GDPR Information
This page explains how GemSpin Lounge handles personal data for visitors from the European Economic Area (EEA) and the United Kingdom under the General Data Protection Regulation (GDPR and UK GDPR). GemSpin Lounge is a play-for-fun entertainment portal — no real-money gambling.
Controller
GemSpin Lounge, Level 16, The Vertical Corporate Towers, 8 Jalan Kerinchi, Bangsar
South, 59200 Kuala Lumpur, Malaysia.
Email: hello@gemspinlounge.my
Phone: +60 3-9212 4573
Scope
This notice applies when you access our site from the EEA/UK. If you are located elsewhere, please refer to our Privacy Policy for your region.
Categories of Data We Process
- Technical data: IP address (short-lived), device, browser type, pages viewed, timestamps.
- Cookie preferences: your consent choices for optional cookies (analytics/marketing) — see Cookie Policy.
- Contact data (if you write to us): name, email, content of your message, attachments.
- Aggregate usage data: anonymised statistics to improve features (only if analytics cookies are enabled).
Purposes & Legal Bases
- Operate and secure the portal (fraud prevention, availability, troubleshooting) — legitimate interests.
- Consent management (recording cookie choices) — legal obligation and legitimate interests.
- Analytics (audience measurement, performance) — consent (only when you choose “Yes” or “Partial”).
- Support communications — contract (responding to your request) and legitimate interests.
Cookies & Similar Technologies
We use necessary cookies to run core functions and optional analytics/marketing cookies to improve the experience. You can choose Yes, No, or Partial on the banner or revisit preferences on the Cookies page.
Data Sources
We collect data directly from you (forms, preferences) and automatically via your browser (technical logs). We do not purchase personal data from data brokers.
International Transfers
Your data may be processed in Malaysia and, if applicable, other countries. Where GDPR applies and data leaves the EEA/UK, we rely on appropriate safeguards such as Standard Contractual Clauses and additional technical/organizational measures.
Retention
| Data category | Typical retention | Reason |
|---|---|---|
| Server logs (technical) | 30–90 days | Security, troubleshooting |
| Cookie consent records | 6–24 months | Compliance proof |
| Support messages | Up to 24 months | Respond and track resolution |
| Analytics data (if enabled) | 6–26 months | Product improvement |
Your Rights (EEA/UK)
- Access — request a copy of your personal data.
- Rectification — correct inaccurate or incomplete data.
- Erasure — ask us to delete data in certain circumstances.
- Restriction — limit how we use your data.
- Portability — receive data you provided in a machine-readable format.
- Objection — object to processing based on legitimate interests.
- Withdraw consent — at any time for optional analytics/marketing cookies.
How to Make a Request
- Email hello@gemspinlounge.my with the subject “GDPR Request”.
- Specify the right you want to exercise and the scope of data (e.g., dates, interaction type).
- We may request reasonable information to verify your identity.
- We aim to respond within one month (extendable by two months for complex requests; we will inform you).
Children
Our portal is for adults in Malaysia (21+). We do not knowingly process personal data of minors. If you believe a minor has provided data, contact us to remove it.
Supervisory Authorities
You have the right to lodge a complaint with your local data protection authority in the EEA/UK. You may also contact us first so we can try to resolve the issue quickly.
Contact
For privacy matters, contact hello@gemspinlounge.my or write to the postal address above. For general help, visit Support.
Updates to This Notice
We may update this page to reflect changes in our processing or legal requirements. “Last updated” date: .