VegasNow Casino Privacy Policy – Australia

VegasNow Casino (“the Company”, “we”, “our”, “us”) is committed to maintaining the confidentiality and security of personal data submitted by users in Australia. This Privacy Policy explains the types of data we collect, the reasons for data collection, the legal grounds for processing, the methods of data storage and protection, and the rights available to users under the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). By accessing or using our platform, including the website, mobile applications, and customer support channels, you consent to the practices described herein. We encourage you to read this policy thoroughly to understand how your personal information will be handled. Your continued use of our services indicates acceptance of the terms outlined in this policy. If you disagree with any aspect of this policy, please discontinue use of our services immediately or contact us for clarification.

Scope of Policy

This Privacy Policy applies to all personal data collected or processed when individuals access or use any of our services in Australia. It covers data collected through the website, mobile applications, customer support interactions, live chat, email, and any other platform where personal data may be provided. This policy addresses both personally identifiable information (PII) and non-personal data collected from users. It governs the collection, use, disclosure, storage, and disposal of personal data. If you are located outside Australia, please note that your data may be transferred to and processed in jurisdictions with different data protection laws. Where international transfers occur, we implement safeguards to ensure appropriate protections. This policy does not apply to third-party websites linked from our platform. We recommend reviewing third-party privacy policies before providing personal information.

Information We Collect

Online Casino VegasNow collect various categories of information to operate the platform effectively and comply with legal obligations. The information collected includes but is not limited to:

  1. Personally Identifiable Information (PII): data you provide when registering or updating an account, such as full name, date of birth, residential address, email address, phone number, and government-issued identification documents (e.g., driver’s licence, passport). Financial information, including payment card details or bank account data, is also collected for processing transactions.
  2. Technical and Usage Data: data automatically collected from your device or browser when you interact with our platform. This includes IP address, device identifiers, operating system, browser type, referral URLs, session duration, page views, and clickstream data. Cookies, web beacons, and other tracking technologies capture this information to improve site performance and user experience.
  3. Transactional Data: details of deposits, withdrawals, game activity, bet histories, winnings, and losses. We also record bonus redemptions, wagering activity, and account balance changes. These records serve audit, security, and responsible gambling monitoring.
  4. Communication Data: records of communications between you and our customer support, including email exchanges, live chat transcripts, and call recordings. Feedback, inquiries, complaints, or survey responses provided by you also constitute communication data.

Collecting this information enables us to deliver services, verify identities, prevent fraud, and comply with regulatory requirements. It also allows us to customise and enhance user experiences based on behavioural insights.

Purpose and Legal Basis for Processing

We process personal data for operational, regulatory, and business purposes. The main purposes and corresponding legal bases are:

  • Account Management and Service Delivery: processing necessary to perform contractual obligations, including account registration, identity verification, deposit and withdrawal processing, and facilitating gameplay. Without this processing, we cannot deliver our services.
  • Legal and Regulatory Compliance: processing required to comply with Australian laws and regulations, including anti-money laundering (AML), counter-terrorism financing (CTF), and responsible gambling obligations. We retain transaction records for a minimum of seven years as mandated.
  • Security and Fraud Prevention: processing based on our legitimate interests to protect users and the platform from fraud, money laundering, hacking attempts, and other unlawful activities. This includes monitoring transactional patterns and account activity for anomalies.
  • Analytics and Service Improvement: processing based on legitimate interests to analyse usage trends, improve platform performance, develop new features, and optimise promotional campaigns. Data is aggregated and anonymised where possible.
  • Marketing and Promotions: processing with your consent to send promotional offers, newsletters, and notifications about new games or features. Users may opt out of marketing communications at any time without affecting essential service notifications.

These legal bases ensure that we process personal data in compliance with the Privacy Act 1988 and uphold user rights under the APPs.

Cookies and Tracking Technologies

We use cookies, web beacons, and similar technologies to enhance platform functionality, track performance, and personalise user experiences. You may control cookie settings through your browser preferences or device settings. Disabling cookies may impact the ability to log in, place bets, or access certain features. The types of cookies we use include:

  • Essential Cookies: necessary for platform security and basic functionality, such as maintaining user sessions and ensuring secure account access.
  • Performance and Analytics Cookies: used to collect information about how users interact with our platform, including pages visited, time spent, and errors encountered. This data helps us identify and resolve issues and improve the user interface.
  • Functionality Cookies: allow us to remember user preferences, such as language selection, theme, and regional settings, to provide a more tailored experience.
  • Targeting and Advertising Cookies: enable us to deliver relevant marketing content and measure campaign effectiveness. They may also be used by third-party advertising partners to display ads based on your interests and browsing behaviour.

Refer to our Cookie Policy for detailed information on cookie types, purposes, and expiry periods. You can delete existing cookies or block new ones; however, some features may not function as intended if cookies are disabled.

Data Retention and Deletion

We retain personal data solely for as long as required to fulfil the purposes outlined in this policy or to comply with legal, regulatory, or contractual obligations. Once data is no longer needed, we securely delete or anonymise it. Standard retention periods include:

  1. Account registration and identity data: retained until account closure plus 7 years.
  2. Transactional records, including deposits, withdrawals, and betting history: retained for a minimum of 7 years per financial regulations.
  3. Communication records and support logs: retained for up to 3 years after resolution of the case.
  4. Cookie and technical logs: retained for periods ranging from 30 days to two years, depending on the cookie type and operational requirements.

Deletion protocols involve secure wiping or irreversible anonymisation to ensure data cannot be reconstructed. If you request deletion of personal data, we will comply unless retention is necessary for legal or regulatory compliance. Data that must be retained will be isolated and inaccessible for other purposes.

Data Security and Storage

We implement technical and organisational measures to protect personal information against unauthorised access, alteration, disclosure, or destruction. Security controls include:

  • Encryption of data at rest and in transit using industry-standard protocols.
  • Multi-factor authentication (MFA) for administrative access to internal systems.
  • Network firewalls and intrusion detection systems (IDS) to monitor and block suspicious activity.
  • Regular security assessments, vulnerability scans, and penetration testing by independent experts.
  • Role-based access controls to restrict data access to authorised personnel only.
  • Secure backup and disaster recovery procedures to ensure data availability and integrity.

Our servers are located within Australia or in jurisdictions that provide equivalent data protection standards. Despite these measures, no system is entirely immune to risk. We continuously review and update our security practices to address emerging threats.

Data Sharing and Disclosure

We may share personal data with external parties under the following circumstances:

  • Service Providers supporting core operations such as payment processing, identity verification, hosting, and customer support. These providers are contractually obligated to maintain confidentiality and protect data.
  • Regulatory and Law Enforcement Bodies when required by law, court order, or regulatory request. This includes anti-money laundering authorities, tax agencies, gambling regulators, and law enforcement.
  • Corporate Transactions involving mergers, acquisitions, or reorganisations. In such events, data may be transferred to successor entities under confidentiality agreements and subject to this policy or a substantially similar one.

Where third-party recipients are located overseas, we ensure adequate safeguards through contractual clauses and data transfer agreements. We do not sell personal data to marketing firms, brokers, or any unauthorised parties.

International Data Transfers

Your personal data may be transferred to jurisdictions outside Australia for processing or storage by our offshore service providers. Before any such transfer, we assess the legal frameworks and implement safeguards, including:

  • Standard contractual clauses approved by the Office of the Australian Information Commissioner (OAIC).
  • Binding corporate rules for intra-group transfers.
  • Encryption and access controls to protect data during transfer and processing.

By using our platform, you consent to the transfer of your data internationally under the protections described in this policy.

User Rights and Choices

Under the Privacy Act 1988, you have rights regarding how we handle your personal data. These include the right to:

  • Access: request confirmation whether we hold your personal data and obtain a copy of such data.
  • Correction: ask us to correct or update inaccurate or incomplete information.
  • Deletion: request deletion of personal data when it is no longer necessary for the purposes collected, subject to legal exceptions.
  • Restriction: request restriction of processing in specific circumstances, such as contesting accuracy or objecting to processing.
  • Withdrawal of Consent: withdraw consent for processing that relies on your previously granted consent, without affecting processing based on other legal grounds.
  • Data Portability: receive personal data in a structured, commonly used format when processing is based on consent or contract.

To exercise these rights, contact our Privacy Officer using the details below. We may require proof of identity to verify requests. We aim to respond within 30 days. If unsatisfied, you may lodge a complaint with the OAIC.

Direct Marketing and Opt-Out

We may use your contact information to send marketing communications about new games, promotions, and special offers, subject to your consent. You may opt out of marketing messages at any time by:

  • Clicking the unsubscribe link in email notifications.
  • Changing your preferences in account settings.
  • Contacting customer support or our Privacy Officer.

Even if you opt out of marketing, we may send you essential service messages related to your account, legal notices, and security alerts. Such communications are necessary for contract performance and legal compliance.

Children and Minors

This platform is intended only for individuals aged 18 years or older. We do not knowingly collect personal data from minors. If we discover that a user is under 18, we will promptly delete associated personal data and close the relevant account. If you believe we hold data of a minor, please contact our Privacy Officer immediately.

Changes to This Policy

We may update this Privacy Policy to reflect changes in legal requirements, business operations, or technological advancements. Material changes will be communicated through prominent notices on our platform or via email. The effective date will be updated accordingly. Continued use after changes indicates acceptance of the revised policy.

Providers