Cookie Policy

Last Updated: July 1st, 2025

Introduction

GambleID LLC (“GambleID,” “we,” “us,” or “our”) may use cookies and similar technologies when you visit or interact with our websites, Operator-integrated applications, or GambleID-powered interfaces (collectively, “Sites”) to enhance your experience, support security, enable analytics, and optimize services.

We reserve the right to modify this Cookie Policy at any time and for any reason. Any changes will be reflected via an updated “Last Updated” date. Continued use of the Sites after such updates constitutes your acceptance of the modified Cookie Policy.

1. Legal Framework

This Policy complies with applicable data protection regulations, including but not limited to:

  • EU Directive 2002/58/EC (“ePrivacy Directive”)
  • Regulation (EU) 2016/679 (“GDPR”)
  • California Consumer Privacy Act (CCPA)
  • California Privacy Rights Act (CPRA)
  • Other applicable global data protection and privacy laws

We commit to processing personal data collected via cookies in accordance with these frameworks and with our Privacy Policy and Terms of Service.

2. Your Rights

You may have rights to:

  • Access, correct, or delete your cookie-derived personal data
  • Withdraw consent or limit use of non-essential cookies
  • Request portability or restriction of data
  • Lodge complaints with supervisory authorities

3. What Are Cookies?

A cookie is a small text file stored on your browser or device. Cookies contain a unique ID that helps identify and remember your preferences, authentication status, and interaction patterns.

Cookies are classified into:

  • Session Cookies (deleted when browser closes)
  • Persistent Cookies (remain until deleted or expire)
  • First-Party Cookies (set by GambleID domains)
  • Third-Party Cookies (set by external service providers)

Cookies do not typically contain personal identifiers, but may be linked to such identifiers when combined with other data.

4. The Advantages of Using Cookies

Cookies improve:

  • Session continuity
  • Personalized experiences
  • Compliance workflows
  • Site security and fraud prevention
  • User interface responsiveness

5. Cookie Lifespan

Cookie lifespans vary by function and source. Some expire after a session; others persist for analytics or preference retention. You may control this via browser settings.

6. Types of Cookies We Use

We deploy multiple types of cookies:

  • Necessary Cookies
  • Functional Cookies
  • Performance and Analytics Cookies
  • Security Cookies
  • Advertising Cookies
  • Site Management Cookies
  • Personalization Cookies

7. How to Manage and Delete Your Cookies

Browser settings allow you to reject or delete cookies. Visit:

  • aboutcookies.org
  • allaboutcookies.org

8. Withdraw Consent

You may withdraw cookie consent at any time using your browser’s controls or a Consent Management Platform (see below). This may limit the Site’s functionality.

9. Web Beacons and Analytics Services

We use web beacons to:

  • Count visits
  • Analyze engagement
  • Attribute traffic sources
  • Track marketing campaign effectiveness

These may be used in coordination with cookies and third-party analytics platforms.

10. Advertising Cookies

These cookies:

  • Serve tailored content specific to the end user and experience
  • Track activity and support customization
  • Identify system access and security

No personally identifiable information is stored; GambleID uses anonymized or de-identified data when connected device cookies to end user information.

11. Analytics Cookies

Track how users interact with content, features, and flows. We use them for:

  • Platform optimization
  • Operator-specific behavioral tuning
  • Identifying friction points in the user journey

12. Our Cookies

Our first-party cookies power:

  • Session continuity
  • Authentication
  • Regulatory rule enforcement
  • Verification logic

Disabling these may impair service functionality.

13. Security Cookies

These:

  • Prevent fraudulent use
  • Authenticate devices
  • Detect emulators or bot traffic

14. Site Management Cookies

Track session state, especially across multi-page processes such as KYC or document upload workflows.

15. Third-Party Cookies

Examples include:

  • Geolocation data providers
  • Document scanning partners
  • Payment validators
  • Regulatory watchdog integrations

16. Control of Cookies

See your browser documentation to reject or delete cookies. You may also install browser-based blocking tools.

17. Storing Information Captured by Cookies

Cookie data is encrypted in transit and stored on secure, access-controlled cloud infrastructure aligned with SOC 2, ISO 27001, and PCI-DSS practices.

18. Personal Data Security

GambleID implements:

  • AES-256 encryption at rest
  • TLS 1.2+ in transit
  • Role-based access controls
  • Intrusion monitoring
  • Zero-trust design across endpoints

19. Security Aspects Related to Cookies

While cookies are not executable code, they may be exploited through interception or poor configuration. GambleID deploys secure headers, HTTP-only flags, CSP policies, and secure cookie attributes to mitigate misuse.

20. Mobile App SDK Tracking

For mobile environments, GambleID and its partners may collect information via SDKs embedded in Operator applications. These SDKs may capture:

  • Device identifiers (IDFA, GAID)
  • Screen resolution, OS version
  • In-app behavior and biometric session metadata
  • App state transitions and geolocation elements

SDK tracking data is used for:

  • Ensuring regulatory and geographic compliance
  • Fraud detection across mobile interfaces
  • Verification of device state during session flows

Mobile users may restrict tracking through native OS privacy controls (e.g., iOS App Tracking Transparency or Android Ad Settings).

21. Explicit First-Party vs. Third-Party Cookie Table

This section will distinguish between cookies placed directly by GambleID (first-party) and those placed via our trusted vendors or Operators (third-party).

22. Consent Management Platform (CMP) Disclosures

GambleID supports browser-based privacy signals and CMP banners compliant with GDPR, CPRA, and other international standards. When deployed, CMPs allow users to:

  • Accept or reject non-essential cookies
  • Set granular cookie category preferences
  • Trigger data rights workflows, such as deletion or objection

CMP logs are retained for compliance audits and to validate user intent.

23. Biometric Tracking Cookie Disclaimers

Some cookies or web beacons may coordinate with GambleID’s biometric processing tools. These may collect or store:

  • Liveness detection status
  • Facial geometry hash reference IDs
  • Document match scores

This data is encrypted, anonymized (where required), and never used for marketing. All processing aligns with biometric privacy laws such as BIPA and CPRA. Users may revoke biometric tracking by emailing privacy@gambleid.com.

Questions, Concerns, Complaints

If you have questions about your cookie data, preferences, or rights, contact:

privacy@gambleid.com

+1 (832) 701-0202

Mon–Fri, 10 AM – 4 PM CT (Excludes U.S. banking holidays)

Please include:

  • Your full name and associated email
  • The Operator or site you interacted with
  • A description of your request or concern