burger icon
Magic Red Review Canada
Log In

Privacy Policy

This Privacy Policy explains how Magic Red, available at magicred-play.ca, collects, uses, discloses, and protects personal information of visitors and players in Canada who interact with our content, tools, and links to Magic Red casino services. It applies to website visitors, individuals who subscribe to our communications, and users who navigate to the Magic Red casino operated under the licences described below through our site. By using magicred-play.ca, you consent to the practices described in this Policy, in accordance with applicable Canadian privacy laws and, where relevant, aligned principles under other international frameworks. This Privacy Policy is effective as of 1 January 2026.

Who We Are

Magic Red is an information and review project focused on the Magic Red online casino brand, operated through the website magicred-play.ca. For personal information collected via magicred-play.ca (for example, when you browse our pages, click our links, or subscribe to updates), the primary data controller is the operator of magicred-play.ca (the "Site Operator"). The Site Operator manages this project and is responsible for implementing this Privacy Policy and ensuring compliance with applicable Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA) and any applicable provincial legislation.

The casino services that we describe and link to are provided by Magic Red, a brand operated on a white-label basis within the Aspire Global group:

  • Non-Ontario Canadian players: Magic Red casino services are provided via magicred.com by Aspire Global International LTD, a limited company licensed by the Malta Gaming Authority (MGA) under licence number MGA/CRP/148/2007 (Type 1 and Type 2 Gaming Services).
  • Ontario players: Magic Red operates under regulation by the Alcohol and Gaming Commission of Ontario (AGCO) and iGaming Ontario for play within Ontario, Canada, under an approved iGaming operator registration (exact licence number to be confirmed in the official iGaming Ontario / AGCO directory).
  • Group context: Other related entities in the group include AG Communications Limited (licensed by the UK Gambling Commission under licence 39483 at the time of the referenced data), NeoGames S.A. (a prior parent of Aspire Global), and Aristocrat Leisure Limited (the ultimate parent company following its 2024 acquisition of NeoGames).

Data Protection Contact: For any questions or requests about this Privacy Policy or your personal information in connection with magicred-play.ca, you may contact our data protection team by using the contact details provided on magicred-play.ca (indicating "Privacy" in the subject line). Where your request specifically concerns your player account at Magic Red casino (for example, an account at magicred.com or an Ontario-specific domain), we may direct or forward your request to the relevant Aspire Global group entity acting as casino operator.

What Personal Data We Collect

Identification and Contact Data

  • Basic identifiers: Name, username or nickname, country or province of residence, and preferred language where you voluntarily provide them (e.g., through a contact form, newsletter signup, or feedback tool).
  • Contact details: Email address, telephone number, and any other contact information you provide when you contact us, request information, or sign up to receive communications about Magic Red through magicred-play.ca.

Technical and Device Data

  • Device and connection information: IP address, device identifiers, browser type and version, operating system, screen resolution, time zone settings, and similar technical data automatically collected when you access magicred-play.ca.
  • Log and usage data: Dates and times of access, pages viewed, URLs clicked, referral URLs (including from and to magicred.com or Ontario-specific Magic Red domains), and interaction logs with our content and tools.

Payment and Transaction-Related Data

  • On magicred-play.ca: We do not process deposits, withdrawals, or direct gaming payments on this review site. Consequently, we do not collect your full payment card details or bank account information here.
  • On Magic Red casino platforms: If you register and transact on magicred.com or an Ontario-specific Magic Red domain, the relevant casino operator (e.g., Aspire Global International LTD) collects payment data such as card details (in tokenised form), e-wallet identifiers, transaction histories, and verification data. We may receive aggregated or pseudonymised transaction and performance statistics from the operator and its payment partners for analytics, compliance, and marketing attribution, but not your full payment data.

Behavioural and Usage Data

  • Website behaviour: Clickstream data, time spent on particular pages (for example, Magic Red slot reviews or bonus explanations), scroll and navigation patterns, and links that you follow to the Magic Red casino sites.
  • Gaming-related behaviour (indirect): Aggregated or pseudonymised data from Magic Red's operator about registration conversions, active player counts, responsible gambling tool usage, and bonus redemption patterns, which does not directly identify you but may correspond to an internal identifier.

Cookies and Similar Technologies

  • Cookies and local storage: We use cookies, local storage, and similar technologies to remember your preferences (for example, language and region), manage sessions, perform analytics, and support marketing attribution.
  • Online identifiers: Cookie IDs, pixel tags, advertising identifiers, session IDs, and related technical identifiers that may be associated with your device or browser.

Special Categories of Data

  • magicred-play.ca does not intentionally collect sensitive personal information such as health data, political opinions, or biometric identifiers.
  • Where the Magic Red casino operator must process sensitive information (for example, documents revealing political exposure or financial status for anti-money laundering checks), that processing is covered by the operator's own privacy policy and is subject to strict regulatory requirements (including AML/KYC obligations overseen by regulators such as the MGA and AGCO).

Legal Basis for Processing

Our processing of personal information in relation to magicred-play.ca is primarily governed by Canadian privacy laws, particularly PIPEDA and analogous provincial legislation where applicable. In addition, we align our practices, as far as reasonably feasible, with the principles found in the EU General Data Protection Regulation (GDPR) and Mexican data protection law. Depending on the context, we rely on different legal bases:

  • Your consent:
    • When you agree to receive marketing communications about Magic Red or related gambling content.
    • When you accept non-essential cookies (for example, advertising or advanced analytics cookies).
    • When you voluntarily submit information through forms or feedback tools.
  • Performance of a contract or steps taken at your request:
    • Providing you with requested information about Magic Red casino services, promotions, or features.
    • Facilitating your navigation to the correct Magic Red platform (for example, redirecting Ontario players to an Ontario-specific domain and others to magicred.com) and ensuring that affiliate tracking works correctly when you sign up or log in.
  • Legitimate interests (or analogous concepts):
    • Improving, maintaining, and securing magicred-play.ca and tailoring our content to Canadian audiences.
    • Measuring the performance of our content and affiliate links, including basic analytics and conversion tracking.
    • Preventing and detecting fraud, abuse, or technical misuse of our site or affiliate relationships.
    • Supporting compliant operation of the Magic Red brand within the Aspire Global / NeoGames / Aristocrat group, including cross-jurisdictional oversight.
  • Compliance with legal and regulatory obligations:
    • Responding to lawful requests from regulators or law enforcement authorities (such as the Malta Gaming Authority, AGCO/iGaming Ontario, the UK Gambling Commission, or Canadian privacy regulators).
    • Supporting the Magic Red casino operator's obligations under anti-money laundering (AML), counter-terrorist financing (CTF), and responsible gambling regulations, which may require collection, retention, and sharing of certain data.
    • Complying with document retention requirements under tax, corporate, and gaming laws in Canada, Malta, and other relevant jurisdictions.

Purpose of Processing

Provision and Operation of Services

  • Providing content and tools: To present impartial and up-to-date information, reviews, and guides about Magic Red casino for Canadian users (including Ontario-specific information), and to ensure that our pages function correctly on your device.
  • Navigation and linking: To route you to the appropriate Magic Red casino platform, making sure that players in Ontario or other provinces are directed to the correct regulated domains.

Service Improvement and Personalisation

  • Analytics and performance: To monitor traffic, identify trends, detect bottlenecks, and improve the usability of magicred-play.ca using aggregated statistics.
  • Content optimisation: To understand which games, promotions, or regulatory explanations are most relevant to Canadian players so that we can adapt our content and layout.

Marketing, Communications, and Affiliates

  • Direct marketing: With your consent, to send you newsletters, special offers, and news related to Magic Red and online casino products that may be available to Canadian players.
  • Attribution and affiliate reporting: To track when you click our links to Magic Red casino, register, and play, enabling us to receive affiliate compensation while maintaining accurate, non-duplicative records.
  • Advertising networks: With your consent where required, to serve personalised or interest-based advertising on or through magicred-play.ca using third-party ad networks and tracking technologies.

Security, Compliance, and Fraud Prevention

  • Security monitoring: To protect magicred-play.ca against cyberattacks, unauthorised access, misuse of our affiliate tracking, or scraping of our content.
  • Regulatory cooperation: To support gaming regulators (MGA, AGCO/iGaming Ontario, UKGC, and others) when they conduct audits, reviews, or investigations regarding Magic Red's operations, including the marketing and onboarding funnel.
  • Risk management: To manage business continuity, internal audits, and group-level compliance programmes within Aspire Global, NeoGames, and Aristocrat Leisure, including follow-up on past regulatory findings (such as AML-related enforcement in the UK) to strengthen overall controls.

Disclosure & Sharing

We do not sell your personal information. We may, however, share personal information or related data for the purposes described above with the following categories of recipients, always subject to contractual and legal safeguards:

Group Companies and Brand Operators

  • Aspire Global International LTD: As the primary operator of Magic Red for Canadian players outside Ontario under MGA licence MGA/CRP/148/2007, we may share or receive limited data (such as referral identifiers, country, or language) to ensure correct routing, attribution, and compliance.
  • AG Communications Limited: A UK-based group company licensed by the UK Gambling Commission (licence 39483). Data may be shared for group-level compliance, risk management, reporting, and technical support.
  • NeoGames S.A. and Aristocrat Leisure Limited: Parent companies providing corporate, IT, and compliance support. Certain aggregated or pseudonymised data may be shared for analytics, internal reporting, or strategic planning.

Service Providers and Technical Partners

  • Hosting and IT providers: Companies that host magicred-play.ca, provide content delivery networks (CDNs), security tools (e.g., DDoS protection), or maintenance services.
  • Analytics and measurement: Third-party analytics services (for example, web analytics platforms) that help us understand site usage. These providers generally receive IP addresses, device data, and cookie identifiers, but not your full identity.
  • Marketing and affiliate platforms: Platforms that manage affiliate tracking, attribution, and campaign optimisation for Magic Red promotions, which may process referral IDs and conversion data.

Regulators, Authorities, and Compliance Partners

  • Gaming regulators: The Malta Gaming Authority (MGA), AGCO and iGaming Ontario, the UK Gambling Commission, and other regulators may receive data where necessary to verify compliance with marketing rules, licence conditions, AML/CTF obligations, and responsible gambling standards.
  • Data protection and privacy regulators: Canadian, EU, Mexican, and other supervisory authorities may receive relevant information if you lodge a complaint or if we are legally obliged to cooperate with an investigation.
  • AML/KYC and risk partners: While magicred-play.ca does not perform direct KYC, the Magic Red casino operator may use specialised providers for identity verification and AML checks. We may exchange or relay identifiers or high-level information to support these processes where appropriate.

Advertising Networks and Social Media Partners

  • With your consent where required, we may share cookie identifiers, hashed contact details, or device information with advertising networks and social media platforms to deliver or measure targeted advertising related to Magic Red or similar content.

Business Transfers and Legal Requirements

  • Corporate transactions: If magicred-play.ca or substantial parts of the Aspire Global / NeoGames / Aristocrat gaming business are restructured, merged, or sold, personal information may be transferred to the relevant acquiring or successor entity, subject to continued protection in line with this Policy.
  • Legal obligations and enforcement: We may disclose information where required by law, court order, or lawful request, or to protect our rights, your safety, the safety of others, or to investigate fraud or regulatory breaches.

International Transfers

Because the Magic Red brand and its supporting group are active in multiple jurisdictions, your personal information may be stored or processed in countries outside your province or outside Canada, including:

  • Malta (MT): Where Aspire Global International LTD is based and where core casino systems and compliance functions may be hosted or managed.
  • European Union / EEA and United Kingdom: Where group entities, hosting providers, or compliance teams may be located (including AG Communications Limited in the UK).
  • Israel, United States, Australia, and other jurisdictions: Where technology providers, parent companies (including Aristocrat in Australia), or cloud infrastructure providers may operate.

When personal information is transferred internationally, we implement appropriate safeguards designed to provide a level of protection comparable to that required under Canadian privacy law and, where relevant, EU and Mexican standards. These safeguards may include:

  • Contractual protections with service providers and group companies (such as standard contractual clauses or equivalent data transfer agreements).
  • Ensuring that the recipient is subject to adequate data protection laws or recognised frameworks, or has adopted binding corporate rules or similar internal policies.
  • Technical and organisational security measures such as encryption, strict access controls, and data minimisation.

By using magicred-play.ca, you understand that your information may be transferred to and processed in these jurisdictions, subject to these safeguards.

Data Retention

We retain personal information only for as long as necessary to fulfil the purposes described in this Privacy Policy or to comply with applicable legal, regulatory, and contractual requirements. Retention periods may vary by data category and jurisdiction. In general:

  • Website usage and technical logs: Retained for a period typically between 12 and 36 months from collection for security, troubleshooting, and analytics, after which they are anonymised or deleted unless longer retention is required for investigations or legal obligations.
  • Contact and communication records: Emails, support requests, and form submissions relating to magicred-play.ca are usually retained for up to 3 years after our last interaction, or longer when needed to resolve a dispute or demonstrate compliance.
  • Marketing data: Information used for email marketing or similar communications is retained until you withdraw consent, unsubscribe, or we determine that it is no longer needed. Evidence of consent and unsubscribe records may be retained for a longer period (up to 3 - 5 years) to demonstrate compliance with anti-spam laws.
  • Affiliate and attribution data: Referral IDs and conversion data linking magicred-play.ca activity to Magic Red casino accounts are generally retained for up to 5 years after the end of the relevant affiliate relationship or campaign, subject to contractual and regulatory requirements.
  • Magic Red casino account data (operator-controlled): The casino operator (e.g., Aspire Global International LTD) typically retains account and transaction data for at least 5 years after account closure or the end of the business relationship, and longer where required by AML, gaming, or tax laws. Please refer to the operator's own privacy policy for precise retention schedules.

When personal information is no longer required for any permitted purpose, we will take reasonable steps to securely delete, anonymise, or aggregate it. Where deletion is not technically feasible (for example, in backup archives), we will isolate and protect the data from further processing until deletion becomes possible.

Your Rights

Rights Under Canadian Privacy Law

Under PIPEDA and applicable provincial privacy laws, you generally have the following rights regarding your personal information held in relation to magicred-play.ca:

  • Right of access: To obtain confirmation as to whether we hold personal information about you and to request access to that information, subject to certain legal restrictions.
  • Right to correction: To request the correction or update of inaccurate or incomplete personal information.
  • Right to withdraw consent: To withdraw your consent at any time for processing activities that rely on your consent (for example, marketing communications or non-essential cookies). Withdrawal will not affect processing that has already occurred.
  • Right to challenge compliance: To challenge our compliance with Canadian privacy laws through internal complaint mechanisms and, if unsatisfied, before relevant privacy commissioners.

Alignment with GDPR (EU/EEA) and Mexican Privacy Law

Although magicred-play.ca is targeted primarily at Canadian users, we use a framework aligned with the EU General Data Protection Regulation (GDPR) and Mexico's Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP) to guide our practices. If you are located in the EU/EEA or Mexico, or if these laws otherwise apply, you may have additional rights, including:

  • Right to erasure ("right to be forgotten"): To request deletion of personal data in certain circumstances, for example when it is no longer necessary for the purposes for which it was collected or when you have withdrawn consent.
  • Right to restriction of processing: To request that we restrict the processing of your data under certain conditions (for example, while we verify its accuracy or assess an objection).
  • Right to object: To object to processing based on legitimate interests or for direct marketing, including profiling, in which case we will cease such processing unless we demonstrate compelling legitimate grounds.
  • Right to data portability: To receive personal data you have provided to us in a structured, commonly used, and machine-readable format and to transmit it to another controller where technically feasible.

In Mexico specifically, you may exercise ARCO rights (Access, Rectification, Cancellation, and Opposition) in accordance with the LFPDPPP and its regulations.

How to Exercise Your Rights

  • Submitting a request: You may exercise your rights by contacting us using the contact details available on magicred-play.ca, clearly indicating that your request concerns your privacy rights and specifying whether it relates to magicred-play.ca, a Magic Red casino account, or both.
  • Verification: We may need to verify your identity before responding, for example by requesting additional information reasonably necessary to confirm that you are the person whose data we hold.
  • Response timeframe: We aim to respond without undue delay and in any event within 30 days of receiving a complete request. If we need more time due to complexity or volume, we will inform you of the extension and reasons, in line with applicable law.
  • Cost: Exercising your rights is generally free of charge. We may charge a reasonable fee or refuse to act on requests that are manifestly unfounded or excessive, particularly due to their repetitive character, as allowed by applicable law.
  • Casino operator rights: If your request concerns data held by the Magic Red casino operator (e.g., your player account, KYC documents, or transaction history), we may facilitate your contact with the operator, but final decisions on those datasets will be made by the relevant operator acting as data controller.

Cookies & Tracking Technologies

Types of Cookies We Use

  • Strictly necessary (session) cookies: These cookies are essential to enable core functionalities such as security features, load balancing, and basic navigation on magicred-play.ca. They are typically stored only for the duration of your session.
  • Functional (persistent) cookies: These remember your preferences (such as language, region, or display settings) and persist on your device for a defined period to provide a consistent experience on return visits.
  • Analytics cookies: First-party or third-party cookies that collect aggregated information about how visitors use magicred-play.ca (e.g., pages visited, time spent), helping us improve the quality and relevance of our content.
  • Advertising and affiliate cookies: Cookies and similar technologies that support tracking of affiliate referrals, campaign performance, and (with your consent) interest-based advertising related to Magic Red and similar offerings.

Purposes of Cookies

  • Ensure proper operation: Maintain security, prevent abuse, and provide basic site functions.
  • Measure and improve performance: Understand which pages and content types are most useful to Canadian users to refine our information about Magic Red.
  • Support marketing and attribution: Ensure that when you click through to Magic Red casino, the correct affiliate tracking is applied and marketing efforts are measured accurately.

Managing and Disabling Cookies

  • Browser controls: You can configure your browser to block or delete cookies, or to alert you when cookies are being sent. Please note that disabling strictly necessary cookies may affect the functionality of magicred-play.ca.
  • Consent tools: Where implemented, our cookie banner or preference centre allows you to manage your consent to non-essential cookies (such as analytics or advertising cookies) and to change your choices at any time.
  • Third-party opt-outs: Some third-party analytics and advertising providers offer their own opt-out mechanisms, which you can use in addition to our tools.

Data Security

We implement a combination of technical and organisational measures designed to protect personal information against unauthorised access, loss, misuse, alteration, or disclosure. Given the nature of online services, no system can be absolutely secure; however, we strive to maintain a security posture consistent with industry best practices and the regulatory expectations applicable to the Magic Red brand and its operators.

  • Encryption: Data transmitted between your browser and magicred-play.ca is protected using Transport Layer Security (TLS) 1.2 or higher, with modern cipher suites. Where feasible, sensitive data processed within the group's infrastructure (for example, within Aspire Global's or Aristocrat's environments) is encrypted at rest.
  • Access controls: Access to systems and data is restricted on a "need to know" basis using unique user accounts, strong passwords, and, where appropriate, multi-factor authentication (MFA). Administrative interfaces are protected by additional security layers.
  • Network and infrastructure security: We use firewalls, intrusion detection or prevention systems, DDoS mitigation, and secure configuration practices to protect servers hosting magicred-play.ca and associated services.
  • Vendor due diligence: Third-party service providers, including hosting, analytics, and marketing partners, are selected based on their security posture and contractual commitments to protect personal data. Many operate under recognised frameworks such as ISO 27001 or SOC 2, although not all providers or group entities may themselves be certified.
  • Policies, training, and governance: Staff and contractors with access to personal information receive appropriate confidentiality obligations and, where relevant, training on privacy, data protection, and responsible gaming obligations. Group-level governance within Aspire Global / NeoGames / Aristocrat incorporates lessons learned from regulatory reviews and enforcement actions (for example, past AML-related findings) to continuously improve controls.
  • Incident response: We maintain procedures for identifying, assessing, and responding to suspected data breaches or security incidents. Where a breach involves personal information and creates a real risk of significant harm, we will notify affected individuals and the relevant authorities, in accordance with Canadian law and other applicable regulations.

Complaints & Contacts

Contacting Us

  • General privacy enquiries: For any questions, concerns, or requests regarding this Privacy Policy or our handling of personal information on magicred-play.ca, please use the contact details published on magicred-play.ca, specifying that your message relates to "Privacy" or "Data Protection".
  • Casino account issues: If your enquiry concerns your Magic Red casino account (e.g., on magicred.com or an Ontario-specific domain), including KYC documents, account history, or responsible gambling tools, you may contact the casino operator directly through its customer support channels. We can assist you in identifying the appropriate contact point where necessary.

Complaint Procedure

  1. Step 1 - Internal review: Submit your complaint to us via the contact methods available on magicred-play.ca. Include as much detail as possible, such as relevant dates, the nature of your concern, and any supporting documentation.
  2. Step 2 - Assessment: We will acknowledge receipt of your complaint (where contact details are provided) and conduct an initial assessment. If your complaint relates to data controlled by the Magic Red casino operator, we may forward it to or coordinate with the relevant operator.
  3. Step 3 - Response: We aim to provide a substantive response within 30 days. If additional time is required due to complexity or the need to liaise with third parties (for example, Aspire Global International LTD or a regulator), we will inform you of the extension and expected timeframe.
  4. Step 4 - Escalation: If you are not satisfied with our response, you may escalate the matter to the relevant supervisory authority as described below.

Supervisory Authorities and External Recourse

  • Canada (federal): You may contact the Office of the Privacy Commissioner of Canada (OPC) if you are not satisfied with our handling of your personal information:
    • Website: https://www.priv.gc.ca
  • Canada (provincial): Depending on your province and the nature of the organisation involved, you may also have recourse to provincial privacy commissioners (for example, in Alberta, British Columbia, or Quebec).
  • European Union / EEA: If GDPR applies to you, you may lodge a complaint with your local data protection authority. Contact details of EU/EEA data protection authorities are available from the European Data Protection Board (EDPB) website at https://edpb.europa.eu/about-edpb/board/members_en.
  • Mexico: If Mexican data protection law applies, you may contact the Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI):
    • Website: https://www.inai.org.mx
  • Gaming regulators (for gambling-related matters): For issues relating to the fairness or conduct of Magic Red's gaming services rather than privacy alone, you may also contact the relevant gaming regulator, such as:

Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, technology, or the regulatory landscape affecting the Magic Red brand and its operations in Canada and other jurisdictions.

  • Notification of changes: When we make material changes, we will take reasonable steps to notify you in advance, which may include:
    • Displaying a prominent notice or banner on magicred-play.ca.
    • Sending an email or in-site message if you have an account or subscription associated with magicred-play.ca.
  • Advance notice: For significant changes that materially affect how we process your personal information, we will provide, where feasible, at least 30 days' advance notice before the new terms become effective, so that you have time to review the changes and, if you do not agree, to discontinue use of magicred-play.ca and, if relevant, to close or adjust your Magic Red casino accounts.
  • Version control: Each version of this Privacy Policy will be identified by the "Last updated" date below. In case of substantial updates, we may also provide a brief summary of material changes (for example, changes in data sharing practices, new categories of recipients, or modifications to international transfer mechanisms).
  • Your continued use: Your continued use of magicred-play.ca after the effective date of an updated Privacy Policy constitutes your acceptance of the updated Policy, except where applicable law requires express consent for certain changes, in which case we will seek such consent.

Last updated: February 2026