i requested a refund from illegal casino, they refused first, after months, I came Back to them with this news, they overturn the decision and the sent me an email saying your request needs further review. i think there something going on
Under the General Data Protection Regulation (GDPR), a company has one month from the date they receive your request to respond. This response period can be extended by an additional two months if the request is particularly complex, but they must inform you of this extension within the first month, along with an explanation of the delay.
What the company needs to do to acknowledge your request:
• Acknowledge Receipt: The company must acknowledge that they have received your request. This is usually done by sending you a confirmation that they are processing your request.
• Respond in the Required Manner: The company must provide the information you're requesting in a clear and understandable format. If it's a request for personal data, they are required to provide it (e.g., via a copy of your data).
• Explain Why, if Denied: If they cannot fulfill the request or if there are any grounds to refuse (e.g., excessive requests, or if the request is manifestly unfounded), they must inform you and explain why.
If the company ignores the request:
• Failure to Respond: If the company does not respond within the one-month period (or extended period), they are in breach of GDPR requirements.
• Complaint to Supervisory Authority: You can file a complaint with the relevant data protection authority (DPA) in your country. The DPA can investigate the company and take enforcement action if necessary.
• Legal Action: In some cases, you may also have the right to take legal action against the company for non-compliance.
It’s important to keep a record of your request and any communication with the company. If they ignore it, having this documentation will support your case when filing a complaint or pursuing further action.
You said:
In uk
ChatGPT
In the UK, the rules for responding to a GDPR request are the same as outlined by the General Data Protection Regulation (GDPR), but they are enforced under the UK Data Protection Act 2018, which incorporates GDPR principles into UK law following Brexit.
How long does a company have to respond to a GDPR request in the UK?
• One Month: The company must respond to your request within one month of receiving it. This is the same as the EU's GDPR. The response time can be extended by an additional two months if the request is complex . They must inform you of the extension and the reason for it within the first month.
What should a company do to acknowledge your request?
• Acknowledge the Request: The company must acknowledge receipt of your request, usually in the form of a confirmation email or letter. This should happen as soon as they receive it, but no later than within a reasonable period after receiving the request.
• Respond in a Transparent Way: They must provide the information you requested or explain why they cannot provide it. For example, if you're requesting access to your personal data, they should give you a copy of the data or explain why it’s being withheld (if applicable).
• Explanation for Denial (if applicable): If they cannot fulfill your request (e.g., if it’s excessive, unfounded, or they have other legitimate reasons for refusal), they must explain the reasons why.
What happens if they ignore the request in the UK?
• Failure to Respond: If the company does not respond within the required time one month, they are in violation of UK data protection law.
• File a Complaint: You have the right to complain to the Information Commissioner's Office (ICO), the UK's data protection authority. The ICO can investigate the company and take enforcement actions, including fines or other sanctions.
• Legal Action: If necessary, you may be able to seek legal action against the company for failing to comply with the request, potentially claiming compensation if the violation caused you harm.
The ICO provides guidance and mechanisms for individuals to file complaints, and they are responsible for upholding data protection laws in the UK.
It's important to keep a record of your initial request and any communication with the company to strengthen your case if you need to escalate the issue.
.
You said:
Is it same in Eu
ChatGPT said:
Yes, the rules for handling a GDPR request in the EU are generally the same as in the UK, but there are a few differences related to enforcement and oversight because the UK is no longer part of the EU.
Key Points for GDPR Requests in the EU:
• One-Month Response Period: Under GDPR, companies in the EU must respond to your request within one month of receiving it. This is the same as in the UK. The company can extend this period by an additional two months if the request is complex or if there are a large number of requests, but they must inform you of the extension and reason within the first month.
• Acknowledging the Request:
• Confirmation of Receipt: The company should acknowledge your request as soon as possible after receiving it (usually within a few days).
• Clear Response: They must respond in a clear, accessible format, and provide the information or take the action requested, or explain why they cannot. For instance, if you're requesting access to your personal data, they must provide it, or give a reason for any refusal.
• Failure to Respond:
• If a company in the EU fails to respond within the one-month period (or extended period), they are in breach of the GDPR.
• File a Complaint with the Supervisory Authority: You can file a complaint with the supervisory authority in your country (e.g., the CNIL in France, BfDI in Germany, or the relevant data protection authority in any EU member state). They can investigate the company's non-compliance.
• Legal Action: You may also have the right to pursue legal action if the company’s violation of GDPR has caused you harm.
Differences Between the EU and the UK:
• Enforcement:
• In the EU, the GDPR is enforced by the relevant national data protection authorities (e.g., CNIL in France, ICO in the UK prior to Brexit, etc.). These authorities cooperate under the European Data Protection Board (EDPB).
• In the UK, the Information Commissioner’s Office (ICO) enforces data protection laws.
• Post-Brexit Changes:
• Since Brexit, the UK has its own data protection regime based on GDPR (but incorporated into UK law as the Data Protection Act 2018). However, the UK is no longer part of the EU's data protection framework, meaning it doesn't fall under the jurisdiction of the EU's data protection authorities anymore.
• The EU authorities, on the other hand, continue to oversee and enforce GDPR within EU member states.
In Summary:
The process for handling GDPR requests is very similar between the EU and the UK in terms of timing and the responsibilities of the company. The main differences come down to enforcement and the authority that you can approach if the company fails to comply
That is good then it worked !
Ok I will wait and see how my case goes first I may have won them anyway thankyou
Yes, I believe this is part of a much larger operation. It's odd how there's so much inconsistency among the banks regarding Visa and Mastercard. Some people are declined, while others aren’t. It just doesn’t add up.
Any updates from Destream? Anyone refunded? Have you reported them to the Cyprus police? I've done that but they are asking me to report them to the UK authorities first.
What about Mobilum (atlamp, monramp, fatamp, faramp)?
Its concerning the ongoing issue of illegal online casinos being able to process transactions through major payment networks like Visa and Mastercard, despite numerous warnings and regulations. It seems like there are serious gaps in enforcement, and despite efforts to curb this activity, these casinos continue to operate and thrive. I came across a Guardian article published yesterday, discussing this issue, and it's clear that more needs to be done to hold these financial institutions accountable. Here’s the link for further reading.
https://www.theguardian.com/society/2025/mar/09/mastercard-and-visa-linked-to-gambling-sites-accused-of-scamming-uk-customers
Which casino?
Gransino
https://www.theguardian.com/society/2025/mar/09/mastercard-and-visa-linked-to-gambling-sites-accused-of-scamming-uk-customers
It's starting guys
How did you get it from Webmosac? I’ve sent them an email but not had anything back other than them looking into the transactions
Hopefully a turn in the tide, if it's making mainstream news then clearly it's happening a lot more than we thought. I'd urge everyone to make a complaint to the UKGC about the casinos they have used, if they receive multiple complaints then these casinos could have their hands forced into issuing refunds etc
Chase are up there with the worst customer support i've dealt with, and honestly ombudsman is 50/50, they gear their response to complaints towards the bank and customer, very little in regards to the illegal casinos is taken into consideration unless the bank ignores evidence of illegal activity outright
Santeda did receive a huge fine from the spanish authorities a few years back alongside fines from swedish and other authorities, could be something to do with that.
Whats the point in ukgc when this is what I'm greeted with when I want to make a complaint in other words what can we complain about if not what's on this list the list is what they dont deal with. 🙄
I read that they haven't paid a penny towards it either.
Go via their email rather than the online form, plus if you mention they're unlicensed and offering services in the UK, that directly violates the law, which means they can go after them. If we don't report these sites for their criminal activities, they're just going to continue unchecked.
UKGC Email: info@gamblingcommission.gov.uk
Where did you read that?
I think monzo may top the list. It makes you question things especially when they earn money from the fees involved during the transactions of these illegal casinos.
Cursos profissionais educacionais gratuitos para funcionários de casinos online vocacionados para as melhores práticas do setor, melhoria da experiência do jogador e uma abordagem justa ao jogo.
Lançamos esta iniciativa com o objetivo de criar um sistema global de autoexclusão, que permitirá que os jogadores vulneráveis bloqueiem o seu acesso a todas as oportunidades de jogo online.
