GDPR – Frequently Asked Questions

The General Data Protection Regulation (GDPR) is a set of rules designed to enhance the existing protections surrounding personal data and privacy of EU citizens. The regulation has been created to strengthen and unify data protection legislation across the European Union.

GDPR is effective as of May 25, 2018.

GDPR defines personal data as “any information relating to an identified or identifiable natural person”. It can be anything from a name, a home address, a photo, an email address, bank details, or a computer’s IP address.

Personal data refers to information about an individual who can be identified from that data or where that data is combined with other information to make the individual identifiable.

Your active account will not be affected. The regulation applies only to players who no longer wish to use their Stars Account and our services. Therefore, after a certain period of time, we will remove the data of inactive accounts. In either instances no action is required from our players.

We want to assure our players that we do our best to protect their personal information against data theft or misuse by utilising the best technical and organisational measures to safeguard against threats. 

Our revised Privacy Policy will set out the conditions under which your personal information will be used and/or processed. Where the use of your personal information requires your consent, we will always request this in writing, setting out the specific purpose. 

We will not keep your personal data longer than necessary for the purpose for which it was initially requested (subject to any overriding legal obligations we may be subject to in line with our licence conditions). If you fail to log into your account, we have an automatic dormancy period that initiates from your last log in date. Following the applicable dormancy period and depending on your jurisdiction, your account will be permanently closed and we will remove any personally identifiable details from our database.

The length of time it will take to remove personally identifiable information, depends on the country and licence of your account registration. 

For example, if you held an account on the .BE licence, we would permanently remove your personal information from our database five years after you stopped using the account.

View the period that applies to your licence:

If your account is dormant, your personal data will be removed after the following period:

.COM: 6 years

.NET: 6 years

.FR: 6.5 years

.EE: 5 years

.BE: 5 years

.DK: 5 years

.EU: 6 years

.UK: 6 years

.IT: 10 years

.BG: 6 years

.SH: 5 years

.RO: 6 years

.PT: 10 years

.ES: 10 years

.CZ: 10 years

.GR: 5-10 years

.SE: 5-10 years

Your account falls under the data protection regulation, which means that whenever you decide to stop using our services, after a period of time (see above) we will remove your personal data from our database and it will no longer be accessible by us.

Your account information will no longer be available and you may have to create a new account on our site. If you attempt to reactivate your account and we advise you it has been removed under the requirements of GDPR, you may register a new account (subject to restrictions).

If you have previously self-excluded from real money gaming and your account falls dormant for the time period outlined above, your account will be closed as per GDPR requirements. However, we are under an obligation to retain certain information relating to your account to ensure that you cannot open an account on our site in the future.

If the account is registered on the .COM licence, GDPR still applies, since the licence is issued by the Malta Gaming Authority (MGA) and Malta is an EU Member State.

Your .UK account won’t be treated differently than accounts that fall under the EU data protection regulation, even after Brexit.

If you have any further questions about GDPR or our Privacy Policy, please contact Support.