Privacy Policy

To distribute a stable, secure, and regulatory-compliant digital ecosystem, our central systems process the following macro-categories of user information:

• Identification and Contact Data: Legal first and last name, valid email address, phone number, and official date of birth, the latter parameter being strictly necessary to verify compliance with the mandatory age limit (18+).
• Technical and Telemetry Data: Network IP addresses, hardware identification codes, browser versions used, operating system specifications, and related system log data.
• Navigation and Behavioral Data: Chronological records related to interaction methods with the interface, active connection times, and internal platform transit paths.
• Financial and Transactional Data: Accounting history of deposits made, withdrawal requests submitted, active balances, and accounting movements related to the use of platform services.
• Customer Support Documentation: Text transcripts, administrative notes, and metadata generated during technical assistance requests or formal communications.

The processing of personal information is carried out solely in the presence of valid and defined legal grounds, which typically include:

• Execution of Contractual Obligations: Essential for verifying user eligibility, completing personal profile creation, and providing the requested operational functionalities.
• Legitimate Company Interest: Applied to implement perimeter defenses on servers, perform code vulnerability tests, and combat computer or financial fraud.
• Compliance with Legal Obligations: Mandatory to satisfy identification mandates, document verification, and record-keeping requirements imposed by current Italian regulations.
• Explicit User Consent: Detectable when the user freely chooses to activate advanced analytical tools or receive optional promotional communications.

The information collected from our databases is exclusively intended for the technical management of user profiles, timely resolution of support tickets, monitoring of IT security systems, verification of potential illicit conduct, and blocking of external threats that could undermine the application's stability.

Personal data are stored in our digital archives only for the period strictly necessary to achieve the purposes described in this policy or to comply with mandatory terms established by applicable financial, accounting, and audit laws in Italy. After this period, records are permanently deleted using secure digital overwrite procedures or subjected to irreversible anonymization processes.

We do not engage in the sale, transfer, or marketing of user profiles to third-party marketing agencies. Access to information is strictly limited to authorized internal personnel and external data processing managers, such as hosting service providers, payment service partners, or digital security auditors, all bound by strict contractual confidentiality clauses. International data transfers deemed necessary are structured by implementing appropriate technical safeguards to ensure a level of protection equivalent to Italian and European standards.

We apply appropriate organizational, physical, and technological countermeasures—including SSL encryption algorithms, segregation of protected access databases, and firewall architectures—to minimize the risks of data loss, destruction, or manipulation. However, as no data transmission over the global internet can be considered one hundred percent invulnerable, we cannot provide an absolute guarantee against exceptionally sophisticated external cyberattacks.

In accordance with the data protection regulations in force in Italy, users can exercise specific individual rights regarding their personal records:

• Right of Access: Request a complete and detailed report of all personal data being stored.
• Right to Rectification: Request immediate correction or updating of inaccurate, outdated, or incomplete data.
• Right to Erasure: Request the definitive deletion of personal information where there are no legal constraints or overriding contractual obligations requiring its retention.
• Right to Object: Express dissent regarding specific processing based on legitimate company interest.
• Right to Data Portability: Obtain a structured copy of the provided data, transferable to another data controller where technically feasible.

To submit formal inquiries, request clarifications, or exercise the legal rights described above, we invite users to directly contact our compliance officer via the dedicated email address: onlyspins_support@gmail.com

This Privacy Policy may be subject to changes over time to comply with the introduction of new service options or modifications to national legislation. Any structural changes will be highlighted on this page before their technical entry into force.