Quatro Casino Data Protection, Cookies and Privacy Settings
Privacy matters, and so does clarity.
Navigation
At Quatro, we handle personal information and cookie settings in a practical, transparent way for players in Canada. Personal data is used to provide and improve the service, protect account access, support payments in CAD, and meet legal obligations. Non-essential tracking depends on clear consent choices, while essential technologies remain active for core functions such as authentication, security, and basic site performance.
Cookies and similar tools help remember preferences, support navigation, and keep key account actions stable. Some features rely on them. If a player disables all cookies, parts of the service may become less convenient, including saved settings, faster sign-in, and certain personalised recommendations.
Security, Identity and Payment Data
Data protection begins with secure account access and transaction handling. We use strong encryption for deposits, withdrawals, and balance updates, and key account actions require multi-factor authentication. For payment activity, sensitive information is protected with AES-256 or higher encryption, and data in transit is secured with 256-bit SSL protection.
Financial operations are processed through PCI DSS-compliant gateways. Sensitive payment details are tokenised before backend processing, while credentials are protected through hashing and salting rather than stored in plain form. Suspicious login attempts may trigger alerts and temporary account locks until access is verified.
During sign-up, we collect the information needed to confirm identity and maintain a secure account. This can include name, date of birth, address, contact details, device information, and usage records linked to browsing or account activity. In Canada, these checks help confirm eligibility and support safer transactions.
- Identity and contact details support registration and account management.
- Technical and usage data help monitor performance, fraud risks, and service stability.
- Payment-related information is processed only as needed for deposits and withdrawals in CAD.
- Marketing preferences are kept separate and can be changed at any time.
Cookie Settings and Data Retention
Control over cookies and privacy settings is available at all times. Consent for non-essential cookies can be reviewed, updated, or withdrawn through the privacy dashboard, website settings, or browser controls. Changes apply immediately, making it easier to balance convenience with stricter privacy preferences.
We use both session and persistent cookies. Session cookies support temporary actions such as authentication and navigation, while persistent cookies remember choices like language, display settings, and preferred payment methods. Session identifiers are deleted when the visit ends or inactivity closes the session, while some persistent identifiers may remain active for up to 24 months.
Optional analytics and advertising tools may also be used to understand behaviour, improve content, and tailor promotional messages. These tools rely on consent; essential cookies do not. If non-essential tracking is declined, core site functions remain available, although some tailored content and faster repeat access may no longer work as expected.
| Privacy Feature | How It Applies in Canada | Retention or Control Point |
|---|---|---|
| Consent dashboard and browser controls | Players can review, update, or fully withdraw cookie choices at any time through the consent dashboard. Browser controls are also available in Chrome, Firefox, Safari, Edge, and mobile browsers. Essential functions stay enabled for core operations, while tracking and advertising options remain optional. | Changes take effect immediately through the account privacy dashboard, website settings menu, or browser settings. |
| Session and preference cookies | Session cookies support authentication and navigation, while persistent cookies store preferences such as language, display settings, and preferred payment methods. Disabling all tracking scripts may prevent features such as remembered login details or visible balance information in $ during use. | Session tokens are kept only for the visit and are deleted when you log out or remain inactive; persistent identifiers may stay active for up to 24 months. |
| Payments and withdrawal records | Transactional details used to verify deposits, withdrawals, and balance updates in $ follow Canada's compliance and financial monitoring rules. Two-factor authentication and transaction validation are required for withdrawal requests, and automated holds or alerts may appear if payment data does not match. | Payment and withdrawal records must be kept for no more than five years, as required by regulatory bodies. |
| Security protections for personal and financial data | Canadian users’ payment data is protected by end-to-end encryption (AES-256 or higher), with 256-bit SSL encryption for data transmission. Sensitive information is tokenised before backend processing, credentials are hashed and salted, and suspicious login attempts can trigger alerts and temporary account locks. | Protection applies during every transaction and key account action, with multi-factor authentication required for sensitive operations. |
| Access, correction, portability, and deletion rights | Registered users can request an overview of their data, ask for corrections, request deletion or anonymisation of certain elements, and obtain profile or gaming records in a machine-readable format. Requests can be submitted through the support portal, support profile panel, or secure email, and identification checks are used to protect the account. | All legitimate requests are handled within the time limits set by law; once verified deletion is completed, users receive an email confirmation. |
| Marketing and personalised recommendations | Optional marketing messages use a double opt-in system, with enrolment confirmed by email or SMS. Recommendations and promotional banners may reflect prior game choices, language settings, device type, time zone, and previous activity, but marketing pixels are deployed only after explicit acceptance. | Marketing preferences remain active until changed; opt-out is available at any time from the control panel or unsubscribe link. |
| Third-party processing and sharing limits | Selected data may be shared only with vetted providers such as payment gateways, identity verification partners, analytics firms, and technical service providers for regulated purposes like fraud prevention, payments in $, and performance monitoring. Third parties are instructed to process personal data only for specific purposes and according to platform instructions. | Sharing is limited by strict vetting, internal access controls, and applicable Canada safeguards for transfers and processing. |
| Account closure and final data removal | After an account is closed, players can request deactivation or deletion, and records are permanently deleted upon request once account closure is complete and regulatory retention periods have passed. Some essential records may still need to be kept where anti-fraud protocols, legal obligations, or financial rules require it. | Deletion follows retention limits and legal requirements; backup files and system audit trails with old traces are regularly deleted as required by law and risk assessment. |
Browser Privacy Controls and Third Parties
Browser settings provide another way to limit tracking. Cookies can be refused, removed, or cleared through common browsers, including Chrome, Firefox, Safari, Edge, and mobile options. These browser-level controls work alongside platform settings rather than replacing them.
Refusing all cookies can affect usability. Login details may no longer be remembered, language preferences may reset, and some payment shortcuts may disappear. Essential tools still play an important role in fraud prevention, account authentication, and certain withdrawal checks, especially where legal and security standards apply in Canada.
Advertising and analytics tools may also involve third-party processing. We use selected service providers for analytics, technical operations, identity checks, and payment handling, with access limited to specific purposes. Third parties are not given unrestricted use of personal data and must follow platform instructions and applicable safeguards.
Account Rights and Data Retention
Registered users have meaningful privacy rights. Account holders can request access to stored data, ask for corrections, limit certain forms of processing, withdraw consent for optional marketing, and request deletion where legal retention rules allow it. Data portability is also available for certain records in a machine-readable format.
Some data must still be kept for compliance, fraud prevention, or financial monitoring. Transaction and withdrawal records may be retained for up to five years, while registration data is kept only as long as legal requirements make necessary. Once retention periods expire and deletion is validated, old backup traces and audit records are removed in line with policy and law.
For stronger account protection, we recommend a few practical habits:
- Create unique, complex passwords and update them regularly.
- Review transaction prompts and account history for inconsistencies.
- Use privacy settings to manage marketing and non-essential tracking.
- Report suspicious activity promptly through secure support channels.
Questions about privacy, cookies, or account settings can be directed through support channels within the service. For players in Canada, this helps maintain control over personal data without disrupting normal account use.