Please read this Privacy Policy carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us in the event you have a complaint. This policy should be read together with our Cookie Policy, which explains how we use cookies and similar technologies.
This Privacy Policy applies to the access and use of the WickedGames website hosted at https://www.wickedgames.com (hereinafter the “Website”), which is operated by WICKED TECH MALTA LTD, company no. C 78799, with registered office at Sigma Group, Triq L–Imhallef Paolo Debono, Msida MSD 2032, Malta (hereinafter the “Company”, “we” or “us”). Our Company is licensed by the Malta Gaming Authority under licence MGA/B2B/541/2018 to provide Type 1 Gaming Services (Casino) in a B2B capacity.
1. General Information
This Website is operated by WICKED TECH MALTA LTD. We are regulated under the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the national law on the protection of personal data. WICKED TECH MALTA LTD is the data controller for personal information processed via this Website.
2. Our Website
This Privacy Policy relates solely to www.wickedgames.com. We do not have any affiliated websites under this policy.
3. What Information We Collect
We collect the following categories of personal data:
- Contact & B2B enquiries: via our contact form, we collect your name, work email, company website and phone number.
- Technical & analytics data: when you visit or interact with our Website, we collect IP address, device/browser information, page views, session recordings and heatmaps through Google Analytics, Google Search Console, Hotjar and Smartlook.
- Live-chat data: when you engage with our Intercom widget, we collect visitor identifiers and chat transcripts.
4. Purpose of the Collection
- Contact enquiries: to respond to your questions and B2B service requests.
- Analytics & performance: to monitor, secure and improve our Website’s functionality and user experience.
- Live chat: to assist you in real time and record interactions for quality and training purposes.
5. Our Legal Basis for Processing Your Personal Information
We rely on the following GDPR legal bases, as applicable:
- Consent: where you have provided clear consent, e.g. for non-essential cookies or marketing communications.
- Performance of a contract: where necessary to fulfil your requests for our B2B services.
- Legitimate interests: to secure our Website, prevent fraud, and improve user experience, provided these do not override your rights.
- Legal obligations: to comply with MGA regulations and other statutory record-keeping requirements.
6. Cookies and Other Tracking Technologies
We use cookies and similar technologies as described in our Cookie Policy to collect analytics data, remember your preferences and ensure the security and performance of our Website.
7. How We Keep Your Data
We process and store your personal data in our offices in Malta and Cyprus, and on secure third-party cloud servers located within the European Economic Area. We implement appropriate technical and organizational measures—such as encryption, access controls, firewalls and regular audits—to safeguard your data.
8. Data Recipients
Within our Company, access to your personal data is restricted to employees and contractors who require it to perform their duties. Outside our Company, we may share your data with:
- Google Ireland Ltd (Analytics & Tag Manager)
- Hotjar Ltd
- Smartlook s.r.o.
- Intercom Inc.
- Other trusted service providers (e.g. email platforms, hosting providers) under binding confidentiality agreements.
We do not transfer personal data outside the EEA.
9. Retention Period
- Contact enquiries: retained for up to 7 years to meet commercial and tax obligations.
- Analytics & session recordings: retained for up to 1 year before anonymisation or deletion.
- Live chat transcripts: retained for 6 months.
After these periods, your personal data is irreversibly deleted or anonymised.
10. Transfers of Data Outside the EU/EEA
We do not transfer personal data outside the European Economic Area.
11. Security
We have implemented appropriate security measures—such as encrypted transmission (TLS), data-at-rest encryption, role-based access controls, anti-malware and intrusion detection—to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access.
12. Your Rights
Under the GDPR, you have the right to:
- Access the personal data we hold about you.
- Rectify inaccurate or incomplete data.
- Erase your data (“right to be forgotten”) in certain circumstances.
- Restrict or object to our processing.
- Receive your data in a structured, machine-readable format and transmit it to another controller.
- Withdraw consent at any time without affecting prior processing.
- Lodge a complaint with the Malta Information and Data Protection Commissioner or your local supervisory authority.
We will respond to your request within one month and may require proof of identity. A reasonable fee may apply if requests are manifestly unfounded or excessive.
13. How to Contact Us
If you have any questions or wish to exercise your rights, please contact our Data Protection Officer:
Marianna Tavella
Chief Legal Officer
WICKED TECH MALTA LTD
Sigma Group, Triq L–Imhallef Paolo Debono, Msida MSD 2032, Malta
Email: legal@wickedgames.com
14. Changes to This Privacy Policy
This Privacy Policy was last updated on May 5, 2025. We may update it from time to time; when we do, we will post the revised version on our Website and update the “Last updated” date.