Effective Date: May 14, 2025
This Privacy Notice explains the data collection, use, processing, disclosure, and sharing practices of Everi Holdings Inc., Everi Payments Inc., Central Credit, LLC, Everi Games Inc., Everi Interactive LLC, Global Cash Access (UK) Ltd, Everi Technology Pty Ltd and each of their present and future parents, subsidiaries, affiliates, and assigns, as the context requires (collectively, “Everi”, “we”, “us”, and “our”). Privacy is important to Everi and we respect the privacy of visitors to our websites and individuals who utilize our gaming and financial products and services (collectively, the “Services”). This Privacy Notice applies to information collected via any website where this Privacy Notice is linked, through email, mobile application, and offline data collection utilizing our Services.
Your use of our Services indicates your acceptance of the terms of this Privacy Notice. Our privacy practices may vary among the jurisdictions in which we operate to reflect local practices and legal requirements.
The Categories of Information We Collect About You
In connection with your use of our Services, which may include payment transactions and gaming services, we obtain personal information about you directly from you, in the following categories:
| Categories of Personal Information | Specific Types of Personal Information Collected |
| Identifiers | We may collect identifying information such as name, contact details (email, postal address, phone number, and address), gender, date of birth, social security number/government-issued identification number, and other identifiers. |
| Customer Records | Transaction information, such as payment card data. |
| Commercial Information | Purchases made, name and location of commercial facilities, such as a casino, gaming room or other where a transaction occurred, credit card or other payment information may be provided to us when you engage our Services. We may also collect credit history information of the type of that would be obtainable in line with the Fair Credit Reporting Act and available via a consumer background report. |
| Internet or Other Electronic Network Activity Information | We and our service providers use various technologies, including cookies and web beacons, to collect information such as browsing history, profile picture or its URL, URL tracking information, web browser, IP address, user and device ID, files downloaded or viewed, pages accessed or viewed, date/time/frequency of your use of our Services, length of time spent reviewing or using certain features of our services, games played, Everi player ID created and used to identify you/your account, user identification number (such as your Facebook ID number) that may be linked to publicly-available information about you including your name and profile picture, your friends’ user ID numbers and other public data, search history, and information regarding your interaction with our websites and Services, device type. |
| Geolocation Data | Information about your physical location. |
| Professional or Employment Related Information | Information about former and current employment and employers, educational information, and related information that you choose to provide in a resume/CV when applying for an employment opportunity. |
| Biometric Information | Information about your biological characteristics that identify you, such as your retina scan, hand/fingerprints, face geometry, voiceprints, and similar information, which may include retaining a copy of your driver’s license, passport, or similar identification photograph. Please refer to the Biometric Information Section below for additional information about our policies regarding the collection, use, processing, and disclosure of biometric information. |
How We Collect Information About You
We collect most of the information we collect about you directly from you when you interact or browse our websites, when you engage with our Services, or otherwise communicate with us about your account, information or inquire about our Services.
In addition to the information you provide us directly, when you interact with our websites and Services we also collect information through use of tracking technologies, such as cookies and similar technologies. A cookie is a small data file written to a user’s computer. Cookies may be used to, among other things, allow automated login and may contain information such as a login ID or other information about preferences or Internet use. If you wish to disable cookies, you may do so through your web browser.
We also collect information from financial institutions, consumer credit agencies, from analytics providers, such as Google, and from commercial facilities and other entities that offer or use our Services.
Lastly, we collect information about you from third parties that have collected information about you on their own. We may partner or otherwise contract with these third parties to provide or be provided services, which may include collecting or sharing information about you.
How and Why Everi Uses Your Information
The chart below explains what we use your information for and our reasons for doing so:
| What we use your Personal Information for | Our Reasons |
| To provide products and/or Services to you Where permitted by applicable law, to advise you through email, in the ordinary course of business about other products or services similar to the products or services we have provided to you and that we think will be of interest to you. For improving our communications with you. Emails sent to you by us may include standard tracking, including open and click activities. We may collect information about your activity as you interact with our email messages and related content. | To offer and provide our products to you, for our legitimate interests or those of a third party, i.e., to conduct and manage our business, and/or to make our products available to you in the most convenient and efficient manner as we can, including streamlining and ensuring easy communications. |
| To process any orders or requests for services, including gaming and financial services, including to ensure proper authorization, clearing, chargebacks, refunds, and to assist with dispute resolution activities and/or to analyze the costs and charges in relationship to our products and Services. | As a commercial enterprise, it is imperative that we ensure and provide for a seamless gaming and financial transaction process. |
| To maintain our accounts and records. | In order to ensure you receive the products and Services you have requested, to ensure proper payment for such products, and services, and to ensure a seamless and efficient customer experience, we maintain accurate account information and records. This also include know-your-customer (KYC) purposes. |
| For security purposes. | For our legitimate interests or those of a third party, i.e. to protect us and third parties against security breaches; to minimize fraud or criminal activity that could be damaging for us and for you; and to prevent unauthorized access and modifications to systems, or violation of our applicable agreements or business policies. To comply with our legal and regulatory obligations. |
| Processing necessary to comply with professional, legal and regulatory obligations that may apply to our business or required by or relating to audits, enquiries or investigations by regulatory bodies, e.g. tax regulations, anti-money laundering regulations, gambling, financial services, or privacy or data collection regulations. | To comply with our various, tax, legal and regulatory obligations, including those in the gambling and financial services sectors. |
| Operational reasons, such as improving efficiency, training and quality control. | For our legitimate interests or those of a third party, i.e., to be as efficient as we can so we can deliver the best service for you at the best price. |
| Ensuring the confidentiality of commercially sensitive information. | For our legitimate interests or those of a third party, i.e., to protect trade secrets and other commercially valuable information To comply with our legal and regulatory obligations. |
| Statistical analysis to help us manage our business, e.g. in relation to our financial performance, customer base, product range or other efficiency measures. | For our legitimate interests or those of a third party, i.e., to be as efficient as we can so we can deliver the best service for you at the best price. |
| Updating and enhancing customer records. | For the offer and administer our Services and products to you or to take steps at your request before entering into a contract; To comply with our legal and regulatory obligations; For our legitimate interests or those of a third party, e.g. making sure that we can keep in touch with you about existing orders and new products. |
| Ensuring safe working practices, staff administration and assessments. | To comply with our legal and regulatory obligations; For our legitimate interests or those of a third party, e.g., to make sure we are following our own internal procedures and working efficiently so we can deliver the best service to you. |
| Marketing services and products to: You;existing and former customers; and third parties who have previously expressed an interest in our Services; andthird parties with whom we have had no previous dealings. | For our legitimate interests or those of a third party, i.e., to promote our products and Services to existing and former customers, and to improve our marketing and promotional efforts whether through advertisement emails or texts unrelated to a particular transaction between us and our business customers and an individual. If we think a third-party product or service may be of interest to you, we may arrange to extend an offer for that third party’s products and services to you or permit third parties to send their own direct marketing to you. |
| To aggregate or anonymize your data. | We may aggregate or anonymize your data, which means the data does not contain any identifiers that identify you as a natural person in order to conduct analytic reports about our websites and Services. |
| We use applicant information in the employment hiring, on-boarding, and employment processes. | When you apply, on-board, or provide employment services for us, we will use the employment-related information to evaluate your credentials and experience as it pertains to any open employment opportunities, which may include using your name, username, and email address to contact you regarding open position for which you applied or that we believe may be of interest to you. If you become employed, we may use your information to on-board you, to manage your employment, including payroll, benefits, discipline, and other aspects of your employment. |
| With Ad Tech Companies and related providers for the purpose of interest-based advertising. | We may sell or share limited personal information such as mobile ad ID (MAID) or an Identifier for Advertisers (IDFAs) with ad tech company and or other online service providers, including to allow them to conduct interest-based advertising to you. With this process, we may also collect information about you from these third parties that collect information about you on their own to help better understand your preferences for purposes of our own marketing. Interest-based advertising also known as online behavioral advertising occurs when advertisements are displayed to you based on information collected from your online interactions overtime and across multiple websites that you visit or across multiple devices or online services that you may use. Companies that engage in interest-based advertising use this information to protect your preferences and show you ads that are most likely to be of interest to you. When we share your information in this context, we follow applicable legal requirements, which may require that we provide opt out rights or other individual rights. See the Do Not Sell or Share My Personal Information Section below. |
Biometric Information
Where permitted by law, we collect biometric data, including through the use of ID scanning and facial recognition technology to verify your identity and safeguard personal information as part of our security and fraud prevention efforts. When we refer to “biometric data,” we mean information about your physical or biological characteristics (some states call these “biometric identifiers”) that identify you. Information like eye, hand, or face scans; fingerprints; and voiceprints may be considered biometric data if they are being used to identify you. The definitions of biometric data vary under different states’ laws. For example, some states’ biometric laws don’t apply to driver’s license photos. Photos of you are not biometric data, but biometric data can be made from processing the photo.
Biometric Information is only stored temporarily to confirm your identity and then deleted (e.g., certain of our services may compare a photographic image of your face to the image on your driver’s license, and then immediately delete the photographic image).
Data Retention
Everi stores personal information only for as long as it is necessary for the completion of the legitimate business or legal purposes for which the personal information was collected, unless otherwise required or authorized by applicable law. For example, we retain your transaction history and may retain certain identification information to comply with rules or regulations relating to payment transactions. In some contexts, we will provide additional information about retention as you use Everi’s services. We take measures to destroy or permanently de-identify personal information if required by law or if the personal information is no longer required for the purpose for which we collected it.
Federal Trade Commission (FTC) and Fair Credit Reporting
Certain Everi companies are regulated by the federal Fair Credit Reporting Act and companion state laws. Your personal information may be provided to us by credit grantors and other institutions with whom you deal, and who are responsible for obtaining your consent in order to provide your information to us.
All such credit information collected and provided about you is provided in accordance with the Fair Credit Reporting Act. We may contact any user of our credit services for audit and verification purposes in order to comply with laws and regulations governing the credit reporting industry. For example, we may institute random confirmations to ensure that credit checks have been authorized and are used only for a permissible purpose.
If you request an investigation of an item that you believe to be inaccurate or incomplete on your Central Credit report, all information relevant to your request will be provided to the credit grantor and/or data supplier for investigation purposes in compliance with the FCRA.
Disclosure of Information Collected
We will share or disclose information you provide us or that we collect about you to other companies and people with your consent or under the circumstances described below. We share user information with our subsidiaries, affiliates, business partners, and service providers for the following purposes:
| Who We Might Share Your Data | Why We Might Share Your Data with Them |
| Our affiliates and subsidiaries who act for us for the purposes set out in this Privacy Notice | We might share your data with our corporate affiliates or subsidiaries, which includes all entities identified at the beginning of this Privacy Notice, to do the things mentioned in this Privacy Notice. |
| Third-Parties and Service Providers, such as credit reporting agencies, credit card processors, customer services, marketing affiliates, information technology, data hosting, website services and processing services to help deliver our products and Services to you. | We lean on certain companies and individuals that provide services on our behalf or help us operate our Services or our business. These service providers perform services like data hosting, email delivery and marketing activities, and provide or support features like chat and communications tools, information technology, customer service and website monitoring and analytics. We may also collaborate with other companies on partnerships intended to help distribute, enhance, or extend our Services or to bring you co-branded product experiences |
| Advertising Partners and Intermediaries | We work with third-party advertising partners and intermediaries (e.g., ad networks, re-targeters, sell-side or demand-side platforms, ad servers, clean rooms, identity resolution providers, measurement providers, publishers such as social media platforms or digital/print content providers, advertisers, agencies) to facilitate the delivery of advertising to you on our websites or on third-party properties or to measure the effectiveness of those ads. |
| Third Parties Approved By You | Such as social media sites you may choose to link to or third-party payment providers to make purchases via the websites or our Services. |
| Third Parties With Whom You Have a Relationship | Given what we do, we may share information about you with financial institutions that you already have a relationship with, which may include to process transactions, review credit eligibility, and initiate direct/ACH payments. |
| Third Party Advertisers | We may share your information with third parties to allow them to market to you. In some cases, this may include an exchange of information between the third party advertiser and us in order to help better understand your preferences to enhance our Services to you and streamline marketing to you. Please note that in certain situations you may have the opportunity to opt out of such sharing, as set forth more fully in the Your Privacy Rights Section below. |
| Professional Advisors | We may need to share your data with our professional advisors, like our lawyers, auditors, bankers, and insurers if it is necessary for them to provide their services. |
| Authorities, Regulators and Others | We may need to share your data with law enforcement, government authorities, regulators including state and federal agencies, credit card payment networks, issuing banks, and other private parties or public entities if we need to do so for the compliance or protection purposes described above. We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations; to ensure compliance with industry standards related to transaction process, to comply with the rules of regulations of any credit or debit card payment network. To ensure compliance with all applicable gambling rules, for billing and collection purposes; to protect and defend our rights or others; to prevent or investigate possible wrongdoing in connection with the Services; or to protect against legal liability. |
| Business Transferees | If we go through a business transaction like a merger, acquisition, corporate divestiture, or dissolution (including bankruptcy), or a sale of all or some of our assets, we may share or transfer your data to the parties (or their advisors) to the transaction during the transaction or in contemplation of the transaction (including during due diligence). We will typically anonymize information, but this may not always be possible. The recipient of the information will be bound by confidentiality obligations. |
| Third-Party Marketers | We may disclose, including sell or share, aggregated or anonymized data, which does not identify you, to third parties for marketing and promotional purposes. In some cases, this information may be combined with information about you that the third party has collected in order to build a profile about you in order to engage in targeted marketed to you. |
| To Government, Court, or Enforcement Authorities | When we have reason to believe that the law requires it or that disclosing this information is necessary in response to a subpoena, a court order or a request for cooperation from a regulatory, law enforcement or other government agency. |
| To Professional Advisors | In the event we have to establish or exercise our legal rights or for the protection of assets, including collection of overdue accounts, we may share your data with our professional advisors, such as accountants, collection agencies, attorneys, and similar professionals. This may be necessary to identify, contact, or bring legal action against someone who may be causing injury to or interference with (either intentionally or unintentionally) our rights or property, other users, or anyone else who could be harmed by such activities or to prevent such activities. We may also share your data with our professional advisors as we may need to in order to engage their professional services. |
| To others as we otherwise disclose to you, to fulfil the purposes that it was provided or with your consent | We may disclose, including sell or share, data for the purposes that we may disclose to you, to fulfill the purpose for which you provided the data, and also as you may consent. |
In some contexts, we will provide additional information about disclosure of your information as you use our Services.
Underage Persons
We do not knowingly solicit or collect any personal information or market to anyone under 18 years of age. Some of our products and services and portions of our websites (“Gaming-Related Products & Services”) are not intended for persons under 21 years of age. You may not use any Gaming-Related Products & Services if you are under the legal gaming age where you are physically located.
Security
We employ reasonable security measures to safeguard the confidentiality of information that it collects. We restrict access to nonpublic personal information about you to those of our employees, affiliates, and service providers who need to know that information. We maintain physical, electronic, and procedural safeguards designed to protect your nonpublic personal information against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use.
International Users
Our data is maintained in the United States. All information we collect is gathered, stored, used, and otherwise processed in the United States, including information from individuals outside the United States. By accessing our website and/or using our Services, you consent to the transfer to and use of your information in the United States in accordance with this notice and applicable law.
We may transfer the personal information we collect about you when providing you with Services, to recipients in countries other than the country in which the information was originally collected, including to the United States, where we are headquartered. Those countries may not have the same data protection laws as the country in which you initially provided the information. When we transfer your information to other countries, we will protect that information as described in this Privacy Notice or as otherwise disclosed to you at the time the data is collected (e.g., via a program specific privacy notice provided to you at sign up, and from time to time). You understand and agree that while in the United States or foreign jurisdictions, your personal information may be accessible to law enforcement or other governmental authorities or bodies.
The relevant Everi subsidiary in your country will be responsible under applicable privacy laws to the extent it uses your personal information for its own purposes.
The Data Privacy Framework for EU, UK and Swiss Individual’s Data Transfer to the United States
Every Holdings, Inc. Everi Games Holdings Inc., Everi Payments Inc., EVERI MTL, LLC (formerly GCA MTL, LLC), Central Credit, LLC, Everi Games Inc., Everi Interactive LLC, and Central Credit LLC (collectively, the “Framework Everi Entities” comply with the EU-U.S. Data Privacy Framework program (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework program (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. The Framework Everi Entities have certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-US. DPF. The Framework Everi Entities haves certified to the U.S. Department of Commerce that they adhere to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this Privacy Notice and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
Pursuant to the Data Privacy Framework the following notifications apply to EU, UK and Swiss personal data that is transferred into the United States:
- The Federal Trade Commission has jurisdiction over the Framework Everi Entities’ compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).
- EU, UK and Swiss individuals have the right to access their personal data. Individuals wishing to exercise this right may do so by contacting us as specified in the GDPR section of this document.
- The Framework Everi Entities do not permit the use of EU, UK and/or Swiss data for reasons that are materially different from those for which the data was originally provided. If this practice should change in the future, the Framework Everi Entities will update this policy and provide individuals with opt-out or opt-in (as applicable) choice prior to the release of their information.
- The Framework Everi Entities may be required to disclose EU, UK and/or Swiss personal data in response to lawful requests by public authorities including to meet national security and law enforcement requirements.
In compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF), the Framework Everi Entities commit to resolve complaints about our collection or use of your personal information transferred to the U.S. pursuant to the EU-U.S. DPF, the UK extension to the EU-U.S. DPF, and the Swiss-U.S. DPF. EU, UK, and Swiss individuals with inquiries or complaints should first contact the Framework Everi Entities. You can contact us by (1) sending an email to [email protected] or (2) writing to the Framework Everi Entities via:
Privacy Office Everi Payments Inc.
7250 S. Tenaya Way, Suite 100 Las Vegas, NV 89113
United States
The Federal Trade Commission has jurisdiction over the Framework Everi Entities’ compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).
If you are located in the UK/EU or Switzerland, a Framework Everi Entities’ affiliate may be the entity responsible for the processing of your personal information. You may e-mail us at: [email protected]; or write to us at:
Global Cash Access (UK) Limited – Privacy Office C/O Avalon Company Services Ltd
3 Magdalene Street Glastonbury BA6 9EW England
The Framework Everi Entities have further committed to refer unresolved DPF Principles-related complaints to a U.S.- based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See: https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf.
We commit to comply with the EU Data Protection Act (DPA) as well as the subsequent General Data Protection Regulation effective on May 25, 2018, the Swiss Federal Act of 19 June 1992 on Data Protection (FADP) and the Ordinance to the FADP (OFADP) and any other provision of the substantive Swiss data protection law, as applicable. The Framework Everi Entities will handle any complaints or requests for access to or correction of personal information, including, without limitation, human resources data transferred from the EU and Switzerland, in accordance with the Framework Everi Entities’ obligations under the DPA, the FADP or OFADP, as applicable. All complaints are taken seriously and will be assessed by appropriate personnel with the aim of resolving any issue in a timely and efficient manner and in accordance with the DPA or the FADP or OFADP, as applicable, and Everi commits to comply with the advice given by such authorities.
Global Cash Access (UK) Limited is registered with the UK Information Commissioner’s Office as a data processor under the identifier Z9717209.
Global Cash Access Switzerland, AG is registered with the Swiss Federal Data Protection and Information Commissioner (“FDPIC”) Registration No: 201800036.
Your Privacy Rights
Canadian Users – Opt Out
If you are a Canadian resident, you may ask us to refrain from sharing your personal information with certain of our affiliates and other third parties for their marketing purposes by contacting us at (844) Everi24; e-mailing us at: [email protected]; or writing us at the address provided in the “How To Contact Us” section below. Canadian residents can opt out of secondary marketing uses of your personal information by Everi or our business partners by contacting us at the address provided.
U.S. State-Specific Privacy Rights
California Residents
If you are a California resident, you may be able to exercise additional rights granted by California law in relation to the Personal Information about you that we have collected (subject to certain limitations). For additional information concerning these rights, please review our California Supplemental Privacy Notice.
The California Privacy Laws require us to track and publish the below metrics for the previous calendar year. The below metrics are our calculations from January 1, 2024 through January 1, 2025, and include requests from all individuals in the U.S.
| Metric | Number |
| Number of Access requests (“Requests to Know”) received | 0 |
| Number of Access requests complied with in whole or in part | 0 |
| Number of Access requests denied | 0 |
| Mean or Median number of days to substantively respond to Access requests | 0 |
| Number of Deletion requests received | 0 |
| Number of Deletion requests complied with in whole or in part | 0 |
| Number of Deletion requests denied | 0 |
| Mean or Median number of days to substantively respond to Deletion requests | 0 |
| Number of Opt-out requests received | 1 |
| Number of Opt-out requests complied with in whole or in part | 1 |
| Number of Opt-out requests denied | 0 |
| Mean or Median number of days to substantively respond to Opt-out requests | 14 |
Nevada and Utah Residents
If you are a Nevada or Utah resident you have the right to direct that the Company not sell your personal information for monetary consideration to third party recipients. If you are a Nevada or Utah resident and wish to exercise this right and opt out of the sale of your information, contact us by clicking on this link, fill out and submit the form.
Additional U.S. State-Specific Privacy Rights
If you are a resident of the state in which state-level privacy law is enacted (e.g., Colorado, Connecticut, Delaware, Iowa, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah or Virginia), additional rights described in this Section may apply to you as applicable law comes into effect
Your Privacy Rights
Depending on where you reside, you may have some or all the following rights, in each case to the extent set out in applicable law:
- The right to confirm whether we process personal information about you and request access to such personal information (including, if applicable, in a portable and readily usable format).
- The right to correct inaccuracies in certain personal information we may hold about you.
- The right to request that we delete personal information collected from or about you.
- The right to opt out of the sale of your personal to third parties for the purpose of targeted advertising, profiling in furtherance of decisions that produce legal or similarly significant effects concerning a consumer or for monetary return.
- The right to opt out of the sharing of your information for the purpose of cross-behavioral advertising.
- The right to revoke consent. If consent was obtained from you in order to process your information, you may revoke that consent at any time.
- The right to data portability.
- The right to opt out of profiling in furtherance of decisions that produce legal or similarly significant effects concerning a consumer.
- The right not to be discriminating against in exercising your privacy rights.
We verify your identity before processing your request. In order to verify your identity, we may require matching identifying information you provide us to the information we maintain about you in our systems or a successful login to your account (as applicable). Although we try to limit the personal information collected in connection with your request, certain requests may require us to obtain additional personal information from you to verify your identity. In certain circumstances and as permitted by applicable law, we may decline a request, particularly where we are unable to verify your identity.
A covered consumer may make such a request once in any 12-month period free of change. If requests are manifestly unfounded, excessive or repetitive, we may charge the consumer a reasonable fee to cover the administrative costs of complying with a request or decline to act on the request.
Under applicable law, you may designate an authorized agent to make a request on your behalf. You may make such a designation by providing the agent with written permission to act on your behalf. We will require the agent to provide proof of that written permission. To the extent permitted by law, we may require you to verify your own identity in response to a request, even if you choose to use an agent.
We use good faith efforts to respond to a verifiable consumer request within the required timeframe as required by applicable law. If we need more time, we will inform you of the reason and the needed extension period in writing, as required by applicable law.
You may request to exercise these rights by contacting us at (844) Everi24; e-mailing us at: [email protected]; or writing us at:
Privacy Office
Everi Payments Inc.
7250 S. Tenaya Way, Suite 100 Las Vegas, NV 89113
United States
If your rights request is denied, you may lodge an appeal with us. The response to your rights request will inform you of any appeal rights you may have and how you may exercise them.
If you are a Colorado resident, if within 45 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been a Colorado consumer in the relevant time period and not able to exercise rights under the Colorado Privacy Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Colorado Attorney General.
If you are an Iowa resident, if within 90 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been an Iowa consumer in the relevant time period and not able to exercise rights under the Iowa Consumer Data Protection Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Iowa Attorney General.
If you are a Delaware resident, if within 45 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been a Delaware consumer in the relevant time period and not able to exercise rights under the Delaware consumer privacy law. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Department of Justice to subject a complaint via following the link here: https://attorneygeneral.delaware.gov/fraud/cmu/complaint/.
If you are a Montana resident, if within 45 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been an Iowa consumer in the relevant time period and not able to exercise rights under the Montana Consumer Data Protection Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Montana Attorney General.
If you are a New Hampshire Montana resident, if within 45 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been an Iowa consumer in the relevant time period and not able to exercise rights under the New Hampshire Consumer Data Protection Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the New Hampshire Attorney General.
If you are a New Jersey resident, if within 45 days of a valid and verifiable data subject request, we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been a New Jersey consumer in the relevant time period and not able to exercise rights under the New Jersey Data Protection Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Division of Consumer Affairs in the Department of Law and Public Safety to subject a complaint via following the link here: https://www.njconsumeraffairs.gov/Pages/Consumer-Complaints.aspx.
If you are an Oregon resident, if within 45 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been an Iowa consumer in the relevant time period and not able to exercise rights under the Oregon Consumer Data Protection Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Oregon Attorney General.
If you are a Texas resident, if within 45 days of a valid and verifiable data subject request we do not take any action on the request, we will let you know why, which is usually because we cannot verify your identity or we have verified your identity but identified that you are not and have not been an Iowa consumer in the relevant time period and not able to exercise rights under the Texas Data Privacy and Security Act. We will provide information about how you may appeal this decision / non-action in that communication. If your appeal is denied, you may contact the Texas Attorney General.
Under applicable law, you may designate an authorized agent to make a request on your behalf. You may make such a designation by providing the agent with written permission to act on your behalf. We will require the agent to provide proof of that written permission. To the extent permitted by law, we may require you to verify your own identity in response to a request, even if you choose to use an agent.
Limit the Use of My Sensitive Personal Information
- Sensitive information means information about a consumer’s, which in California includes employees, job applicants, and contractors as well as B2B contacts:
Social security, driver’s license, state identification card, or passport number; - A child’s (under 13 years of age) personal data (e.g., Colorado, Connecticut, Virginia).
- Account log-in, financial account, debit card, or credit card number in combination with any required security or access code, password, or credentials allowing access to an account;
- Precise geolocation, which varies by state laws. For example, the Connecticut Data Privacy Act defines precise geolocation to mean “the specific location of an individual with precision and accuracy within a radius of 1,750 feet.” Connecticut Public Act No. 22-15 § 1(19). California’s precision requirement is 1,850 feet, while Utah and Virginia both use 1,750 feet. Cal. Civil Code § 1798.140(w); Utah Code § 13-61-101(33); Virginia Code § 59.1-571. Colorado’s law does not include a precise geolocation concept;
- Racial or ethnic origin, religious or philosophical beliefs, or union membership;
- Contents of a consumer’s mail, email, and text messages unless the business is the intended recipient of the communication;
- Genetic data processed for the purpose of uniquely identifying a consumer;
- Biometric information processed for the purpose of uniquely identifying a consumer;
- Information concerning a consumer’s mental or physical health;
- Information concerning a consumer’s sex life or sexual orientation; and
- A child’s (under 13 years of age) personal data (e.g., Colorado, Connecticut, Virginia).
In the event you choose to opt-out of the processing of your sensitive information, we may object for any of the following reasons:
- To perform the services or provide the goods reasonably expected by an average consumer who requests those goods or services.
- To prevent, detect, and investigate security incidents that compromise the availability, authenticity, integrity, or confidentiality of stored or transmitted personal information, provided that the use of your personal information. For example, we disclose a consumer’s log-in information to a data security company hired to investigate and remediate a data breach that involved your account.
- To resist malicious, deceptive, fraudulent, or illegal actions directed at the business and to prosecute those responsible for those actions.
- To ensure the physical safety of natural persons. We may disclose your precise geolocation information to law enforcement to investigate an alleged kidnapping.
- For short-term, transient use, including, but not limited to, non-personalized advertising shown as part of your current interactions with us, provided that the personal information is not disclosed to another third party and is not used to build a profile about you or otherwise alter your experience outside the current interaction with the business.
- To perform services on behalf of the business. For example, we may use sensitive information for maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services on our behalf.
- To verify or maintain the quality or safety of our products and Services. To collect or process sensitive information where such collection or processing is not used for the purpose of inferring characteristics about you.
Do Not Sell or Share My Personal Information
You may opt out of having your data sold or shared by us, which includes having it used for targeted advertising or for third parties to use for direct marketing or of sensitive information as that term is defined by applicable data privacy law, by using the “Do Not Share or Sell My Personal Information” link here or at the bottom of the homepage on our websites or follow the instructions in the “How to Exercise your Privacy Rights” Section below.
Profiling and Automated Decision
We do use your personal data for certain kinds of “profiling”, which is a specific type of activity under certain privacy laws and generally refers to the automated processing of personal data to evaluate, analyze, or predict certain personal aspects about your performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements. In the event we do, we will provide you advanced notice any provide you the ability to opt out of having profiling used for future decisions that produce legal or similarly significant effects on you. You may opt out of profiling by following the instructions in the “How to Exercise your Privacy Rights” Section below.
How to Exercise Your Privacy Rights
To make a Request to Access your Personal Information, a Request to Delete your Personal Information, a Request to Correct your Personal Information, Request to Limit Sensitive Personal Information, or a Request to Opt-Out of Sales and Disclosure of Personal Information:
- Use our Privacy Request Form at: https://www.everi.com/privacy-notice/requests
- Call us at 1 (800) 219-6790
Do Not Track
“Do Not Track” is a preference you can set in your web browser or on certain devices to inform Internet sites that you do not want to be tracked online. At this time, we do not support the Do Not Track signals set by your browser or device because there is not currently an industry or legal standard for Do Not Track signals.
Google Analytics
We use Google analytics, a web analytics service provided by Google, Inc. (“Google”) in connection with some of our services. For more information on how Google uses data, please see: www.google.com/policies/privacy/partners/
To opt out of being tracked by Google Analytics, visit Google Analytics at: https://analytics.google.com.
How We Protect Information
Our privacy team is continuously working to help keep personal data safe and to maintain secure systems and products. We monitor performance, invest in our digital infrastructure, and leverage industry best practices to identify and assess cybersecurity threats. We use independent experts and security researchers to test our cybersecurity defenses and help identify potential weaknesses. And we provide employees with the tools and training needed to help protect our systems and data.
How Long We Keep Information
We strive to keep your personal data for only as long as necessary to fulfill the purposes outlined in this notice unless a longer retention period is required or allowed by law. To decide how long to keep personal data, we consider things like:
- The amount, nature, and sensitivity of the data.
- The potential risk of harm from unauthorized use or disclosure of the data.
- The purposes for which we obtained the data.
- Whether we can achieve those purposes through other means.
- Applicable legal, accounting, or reporting requirements.
Managing Your Preferences
By using our services and providing us or our business customers with personal information, you acknowledge and consent to our collection, use and disclosure of such personal information for the purposes identified or described in this Privacy Notice.
You can choose not to provide personal information to Everi by refraining from conducting payment transactions or using our other services. You also may refrain from submitting information directly to us.
To the extent provided by applicable law, you may withdraw any consent you previously provided to us, or object at any time on legitimate grounds, to the processing of your personal information. We will apply your preferences going forward. In some circumstances, withdrawing your consent to Everi’s use or disclosure of your personal information will mean that you cannot take advantage of certain Everi products or services. If you do not wish to receive offers of products or services we feel you may have an interest in, you can at any time tell us not to send you marketing communications by contacting Everi at (844) Everi24; e-mailing us at: [email protected]; or writing us at the address provided in the “How To Contact Us” section below.
Obtaining Copies of or Access to Your Personal Information and Updating Us
Subject to applicable law, you may have the right to: obtain confirmation that we hold personal information about you, request access to and receive information about the personal information we maintain about you, receive copies of the personal information we maintain about you, update and correct inaccuracies in your personal information, object to the processing of your personal information, and have the information blocked, anonymized or deleted, as appropriate. The right to access personal information may be limited in some circumstances by local law requirements. To exercise these rights, please contact us as set forth below.
Consent to Receive Electronic Notifications
Electronic communication is the most effective and timely way to provide the users of the Website and Services with any optional or required notifications and disclosures. In some circumstances, however, applicable laws may require us to send you disclosures or communications in paper format unless you have affirmatively consented to receiving electronic notifications only in advance of the notification. Through this Privacy Notice, pursuant to 15 U.S.C. § 7001, you hereby affirmatively consent to receive electronic notifications and disclosures from us only (without requiring a paper copy) and you represent that, to date, you have not withdrawn such consent. You have the right to change your mind and withdraw your consent at any time. If you would like to withdraw your consent to receive electronic notifications and/or would like to request paper copies of any required notifications you receive electronically, you may contact us. To receive electronic records, you will need access to a smartphone, tablet, laptop or computer with internet access and an email account. In the event you receive marketing email communications from us and no longer wish to, you can click the “Unsubscribe” link at the bottom of any marketing email to opt out of further marketing communications. Please note that this opting out is only effective for marketing communications as we will still communicate with you via email regarding transactional issues, such as to confirm a purchase or to provide you information about a purchase.
How to Contact Us
If you have any questions or comments about this Privacy Notice, our privacy practices or if you would like us to update information or preferences you provided to us, you may e-mail us at: [email protected]; or write to us at:
Privacy Office
Everi Payments Inc.
7250 S. Tenaya Way, Suite 100 Las Vegas, NV 89113
United States
If you are located in the UK/EU or Switzerland, an Everi Holdings Inc. affiliate may be the entity responsible for the processing of your personal information. You may e-mail us at: [email protected]; or write to us at:
Global Cash Access (UK) Limited – Privacy Office C/O Avalon Company Services Ltd
3 Magdalene Street Glastonbury BA6 9EW England
Complaints
Everi commits to resolve complaints about our collection or use of your personal information. If you have questions or complaints regarding our privacy notice or practices, you should first contact Everi’s Privacy Office:
Privacy Office
Everi Payments Inc.
7250 S. Tenaya Way, Suite 100 Las Vegas, NV 89113
United States
If you are located in the UK/EU or Switzerland, an Everi Holdings Inc. affiliate may be the entity responsible for the processing of your personal information. You may e-mail us at: [email protected]; or write to us at:
Global Cash Access (UK) Limited – Privacy Office C/O Avalon Company Services Ltd
3 Magdalene Street Glastonbury BA6 9EW England
If we fall short of your expectations in processing your personal information or you wish to make a complaint about our privacy practices, please tell us because it gives us an opportunity to fix the problem. To assist us in responding to your request, please give full details of the issue. We attempt to review and respond to all complaints within a reasonable time.
Everi has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for more information and to file a complaint. This service is provided free of charge to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2.
In the UK, unresolved complaints can be sent to the Information Commissioner’s Office by calling 0303 123 1113 or by visiting: https://ico.org.uk/concerns/.
EU residents have the option of filing complaints directly with their local DPA, which will work with the Department of Commerce and the Federal Trade Commission (FTC) to investigate and resolve complaints. If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See: https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction.
Canadian residents have the option of filing a complaint with the Office of the Privacy Commissioner of Canada by contacting:
Office of the Privacy Commissioner of Canada Place de Ville
112 Kent Street, 3rd floor Ottawa, Ontario
K1A 1H3 Canada 1-800-282-1376
On Website and Third Parties
This notice only addresses the use and disclosure of information Everi collects on this website and through our services. Everi does not control and is not responsible for the privacy practices of other website or third parties to whom you may link from our site.
General
Everi reserves the right to change this Privacy Notice at any time to incorporate new rules or guidance issued under the General Data Protection Regulation, Data Privacy Framework, the UK Extension to the EU-U.S. DPF, the Swiss-U.S. Data Privacy Framework and local privacy and data protection legislation. Any changes to this Privacy Notice will be posted to this page as soon as reasonably possible and will become effective immediately. Therefore, please check this page periodically. Use of the website and our services constitutes acknowledgement that Everi uses your information in accordance with the Privacy Notice then in effect.