Privacy Policy
Xinge Casina Privacy Policy
Effective Date: May,10,2025
1. Types of Data Collected
We may collect the following categories of personal information:
1. Identity Data: Name, contact details, government ID/passport numbers (for check-in purposes).
2. Transaction Data: Payment card details, billing address, booking history.
3. Device & Usage Data: IP address, browser type, device identifiers, page interaction logs.
4. User-Generated Content: Reviews, photos, customer service communications.
2. Purposes of Data Use
Your data is used to:
Fulfill Contracts: Process bookings, provide services, and offer customer support.
Improve Experience: Analyze user behavior to optimize platform functionality. Marketing: Send promotional offers with your consent (opt-out available at any time).
Legal Compliance: Respond to lawful requests or resolve disputes.
3. Data Sharing Practices
We share data only in the following cases:
1. Essential Service Providers: Payment processors, logistics partners, IT vendors (bound by confidentiality agreements).
2. Legal Obligations: Disclosures required by courts, law enforcement, or regulators.
3. Business Transfers: Data transfer during mergers, acquisitions, or asset sales.
4. Data Storage & Security
Storage Locations: Data is stored on servers in Italy, with cross-border transfers compliant with local laws.
Security Measures: SSL encryption, access controls, and regular security audits.
5. Your Rights
You have the right to:
Access, correct, or delete personal data (where legally permissible).
Withdraw consent for marketing communications.
Request data portability or restrict processing.
Submit complaints or inquiries to info@xingecasina.com.
6. Cookies & Tracking Technologies
Purpose: Maintain login sessions, analyze traffic, and personalize ads.
Management Disable cookies via browser settings (may limit functionality).
7. Children’s Privacy
Users under [16/13 years] (region-dependent) require parental consent to use our services.
Notify us immediately to delete data collected from minors without consent.
8. Policy Updates
Updates will be posted on the Platform with a revised effective date. Material changes will be notified via email.
Continued use constitutes acceptance of the revised policy.
Localization Guidance:
1. GDPR Compliance (EU/EEA):
Designate an EU Representative and Data Protection Officer (DPO).
Clarify "Legitimate Interest" use cases (e.g., fraud prevention).
2. CCPA/CPRA Compliance (California):
Include a "Do Not Sell My Personal Information" link and opt-out mechanism. Define handling rules for "Sensitive Personal Information."
3. China PIPL Compliance:
Specify data localization requirements and cross-border security assessments. Obtain explicit consent for processing sensitive data.