Privacy Policy

DATA CONTROLLER (No. 1, 2, 3, 4 and 5): CASINO NUEVA ANDALUCIA MARBELLA S.A.

TAX ID: A29043064 - Carretera de Cádiz a Málaga, km. 180 - 29660 Marbella (Málaga)

DATA CONTROLLER (no. 6): CIRSA Servicios Corporativos, S.L.

TAX ID: B25421199 - Carretera de Castellar, 298 - 08226 Terrassa (Barcelona)

DATA PROCESSING

PURPOSES OF THE DATA PROCESSING

GDPR RIGHTS AND CONTACT

Admission and access control
  • To control admission to and monitor the premises and entrances to the premises, as well as the people on site, in accordance with the legislation applicable in the relevant Autonomous Community.
  • To prevent access to minors and those included on the register of persons barred from entering gambling establishments, as well as any other person who is barred from entry in accordance with the regulations applicable in the relevant Autonomous Community.
  • To comply with the applicable regulations regulating access to casinos.

You may exercise the right to object, the rightsof access, rectification, erasure, restriction, portability and the right to object, as recognisedin the GDPR and set out in our Extended DataProtection Policy in which we explain in more detail how we process your personal data.

You may likewise object at any time to the following processing operations by writing to us at the e-mail address protecciondedatos@cirsa.com:

  • To the pseudonymisation of data for data analysis performed for business management and statistical purposes; and
  • To the dispatch of non-personalised business communications for advertising and promotional purposes.

Likewise, should you wish to clarify any doubts or request additional information on the processing of personal data, you may contact our Data Protection Officer by sending an email to the address protecciondedatos@cirsa.com.

Video surveillance
  • To maintain and guarantee staff safety and the security of assets at entrances and through out the establishment.
3. Examination of gambling operations for the control and prevention of fraud, money laundering and the financing of terrorism.
  • To verify the Client's identity and the methods of payment used.
  • To look into the origin of funds, and to monitor, detect, prevent and/or report fraudulent and/or criminal conduct if it is suspected that a fraudulent payment has been made, including with the use of stolen credit cards, or where there is any other suspected fraudulent activity.
  • To keep the Casino secure.
  • To communicate as required with the Executive Service of the Commission for the Prevention of Money Laundering and Monetary Offences.
  • To disclose to the Agencia Tributaria [Spanish Tax Administration Agency] winnings made by the Client whe never these reach the amounts for which mandatory disclosure is provided for by law.
  • To retain your personal data required in accordance with the regulations regulating the prevention of fraud, money laundering and the financing of terrorism, and any other applicable regulations, and for the establishment, exercise or defence of any legal claims which you may bring during the limitation period for actions brought as a consequence of the contractual relationships entered into.
4. Pseudonymisation of data for data analysis performed for business management and statistical purposes.
  • The pseudonymisation of data for the purposes of under taking business analyses and producing business statistics. Access to the Casino will not imply the completion of segmentation or Client profiling activities. We under take statistic alanalyses solely in order to obtain economic values and values relating to profitability and to the quality and improvement of services.
  • To under take such data processing, the Casino applies apseudonymisation process, which consists of encoding your data in such a way that you cannot be identified as a Client without the use of additional, separate information subject to technical and organisational measures intended to ensure that the personal data is not attributed to an identified or identifiable natural person.
5. Keeping lists registering data erasure and/or objections to the processing of data
  • To keep an up-to-date list of all those Clients who have requested the erasure of their data or who have at any time objected to any of the data processing operations performed byus.
6. Dispatch of business communications
  • To dispatch non-personalised business communications for advertising and promotional purposes, subject to the express consent of the Client.