Pin-Up Privacy Policy

The operator collects personal data to provide gaming and sportsbook services, verify identity, protect users, and meet legal obligations under Nigeria law.

Personal data that may be collected:

• Registration details: name, username, email, mobile number, residential address, date of birth.
• Identity and KYC: copies of identification, verification images, nationality, and other document details needed for compliance.
• Payments and transactions: bank details, cardholder information (in line with PCI DSS), deposits, withdrawals, and betting history.
• Technical and usage data: IP address, device identifiers, operating system, browser, log data, cookies, session information, responsible gambling settings.
• Communications and preferences: customer support records, consent choices, marketing preferences.

Why this information is collected and used:

• To deliver and manage the account, process bets, and provide customer support.
• To perform identity checks, prevent fraud, and comply with AML/CFT requirements.
• To maintain platform security, improve services, and meet regulatory requests.

Security measures:

• Encryption in transit (TLS) and at rest where appropriate.
• Strict access controls, role-based permissions, and multi-factor authentication for staff systems.
• Data minimisation, pseudonymisation where suitable, secure backups, and audited logging.
• Vendor due diligence, confidentiality obligations, and incident response procedures.

User rights (subject to legal limits):

• Access, correction, deletion, restriction, objection, and portability of personal data.
• Withdraw consent at any time, where processing relies on consent.
• Lodge a complaint with the Nigeria Data Protection Commission.

Compliance:

The operator follows the Nigeria Data Protection Act 2023 and the Nigeria Data Protection Regulation 2019, relevant anti-money laundering laws, and recognised international standards including GDPR principles of lawfulness, fairness, and transparency.

Personal information is used only for lawful purposes and in a transparent manner.

Typical uses include:

• Account servicing: registration, login, preferences, and responsible gambling tools.
• Transactions: deposits, withdrawals, bet settlement, chargeback handling, and financial reconciliation.
• Safety and compliance: KYC, AML/CFT screening, fraud prevention, sanctions checks, and responding to regulators.
• Service improvement: troubleshooting, performance monitoring, analytics, and product development.
• Personalisation: adapting content, settings, and features to improve user experience.
• Marketing: sending relevant updates where the user has provided consent, which can be withdrawn at any time.

Lawful bases:

• Contract performance, legal obligation, consent, and legitimate interests such as platform security and prevention of abuse.

Retention:

Personal data is kept for as long as needed for the purposes stated or as required by law. Records related to financial and AML obligations may be retained for at least five years after account closure or the last transaction, in line with Nigeria regulations.

Users can access, update, or delete their personal data through account settings or by submitting a request using the contact channels provided on the website.

Requests and procedures:

• The operator may require identity verification before acting on a request.
• A response is provided within one month, or within a further month for complex requests, as permitted by law.
• Deletion requests are honoured where no overriding legal obligation requires retention (for example, AML/CFT record-keeping).
• Corrections are made where data is inaccurate or incomplete. A record of changes may be kept for compliance.

By using Pin-Up, users consent to security checks and payment data processing by payment providers. Those providers may act as independent controllers for their own processing and have their own privacy policies.

This website is for persons aged 18 and above. The operator cannot confirm the age of a user without supporting documents and verification checks. If a minor’s account or information is identified, the account is closed and the data is deleted, subject to legal retention duties. A parent or legal guardian may request deletion by submitting proof of guardianship and the minor’s identity via the contact channels published on the website.

Personal data may be processed in other countries where partners and service providers operate to deliver online services. By continuing to use the website, users consent to such transfers where consent is required by law. The operator ensures confidentiality and applies appropriate safeguards for international transfers, including contractual protections and recognised transfer tools consistent with the Nigeria Data Protection Act and guidance from the Nigeria Data Protection Commission. Where feasible, data is encrypted and access is limited to personnel who need it for the stated purposes. Pin-Up partners are required to meet security and privacy standards.

This section explains limits that may affect how the rules in this policy apply. The policy forms part of the terms governing use of the services. To the extent allowed by law, the operator may process data despite an objection or deletion request where a legal obligation requires continued processing, record-keeping, or cooperation with authorities. The disclaimer applies once the user accepts this policy by signature (if applicable), online acceptance, or accession through continued use of the services. Nothing in this policy excludes rights that cannot be limited under Nigeria law.

Cookies are small text files stored on a device by websites to remember a user and understand how the site is used. Cookies on this website support statistics, behaviour analysis, personalisation, and improvement of services.

Cookie practices:

• Essential cookies are necessary for core functions and are always active.
• Non-essential cookies (analytics, functional, advertising) are used based on consent where required.
• Retention: non-essential cookies are kept for up to 1 year; session cookies expire when the browser is closed.
• Users can manage preferences via the on-site consent tool or browser settings. Disabling some cookies may affect functionality.

Using Pin-Up means full acceptance of this Privacy Policy. The version published on this page is the prevailing version. Updates may be made to reflect changes in law, services, or security practices. The updated effective date will be shown, and continued use of the website after changes indicates acceptance of the revised policy.

Personal data may be shared with third parties where required by law, to resolve disputes, to perform agreements, or to deliver services that the user requests.

Possible recipients include:

• Payment processors, banks, and card schemes for transactions and chargeback management.
• KYC/AML providers, fraud-screening and sanctions databases.
• Cloud hosting, cybersecurity, and analytics service providers.
• Auditors, legal advisers, dispute resolution bodies, regulators, and law enforcement.

Where the website lists specific third parties, users can review their privacy documents for details. If a recipient is not listed, users will be informed of the purpose and scope of sharing where required by law. Providing personal information constitutes consent when consent is the applicable legal basis; otherwise sharing is based on contract, legal obligation, or legitimate interests.

The website may contain links to other websites that are not operated by the company. Those websites have their own privacy policies and practices for processing personal information. The operator is not responsible for how external sites collect or use data. Users should review the privacy document on any external site before sharing information.