burger icon
Tikitaka United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how the online casino service provided as Tikitaka on tikitaca.bet collects, uses, discloses, protects, and retains personal data. It applies to all players, prospective players, and other visitors who access or use tikitaca.bet from the United Kingdom and other regions where the service is available. By using tikitaca.bet, you acknowledge that your personal data will be processed in accordance with this Privacy Policy. Effective date: 6 November 2025.

Who We Are

OBSERVE: This section identifies the operator that is responsible for your personal data, its licensing context, and how you can contact us regarding privacy matters.

Operator and legal entity. The Tikitaka offering on tikitaca.bet is operated by Liernin Enterprises LTD, a limited company registered in the Marshall Islands. The company is the data controller for personal data processed in connection with your use of tikitaca.bet, except where another entity is expressly identified as a separate controller (for example, certain payment providers).

Registration and licensing. Liernin Enterprises LTD is registered in the Marshall Islands (detailed registered office address and registration number are not publicly specified in this document). The casino operation holds a PAGCOR Offshore Gaming License No. 22-0025 issued by PAGCOR (Philippine Amusement and Gaming Corporation) in the Philippines. The service is not licensed by the UK Gambling Commission; UK players access the service on an offshore basis and do not benefit from UK Gambling Commission regulatory protections or dispute mechanisms.

Address information. Liernin Enterprises LTD is registered in the Marshall Islands; however, the precise registered office address, postal code, city, and region are not specified here. Where required by law, those details are made available to competent authorities and may be provided to you upon request where legally permissible.

Data Protection Officer / data protection contact. Liernin Enterprises LTD has appointed an internal team responsible for data protection and privacy compliance (the "Data Protection Officer" or "DPO team"). You can contact the DPO team as follows:

  • Online: Through the contact or support section of tikitaca.bet, clearly marking your message "Data Protection" or "Privacy Request".
  • Email: If a specific privacy email address is provided within your account area or the contact section on tikitaca.bet, you should use that address and state that your request concerns data protection.
  • Postal: Where a mailing address for Liernin Enterprises LTD is made available within the site or provided to you by support, you may send written privacy requests to that address.

At the time of the last update (November 2025), no dedicated public telephone number is specified for privacy-related queries; all such queries should be submitted via the online channels described above.

What Personal Data We Collect

OBSERVE: This section explains the categories of information we collect about you when you use Tikitaka on tikitaca.bet, including information you provide directly and data collected automatically.

Identity and contact data

  • Personal identification data: Full name, date of birth, nationality, and gender (where provided).
  • Contact details: Email address, postal address, country of residence, and, where provided, telephone number or mobile number. The primary channels currently used are email and on-site messaging; a specific general phone number is not specified in our public materials.
  • Account details: Username, password, security questions/answers, preferred language, and other profile information you choose to provide.

Verification / KYC and AML data

  • KYC documents: Copies of identity documents (such as passport, national ID card, driving licence), proof of address (utility bill, bank statement, tax letter), and, where necessary, source-of-funds/source-of-wealth documentation.
  • Transaction history evidence: Screenshots or statements from payment accounts or wallets used to fund your account, where required by our anti-money laundering (AML) and counter-terrorist financing (CTF) procedures.

Technical and usage data

  • Technical identifiers: IP address, device identifiers, operating system, browser type and version, language settings, time zone, and approximate location derived from your IP address.
  • Log data: Login dates and times, session duration, pages visited, clickstream data, error logs, crash logs, and technical diagnostic information.
  • Device and network data: Information about the device you use (such as device type, screen resolution) and network characteristics necessary to deliver the service securely and efficiently.

Payment and financial data

  • Payment account information: Partial payment card details (masked card numbers), card expiry date, cardholder name, bank account or e-wallet details, cryptocurrency wallet identifiers (where supported), and transaction identifiers.
  • Transaction data: Deposits, withdrawals, bonus credits, chargebacks, refunds, and related financial records required for accounting, AML/CTF, and regulatory reporting.

Gaming and behavioural data

  • Gaming history: Records of games played, betting stakes and outcomes, jackpots, bonuses used, bonus wagering progress, and session duration.
  • Behavioural patterns: Information about your playing behaviour (such as frequency of play, game preferences, stake ranges), clicks and navigation within the site, and interactions with promotions or campaigns.
  • Responsible gambling data: Self-exclusion status (including email-based self-exclusion requests), limits and cooling-off periods you set, and records of any communications concerning responsible gambling.

Communication and support data

  • Customer support communications: Records of emails, chat transcripts, internal messages, and complaints or queries submitted through contact forms, including any attached documents.
  • Marketing preferences: Opt-in/opt-out status for email, SMS, push notifications, and other marketing channels, together with records of consent and withdrawal of consent.

Cookies and similar technologies

  • Cookies: Small text files stored on your device that help us recognise your browser, remember your preferences, provide security features, and measure site usage.
  • Similar technologies: Pixel tags, web beacons, local storage objects, SDKs, and similar technologies used to support analytics, fraud detection, and advertising (where permitted by your consent and local law).

We collect most of this information directly from you or through your use of tikitaca.bet. Some technical data may be collected by our service providers (for example analytics or payment processors) acting on our instructions.

Legal Basis for Processing

EXPAND: This section explains the legal grounds under which we process your personal data under UK data protection law (UK GDPR and the Data Protection Act 2018), the EU General Data Protection Regulation (EU GDPR) where applicable, and aligned international standards.

  • Performance of a contract: We process personal data when it is necessary to enter into, perform, and manage the user agreement between you and Liernin Enterprises LTD for the provision of the Tikitaka casino services on tikitaca.bet. This includes creating and maintaining your account, processing deposits and withdrawals, operating games, providing customer support, and honouring bonuses and promotions.
  • Compliance with legal obligations: We process your data where necessary to comply with obligations under applicable laws and regulations, including AML/CTF requirements, prevention of fraud and money laundering, responsible gambling obligations, accounting, tax, and regulatory reporting requirements in the Philippines (PAGCOR), the Marshall Islands, the UK, and other relevant jurisdictions.
  • Legitimate interests: We process certain data where necessary for legitimate business interests, provided these are not overridden by your rights and freedoms. These interests include improving and securing our services, conducting analytics and statistical reporting, preventing abuse and fraud, ensuring network and information security, managing business operations, and defending or establishing legal claims.
  • Consent: In specific situations, we rely on your consent, for example for:
    • Sending direct marketing communications by email, SMS, or push notifications where consent is required.
    • Using certain non-essential cookies and similar technologies for analytics or advertising.
    • Processing certain optional profile data or survey responses.
    You may withdraw your consent at any time, as described in the "Your Rights" and "Cookies & Tracking Technologies" sections.
  • Protection of vital interests and legal claims: In rare cases, we may process data to protect your vital interests or those of another person (for example, in the context of serious problem gambling indications) or to establish, exercise, or defend legal claims.

Purpose of Processing

EXPAND: This section sets out why we use your personal data and how those purposes relate to the operation of Tikitaka on tikitaca.bet.

  • Providing and operating casino services: To create and manage your account, verify your identity, process deposits and withdrawals, operate games and betting, calculate and pay winnings, manage bonuses and loyalty rewards, and provide customer support.
  • Compliance and risk management: To conduct KYC checks, perform ongoing monitoring for AML/CTF, detect and prevent fraud and misuse, verify the fairness and integrity of gameplay, and comply with applicable regulatory, tax, and accounting obligations.
  • Improving and personalising the service: To analyse how users interact with tikitaca.bet, troubleshoot technical issues, develop new features, improve usability, personalise content and game recommendations, and optimise the performance of our website and apps.
  • Marketing and promotions: To send you information about products, services, promotions, and tournaments offered in relation to Tikitaka on tikitaca.bet, subject to your marketing preferences and applicable law, and to measure the effectiveness of marketing campaigns.
  • Analytics and statistics: To perform aggregated or anonymised statistical analysis of gameplay, transactions, and usage patterns in order to understand performance, manage capacity, and support business planning, without identifying individual users where possible.
  • Responsible gambling and player protection: To monitor gameplay for signs of problem gambling, manage self-exclusion and limits (including email-based self-exclusion requests), and contact you where necessary to encourage safer play or enforce restrictions.
  • Legal, regulatory, and business purposes: To respond to lawful requests from regulators (including PAGCOR and other competent authorities), enforce our Terms & Conditions and AML/KYC policies, protect our rights and those of players, and support corporate transactions such as restructurings or transfers of business.

Disclosure & Sharing

EXPAND: This section explains when your personal data may be shared with third parties and the safeguards applied.

  • Group and affiliated entities: We may share data with companies within the same corporate group as Liernin Enterprises LTD or with affiliated service entities that support the operation of Tikitaka on tikitaca.bet, subject to appropriate intra-group data protection arrangements.
  • Payment and banking partners: Your identity, transaction, and limited account information may be shared with banks, card schemes, e-wallet providers, payment gateways, and cryptocurrency service providers (where used) to process deposits, withdrawals, chargebacks, and to perform fraud and AML/CTF checks.
  • Verification, AML, and risk management providers: We may use specialised third parties to verify your identity and address, check sanctions and politically exposed person (PEP) lists, assess affordability, and detect suspicious transactions. These providers process your data under our instructions and applicable law.
  • Technical and infrastructure providers: Hosting providers, cloud and IT service providers, game platform providers, security monitoring services, and analytics providers may process your personal data solely to support the secure and efficient delivery of tikitaca.bet.
  • Marketing and affiliate partners: With your consent and in line with your preferences, we may share limited information with marketing partners, affiliate networks, and advertising technology providers to deliver or measure campaigns related to Tikitaka, including on tikitaca.bet or third-party platforms.
  • Regulators, supervisory authorities, and law enforcement: We may disclose personal data to PAGCOR, other competent regulators, tax authorities, courts, law enforcement agencies, and supervisory authorities (including data protection authorities) when required or permitted by law, or in order to protect our rights or the safety of our players.
  • Business transfers: In the context of a merger, acquisition, reorganisation, or transfer of all or part of our business, your data may be shared with prospective or actual purchasers and their advisers, subject to confidentiality and data protection safeguards.
  • With your instruction or consent: We may share your data with third parties when you request or consent to such sharing, for example when participating in co-branded promotions or using features that connect with third-party services.

All third-party recipients are required to implement appropriate technical and organisational measures to protect your data, and they may only process it in accordance with our documented instructions or as otherwise required by law.

International Transfers

EXPAND: This section describes where your data may be processed and the safeguards applied when it is transferred outside your home country, including from the UK to other jurisdictions.

  • Locations of processing: Your personal data may be processed in the United Kingdom, the European Economic Area (EEA), the Philippines, the Marshall Islands, and other countries where our service providers or group entities are located. In particular:
    • Corporate and licensing functions are linked to the Marshall Islands and the Philippines (PAGCOR offshore license No. 22-0025).
    • Certain hosting, analytics, and support services may be provided from EEA or non-EEA countries.
  • Legal frameworks and safeguards: When transferring personal data from the UK or EEA to countries that do not provide an "adequate" level of data protection under UK GDPR or EU GDPR, we implement appropriate safeguards, such as:
    • Standard Contractual Clauses (SCCs) adopted by the European Commission, together with the UK International Data Transfer Addendum where required.
    • Contractual obligations requiring recipients to protect personal data in line with UK/EU standards.
    • Risk assessments and additional technical safeguards (such as encryption) designed to protect data in transit and at rest.
  • Access by foreign authorities: Data stored or processed in other countries may, in certain circumstances, be accessible to foreign courts, law enforcement, and national security authorities under their local laws. We seek to limit such access to what is lawful and strictly necessary and will challenge excessive or unlawful requests where reasonably possible.
  • Regional compliance note: Although Tikitaka on tikitaca.bet is not regulated by the UK Gambling Commission, we seek to align our data transfer practices with UK and EU data protection standards and to apply comparable safeguards for players in other regions, subject to local legal requirements.

Data Retention

REFLECT: This section explains how long we keep your personal data and the criteria used to determine retention periods.

  • General principle: We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy, including satisfying legal, regulatory, accounting, AML/CTF, and reporting obligations, and then securely delete or anonymise it.
  • Account and identity data: Core account information and identity/KYC records are typically retained for the duration of your relationship with us and for up to five (5) years after account closure, or longer where required by applicable AML/CTF or financial record-keeping laws.
  • Transaction and payment data: Records of deposits, withdrawals, bonuses, and financial transactions are retained for at least five (5) years from the date of the relevant transaction or account closure, whichever is later, to comply with accounting and AML/CTF requirements.
  • Gaming and behavioural data: Game history and betting records are kept for as long as required to resolve disputes, comply with regulatory requirements, support responsible gambling monitoring, and for a typical period of up to five (5) years after account closure, subject to applicable law.
  • Customer support and complaint records: Communications with customer support and complaint files are usually retained for up to five (5) years after resolution of the issue, or longer where necessary to establish or defend legal claims.
  • Technical logs and security data: Security logs, server logs, and similar technical records are generally kept for shorter periods, typically between six (6) months and two (2) years, unless a longer retention is required for investigating incidents or meeting legal obligations.
  • Cookies and similar technologies: Cookie retention periods vary depending on the type of cookie and its purpose. Session cookies expire when you close your browser. Persistent cookies may remain on your device for periods ranging from a few days to several years, as specified in our cookie settings interface.
  • Deletion and anonymisation: When data is no longer required, we will either securely delete it or anonymise it so that it can no longer be linked to an identifiable individual. Anonymised data may be used indefinitely for statistical and analytical purposes.

Your Rights

REFLECT: This section describes your data protection rights and how they are implemented under UK GDPR, EU GDPR (where applicable), and Mexican privacy law (notably the Federal Law on the Protection of Personal Data Held by Private Parties), with alignment to other relevant frameworks.

Your rights under UK and EU data protection law

  • Right of access: To obtain confirmation as to whether we process your personal data and, if so, receive a copy of that data together with information about how we use it.
  • Right to rectification: To request correction of inaccurate data and completion of incomplete data. You can update certain details directly in your account settings on tikitaca.bet.
  • Right to erasure: To request deletion of your personal data in certain situations, for example where it is no longer needed for the purposes for which it was collected or where you withdraw consent and there is no other legal basis. This right may be limited where we must retain data for AML/CTF, accounting, or legal obligations.
  • Right to restriction of processing: To request that we limit the processing of your data in certain circumstances (for example, while we verify its accuracy or assess an objection).
  • Right to object: To object at any time to processing based on legitimate interests, including profiling, and to object to processing for direct marketing (including profiling for marketing) at any time.
  • Right to data portability: To receive personal data you have provided to us in a structured, commonly used, machine-readable format and to request that we transmit it to another controller where technically feasible and legally permitted.
  • Right not to be subject to certain automated decisions: To request that decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects concerning you are reviewed by a human, and to express your point of view and challenge the decision.

Rights under Mexican privacy law (where applicable)

  • ARCO rights: For individuals subject to Mexican law, you may have the rights of Access, Rectification, Cancellation, and Opposition (ARCO), which largely correspond to the rights described above but are exercised under the framework of Mexican privacy law.
  • Consent and revocation: You may revoke your consent to processing where consent is the legal basis, without affecting prior lawful processing, and subject to legal or contractual limitations (for example, AML/CTF retention duties).

Exercising your rights

  • How to submit a request: You can exercise your rights by contacting our DPO team via the contact or support channels available on tikitaca.bet, clearly stating that your request concerns "Data Protection" or "Privacy" and specifying which right(s) you wish to exercise.
  • Verification: We may request additional information to verify your identity before acting on your request, particularly for access, erasure, and portability requests, in order to protect your account and personal data.
  • Response time: We aim to respond to all valid requests within one (1) month of receipt. In complex cases or where we receive multiple requests, this period may be extended by up to two additional months, in which case we will inform you of the extension and reasons.
  • Fees: Requests are handled free of charge. We may charge a reasonable fee or refuse to act on requests that are manifestly unfounded or excessive, particularly if they are repetitive.
  • Limitations: Your rights may be subject to restrictions where necessary to comply with legal obligations (such as AML/CTF and responsible gambling duties), protect the rights and freedoms of others, or preserve confidentiality of investigations and legal proceedings.

Withdrawal of marketing consent

  • Opt-out options: You can withdraw your consent to receive marketing communications at any time by:
    • Using the unsubscribe link in marketing emails.
    • Adjusting your marketing preferences in your account settings on tikitaca.bet (where available).
    • Contacting us via support and requesting to be removed from marketing lists.
  • Effect of withdrawal: Withdrawal of marketing consent does not affect the lawfulness of processing based on consent before withdrawal and does not prevent us from sending service or transactional messages (e.g., about account activity, changes to terms, or responsible gambling notices).

Cookies & Tracking Technologies

OBSERVE: This section explains how we use cookies and similar technologies on tikitaca.bet and how you can manage your preferences.

Types of cookies and similar technologies

  • Strictly necessary (functional) cookies: These cookies are essential for operating tikitaca.bet and providing core features such as secure login, session management, language preferences, and ensuring that your bets and transactions are processed correctly. They cannot be switched off in our systems, although you may block them via your browser settings (which may impair site functionality).
  • Performance and analytics cookies: These cookies collect information about how visitors use the site (for example, pages visited, time spent, and error codes) to help us improve performance, usability, and security. Data is generally aggregated and used to understand and optimise the Tikitaka experience.
  • Advertising and targeting cookies: These cookies may be set by us or our advertising and affiliate partners to deliver relevant advertising, measure campaign performance, and track referral traffic to tikitaca.bet. They may combine information from your visits with data from other sites, subject to applicable law and your consent.
  • Session vs. persistent cookies: Session cookies expire when you close your browser. Persistent cookies remain on your device for a defined period or until you delete them.
  • Similar technologies: We may use web beacons, pixels, SDKs, and server logs for similar purposes, such as tracking impressions, preventing fraud, and understanding engagement.

Managing cookies

  • Browser settings: Most browsers allow you to refuse or delete cookies, or to be notified before a cookie is placed. Please refer to your browser's help section for instructions. Blocking or deleting cookies may impact your ability to use certain features of tikitaca.bet.
  • On-site controls: Where provided, you can manage your cookie preferences using the cookie banner or settings panel on tikitaca.bet, including granting or withdrawing consent to non-essential cookies.
  • Advertising choices: Depending on your region, you may also manage certain advertising cookies via industry self-regulation tools. These choices are in addition to your rights under data protection laws.

Data Security

REFLECT: This section describes how we protect your personal data against unauthorised access, loss, or misuse.

  • Encryption in transit and at rest: We use modern encryption technologies, including TLS 1.2 or higher, to protect data transmitted between your device and our servers. Where feasible, sensitive data is encrypted at rest using industry-standard algorithms.
  • Access controls and authentication: Access to personal data is restricted to authorised personnel who require it for their job functions, based on role-based access controls. Administrative systems are protected by strong authentication mechanisms, which may include multi-factor authentication (MFA) and strict password policies.
  • Network and system security: We deploy firewalls, intrusion detection and prevention systems, anti-malware tools, and other technical controls to protect our infrastructure. Systems are monitored for suspicious activity, and security patches are applied in a risk-based and timely manner.
  • Organisational measures and training: Staff who handle personal data receive regular training on data protection, information security, AML/CTF, and responsible gambling obligations. Internal policies and procedures govern how data is accessed, used, and shared.
  • Security assessments and monitoring: We conduct periodic security reviews, vulnerability assessments, and, where appropriate, independent audits or penetration tests to evaluate and enhance our security posture. Our controls are informed by recognised international security standards (such as ISO/IEC 27001 and SOC 2), although we do not claim formal certification unless explicitly stated on tikitaca.bet.
  • Incident response: We maintain incident response procedures to detect, investigate, and mitigate suspected personal data breaches. Where a breach is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority and, where required, inform you without undue delay, in accordance with applicable law.
  • Your responsibilities: You are responsible for keeping your login credentials confidential, choosing strong passwords, and not sharing your account with others. You should log out after each session and notify us immediately if you suspect unauthorised access to your account.

Complaints & Contacts

REFLECT: This section explains how you can contact us about privacy issues and how to escalate concerns to supervisory authorities, including those in the UK, EU, and Mexico.

Contacting us or our DPO team

  • Primary contact: If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, you should contact our DPO team via the contact or support channels on tikitaca.bet, marking your message "For the attention of the Data Protection Officer".
  • Information to include: Please provide your name, account identifier or username (if applicable), contact details, and a clear description of your query or complaint. Do not include full payment card numbers or passwords.
  • Response timeframe: We will acknowledge receipt and aim to respond substantively within one (1) month. For complex matters, we may need more time, but we will keep you informed of progress.

Escalation and supervisory authorities

  • United Kingdom - Information Commissioner's Office (ICO): If you are in the UK and are not satisfied with our response, you have the right to lodge a complaint with the ICO:
    • Website: www.ico.org.uk
    • Postal: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom.
  • European Union - Data Protection Authorities (DPAs): If EU data protection law applies to you (for example, if you are in the EEA), you may lodge a complaint with your local supervisory authority, such as the data protection authority of your country of residence or place of alleged infringement. Contact details are available via the European Data Protection Board (EDPB) website.
  • Mexico - National Institute for Transparency, Access to Information and Personal Data Protection (INAI): If Mexican privacy law applies to you and you are dissatisfied with our handling of your personal data, you can contact INAI:
    • Website: www.inai.org.mx

We encourage you to contact us first so that we have the opportunity to address your concerns directly. This does not affect your right to approach a supervisory authority at any time.

Updates

REFLECT: This section explains how we will inform you about changes to this Privacy Policy and how version control is managed.

  • Policy review and changes: We may update this Privacy Policy from time to time to reflect changes in legal requirements, regulatory guidance, our processing practices, or the services offered as Tikitaka on tikitaca.bet.
  • Notification methods: Material changes will be notified to you via one or more of the following:
    • Prominent notices or banners on tikitaca.bet.
    • In-account notifications or dashboard alerts.
    • Email or other direct electronic communication using the contact details associated with your account.
  • Advance notice: Where feasible and where changes are significant, we will provide at least thirty (30) days' prior notice before the updated Privacy Policy becomes effective, so that you can review the changes.
  • Your options: If you do not agree with the updated Privacy Policy, you may choose to stop using the service and, where applicable, close your account in accordance with our Terms & Conditions. Continued use after the effective date will constitute acceptance of the updated policy.
  • Version control and "Last updated" date: Each version of this Privacy Policy is identified by its "Last updated" date. The current version is: Last updated: November 2025.
  • Changelog of recent material changes: Recent updates include:
    • Clarification of the licensing context (PAGCOR offshore license No. 22-0025 and non-licensing by the UK Gambling Commission).
    • Enhanced descriptions of international data transfers, security measures, and retention periods.
    • Expanded explanation of user rights, including alignment with UK GDPR, EU GDPR, and Mexican privacy law where applicable.