burger icon
Mozzart United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how the online gambling services branded as Mozzart and provided via the website mozzarti.com collect, use, disclose, and protect personal data of players and website visitors in the United Kingdom and, where applicable, in other jurisdictions. It applies to anyone who visits mozzarti.com, registers an account, places bets, uses casino games, interacts with our customer support (including live chat), or otherwise communicates with us. This Privacy Policy is prepared in line with UK data protection law (including the UK GDPR and the Data Protection Act 2018) and relevant international standards. The effective date of this Privacy Policy is 1 January 2026.

Who We Are

The Mozzart online gambling services available at mozzarti.com are operated by:

  • Legal entity: Mozzart UK Limited
  • Registered address: 2nd Floor, 117 Piccadilly, London, W1J 7JU, United Kingdom
  • Regulator: UK Gambling Commission (UKGC)
  • UKGC licence number: 029833-R-331229-009 (Remote General Betting Standard - Real Event and Remote Casino)
  • Licence register: UKGC Public Register - Business 29833

Mozzart UK Limited is a limited company within the wider Mozzart Group, a gambling group originally founded in 2001 and active in Southeast Europe and other regions. For the purposes of UK data protection law, Mozzart UK Limited is the primary "data controller" in relation to personal data collected through mozzarti.com for Mozzart services.

If you have any questions about this Privacy Policy, your personal data, or how we comply with UK data protection law, you can contact our data protection team (including our Data Protection Officer) using the following details:

  • E-mail (primary contact): support@mozzarti.com (please include "Data Protection" in the subject line)
  • Postal address for privacy matters: Data Protection Officer, Mozzart UK Limited, 2nd Floor, 117 Piccadilly, London, W1J 7JU, United Kingdom
  • Customer support channels: live chat (accessible from mozzarti.com; average response approximately 2 minutes), and e-mail as above. No phone support is currently available. Support hours are generally 09:00 - 23:00 GMT and are not 24/7.

What Personal Data We Collect

We collect different categories of personal data when you use Mozzart services via mozzarti.com. The exact data collected depends on how you interact with us, but typically includes the following:

Identity and Contact Data

  • Registration details: full name, username, date of birth, and gender (where required for compliance and verification).
  • Contact details: e-mail address (for example, support@mozzarti.com when you communicate with us), residential address, country of residence, and mobile or landline phone numbers where provided.
  • Verification documents: copies or scans of identity documents (passport, ID card, driving licence), proof of address (utility bill, bank statement), and other KYC (Know Your Customer) or affordability documents.

Account and Behavioral Data

  • Account information: account ID, usernames, registration date, account status, responsible gambling settings (deposit limits, reality checks, time-outs, self-exclusion including GAMSTOP status).
  • Betting and gaming history: records of sports bets, casino game sessions, stakes, wins, losses, bonuses used, cashouts, cancellations, and in-game decisions.
  • Interaction data: communications with our support team (e-mails, live chat transcripts), complaints, requests, and internal notes relating to your interactions and our responses.

Technical and Usage Data

  • Technical identifiers: IP address, device identifiers, browser type and version, operating system, language settings, and approximate location derived from your IP address.
  • Usage logs: login and logout timestamps, session duration, pages visited, navigation paths, clicks, referral URLs, and interaction with promotional banners or links.
  • Security and integrity data: information used for fraud prevention and risk management, including device fingerprints, failed login attempts, unusual activity flags, and data from security and anti-fraud tools.

Payment and Financial Data

  • Transaction data: deposits, withdrawals, payment method type, transaction amount, currency, and timestamp.
  • Payment instrument details: limited card details (such as masked card number and expiry date), e-wallet identifiers, bank account identifiers, and payment provider identifiers, as processed and stored in accordance with PCI-DSS and other applicable standards.
  • Source of funds and affordability data: income information, employment details, bank statements, payslips, tax returns, or similar documents requested in line with UKGC requirements and our risk policies.

Cookies and Similar Technologies

  • Cookies: small text files stored on your device to remember your preferences and enhance your experience.
  • Tracking technologies: web beacons, pixels, tags, SDKs, and similar technologies used for analytics, fraud prevention, and advertising (where permitted by your consent choices).
  • Third-party data: information received from analytics providers, advertising networks, payment processors, identity verification services, self-exclusion schemes (such as GAMSTOP), and responsible gambling partners.

Legal Basis for Processing

We process personal data in compliance with the UK GDPR, the Data Protection Act 2018, and other applicable laws. Depending on the specific processing activity, we rely on the following legal bases:

Performance of a Contract

  • To create, administer, and maintain your Mozzart account on mozzarti.com, including verifying your age and eligibility to use our services.
  • To process your bets, game participation, deposits, withdrawals, bonuses, and payouts.
  • To provide customer support, manage complaints, and communicate with you about your account and transactions.

Compliance with Legal Obligations

  • To comply with UKGC licensing conditions and codes of practice, including age and identity verification, affordability checks, and ongoing monitoring.
  • To meet anti-money laundering (AML), counter-terrorist financing (CTF), fraud prevention, and sanctions screening obligations.
  • To retain certain transaction, KYC, and account records for statutory retention periods and to cooperate with law enforcement or regulatory authorities.

Legitimate Interests

  • To protect the integrity and security of Mozzart services on mozzarti.com, including detecting and preventing fraud, abuse, bonus misuse, and technical attacks.
  • To manage risk and safeguard our UKGC licence by applying responsible gambling and source-of-funds checks that may go beyond strict legal minimums, where proportionate and documented.
  • To analyse and improve our products, services, and user experience, including through aggregated, pseudonymised analytics.
  • To establish, exercise, or defend legal claims, including in relation to regulatory investigations or disputes.

Consent

  • For sending direct electronic marketing (e.g. e-mail, SMS, push notifications) where consent is required under UK and EU e-privacy rules, and where you have not relied on soft opt-in exceptions.
  • For the use of certain non-essential cookies and similar technologies (for example, advertising and some analytics cookies), which you can manage via our cookie banner and settings.
  • For specific optional data processing where we clearly present a consent choice (for example, participation in certain promotions or surveys not necessary for contract performance).

Where we rely on consent, you may withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

Purpose of Processing

We use personal data for the following purposes, always grounded in the legal bases described above and in line with our UK regulatory obligations:

  • Providing and operating services: enabling account creation and management, verifying your identity and age, processing deposits and withdrawals, running sports betting and casino games, awarding bonuses, and administering promotions.
  • Regulatory and responsible gambling compliance: meeting UKGC requirements, including KYC, ongoing monitoring, safer gambling interactions, affordability assessments, self-exclusion (including GAMSTOP), time-outs, deposit limits, and reality checks.
  • Risk management and fraud prevention: preventing, detecting, and investigating suspicious activities such as account takeover, money laundering, bonus abuse, and other misuse of Mozzart services on mozzarti.com.
  • Service improvement and analytics: analysing how users engage with the website and mobile interfaces, optimising user journeys, improving performance and stability, and developing new features or products.
  • Customer support and complaint handling: responding to queries, managing complaints or disputes, recording communications, and improving our support processes.
  • Marketing and personalisation: sending permitted marketing communications, tailoring offers, bonuses, and content based on your preferences and activity, and measuring the effectiveness of campaigns, subject to your marketing and cookie choices.
  • Security and integrity of the platform: protecting mozzarti.com and related systems against cyberattacks, misuse, and unauthorised access, including maintaining logs and applying appropriate technical and organisational safeguards.
  • Legal and business purposes: complying with legal and audit obligations, responding to regulatory requests, managing disputes, and supporting corporate transactions such as restructuring within the Mozzart Group where relevant.

Disclosure & Sharing

We do not sell your personal data. We may share it with carefully selected third parties only where necessary and lawful, as described below:

Service Providers and Business Partners

  • Payment processors and banks: to process deposits, withdrawals, refunds, chargebacks, and related financial operations.
  • IT and infrastructure providers: hosting, cloud, security, and content delivery network (CDN) providers that support Mozzart services on mozzarti.com.
  • Verification, KYC, and risk management providers: identity verification services, credit reference agencies, affordability and source-of-funds assessment tools, AML/CTF screening providers, and fraud detection platforms.
  • Analytics and performance tools: analytics providers that help us understand how our services are used and improve them, subject to cookie preferences.

Regulators, Authorities, and Self-Exclusion Schemes

  • UK Gambling Commission and other UK regulators: to comply with licensing conditions, reporting obligations, investigations, and inspections.
  • Law enforcement and courts: where required by law, in connection with suspected criminal activities, or to establish, exercise, or defend legal claims.
  • Self-exclusion and responsible gambling schemes: schemes such as GAMSTOP and other third-party tools designed to assist with self-exclusion and safer gambling, where required or permitted by law and your choices.

Group Companies and Affiliates

  • Mozzart Group entities: limited sharing within the Mozzart Group (for example, in Southeast Europe and other regions) for centralised risk management, compliance, IT, reporting, or group-level auditing, subject to appropriate safeguards and data transfer mechanisms.
  • Affiliates and marketing partners: advertising and affiliate partners who refer users to Mozzart at mozzarti.com, in order to attribute referrals, measure campaign performance, and prevent fraud. Where required, this is based on your consent to cookies and marketing.

Alternative Dispute Resolution and Professional Advisors

  • Alternative Dispute Resolution (ADR) providers: organisations such as the Independent Betting Adjudication Service (IBAS), where you escalate a gambling dispute and we are required to share relevant data.
  • Professional advisers: lawyers, auditors, accountants, and consultants who require access to data in the course of providing services to us and who are bound by confidentiality obligations.

Where third parties act as our "processors", they may only process personal data on our documented instructions and subject to appropriate confidentiality and security commitments. Where they act as "controllers" (for example, regulators, banks, or ADR bodies), they will process your personal data in accordance with their own privacy notices and legal obligations.

International Transfers

As part of providing Mozzart services on mozzarti.com, your personal data may be transferred outside the United Kingdom (and, where applicable, outside the European Economic Area). This may occur, for example, when our group companies, service providers, or partners are located or process data in other countries.

  • Group and operational locations: some Mozzart Group entities and service providers are located in or operate from countries in Southeast Europe and potentially other regions. Transfers may also occur to countries where our hosting, cloud, or IT providers are established (for example, in the EEA or other jurisdictions).
  • Safeguards for international transfers: where personal data is transferred to a country that has not been deemed to provide an adequate level of protection by the UK Government, we implement appropriate safeguards, such as:
    • the UK International Data Transfer Agreement (IDTA) or the UK Addendum to EU Standard Contractual Clauses;
    • standard contractual clauses approved by relevant regulators, as adapted for UK law;
    • technical and organisational measures (including encryption and access controls) to mitigate residual risk; and
    • internal policies governing international transfers and confidentiality.
  • Transfers to the United States and similar jurisdictions: where we use service providers in the United States or other countries benefiting from a UK "data bridge" or similar adequacy arrangement, we rely on those adequacy decisions or on approved contractual safeguards, as applicable.

You may request additional information about the safeguards we use for international transfers, or obtain a copy of the main contractual protections, by contacting us at support@mozzarti.com (subject to redaction of commercially sensitive information).

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy, to comply with legal and regulatory requirements, and to protect our legitimate interests. Retention periods may vary depending on the type of data and applicable law, but generally follow these principles:

  • Account and transactional data: core account information, betting and gaming history, payment records, and related communications are typically retained for the duration of your active account and for at least five (5) years after account closure or your last transaction, in line with UKGC, AML, and financial recordkeeping requirements. In some cases, this period may be extended if required by law or necessary for legal claims.
  • KYC and verification data: identity documents, proof of address, source-of-funds documents, and similar information are generally retained for a minimum of five (5) years from the end of the business relationship or from the date of the last transaction, or longer where required by AML/CTF law or regulatory guidance.
  • Responsible gambling and self-exclusion data: data related to self-exclusion, time-outs, deposit limits, reality checks, and interactions regarding safer gambling are retained for as long as required to implement your chosen tools, and thereafter for an additional period necessary to comply with UKGC requirements and demonstrate compliance.
  • Marketing data: information related to marketing preferences and consents is retained until you withdraw your consent or object to marketing, plus a short period to record and implement your request.
  • Technical and security logs: security, access, and usage logs are retained for periods aligned with our security and incident response policies, typically ranging from several months to a few years, depending on the log type and our risk assessment.

When personal data is no longer required for the purposes for which it was collected and no longer needs to be kept to comply with legal or regulatory obligations, we will either delete it securely, anonymise it, or aggregate it so it can no longer be linked to an identifiable person.

Your Rights

Subject to conditions and exceptions under applicable law, you have certain rights in relation to your personal data. As a user of Mozzart services via mozzarti.com, the primary framework is the UK GDPR and the Data Protection Act 2018. Where you are located in the EU or Mexico, equivalent or additional rights under EU GDPR or Mexican data protection laws (including the Federal Law on Protection of Personal Data Held by Private Parties - LFPDPPP) may also apply.

Data Protection Rights (UK/EU GDPR)

  • Right of access: to obtain confirmation as to whether we process your personal data and to receive a copy, along with information about the processing.
  • Right to rectification: to have inaccurate or incomplete personal data corrected or completed.
  • Right to erasure: to request deletion of your personal data in certain circumstances (for example, where it is no longer necessary for the purposes for which it was collected and no legal obligation requires retention). This right may be limited where we must keep data for regulatory or legal reasons (e.g. AML, UKGC requirements).
  • Right to restriction: to request that we restrict processing in certain situations, such as while we verify accuracy or assess an objection.
  • Right to object: to object to processing based on our legitimate interests, and to object at any time to processing for direct marketing (including profiling related to marketing).
  • Right to data portability: to receive certain personal data you provided to us in a structured, commonly used, machine-readable format and to have it transmitted to another controller where technically feasible.
  • Rights related to automated decision-making: to request human intervention, express your point of view, and contest decisions that are based solely on automated processing, where they produce legal or similarly significant effects.

Mexican ARCO Rights and Alignment

For users located in Mexico, we respect the ARCO rights established under Mexican data protection law (LFPDPPP):

  • Acceso (Access): to know which of your personal data we hold, how we obtained it, and how we use it.
  • Rectificación (Rectification): to request correction of inaccurate or incomplete data.
  • Cancelación (Cancellation): to request that we stop using and delete your data in certain circumstances, subject to legal retention obligations.
  • Oposición (Opposition): to object to specific processing activities in justified cases.

Although Mozzart services are primarily aimed at the UK market and operated via mozzarti.com under UK law, we will consider and handle ARCO-based requests from Mexican users in a manner consistent with both UK and Mexican legal requirements, to the extent applicable.

Exercising Your Rights

  • How to submit a request: you can exercise your rights by contacting us at support@mozzarti.com with the subject "Data Protection Request", or via written letter to our postal address. You may also contact us via live chat on mozzarti.com, and we will guide you to the appropriate process (though we may ask you to confirm your request by e-mail or in writing).
  • Verification: for your security, we may need to verify your identity before fulfilling your request, including by requesting additional information or documents.
  • Timeframe: we aim to respond without undue delay and in any case within one (1) month of receiving a valid request. In complex cases or where you submit multiple requests, this period may be extended by up to two additional months, in which case we will inform you of the extension and reasons.
  • Cost: we process rights requests free of charge. However, where requests are manifestly unfounded, repetitive, or excessive, we may charge a reasonable fee or refuse to act, as permitted by law.

If we decline to act on your request or restrict it due to legal obligations (for example, retention under UKGC or AML rules), we will explain the reasons to the extent permitted by law and inform you of your options to complain to a supervisory authority.

Cookies & Tracking Technologies

Mozzart uses cookies and similar technologies on mozzarti.com to ensure the website works properly, to improve the user experience, to support security, and, where permitted, for analytics and advertising. When you first visit the website, you will be presented with a cookie banner that allows you to manage your preferences.

Types of Cookies

  • Strictly necessary (functional) cookies: essential for operating mozzarti.com and providing Mozzart services, for example keeping you logged in, managing sessions, remembering your privacy choices, and ensuring security. These cannot be switched off via cookie settings, although you can block them in your browser (which may impair functionality).
  • Preference cookies: used to remember your language, region, odds display, and other customisations to provide a more personalised experience.
  • Analytics cookies: help us understand how visitors use our site, which pages are popular, how users move around the site, and where technical errors occur, so that we can improve performance and usability.
  • Advertising and marketing cookies: used to deliver relevant advertising and measure the effectiveness of marketing campaigns, including by third-party advertising networks and affiliates that promote Mozzart at mozzarti.com.
  • Third-party cookies: may be set by external providers of services integrated into our website, such as analytics tools, security tools, or advertising partners.

Managing Cookies

  • Cookie banner and settings: you can manage non-essential cookies through our cookie banner or cookie settings interface on mozzarti.com, where you can accept or reject categories of cookies.
  • Browser controls: you can configure your browser to block or delete cookies, or to alert you when cookies are being set. However, blocking certain cookies may affect the functionality of the website and your ability to use Mozzart services.
  • Opt-out of marketing: rejecting advertising cookies may reduce targeted advertising but will not eliminate all adverts. You can also opt out of direct marketing by following the instructions in marketing e-mails or by contacting us at support@mozzarti.com.

Data Security

We take the security of personal data collected through mozzarti.com for Mozzart very seriously. We implement a combination of technical and organisational measures designed to protect your data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

  • Encryption in transit and at rest: data transmitted between your browser or device and our servers is protected using Transport Layer Security (TLS) version 1.2 or higher. Where appropriate, we encrypt sensitive data at rest or apply tokenisation and pseudonymisation techniques.
  • Access controls and authentication: access to personal data is restricted to authorised personnel and service providers who need it for legitimate business purposes and are bound by confidentiality obligations. We use role-based access control, strong authentication mechanisms, and, where appropriate, multi-factor authentication.
  • Network and application security: we employ firewalls, intrusion detection and prevention systems, anti-malware solutions, secure development practices, and regular vulnerability assessments to protect our infrastructure and applications.
  • Monitoring and incident response: systems and logs are monitored to detect unusual activity, and we maintain incident response procedures to address potential data breaches or security incidents, including notification to affected users and regulators where required by law.
  • Staff training and policies: employees and contractors who handle personal data receive regular training on data protection, information security, and responsible gambling obligations, and are required to follow internal policies and procedures.
  • Industry standards: our information security framework is designed to align with recognised international standards such as ISO/IEC 27001 and SOC 2 principles, adapted to our risk profile and regulatory environment, even where we may not hold formal certification.

While no system can be guaranteed as completely secure, we continuously review and enhance our security measures in light of emerging threats, technological developments, and regulatory expectations, including UKGC guidance and best practices in the online gambling industry.

Complaints & Contacts

If you have any questions, concerns, or complaints about how Mozzart processes your personal data via mozzarti.com, we encourage you to contact us first so we can try to resolve the issue directly.

How to Contact Us

  • E-mail (primary channel): support@mozzarti.com - for all privacy-related queries and rights requests. Please include sufficient details to identify your account and describe your concern.
  • Postal address: Data Protection Officer, Mozzart UK Limited, 2nd Floor, 117 Piccadilly, London, W1J 7JU, United Kingdom.
  • Live chat: available through mozzarti.com (typically 09:00 - 23:00 GMT). Live chat agents can help you with general questions and direct you to the appropriate privacy contact, but you may be asked to confirm detailed rights requests in writing.

Complaint Handling Process

  • Step 1 - Submission: submit your complaint or concern through e-mail, post, or live chat. Please clearly mark privacy complaints as such.
  • Step 2 - Acknowledgement: we aim to acknowledge receipt of your complaint within a reasonable time, usually within a few working days.
  • Step 3 - Investigation: we will investigate your complaint, which may involve reviewing logs, communications, and our internal procedures. We may contact you for additional information.
  • Step 4 - Response: we aim to provide a substantive response within one (1) month, in line with UK GDPR timeframes. For complex matters, we may extend this period by up to two additional months and will inform you of the extension and reasons.

Escalation to Supervisory Authorities

  • United Kingdom: if you are not satisfied with our response or believe we are processing your personal data in breach of data protection laws, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):
    • Website: https://ico.org.uk
    • Helpline (UK): 0303 123 1113
    • Postal address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom
  • Mexico: for users located in Mexico, you may also contact the Mexican data protection authority (Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales - INAI) in relation to ARCO rights and other matters:
    • Website: https://home.inai.org.mx
  • EU/EEA: if you are located in the EU/EEA and believe our processing falls within the scope of EU GDPR, you may have the right to lodge a complaint with your local supervisory authority in your country of residence or place of work.

Please note that complaints about gambling outcomes or bet settlements may also be handled by alternative dispute resolution bodies such as IBAS (Independent Betting Adjudication Service), but these mechanisms are separate from data protection complaints dealt with by data protection authorities.

Updates

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, regulatory expectations (including UKGC guidance), or technical developments. When we make material changes, we will take appropriate steps to notify you in advance and give you an opportunity to review the updated policy.

  • Notification methods: updates may be communicated via:
    • notices on mozzarti.com (for example, banners or pop-ups);
    • messages in your account dashboard; and/or
    • e-mail notifications to the address associated with your Mozzart account on mozzarti.com.
  • Advance notice: where changes are material (for example, changes to how we use your data, new categories of recipients, or significant changes in legal basis), we will normally provide at least thirty (30) days' notice before the updated policy takes effect, unless immediate changes are required by law or regulatory instructions.
  • Your options: if you do not agree with the updated Privacy Policy, you may choose to close your Mozzart account and stop using mozzarti.com. Continued use of the services after the effective date of the updated policy will generally constitute acceptance of the changes.

Last updated: January 2026. Future material changes to this Privacy Policy will be recorded through versioning and, where appropriate, a brief description of key changes will be made available to users.