GDPR Commitment & Roadmap

Your privacy is important to us.

The GDPR (General Data Protection Regulation) is a piece of legislation that is designed to strengthen and unify data protection laws for all individuals within the European Union. The regulation will become effective and enforceable on May 25, 2018.

InPlayer is fully committed to achieving and upholding ongoing compliance with GDPR prior to the effective date.

What we’re doing about the GDPR

InPlayer began researching and pursuing compliance in 2017. Although it’s a complex piece of legislation the general idea is pretty simple; to make sure all data about private citizens is handled with the care it deserves. We’ve been working with privacy experts and our attorneys to be sure we’re compliant with the GDPR. The privacy and security of our clients and their users are of utmost importance to us.

If you are wondering what data we store about you and how it is being handled and used, you can easily find that out from our data privacy reports.

Choose the one most relevant to your relationship with us:

If you want more visibility on how we share data with third parties – we’ve listed all data processors here.

Changes to InPlayer to become GDPR compliant

There are dozens upon dozens of changes and steps we’re taking across every part of our company to ensure we are GDPR compliant. This includes anonymising more data, reducing the types of data shared across vendors to only the parts that are absolutely necessary and providing more controls over what data is/isn’t processed.

Here’s a high-level overview of what we’ve completed so far on our GDPR Compliance Roadmap:

Your data

Accountability and management

New rights

Consent and communication

Changes in our SaaS platform and new features

We are still researching the need for our clients to add age verification to their registration process through our paywall. As soon as our experts reach a conclusion on this we will develop a feature accordingly.

Exceptions due to being a money processor

InPlayer has anti-money laundering and financial regulatory obligations to retain records for certain periods, and we generally cannot delete transactional records prior to the expiration of those periods as we have statutory record-keeping obligations. Absent those specific requirements, we retain personal data for only as long as permissible under applicable data protection laws. InPlayer does retain personal data in compliance with applicable data protection laws, and additional sector-specific rules, as they may apply to InPlayer. 

What is the GDPR?

The General Data Protection Act (GDPR) is considered to be the most significant piece of European data protection legislation to be introduced in the European Union (EU) in 20 years and will replace the the 1995 Data Protection Directive. The European Payment Report reviled that the total cost for companies within the EU to reform due to the new regulation will land on a staggering 198 billion Euro.

The GDPR regulates the processing of personal data about individuals in the European Union and the European Economic Area including its collection, storage, transfer or use. Importantly, under the GDPR, the concept of “personal data” is very broad and covers any information relating to an identified or identifiable individual (also called a “data subject”).

It gives data subjects more rights and control over their data by regulating how companies should handle and store the personal data they collect. The GDPR also raises the stakes for compliance by increasing enforcement and imposing greater fines should the provisions of the GDPR be breached.

The GDPR enhances EU individuals’ privacy rights and places significantly enhanced obligations on organisations handling data.

In summary, here are some of the key changes to come into effect with the upcoming GDPR:

If you are a company outside the EU, this still affects you

The provisions of the GDPR apply to any organisation that processes personal data of individuals in the European Union, including tracking their online activities, regardless of whether the organisation has a physical presence in the EU.

If you have any questions, you may send them to

We use cookies to analyse our traffic. We also share information about your use of our site with our analytics partners. See details