Skip to main content

Privacy and cookies

Privacy statement

This website is operated by the Gambling Commission whose principal place of business is Victoria Square House, Victoria Square, Birmingham B2 4BP.

We respect the privacy of every individual who visits our website. Our website does not automatically store or capture personal information, but merely logs the user's IP address which is automatically recognised by the web server. 

We are legally required, under the Data Protection Act 1998 (the DPA) to make sure you know what we intend to do with your information and who it will be shared with. 

In order to carry out our regulatory functions and meet our legal responsibilities, we need to use personal data that we collect. 

Sometimes we may need to ask other agencies or organisations for relevant information about you in order to carry those functions, for example, when considering the suitability of an applicant, we may seek evidence or opinions from other sources where that is appropriate or where our initial review has highlighted areas of concern. 

We have a duty to, amongst other things: 

  • keep sufficient information to provide services and fulfil our legal responsibilities
  • keep your records secure and accurate
  • only keep your information as long as is required. 

Things you can do to help us: 

  • help us make sure we have identified you correctly by letting us know when you change address or name
  • tell us if any of your information we hold is wrong
  • allow us to share as much information about you as we need to. 

What is personal data?  

Under the DPA, personal data is defined as data that identifies a living person and includes any expression of opinion about that person. Personal data includes basic details such as name, address, telephone number, and date of birth, or notes and comments made about a person. 

Sensitive personal data  

Certain information is classified as sensitive personal data, for example:

  • racial or ethnic origin
  • religious beliefs
  • physical or mental health or condition
  • sexual orientation
  • criminal offences, including alleged offences. 

Consent must usually be provided for us to use sensitive personal data. Where we are asking you for sensitive personal data, we will always try and tell you why and how the information will be used.  There may be exceptions to this, for example when criminal investigations are ongoing and could be jeopardised. 

What personal information do we hold?  

In order to operate efficiently and carry out our statutory functions we collect and use information relating to individuals. This personal information includes information about the people that we license or provide services to, people that we are investigating, people we work with and employees past and present. 

How long do we keep your information?  

In some instances the law sets the length of time information has to be kept. Where this is not the case; we will use our discretion to make sure that we do not keep records for longer than we need to. 

We will always try and keep your personal information secure, whether it is held on paper or electronically. 

How we use your personal information   

We may use the information you provide for the following purposes: 

  • dealing with enquiries and complaints 
  • regulatory, licensing and enforcement functions
  • processing fee payments.  

Sharing personal data  

Your data may also be shared with third parties who fulfil a service on our behalf, and under our express instructions.  It may also be shared with other bodies where it is necessary to do so and where we are legally required or permitted to do so. This may include relevant public authorities, overseas regulators and law enforcement agencies.  

Sharing data is primarily for the purpose of performing our regulatory functions such as assessing individuals’ suitability to be licensed but it may be also be necessary to share information for other reasons, such as the prevention and detection of crime or for the collection of tax and gaming duty.  

Your rights

Any person about whom we hold information has rights under the Data Protection Act. You may: 

  • be informed if we hold personal data relating to you
  • receive a description of the personal data, why we hold it and to whom your personal data may be disclosed
  • have that information communicated to you
  • have any inaccurate data corrected, or removed in certain circumstances
  • stop processing likely to cause substantial damage or substantial distress
  • receive compensation if you suffer damage as a consequence of wrongdoing by us
  • appeal to the ICO where you believe we have not complied with the Data Protection Act.

Accessing your personal data

If you wish to view your personal information we hold you can make a subject access request. This must be in writing. You can submit your request by post or by email to info@gamblingcommission.gov.uk.

The request must include:

  • your name
  • your address
  • a description of the information you wish to obtain.

To ensure confidentiality, we will need evidence which confirms your identity. A copy of photo identification, and proof of your address such as, driving licence or passport and an energy bill would be acceptable.

If you are making a request on behalf of someone else, please include proof of permission for you to make this request.  

Complaints

To make a complaint about how the Gambling Commission has treated your personal data, please write to:

Information Manager
Gambling Commission
Victoria Square House
Victoria Square
Birmingham
B2 4BP
Or email info@gamblingcommission.gov.uk

What are cookies?

When we provide services, we want to make them easy, useful and reliable. Where services are delivered on the internet, this sometimes involves placing small amounts of information on your device, for example, computer or mobile phone. These include small files known as cookies. They cannot be used to identify you personally.

These pieces of information are used to improve services for you through, for example:

  • enabling a service to recognise your device so you don't have to give the same information several times during one task
  • recognising that you may already have given a username and password so you don't need to do it for every web page requested
  • measuring how many people are using services, so they can be made easier to use and there's enough capacity to ensure they are fast.

You can manage these small files yourself and learn more about them through internet browser cookies - what they are and how to manage them.

Our use of cookies

Usage analysis: We use Google Analytics to create anonymous cookies and log the IP addresses of visitors. We do not collect any personal information in the process.

We collect this data to assess which parts of the website are the most popular and identify trends in usage, helping to guide the development of new web pages. The cookies used for this analysis are:

Name: _utma
Typical content: randomly generated number
Expires: 2 years

Name:_utmb
Typical content: randomly generated number
Expires: 30 minutes

Name: _utmc
Typical content: randomly generated number
Expires: when user exits browser

Name_utmz
Typical content: randomly generated number, plus information on how the site was reached (for example, directly or via a link, organic search)
Expires: 6 months

Online regulatory returns: Our online regulatory returns system uses two cookies – one contains a session ID and one contains an authentication key. These cookies are not stored – they both expire when the visitor closes their browser. The cookies used for online regulatory returns are:

Name: ASP.NET_SessionId
Typical content: randomly generated session ID
Expires: on browser close

Name: GCOR
Typical content: contains an authentication key
Expires: when user exits browser

Fees calculator: Our fees calculator uses cookies to allow information to be remembered as users progress from one page of the website to another. The cookie used for the fees calculator is:

Name: ASP.NET_SessionId
Typical content: randomly generated session ID
Expires: on browser close

Variation calculator: Our variations calculator uses cookies to allow information to be remembered as users progress from one page of the website to another. The cookie used for the variations calculator is:

Name: ASP.NET_SessionId
Typical content: randomly generated session ID
Expires: on browser close

Licensing authority returns: Our licensing authority returns system uses cookies to allow information to be remembered as users progress from one page of the website to another. The cookies used for licensing authority returns is:

Name: ASP.NET_SessionId
Typical content: randomly generated session ID
Expires: on browser close

Consent to store cookies: We inform users, the first time that they visit our website, that we store cookies on their device. 

Name: cookieOK
Typical content: to identify when a user has implied consent to the website storing cookies

Expires: 1 year after visiting 

By using our website and online service you agree that we can place these types of cookies on your device.

How we use information visitors provide us with

We do not use cookies for collecting user information. Except as otherwise stated, we may use information visitors provide via this website to communicate information to them (if they have requested it) and for internal marketing and research purposes. We do not disclose any information visitors provide via the website to any third parties or other government departments except where:

  • a) such disclosures are necessary to fulfil our service obligations to them, in which case we will require such third parties to agree to treat it in accordance with this Privacy Policy
  • b) required by applicable laws, court orders or government regulations (for example to prevent or detect crime)
  • c) they give us permission to do so.

We take reasonable precautions to prevent the loss, misuse, or alteration of data that visitors give us.

If you would like us to correct or update any information, or if you would like information deleted from our records, then please contact us on info@gamblingcommission.gov.uk, or write to:

Information Manager
Gambling Commission
Victoria Square House
Victoria Square
Birmingham
B2 4BP

This privacy statement only covers the Gambling Commission website at www.gamblingcommission.gov.uk. This statement does not cover links within this site to other websites.