-based detection is processed transiently for routing; Novatrixcasinosreviews.com does not store geolocation lookups. Geo Targetly’s privacy policy: geotargetly.com/privacy-policy.
Note: Under GDPR, an IP address can be personal data. We handle it strictly for security, routing, and compliance purposes (see Legal Basis & Retention).
Cookies & Local Storage: We do not set tracking, advertising, or analytics cookies. Only strictly necessary technical storage may occur via your browser or hosting/CDN security to deliver the site and protect against abuse. We do not use localStorage/sessionStorage for tracking.
Legal Basis (GDPR Art. 6): Legitimate Interests (Art. 6(1)(f)) – operating a secure website, preventing abuse, detecting anomalies, ensuring regional compliance, measuring aggregate usage, and routing to relevant content. Legal Obligations (Art. 6(1)(c)) – where we must retain minimal logs for fraud prevention, security, or regulatory compliance. We do not rely on consent for tracking, as we do not deploy tracking cookies.
Security Measures: We apply administrative, technical, and organizational measures to protect data, including:
• Transport encryption (HTTPS/TLS) and hardened hosting configuration.
• Principle of least privilege for systems and staff.
• Attack surface reduction and continuous patching on our stack.
• Firewall and abuse detection at the hosting layer; limited access logging.
• Transport encryption (HTTPS/TLS) and hardened hosting configuration.
• Principle of least privilege for systems and staff.
• Attack surface reduction and continuous patching on our stack.
• Firewall and abuse detection at the hosting layer; limited access logging.
Data Retention: We retain only what is necessary for the shortest time possible:
• Security/server logs: typically up to 30 days, unless required longer for incident investigation or legal reasons.
• Aggregate analytics: high-level, non-user-specific metrics retained for trend analysis without personal identifiers.
• Security/server logs: typically up to 30 days, unless required longer for incident investigation or legal reasons.
• Aggregate analytics: high-level, non-user-specific metrics retained for trend analysis without personal identifiers.
International Transfers: Our service providers (e.g., geolocation, hosting) may process data in various countries. Where applicable, we rely on appropriate safeguards (e.g., standard contractual clauses or equivalent) to protect data during international transfers.
Your Privacy Rights: Because we do not operate user accounts and do not build user-level profiles, our ability to identify a specific individual in our systems is limited. Nevertheless, under GDPR and similar laws, you may have the right to:
• Request information about processing, access, or erasure;
• Request restriction or object to processing (particularly where based on legitimate interests);
• Lodge a complaint with your local supervisory authority.
If you contact us, we will make reasonable efforts to honor applicable rights where we can reliably identify relevant data in minimal security logs. In many cases, we cannot attribute technical logs to a specific natural person without additional information from you.
• Request information about processing, access, or erasure;
• Request restriction or object to processing (particularly where based on legitimate interests);
• Lodge a complaint with your local supervisory authority.
If you contact us, we will make reasonable efforts to honor applicable rights where we can reliably identify relevant data in minimal security logs. In many cases, we cannot attribute technical logs to a specific natural person without additional information from you.
Children’s Privacy: This website is for adults. We do not knowingly collect data from individuals under the minimum legal age for gambling in their jurisdiction. If you believe a minor has interacted with restricted content, please contact us.
Third-Party Processors: We use limited third-party services necessary to operate the site securely and regionally:
• Google Search Console – aggregate search performance reporting (no user identification).
• Geo Targetly – IP-based geolocation for routing (transient processing).
• Hosting provider – serves the website and maintains essential security logs.
• Google Search Console – aggregate search performance reporting (no user identification).
• Geo Targetly – IP-based geolocation for routing (transient processing).
• Hosting provider – serves the website and maintains essential security logs.
Do Not Track / Opt-Out Options: We do not track users for advertising or behavioral profiling. If you prefer to avoid geolocation redirects, you may use a global/non-localized page where available or access the site via privacy-enhanced browser settings or VPN.
Data Breach Handling: In the unlikely event of a data incident involving personal data, we will assess impact, mitigate risk, and notify relevant authorities and affected users where required by law.
Contact: For privacy questions or rights requests, contact: [email protected]. Please note: we cannot assist with casino account issues; contact the respective operator.
Changes to This Policy: We may update this Privacy Policy to reflect changes in our services or regulations. The most current version is always available on this page.