Legal

Privacy Policy

This policy explains what personal data Bonusory collects, why we collect it, how we use it, and the choices you have. We aim to be plain about it — no dense lawyer-speak.

Last updated: January 1, 2026

1. Who we are

Bonusory (the “Service”, “we”, “us”) is a casino bonus comparison website operated by Netseline Ltd (“Netseline”), the data controller for the personal data described in this policy. You can reach us at [email protected].

Bonusory is an independent affiliate directory at bonusory.com. We are not a casino, a sportsbook, or a payment provider. We do not accept wagers and we do not host games of chance.

2. What data we collect

We collect the following categories of personal data:

  • Account information — when you create an account: name, email address, hashed password, sign-up source (e.g. Google), and avatar URL provided by your OAuth provider.
  • Authentication metadata — verification tokens, password reset tokens, last login timestamp, and a record of whether your email has been verified.
  • Usage data — pages you visit, links you click (including affiliate links), referring URL, approximate location derived from IP, browser and device characteristics, and time spent on pages.
  • Cookies and similar technologies — small text files stored in your browser. See our Cookie Policy for the full list.
  • Communications — the contents of any message you send us through contact forms or email, and our replies.
  • Preferences — saved casinos, favorited bonuses, and tracked bonuses you store in your account.

We do not collect financial data, government IDs, or gambling activity from third-party casinos.

3. How we use your data

  • Create and manage your Bonusory account, including signing you in and verifying your email.
  • Send transactional emails (verification, password reset, account-security notices).
  • Operate, maintain, and improve the website — including fixing bugs and shaping the editorial roadmap based on what readers actually use.
  • Measure aggregate usage and the performance of bonus and casino listings.
  • Detect, prevent, and respond to fraud, abuse, and security incidents.
  • Send marketing emails about new bonuses or features only if you have opted in. You can unsubscribe at any time from any email we send.
  • Comply with legal obligations and enforce our Terms of Service.

4. Legal bases (EEA / UK)

If you are in the EEA or UK, we rely on the following legal bases under the GDPR / UK GDPR:

  • Contract — to provide the account features you ask for.
  • Legitimate interests — to keep the site running, secure, and useful, and to understand readership in aggregate.
  • Consent — for non-essential cookies, analytics, and marketing emails. You can withdraw consent at any time.
  • Legal obligation — when we have to retain or disclose data to comply with applicable law.

5. Third-party services

We rely on a small number of trusted providers. They process personal data on our behalf and are bound by their own privacy commitments and, where applicable, data-processing agreements:

  • Google Analytics (Google Ireland Ltd) — aggregate usage analytics. Loaded only after you accept analytics cookies.
  • Google OAuth (Google LLC) — “Continue with Google” sign-in. We receive your name, email address, and profile photo URL.
  • Resend (Resend, Inc.) — sending transactional and marketing emails (verification, password reset, product updates).
  • DigitalOcean — hosting infrastructure and managed PostgreSQL where your account data is stored.
  • Cloudflare — CDN and bot-mitigation, which processes IP addresses to keep the site fast and protect it from abuse.
  • Casino affiliate partners — when you click an outbound link to a casino, that casino sets its own cookies and may receive your referrer URL plus a tracking ID identifying Bonusory as the source. We don't share your account data with them.

6. Cookies and tracking

We use a small number of cookies for sign-in, security, preferences, and (with your consent) analytics. The cookie consent banner shown on your first visit lets you accept all, reject non-essential, or pick categories individually. The full list lives in our Cookie Policy.

7. Data retention

We keep your account data for as long as your account is active. If you delete your account, we erase your profile, saved casinos, favorite bonuses, and bonus tracker history within 30 days, except where we're required to keep certain records longer for tax, security, or legal reasons (typically up to 6 years).

Verification and password-reset tokens expire automatically (24 hours and 1 hour respectively) and are removed shortly after use. Anonymous analytics data is retained for up to 26 months.

8. Your rights

You have the following rights over your personal data:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct anything that's wrong or out of date.
  • Deletion — ask us to erase your account and the data tied to it.
  • Portability — receive your data in a machine-readable format.
  • Objection / restriction — object to processing based on legitimate interests, or ask us to limit how we use your data.
  • Withdraw consent — for anything we do based on your consent (e.g. analytics, marketing).
  • Lodge a complaint — with your local data-protection authority. EU users can find their authority via the European Data Protection Board.

To exercise any of these rights, email [email protected]. We respond within 30 days.

9. Children

Bonusory is a gambling-related directory and is strictly for adults. The Service is not intended for anyone under 18, and the legal gambling age in your jurisdiction may be higher. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us with personal data, contact us and we will delete it.

10. International transfers

Some of the providers listed above are based outside the EEA / UK. Where personal data is transferred internationally, we rely on appropriate safeguards (such as the EU Standard Contractual Clauses) to protect that data.

11. Security

Passwords are stored using industry-standard hashing (bcrypt). Connections to the site use TLS. Access to the production database is restricted and logged. No system is 100% secure — but we treat your data the way we would want our own treated.

12. Changes to this policy

We may update this policy from time to time. When we do, we'll change the “Last updated” date at the top and, for material changes, give you reasonable notice (e.g. an in-app banner or an email).

13. Contact us

Questions, requests, or complaints about privacy: [email protected].
Postal: Netseline Ltd, attn: Privacy, via our contact page.

18+Adults only
Gambling should be fun — if it stops being fun, stop. If you need support, visit our Responsible Gambling resources or call 1-800-522-4700 (free, 24/7).