Privacy Policy

Last updated: 4 June 2026

This Privacy Policy explains how racingplacebetting.com (FrameCourse, the “Site”, “we”, “us”) collects, uses and protects information when you visit the Site. We operate under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, with regulatory oversight provided by the Information Commissioner’s Office (ICO).

FrameCourse is an editorial publication on UK horse racing place and each-way betting markets. The Site does not offer betting services, does not accept wagers and does not process customer accounts. Our processing of personal data is limited to what is strictly necessary to operate a content site and to understand how our editorial pages are being read.

Who is the data controller

The data controller for personal data processed through racingplacebetting.com is FrameCourse, the editorial team responsible for publishing on this Site. Any privacy queries should be directed in writing to the postal or email address published in the Site’s Legal Information page where contact channels are listed. Where no postal address is published, queries may be raised by email through the address shown in the Legal Information page.

What personal data we collect

We collect three categories of data. First, technical data automatically transmitted by your browser whenever you load a page: IP address, browser type and version, operating system, the referring URL, the URLs of the pages you view on the Site, and timestamps. Second, analytics data collected when our analytics provider sets a cookie or similar identifier in your browser: a randomised visitor identifier, page paths, session duration, screen size, country-level geolocation derived from IP. Third, voluntary data: any information you choose to submit through email correspondence with us, such as a reader query or a correction request.

We do not collect special-category data (health, religion, sexuality, political opinion, biometrics). We do not collect financial data. We do not run accounts, logins or registered profiles. We do not knowingly collect data from children under 18; the Site’s topic and 18+ responsible-gambling notices make clear that it is intended for adult readers.

Why we process this data and the legal basis

Technical data is processed for the legitimate interest of operating the Site securely, identifying technical errors, defending against abuse (such as scraping or denial-of-service attempts) and maintaining server logs. The legal basis under UK GDPR Article 6(1)(f) is legitimate interest. Analytics data is processed for the legitimate interest of understanding readership patterns and improving editorial coverage. Where our analytics setup uses cookies that are not strictly necessary, we rely on your consent under the Privacy and Electronic Communications Regulations (PECR); see our Cookie Policy for detail on opt-in mechanics.

Email correspondence is processed for the legitimate interest of answering your query. Where you ask us to publish a correction or right of reply, the legal basis is consent.

How long we keep your data

Server logs containing technical data are retained for up to ninety days, after which they are automatically rotated and deleted. Analytics data is retained at the provider level for up to twenty-six months in line with default settings; we do not retain copies outside the provider’s environment. Email correspondence is kept for as long as the editorial matter remains open, and then archived for a maximum of twelve months before deletion. Backup copies of the Site may contain residual personal data and are rotated on a thirty-day cycle.

Sharing data with third parties

We do not sell personal data. We do not share data with advertisers. We do not run behavioural advertising. We use a limited set of service providers strictly to operate the Site: a hosting provider that processes server logs on our behalf as a data processor under a UK-GDPR-compliant data processing agreement; an analytics provider that processes pseudonymised page-view data; a content delivery network that processes IP addresses to route requests efficiently. All providers operate within the UK or the European Economic Area, or under standard contractual clauses approved by the ICO where data is transferred outside that area.

We may disclose personal data to law-enforcement authorities or courts where required by a valid legal order under UK law, and we will challenge any request that appears overbroad or unlawful.

International transfers

Where any service provider processes your data outside the UK or the European Economic Area, the transfer is governed by the UK International Data Transfer Agreement or by Standard Contractual Clauses adopted by the European Commission and approved for UK use, supplemented by transfer impact assessments. We do not transfer data to jurisdictions without a recognised adequacy decision unless those safeguards are in place.

Your rights as a UK reader

Under the UK GDPR you have the right to request access to the personal data we hold about you, to ask for inaccurate data to be corrected, to ask for your data to be erased where there is no overriding lawful reason to keep it, to restrict or object to processing, and to receive your data in a portable format. You also have the right to withdraw consent at any time where consent is the legal basis for processing, and the right to lodge a complaint with the Information Commissioner’s Office at ico.org.uk.

Because we do not run reader accounts, in most cases the only personal data we hold about you is contained in server logs and analytics records associated with a randomised identifier. We will work with you in good faith to identify that data where you make a subject-access request.

Cookies and analytics

Cookies and similar technologies are covered separately in our Cookie Policy. Strictly necessary cookies (session, security) are set without consent. Analytics cookies are loaded only after your explicit consent through the on-page banner, and your choice is recorded for twelve months. You can withdraw cookie consent at any time through the same banner.

Security

The Site is served over HTTPS with up-to-date TLS configuration. Administrative access to the hosting environment is protected by multi-factor authentication. We do not store personal data in unencrypted form. We do not run user-generated content or forums on the Site, which removes a significant category of personal-data risk.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in law, in our service providers or in the way the Site operates. The “last updated” date at the top of the page shows the date of the most recent revision. Material changes will be flagged on the Site for at least thirty days after publication.

Contact

Privacy queries, subject-access requests and complaints should be sent in writing to the contact channels published on the Legal Information page of this Site. Where no contact channel is published, you retain the right to raise a complaint directly with the Information Commissioner’s Office (ico.org.uk).