Privacy Policy

This Privacy Policy explains how CEART DIGITAL LIMITED (“we”, “us”, “our”) collects, processes, stores, and protects personal data in connection with the Premier Bet Clubwebsite, iOS application, Android application, and associated digital services (the “Service”).

We process personal data in accordance with:
• EU General Data Protection Regulation (EU GDPR)
• Irish Data Protection Act 2018
• UK GDPR (where applicable)

The data controller responsible for personal data is:

CEART DIGITAL LIMITED
Company Number: 798593
Incorporated in Ireland

We may collect:

Account Information:
• Email address
• Encrypted password
• Subscription status
• Stripe customer ID

Payment Data (Processed by Stripe):
• Name
• Billing address
• Country
• Phone number
• Payment details (handled by Stripe — we do not store full card numbers)

Technical Data:
• IP address
• Device information
• Browser type
• Usage data
• Analytics data (Google Analytics)
• Crash logs and diagnostic data (used to improve stability, performance, and security)

Push Notifications (Firebase):
• Device tokens
• Notification interaction data

We process personal data under:
• Contractual necessity (to provide the Service)
• Legal obligation (tax and accounting compliance)
• Legitimate interests (security, fraud prevention)
• Consent (marketing communications, analytics cookies)

Personal data is used to:
• Create and manage accounts
• Process subscriptions
• Provide digital content access
• Improve performance and analytics
• Send service-related notifications
• Send marketing communications (where consent given)
• Ensure platform security

All payments are processed via Stripe. We do not store full card numbers. Stripe may act as an independent data controller for payment data.

We use:
• Essential cookies
• Analytics cookies (Google Analytics)
• Marketing cookies (where enabled)

Users are provided with a cookie banner allowing opt-in to non-essential cookies.

We share data only with necessary service providers:
• Stripe (payments)
• Supabase (database services)
• DigitalOcean (hosting)
• Google Analytics (analytics)
• Firebase (push notifications)
• Resend (email communications)

We do not sell data and do not share data with other company websites.

Some providers may process data outside the EEA. Transfers are protected by Standard Contractual Clauses or other lawful safeguards.

We retain data:
• While your account remains active
• Up to 6 years for financial compliance
• As required for legal or fraud prevention purposes

You have the right to:
• Access your data
• Correct inaccuracies
• Request deletion
• Restrict processing
• Object to processing
• Data portability

Users may delete accounts via the application. Some data may be retained where legally required.

We implement:
• HTTPS encryption
• Encrypted database storage
• Restricted access controls
• Secure hosting infrastructure

In the event of a data breach, we will notify regulators within 72 hours where required and notify affected users if legally necessary.

The Service is strictly for users aged 18+. We do not knowingly collect data from minors.

The apps may collect device identifiers and push notification tokens via Firebase.

Marketing emails are sent only where consent is given. You may unsubscribe at any time.

We do not conduct automated decision-making that produces legal effects.

We may update this Privacy Policy from time to time. Updates take effect upon publication.

You have the right to lodge a complaint with the Irish Data Protection Commission.

For privacy-related enquiries, please visit our Contact Page.