burger icon
Horus Casino United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how personal data of players and visitors of horys.casino (including users arriving through the Horus Casino context) is collected, used, stored, and protected. It applies to anyone who visits our website, creates an account, participates in games, or interacts with our customer support channels. By using our services, you acknowledge that your personal data will be processed in accordance with this Privacy Policy and applicable UK data protection law. This Privacy Policy is effective and applies from 6 November 2025.

Who We Are

For the purposes of UK data protection law (including the UK General Data Protection Regulation and the Data Protection Act 2018), the main controller responsible for your personal data in connection with horys.casino is:

Mirage Corporation N.V.
Registered address / legal address: Fransche Bloemweg 4, Willemstad, Curaçao
Company registration number: 132869 (Curaçao)
Gambling licence: 8048/JAZ2014-037, issued under the authority of Antillephone N.V., Curaçao.

For certain payment and billing operations, your data may also be processed on our behalf by our payment processing subsidiary:

Mirage Ent. Corporation (Cyprus) Limited
Address: Menandrou 4, Fregata House, 1st floor, Flat/Office 101, 1066, Nicosia, Cyprus.

Horus Casino is the commercial brand operated on the domain horys.casino. References to "we", "us", "our", "Horus Casino", or "Horus Casino" in this Privacy Policy refer to Mirage Corporation N.V. and, where applicable, its group entities acting as processors.

We do not hold a licence from the UK Gambling Commission (UKGC). Our gambling services are offered under Curaçao law and the supervision of Antillephone N.V. This Privacy Policy is nonetheless designed to align with UK GDPR standards for users located in the United Kingdom.

Data protection contact (data protection team / DPO function):
Email: [email protected]
Postal contact: Mirage Corporation N.V., Fransche Bloemweg 4, Willemstad, Curaçao (please mark: "Data Protection - Confidential").

We OBSERVE our legal obligations as a controller, EXPAND our internal privacy framework across the group (including the Cyprus entity), and REFLECT these responsibilities in transparent policies and contact channels.

What Personal Data We Collect

Account and identity data

  • Identification details: full name, date of birth, nationality, gender (where provided), username, customer ID, and verification documents (e.g. copies of ID cards, passports, driving licences, proof of address) used for KYC and age verification.
  • Contact details: email address (for example, support correspondence with [email protected]), country of residence, residential address, and any phone number you choose to provide.
  • Account information: registration details, account status, language preferences, responsible gambling settings, and communication preferences.

Technical and usage data

  • Technical data: IP address, approximate geolocation derived from IP, device identifiers, device type, operating system, browser type and version, time zone setting, and similar technical identifiers collected when you access horys.casino.
  • Log data: login dates and times, login attempts, session IDs, security logs, changes to account details, and activity logs generated by our systems to maintain the integrity of the platform.
  • Behavioral and service usage data: game sessions, betting history, deposits, withdrawals, bonuses claimed, in-game actions, click-stream data, pages visited, time spent on pages, and interactions with promotions and on-site tools (including responsible gaming tools).

Payment and financial data

  • Payment data: partial card details (card type, masked card number, expiry date), e-wallet identifiers, bank account information (where applicable), transaction identifiers, and payment status. We do not store full card data; this is handled by payment service providers acting as processors.
  • Financial verification data: documents and information used for source-of-funds and affordability checks (such as bank statements or payslips) where required by our anti-money laundering (AML) and risk management obligations.

Communication and support data

  • Customer support interactions: transcripts and metadata from live chat, emails sent to [email protected], and internal notes created when we manage your queries, complaints, or responsible gambling requests.
  • Marketing communications data: newsletters subscriptions, marketing preferences, records of consent or objection, and interactions with our marketing emails.

Cookies and similar technologies

  • Cookies: small text files stored on your device to recognise your browser, maintain your session, and remember your preferences. We use session cookies, persistent cookies, and cookies set by trusted third parties.
  • Tracking technologies: pixels, tags, and scripts used for analytics (for example, measuring performance of pages and games), fraud detection, and, where you consent, personalised promotions and advertising.

We OBSERVE how players use our products, EXPAND our understanding through technical and behavioural data (while minimising what is collected wherever possible), and REFLECT privacy-by-design by limiting data to what is necessary to provide a secure casino environment.

Legal Basis for Processing

We process personal data only when we have a valid legal basis under UK GDPR. Depending on the specific processing activity, we rely on one or more of the following legal grounds:

  • Performance of a contract: we process your data when it is necessary to enter into and perform our agreement with you, including:
    • creating and managing your player account on horys.casino and within the Horus Casino context,
    • managing deposits, withdrawals, and payments via Mirage Ent. Corporation (Cyprus) Limited or other payment partners,
    • providing access to games, bonuses, tournaments, and related services,
    • delivering customer support and handling in-game incidents.
  • Compliance with legal obligations: certain data is processed to meet obligations under applicable laws, particularly in Curaçao and other relevant jurisdictions, which may include:
    • know your customer (KYC), age verification and identity checks,
    • anti-money laundering (AML) and counter-terrorist financing requirements,
    • record-keeping, tax-related obligations, and cooperation with competent regulators or law enforcement authorities.
  • Legitimate interests: we process data where necessary for our legitimate interests and where these are not overridden by your rights and freedoms, such as:
    • maintaining the security and integrity of our platform (including fraud monitoring, account misuse detection, and game fairness controls),
    • performing internal analytics, reporting, and statistics to improve our products and services,
    • defending and exercising legal claims, managing disputes, and maintaining appropriate records,
    • protecting our business and other players from abusive behaviours.
  • Consent: we rely on your consent where required by law, for example:
    • sending direct electronic marketing communications about offers and promotions,
    • using non-essential cookies and similar technologies for analytics and advertising,
    • processing certain special categories of data (if ever collected) or optional profile information.
    You may withdraw your consent at any time as described in the "Your Rights" section, without affecting the lawfulness of processing carried out before withdrawal.

We OBSERVE which legal basis applies to each processing activity, EXPAND our internal records to ensure accountability and documentation, and REFLECT these legal grounds transparently in the way we describe our processing to you.

Purpose of Processing

Providing and managing casino services

  • Service delivery: to register your account, verify your identity, allow you to deposit and withdraw funds, access games, process wagers, calculate wins and losses, and provide other core features of Horus Casino on horys.casino.
  • Account management: to manage your account settings, apply bonuses, enforce betting rules and limits, and administer loyalty or VIP programmes where available.

Safety, integrity, and legal compliance

  • Fraud and risk management: to detect and prevent fraud, abuse of bonuses, money laundering, collusion, and other prohibited behaviour by analysing transaction patterns, device data, and betting behaviour.
  • Regulatory compliance: to meet KYC/AML requirements, maintain transaction logs, respond to lawful requests from regulators or law enforcement, and demonstrate compliance with applicable gambling and financial regulations.
  • Responsible gambling: to implement self-exclusion, time-outs, deposit limits, and other safer gambling tools, and to monitor patterns that may indicate problematic gambling behaviour.

Improvement, analytics, and personalisation

  • Service improvement: to analyse how players interact with our games and website, fix bugs, optimise performance, improve the user interface, and develop new features.
  • Analytics and reporting: to generate aggregated or anonymised statistics (for example, game popularity, payment performance, or device breakdown) for internal business planning.
  • Personalisation: where permitted, to tailor content, recommend games, adjust promotions, and configure the site experience based on your activity and preferences.

Marketing and communications

  • Direct marketing: with your consent, to send email newsletters and promotional messages about bonuses, tournaments, and new features. You may unsubscribe at any time using the links in our emails or within your account settings.
  • Service messages: to send transactional messages about account changes, security alerts, payment notifications, and updates to our terms or policies (these are not based on consent because they are necessary for your account and legal compliance).

We OBSERVE how our services are used, EXPAND our systems to support secure and engaging gameplay, and REFLECT our commitment to data minimisation by linking each purpose to a clearly identified legal basis.

Disclosure & Sharing

We do not sell your personal data. We disclose or share personal data only with carefully selected recipients and only when necessary, based on appropriate legal grounds and safeguards.

Group companies and internal recipients

  • Mirage group entities: your data may be accessed by Mirage Corporation N.V. and Mirage Ent. Corporation (Cyprus) Limited for operational, financial, risk, and technical support purposes, subject to internal access controls.
  • Authorised staff: trained employees and contractors of Horus Casino who require access to your data to perform their duties (for example, customer support, fraud and risk teams, finance, and compliance staff).

Service providers and partners

  • Payment service providers: banks, card processors, e-wallet providers, crypto payment gateways, and other financial intermediaries that process your deposits and withdrawals on our behalf.
  • Technology and hosting providers: companies that provide data storage, hosting, content delivery networks, analytics tools, security services, and platform infrastructure.
  • Game suppliers: game studios and platform providers that supply casino games and related services, to the extent necessary for game operation, fairness checks, and regulatory reporting.
  • Marketing and affiliate partners: external partners who promote horys.casino, to track traffic sources and the performance of campaigns. Marketing-related sharing occurs only where permitted by law and, where required, based on your consent.

Regulators, authorities, and dispute handling

  • Regulators and law enforcement: we may disclose data to Antillephone N.V., other Curaçao authorities, financial intelligence units, or law enforcement bodies when required to comply with legal obligations or lawful requests.
  • Alternative dispute resolution and licensing authority: where a complaint escalates, relevant information may be shared with the Curaçao licensing authority or its complaint channel (including [email protected]) in order to assess and resolve disputes.
  • Professional advisors: lawyers, auditors, and consultants who need access to data for audit, legal defence, regulatory advice, or business restructuring, under strict confidentiality obligations.

Advertising networks and social media

  • Advertising networks: where you have given consent to the use of advertising cookies or similar technologies, we may share limited data (such as cookie identifiers, IP address, and basic device information) with advertising networks to measure campaigns and, where permitted, show personalised offers.
  • Social media platforms: we may use pseudonymised identifiers to create custom audiences or exclude existing customers from general advertising campaigns, subject to your consent and platform policies.

If we are involved in a business transaction (such as a merger, acquisition, or asset sale), your data may be transferred as part of that transaction, subject to safeguards and continued protection. We OBSERVE strict criteria when selecting partners, EXPAND contractual safeguards (including data processing agreements), and REFLECT our accountability by documenting and overseeing each sharing arrangement.

International Transfers

Because Horus Casino is operated by Mirage Corporation N.V. in Curaçao with payment processing in Cyprus and partners around the world, your personal data may be transferred to, and stored in, countries outside the United Kingdom, including:

  • Curaçao: where Mirage Corporation N.V. is registered and where key operational systems and compliance functions may be located.
  • Cyprus: where Mirage Ent. Corporation (Cyprus) Limited manages certain payment and financial operations.
  • Other countries: where our third-party providers (such as hosting, technology, and game providers) maintain infrastructure, which may include the European Economic Area (EEA) and other jurisdictions.

Where your data is transferred outside the UK, we ensure that an adequate level of protection is in place, for example by:

  • relying on adequacy regulations or decisions where the UK government has recognised a country as providing an adequate level of protection,
  • entering into standard contractual clauses or equivalent safeguards, including the UK International Data Transfer Addendum, with recipients in countries that do not provide an adequate level of protection,
  • implementing additional technical and organisational measures, such as encryption and access controls, to protect data in transit and at rest.

We do not rely on the now-defunct EU-US Privacy Shield framework. Where relevant, we may rely on updated international data transfer mechanisms recognised by UK authorities. We OBSERVE the cross-border flows of data arising from our international operations, EXPAND contractual and technical safeguards to match current regulatory expectations, and REFLECT these safeguards in our internal documentation and vendor management processes.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to meet legal, accounting, or reporting requirements, and to resolve disputes. Retention periods may vary depending on the category of data, but we apply the following general principles:

  • Player account and identification data: typically retained for the duration of your active account and for up to 5 years after account closure, to comply with AML/KYC obligations and to defend legal claims, unless a longer period is required by law or regulatory guidance.
  • Transaction and payment records: retained for at least 5 years from the date of the transaction or account closure (whichever is later), to meet financial record-keeping and AML requirements.
  • Technical logs and security data: retained for shorter periods, usually from several months up to 2 years, depending on the sensitivity of the data and the need for security investigations and fraud monitoring.
  • Customer support and complaint records: retained for the life of the account and up to 5 years after the final resolution of a complaint, to evidence our handling of issues and to meet regulatory expectations.
  • Marketing data: retained for as long as you remain subscribed to marketing communications, and no longer than 2 years from your last interaction with our marketing, unless you withdraw consent earlier or we are required to keep limited records to honour your opt-out.
  • Aggregated or anonymised data: where data is irreversibly anonymised, it may be retained indefinitely for statistical, research, or business analysis, as it no longer constitutes personal data.

When the applicable retention period expires, or when data is no longer needed for the purposes described, we either delete or irreversibly anonymise the data, unless we must retain it to comply with legal or regulatory obligations. We OBSERVE retention requirements set by gambling and financial regulations, EXPAND automated lifecycle rules in our systems where feasible, and REFLECT the principle of storage limitation by regularly reviewing our retention schedules.

Your Rights

If you are located in the UK, your rights are primarily governed by the UK GDPR and the Data Protection Act 2018. Where applicable, we also seek broader alignment with international standards, including EU GDPR and comparable frameworks such as the Mexican Federal Law on the Protection of Personal Data Held by Private Parties, particularly for users who may interact with our services from those jurisdictions. These rights are exercised free of charge, subject to limited exceptions (for example, requests that are manifestly unfounded or excessive).

Core data protection rights

  • Right of access: you can request confirmation as to whether we process your personal data and, if so, receive a copy of your data together with information about the processing.
  • Right to rectification: you can ask us to correct inaccurate data or complete incomplete data (for example, updating your contact details or address).
  • Right to erasure ("right to be forgotten"): you can request deletion of your personal data where there is no longer a legal basis for us to retain it. This right is subject to important exceptions, especially where we must retain data for AML, fraud prevention, or legal claim purposes.
  • Right to restriction of processing: you can ask us to restrict processing in specific circumstances, for example while we verify the accuracy of data or assess an objection you have raised.
  • Right to object: you can object to processing based on our legitimate interests, including profiling related to such interests. We will stop processing unless we demonstrate compelling legitimate grounds that override your interests or we need the data for legal claims.
  • Right to object to marketing: you can object at any time to the processing of your personal data for direct marketing purposes, including profiling to the extent it relates to such marketing. We will stop sending marketing without undue delay.
  • Right to data portability: for data processed by automated means on the basis of consent or contract, you may request to receive the data in a structured, commonly used, machine-readable format or ask us to transmit it to another controller, where technically feasible.
  • Right to withdraw consent: where processing is based on your consent (for example, for marketing or certain cookies), you may withdraw that consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

How to exercise your rights

  1. Submit a request: send an email to [email protected] from the email address linked to your account, clearly stating the right you wish to exercise (for example, access, rectification, erasure). You may also contact us by post at Mirage Corporation N.V., Fransche Bloemweg 4, Willemstad, Curaçao, marked "Data Protection - Rights Request".
  2. Identity verification: for your security and to OBSERVE our legal obligations, we may request additional information to verify your identity (for example, confirmation of account details or additional KYC documentation) before responding.
  3. Response timeframe: we aim to respond within 30 days of receiving a valid request. In complex cases or where we receive multiple requests, we may EXPAND this period by a further 30 days, in which case we will inform you of the extension and the reasons.
  4. Fees: we normally REFLECT your rights free of charge. However, where a request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to act on the request, in line with the UK GDPR.

Where Mexican or EU data protection laws apply in parallel (for example, if you access our services from those regions), we will also consider any equivalent rights granted by those frameworks and endeavour to provide a consistent, high level of protection.

Cookies & Tracking Technologies

Types of cookies we use

  • Strictly necessary (session) cookies: required for the operation of horys.casino, such as maintaining your login session, securing your account, and enabling core functionality like placing bets and managing your wallet. These cookies are usually session-based and expire when you close your browser.
  • Functional cookies: used to remember preferences (such as language or region) and to provide enhanced features. These may be persistent cookies that remain on your device for a predefined period.
  • Analytics and performance cookies: help us OBSERVE how visitors use our site (for example, which pages are visited most often, whether error messages are received, and how users navigate), so we can EXPAND and optimise website performance and user experience.
  • Advertising and targeting cookies: with your consent, used to deliver more relevant promotions, limit the number of times you see an advertisement, and measure the effectiveness of campaigns. These may be set by us or third-party advertising networks.

Third-party cookies and similar technologies

  • Third-party analytics: we may use third-party analytics providers that set their own cookies or tags to help us measure traffic and usage patterns.
  • Third-party advertising: advertising partners may set cookies or pixels to create aggregated statistics or audiences, in accordance with your consent and their own privacy policies.

Managing cookies

  • Cookie consent tools: where required by the UK Privacy and Electronic Communications Regulations (PECR), we display a cookie banner or preference centre when you first visit horys.casino, allowing you to accept or reject non-essential cookies and adjust your choices at any time.
  • Browser settings: you can manage or disable cookies through your browser settings. Please note that blocking all cookies may affect the functionality of the site, and certain essential features may not work properly.
  • Opt-out mechanisms: some third parties provide their own opt-out tools for analytics or behavioural advertising. We provide links to these, where relevant, in our cookie-related notices.

We OBSERVE cookie usage to understand and improve our services, EXPAND user control through consent and preference management, and REFLECT regulatory requirements by distinguishing strictly necessary cookies from those that require consent.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or damage. While no online service can guarantee absolute security, we aim to maintain a security posture aligned with recognised industry standards.

  • Encryption in transit and at rest: data transmitted between your browser and horys.casino is protected using Transport Layer Security (TLS) 1.2 or higher. Where feasible, we also encrypt data at rest within our infrastructure and databases.
  • Access control and authentication: access to personal data is restricted to authorised personnel who require it for their job functions and is controlled through role-based access control, strong authentication mechanisms, and, where appropriate, multi-factor authentication for sensitive systems.
  • Segregation and secure architecture: we separate critical components (such as payment systems, game servers, and back-office tools) and use network segmentation, firewalls, and intrusion detection or prevention systems to mitigate security risks.
  • Security monitoring and audits: we OBSERVE our environment through logging and monitoring of key systems, and we periodically carry out vulnerability assessments and security reviews. Where appropriate, we seek alignment with international frameworks such as ISO 27001 and SOC 2, even if formal certification is not claimed.
  • Staff training and confidentiality: employees and contractors receive data protection and security training, and are bound by confidentiality obligations and internal policies designed to EXPAND awareness of security and privacy risks.
  • Incident response: we maintain procedures for identifying, escalating, and responding to security incidents. If a personal data breach occurs that is likely to result in a high risk to your rights and freedoms, we will notify you and relevant authorities in accordance with legal requirements and REFLECT lessons learned in our controls.

Complaints & Contacts

Contacting us

  • Data protection and privacy queries: for any questions about this Privacy Policy or how we process your data, you can contact our data protection contact team:
    • Email: [email protected]
    • Postal: Mirage Corporation N.V., Fransche Bloemweg 4, Willemstad, Curaçao (marked "Data Protection - Confidential").
  • General support: 24/7 live chat is available via the on-site widget at horys.casino. This is typically the fastest way to address account-related questions.

Step-by-step complaint procedure

  1. Step 1 - Contact customer support: if you believe your privacy rights have been infringed or you have concerns about our handling of your data, please first contact our support team via live chat or by emailing [email protected]. Provide as much detail as possible, including your account ID and the nature of your concern.
  2. Step 2 - Internal review: your complaint will be logged and assigned to a relevant team member. We OBSERVE all complaints through internal tracking systems and EXPAND our investigation by gathering relevant logs, records, and communications.
  3. Step 3 - Response time: we aim to respond to privacy-related complaints within 30 days. For more complex issues, we may need additional time; in such cases, we will inform you of the delay and the expected timeframe.
  4. Step 4 - Escalation within Horus Casino: if you are not satisfied with the initial response, you may request escalation to our data protection lead or senior management for further review.
  5. Step 5 - Gambling licence complaints: if your complaint relates to gambling operations and is not resolved to your satisfaction, you may contact our licensing authority's complaints channel at [email protected]. Please note that this process is distinct from UKGC-approved ADR and may not provide the same level of protection as UK regulation.

Supervisory authorities

  • United Kingdom (ICO): if you are located in the UK, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) regarding our data processing:
  • European Union: if EU data protection law applies to you, you may lodge a complaint with your local data protection authority in the EU. Contact details are generally available on the European Data Protection Board (EDPB) website.
  • Mexico: where Mexican data protection law is applicable (for example, for users in Mexico), you may lodge a complaint with the Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI). Further information is available at https://www.inai.org.mx.

We REFLECT on complaints as an opportunity to improve our practices and update our policies and controls where necessary.

Updates

We may update this Privacy Policy from time to time, for example to reflect changes in our services, legal requirements, or regulatory guidance. When we make material changes, we will provide you with clear notice and options.

How we notify you

  • Email notifications: for significant changes, we may send an email to the address associated with your account describing the updates and their effective date.
  • On-site banners and notices: we may display banners, pop-ups, or notifications on horys.casino, including in the Horus Casino context, to draw your attention to important changes.
  • Account dashboard alerts: we may place notifications within your account area explaining key updates and linking to the revised policy.

Effective date, versioning, and your choices

  • Last updated: November 2025. We maintain internal version control to OBSERVE when and how our privacy practices change.
  • Advance notice: for material changes that significantly affect your rights or the way we process your data, we will aim to provide at least 30 days' notice before the new version takes effect, unless immediate changes are required for legal or security reasons.
  • Your options: if you do not agree with a material change, you may choose to stop using our services and request account closure. Continued use of horys.casino after the effective date will normally be taken to mean that you accept the updated policy.

We EXPAND this Privacy Policy as our services and legal environment evolve and REFLECT those developments in transparent updates designed to keep you informed and protected.