Quatro Privacy Rules: Casino Data, Security and Account Safety
We handle privacy, account protection, and payment security with clear controls for players in Canada. Personal data is used for account management, payment processing, fraud prevention, and legal compliance, while optional tracking remains under your control.
Navigation
Cookies and similar tools help keep sessions stable, remember preferences, and support secure sign-in. For sensitive account actions, we rely on authenticated access, encryption, and verification steps designed to protect balances and personal records.
Personal and Account Data Collected
We collect only the information needed to open and manage an account safely. This can include your full name, date of birth, address, contact details, device data, transaction history in CAD, communication logs, and preference settings.
During registration, identity checks help confirm eligibility under Canadian rules and reduce payment risk. We may also collect technical and usage data such as IP address, browser details, time spent on services, login activity, and device identifiers.
Some information is provided directly when you register, contact support, or adjust settings. Other data is collected automatically through cookies, server logs, tags, and scripts used to keep services functional and detect unusual activity.
- Identity and contact details for account setup and support
- Profile and login records for authentication and security review
- Usage and device information for fraud checks and service improvement
- Marketing preferences for consent-based communications only
Cookie Controls and Data Requests
You can adjust cookie preferences at any time through consent settings and browser controls. Essential cookies remain active for core functions, while analytics, advertising, and marketing tools stay optional.
Session cookies manage authentication and transaction flow, then disappear when the browsing session ends. Persistent cookies remember choices such as language, display settings, and recent payment preferences for quicker access later.
Declining all cookies may interrupt sign-in, saved preferences, or balance-related functions in CAD. A more practical approach is to disable third-party tracking while keeping essential tools active for secure access and payment continuity.
Withdrawing consent does not remove your rights over stored data. You can also request access, correction, restriction in some cases, deletion where retention rules allow it, and portable copies of certain account records.
| Privacy or Security Control | How It Applies in Canada | Retention or Main Condition |
|---|---|---|
| Consent settings and optional tracking | Players can change consent choices in real time from the account privacy dashboard or consent panel. Essential elements stay enabled for core operations, while tracking, advertising, marketing pixels, and third-party analysis remain optional. | Changes take effect right away; optional marketing uses a double opt-in system and can be withdrawn at any time. |
| Browser cookie controls | Players in Canada can manage cookies directly in Chrome, Firefox, Safari, Edge, and mobile browsers. A balanced option is to block third-party trackers while leaving essential cookies active so sign-in, balance in $, and platform functions continue to work smoothly. | If all tracking scripts are disabled, some features may stop working, including remembering login details or keeping balance-related functions in $ available. |
| Session and preference storage | Session cookies support authentication, navigation, uninterrupted access, and transaction flow, while persistent cookies remember interface language, display settings, and preferred payment methods for quicker future use. | Session tokens are kept only for that visit and are deleted when you log out or stay inactive; persistent identifiers linked to saved passwords or display settings can stay active for up to 24 months. |
| Payments, withdrawals, and verification data | Deposits, withdrawals, refunds, and balance updates in $ use PCI DSS-compliant gateways, end-to-end encryption, tokenisation, and transaction validation. Two-factor authentication (2FA) and identity checks are required for withdrawal requests, and mismatched payment data can trigger holds or alerts. | Transactional details needed to verify payments and withdrawals in $ must follow Canada compliance rules and may be kept for no more than five years. |
| Security protections on the account | Strong safeguards include 256-bit SSL encryption, AES-256 or higher for payment data, hashed and salted credentials, IDS/IPS monitoring, detailed access controls, penetration testing, and temporary locks after suspicious login attempts. | Multi-factor authentication is required for key account actions; user device data for fraud protection and security monitoring is kept for a 6 months rolling period. |
| Access, correction, deletion, and portability rights | Registered users can request a report of their stored data, correct outdated details, restrict some processing, ask for deletion or anonymisation, and request profile or gaming records in a machine-readable format. Requests can be sent through the support portal, support profile panel, or secure email. | Legitimate requests are handled within legal deadlines; deletion is only completed where retention rules allow it, and confirmation is sent by email once finished. |
| What is collected at sign-up and during use | Information may include full name, date of birth, address, contact details, device data, transaction history in $, authentication tokens, language preferences, communication logs, and marketing preferences. Collection is limited to account management, payment processing, fraud prevention, and legal obligations. | Email address for account notices is kept until the account is closed; marketing preferences stay stored until preference change. |
| Account closure and final deletion | Once an account is closed, players can request deactivation or deletion. Records can be permanently erased after closure when legal and regulatory retention periods have passed, while backup files and audit traces are also regularly cleared under legal and risk rules. | Permanent deletion happens on request after the account is closed and once required retention periods have expired. |
Security Measures for Accounts and Payments
When you register, log in, deposit, or request a withdrawal, stronger account safety measures apply. Key financial actions require multi-factor authentication, and withdrawal requests may be paused when payment details do not match verification records.
Payment data for users in Canada is protected with end-to-end encryption using AES-256 or higher. Transactions involving deposits or withdrawals in CAD also pass through PCI DSS-compliant gateways, with tokenisation used before backend processing.
We also use hashed and salted credentials, access controls, audit logs, and intrusion monitoring to reduce unauthorised access. Suspicious login attempts can trigger temporary locks, extra checks, or manual review before any funds are released.
- Create a strong password and update it regularly
- Avoid reusing the same login across other services
- Review confirmation prompts before payment requests
- Check account history and report suspicious activity immediately
Data Sharing, Retention and Support
We may work with service providers that help process payments, verify identity, support analytics, or maintain technical performance. These processors receive only the information needed to perform their role and are expected to handle it under strict data protection terms.
Marketing communication remains optional, and clear opt-out tools are available at every stage. Optional marketing enrolment may use a double opt-in process, while non-essential tracking requires consent before collection begins.
Some records must be retained to meet legal obligations, fraud controls, and transaction verification requirements in Canada. Once retention periods expire and no lawful basis remains, deletion, anonymisation, or archive clearing can proceed.
If you need to review settings, update details, or submit a privacy request, support channels and account tools are available. For players in Canada who want closer control over account safety, these controls are designed to be practical and easy to use.
You can create an account to manage consent settings and security options from the start.