burger icon
Casiny Review Australia
Log In

Privacy Policy

This Privacy Policy explains how Casiny, operating through the website https://casiny-aussie.com (Casiny), collects, uses, discloses, and protects personal information of website visitors and users of our review and comparison services. It applies to all visitors, registered users (if applicable), subscribers to our communications, and any person who interacts with Casiny via casiny-aussie.com. By accessing or using casiny-aussie.com you acknowledge that you have read and understood this Privacy Policy. This Privacy Policy is effective from 1 January 2026 and supersedes any prior versions published on casiny-aussie.com.

Who We Are

Observe: The project information provided does not specify an incorporated operator entity, registered office, or company registration number. However, privacy law and best practice require that we identify a responsible entity and contact point.

Expand: Until a specific legal entity is designated, Casiny will describe itself as the operator of the website casiny-aussie.com and provide a primary contact channel, while clearly noting that certain corporate details are not yet specified. This avoids implying false registration data while still providing transparency and a clear communication path.

Reflect: Based on the above, we provide the following identity and contact information.

Operator of the Website

  • Service name: Casiny (operating under the brand "Casiny")
  • Website: https://casiny-aussie.com
  • Nature of service: Online informational and review service about online casinos, games and related products, targeted at users in Australia.
  • Operator / Controller: For the purposes of this Privacy Policy, references to "Casiny", "we", "us" or "our" mean the operator of casiny-aussie.com, acting as the data controller for personal information collected via casiny-aussie.com.
  • Legal address / registration: Not yet specified. When a specific legal entity and registered address are determined, this section will be updated and clearly marked with the new details.

Data Protection Contact

  • Data protection contact / responsible person: Data Protection Officer (DPO), Casiny
  • Email: [email protected] (primary and critically important contact for all privacy and data-protection-related queries)
  • Phone: Not specified. Please use email as the primary contact channel.
  • Postal / physical address: Not specified. Where a mailing address is designated, this policy will be updated accordingly.

Until further notice, all requests relating to this Privacy Policy, your personal data, or data-protection issues should be directed to [email protected].

What Personal Data We Collect

Observe: Operating an online gambling review site aimed at Australian users involves collection of contact, technical and behavioural data, even if Casiny is not itself taking bets. Industry standards also expect transparency about cookies, analytics and potential affiliate tracking.

Expand: We need to distinguish clearly between (a) data users provide directly; (b) data we collect automatically (logs, IP, device data); (c) optional marketing data; and (d) any data relating to links to third-party gambling operators. We must also clarify that we generally do not process full payment or identity data used at external casinos, except in limited scenarios (e.g. where a user reports an issue to us).

Reflect: The categories below describe, in a granular manner, the types of data Casiny may process.

Data You Provide Directly

  • Identification and contact details:
    • Full name (if you voluntarily provide it in forms, emails or account creation, if available)
    • Email address (e.g. when subscribing to newsletters, requesting support, or using contact forms)
    • Username or display name (for any community features, comments, or account-based tools, if implemented)
    • Optional contact details such as phone number, social media handle or messaging IDs if you choose to provide them to us.
  • Content of communications:
    • Messages, enquiries, complaints or feedback that you send to us by email or via any on-site form (if implemented).
    • Attachments or evidence you may provide (e.g. screenshots of casino transactions or correspondence with third-party operators) to help us review an issue.
  • Preference and subscription data:
    • Marketing and communication preferences (for example, whether you wish to receive promotional emails or only service communications).
    • Language, region and content preferences (where provided or inferred from your selections).

Technical and Usage Data

  • Technical identifiers:
    • IP address (which may indicate approximate location such as country or region)
    • Device identifiers (device type, operating system, browser type and version, screen resolution)
    • Log data (dates and times of visits, pages viewed, links clicked, referring URL, and error logs).
  • Usage and interaction data:
    • Behavioural data such as:
      • Pages and reviews you view on casiny-aussie.com
      • Time spent on pages and navigation patterns
      • Clicks on outbound links (e.g. to third-party casinos or affiliate partners)
      • Search queries used within our site.
    • Data from analytics and measurement tools (e.g. Google Analytics or similar technologies), generally collected in aggregated or pseudonymous form.

Payment and Financial Data

  • Data we generally do not collect: Casiny is a review and informational site and does not itself process deposits, withdrawals or bets. We do not directly collect or store:
    • Credit or debit card numbers
    • Bank account numbers
    • E-wallet credentials or other payment instrument details used at third-party casinos.
  • Limited financial-related data:
    • If you voluntarily share transaction information or payment evidence related to a third-party casino (for example in the context of a complaint or review request), we may process:
      • High-level transaction details (amount, date, currency, operator) as shown on screenshots or documentation you send us.
      • Any payment-related information visible on those documents (we strongly encourage you to redact sensitive payment details before sending them).

Behavioural and Profile Data

  • Behaviour on our site:
    • Interactions with rankings, filters, bonus tables and review tools.
    • Clicks on specific casino offers or promotions listed on casiny-aussie.com.
  • Interest segments (where applicable):
    • Inferred interests such as preferred game types (e.g. pokies, live casino, table games) based on your browsing behaviour on our site.
    • Inferred risk flags (e.g. unusually frequent visits to responsible gambling pages may indicate interest in support resources, which we may use only in aggregated or anonymised form to improve our content).

Cookies and Similar Technologies

  • Cookies: Small text files stored on your device that may contain an identifier and information about your device and visit. See the "Cookies & Tracking Technologies" section for more detail.
  • Tracking pixels / tags: Small code fragments integrated into our pages or emails to measure engagement, open rates or conversions.
  • Affiliate identifiers: When you click on outbound links to third-party casinos or partners, those links may contain identifiers or parameters assigned to Casiny by such partners. While such identifiers generally relate to our relationship with the partner rather than your identity, they may be associated with your activity by the third-party operator according to its own privacy policy.

Legal Basis for Processing

Observe: Australian privacy law (Privacy Act 1988 and the Australian Privacy Principles) requires lawful and fair collection and use of personal information, with transparency and, where appropriate, consent. The user instruction also refers to GDPR and Mexican law, so we align with these higher standards for clarity, without asserting that they apply directly in all cases.

Expand: We must articulate the main legal bases: consent, contract (or provision of requested services), legitimate interests, and legal obligations. Even though Casiny operates in a grey market context with respect to gambling in Australia, our data practices must still respect privacy and transparency expectations. We therefore treat these bases consistently with international best practice.

Reflect: Casiny relies on the following legal grounds to process personal data:

Consent

  • We obtain your prior consent where required, including for:
    • Sending you marketing communications (such as newsletters or promotional offers about casino bonuses, game launches or partner offers) by email or other electronic means.
    • Using non-essential cookies and similar technologies (e.g. certain analytics, advertising or personalisation cookies) that are not strictly necessary for operation of casiny-aussie.com.
    • Collecting and using certain optional information that you choose to provide (for example, detailed feedback or testimonials that include personal details, where we may ask for consent to publish or further use them).
  • You may withdraw your consent at any time, as described in the "Your Rights" section.

Performance of Services and User Requests

  • Even though Casiny is not a gambling operator and you do not enter into a wagering contract with us, we still rely on a "service provision" basis to:
    • Provide access to casiny-aussie.com and its features (e.g. loading pages, delivering content, responding to your queries).
    • Administer any account or user profile created on casiny-aussie.com (if account functionality is made available).
    • Respond to support requests, feedback or complaints that you submit to us.
    • Provide information and comparison tools in response to your searches and selections.

Legitimate Interests

  • We process personal data where necessary to pursue our legitimate business interests, provided that such interests are not overridden by your rights and interests. These legitimate interests include:
    • Operating and improving our website and services: including monitoring performance, fixing bugs, enhancing usability and developing new features.
    • Analytics and audience measurement: understanding how visitors use casiny-aussie.com in order to improve our content, rankings and presentation.
    • Fraud prevention and security: detecting and preventing abusive or fraudulent activities, such as bots, scraping, or misuse of affiliate offers; maintaining the integrity and security of casiny-aussie.com.
    • Defending and exercising legal rights: handling disputes, enforcing our terms of use, and responding to potential or actual legal claims or regulatory enquiries.
  • Where required by law or where a balancing test indicates that consent is more appropriate, we will ask for your consent instead of relying solely on legitimate interests.

Compliance with Legal Obligations

  • We may process your personal data where necessary to comply with applicable laws and regulations, which may include:
    • Record-keeping and reporting obligations under general commercial, tax or consumer protection laws.
    • Responding to valid requests or orders from law-enforcement authorities, regulators or courts.
    • Meeting data-protection obligations such as responding to your rights requests and documenting our handling of such requests.

Purpose of Processing

Observe: Users must understand why their data is processed, especially in a sensitive industry such as gambling and gambling-related services. While Casiny does not operate as a casino, the connection to gambling requires heightened transparency and responsibility.

Expand: The purposes span operational, improvement, marketing, security and compliance functions. Some purposes are strictly necessary (e.g. delivering pages), others are optional (e.g. targeted marketing). We need to distinguish clearly and explain how each purpose ties to the categories of data collected.

Reflect: Casiny uses personal data for the following purposes:

Providing and Operating Our Services

  • To operate, maintain and provide access to casiny-aussie.com, including:
    • Loading pages and content in response to your requests.
    • Customising the display of information to your device and browser.
    • Saving limited preferences or choices (e.g. language, previously viewed pages) to enhance usability.
  • To manage any user accounts, login features or personalised tools (if implemented), including authentication, password management and security controls.
  • To provide you with information that you request, such as reviews, guides, bonus information, or assistance in understanding casino terms.

Improving Our Services and User Experience

  • To analyse how visitors use casiny-aussie.com (for example, which pages are visited most, where users drop off, how they navigate between reviews) in order to:
    • Improve the structure, content and functionality of the site.
    • Enhance clarity and accuracy of reviews, guides and comparison tools.
    • Identify technical issues and ensure stable performance across devices.
  • To conduct A/B testing or similar experiments to refine user experience and content relevance, using aggregated or pseudonymous data wherever feasible.

Marketing and Communications

  • To send you newsletters, updates or promotional communications about:
    • New reviews, game guides or feature releases on casiny-aussie.com.
    • Selected offers and promotions from third-party casinos or partners, where we are permitted to do so.
  • To tailor marketing messages or recommendations to your interests where permitted (for example, highlighting new pokies or live-dealer content if your on-site behaviour indicates interest in those categories).
  • You can opt out of marketing communications at any time; see the "Your Rights" section.

Analytics and Reporting

  • To generate statistics about the performance of casiny-aussie.com and our marketing activities, including:
    • Visitor numbers, page views, click-through rates and conversion metrics.
    • Effectiveness of affiliate links and promotional placements (e.g. whether users click through to partner sites).
  • To create aggregated or anonymised reports that no longer identify individual users, used to support internal decision-making and potentially to share high-level insights with partners (without revealing identifiable personal data).

Fraud Prevention, Security and Integrity

  • To protect casiny-aussie.com, our users and our partners from abuse, including:
    • Monitoring for suspicious patterns (e.g. automated scraping, abusive behaviour, attempts to manipulate ratings or referral systems).
    • Enforcing technical and organisational security measures.
    • Investigating potential violations of our terms of use or policies.
  • To maintain the integrity of our reviews and rankings by detecting artificial or non-genuine traffic and preventing manipulation.

Legal and Regulatory Compliance

  • To comply with applicable laws, regulations and legal processes, including:
    • Responding to lawful requests and orders from authorities.
    • Maintaining records to demonstrate compliance with privacy and consumer-protection obligations.
    • Handling disputes or legal claims involving Casiny.

Disclosure & Sharing

Observe: Operating in a grey-market environment for Australian online gambling means Casiny must be especially clear about with whom data is shared and for what reasons. Although we are primarily an information site, we interact with a network of technical and commercial partners.

Expand: We must cover typical categories of recipients: service providers, hosting, analytics, affiliate and advertising partners, and regulators. We also need to set boundaries: we do not sell personal data as a standalone asset, and we share identifiable data only when necessary and with appropriate safeguards.

Reflect: Casiny shares personal data solely as described below and only to the extent necessary for the relevant purposes.

Service Providers and Technical Partners

  • We may engage trusted third parties to support the operation and functionality of casiny-aussie.com, including:
    • Website hosting and infrastructure providers
    • Content delivery networks (CDNs)
    • Analytics and audience-measurement providers
    • Email delivery and marketing automation services
    • Security and anti-fraud tools.
  • These service providers process personal data only on our documented instructions, as processors or equivalent under applicable law, are bound by confidentiality obligations, and are required to implement appropriate security measures.

Payment, Affiliate and Commercial Partners

  • Affiliate and advertising partners:
    • When you click on links to third-party casinos, betting sites or related offers listed on casiny-aussie.com, those third parties may collect information directly from you under their own privacy policies.
    • We may share aggregated or pseudonymised performance data with such partners (e.g. the number of clicks or sign-ups attributed to Casiny), but we do not share your contact details with them for their independent marketing purposes unless you explicitly consent.
  • Payment intermediaries:
    • Because Casiny does not process bets or payments on casiny-aussie.com, we do not share your financial data with payment processors in the course of gambling transactions.
    • In rare cases where you provide us with payment-related evidence for dispute-assistance purposes, we may share limited information with the relevant third-party operator or intermediary in order to understand or help clarify the issue, always minimising disclosure and encouraging you to redact sensitive details.

Regulators, Authorities and Legal Recipients

  • We may disclose personal data where required or permitted by law, including:
    • To law-enforcement authorities, courts, regulators or government bodies, if we believe disclosure is reasonably necessary to:
      • Comply with a legal obligation, order or request
      • Protect the rights, property or safety of Casiny, our users or the public
      • Investigate or prevent potential wrongdoing in connection with casiny-aussie.com.

Corporate Transactions

  • In the event of a planned or actual merger, acquisition, sale of assets, restructuring or similar corporate transaction involving Casiny, personal data may be transferred to one or more third parties as part of that transaction, subject to:
    • Appropriate confidentiality arrangements; and
    • Continued protection of your personal data consistent with this Privacy Policy, or notice to you of any material changes.

No Sale of Personal Data as a Standalone Asset

  • We do not sell personal information as a standalone commercial product. Any sharing of data with partners is limited to the purposes described in this Privacy Policy and is not intended to enable those partners to use your personal data for their own independent purposes without your consent.

International Transfers

Observe: The project context indicates a claimed but unverified connection with Curaçao licensing and an international online footprint. Hosting, analytics and email services are often provided from or via servers located outside Australia, including in the EU and US.

Expand: Even if Australian law is our main reference, it is industry best practice to explain that data may be stored or accessed in other jurisdictions and that we take steps to ensure reasonable protection. We should refer to standard contractual safeguards and recognised security standards, without overstating participation in frameworks that may not be formally adopted.

Reflect: Casiny implements the following approach to international data transfers:

Locations of Processing

  • Your personal data may be stored and processed in:
    • Australia (where we target our services and may host or mirror certain infrastructure)
    • Member States of the European Economic Area (EEA) and the United Kingdom
    • Other jurisdictions, including but not limited to the United States, where our hosting, analytics, content delivery and email service providers may maintain facilities.

Protection Measures for Cross-Border Transfers

  • When we transfer personal data across borders, we take reasonable steps to ensure that:
    • The recipient is subject to privacy obligations substantially similar to those that apply to us; and/or
    • We have in place appropriate contractual safeguards, such as standard contractual clauses or equivalent data-transfer terms, where required under relevant data-protection frameworks.
  • We also seek to partner with service providers that:
    • Maintain robust security certifications (e.g. ISO 27001, SOC 2, or comparable standards); and
    • Offer data-processing agreements that address international transfer and security obligations.

Third-Party Sites

  • When you access third-party casino or partner sites via casiny-aussie.com, any data you provide directly to those sites is subject to their own privacy policies and may be processed in their chosen jurisdictions (including Curaçao, EU, US or elsewhere). We encourage you to review each operator's privacy policy carefully, especially in the online gambling context.

Data Retention

Observe: Data should be kept only as long as necessary for the purposes for which it is collected, taking into account legal obligations, grey-market conditions, and the sensitivity of information linked to gambling activities.

Expand: We will define retention periods by category and explain criteria for deletion or anonymisation, balancing practical needs (e.g. analytics and security) with minimisation and user rights.

Reflect: Casiny applies the following retention practices:

General Principles

  • We retain personal data only for as long as reasonably necessary to:
    • Provide and improve casiny-aussie.com and related services;
    • Comply with legal, accounting, or reporting obligations; and
    • Resolve disputes and enforce our agreements.
  • Wherever possible, we anonymise or aggregate data so that it no longer identifies you, and we may retain such anonymised information without time limit.

Specific Retention Periods

  • Contact and account data:
    • Email address, name, username and related account data (if accounts exist) are generally retained for the duration of your relationship with us and up to five (5) years after the last recorded interaction or account closure, unless a shorter or longer period is required by law or is necessary for the establishment, exercise or defence of legal claims.
  • Communication records (emails, support requests, complaints):
    • Retained for up to five (5) years from the date of the last communication related to the relevant issue, to enable us to respond to follow-up queries, improve our services and demonstrate how we handled the matter.
  • Technical logs and security data:
    • Server logs, IP addresses and security-related data are typically retained for between six (6) months and two (2) years, depending on the nature of the data and our security needs. Certain logs relevant to security incidents may be kept for up to five (5) years.
  • Marketing and subscription data:
    • Information about your subscription to our newsletters or marketing lists is retained for as long as you remain subscribed and for up to two (2) years after you opt out, solely to maintain suppression lists and demonstrate compliance.
  • Analytics and behavioural data:
    • Analytics data linked to cookies and similar technologies is usually retained in identifiable or pseudonymous form for up to two (2) years, after which it is deleted or aggregated.

Deletion and Anonymisation Criteria

  • We delete or anonymise personal data when:
    • It is no longer necessary for the purposes for which it was collected;
    • You have exercised your right to erasure and no overriding legal basis for retention applies;
    • Applicable limitation periods for potential legal claims have expired; or
    • Retention is no longer justified in light of our legitimate interests.

Your Rights

Observe: Australian users expect clear explanations of their rights, and the instructions specifically request alignment with GDPR and Mexican privacy principles. While Casiny is primarily focused on the Australian market, adopting these higher standards enhances transparency and user protection.

Expand: We will describe rights of access, rectification, erasure, restriction, objection, data portability, and withdrawal of consent, along with timelines (30 days), cost-free handling, and procedural details. We will also reference, at a high level, that similar rights exist under many modern frameworks (e.g. EU GDPR and Mexican data-protection law), without asserting that Casiny is legally subject to each regime in all circumstances.

Reflect: Regardless of your location, Casiny endeavours to honour the following rights, subject to applicable law.

Right of Access

  • You may request confirmation of whether we process personal data about you, and, if so, obtain:
    • A copy of your personal data that we hold;
    • Information about the purposes of processing, categories of data, recipients, retention periods and your rights.

Right to Rectification

  • You may request correction of inaccurate personal data and completion of incomplete data. Where feasible, we will provide tools for you to update certain details directly (e.g. profile information).

Right to Erasure ("Right to be Forgotten")

  • You may request deletion of your personal data where:
    • The data is no longer necessary for the purposes for which it was collected;
    • You withdraw consent where consent is the legal basis and there is no other lawful ground for processing;
    • You object to processing based on legitimate interests and we do not have overriding legitimate grounds;
    • The data has been processed unlawfully; or
    • Deletion is required to comply with a legal obligation.
  • We may refuse or delay erasure where retention is required by law or necessary for the establishment, exercise or defence of legal claims.

Right to Restrict Processing

  • You may request that we restrict processing of your personal data, for example where:
    • You contest the accuracy of the data (for the period necessary for us to verify it);
    • Processing is unlawful and you prefer restriction instead of deletion;
    • We no longer need the data but you require it for legal claims; or
    • You have objected to processing based on legitimate interests (pending verification of overriding grounds).

Right to Object

  • You may object, on grounds relating to your particular situation, to processing of your personal data based on our legitimate interests, including profiling based on those interests. We will stop processing unless we demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or where processing is necessary for legal claims.
  • You may object at any time to the processing of your personal data for direct marketing, including profiling to the extent related to such marketing. In that case, we will cease marketing communications without undue delay.

Right to Data Portability

  • Where technically feasible and applicable, you may request:
    • A copy of personal data that you have provided to us in a structured, commonly used and machine-readable format; and
    • Transmission of that data directly to another controller where this is technically possible.

Right to Withdraw Consent

  • Where processing is based on your consent, you may withdraw that consent at any time, without affecting the lawfulness of processing carried out before withdrawal. After withdrawal, we will stop the relevant processing or apply alternative legal bases if available and communicated to you.

Procedures, Timeframes and Cost

  • How to exercise your rights:
    • Submit your request by emailing [email protected] with "Privacy Request" in the subject line and a clear description of your request.
  • Verification:
    • We may ask you to provide additional information to verify your identity before acting on your request, to protect your data from unauthorised access or changes.
  • Response timeframe:
    • We aim to respond to all valid requests within thirty (30) days of receipt. If your request is particularly complex or we receive a large number of requests, we may extend this period by a further sixty (60) days, in which case we will inform you of the extension and reasons.
  • Cost:
    • We will handle your requests free of charge, unless they are manifestly unfounded or excessive (for example, repeated requests). In such cases, we may charge a reasonable fee or refuse to act, as permitted by applicable law.

Cookies & Tracking Technologies

Observe: Cookies and tracking tools are central to analytics, affiliate attribution and personalisation in the online gambling and review ecosystem. Australian users must be informed about the types of cookies used and their control options.

Expand: We will categorise cookies (session/persistent, first/third-party; functional, analytics, advertising) and provide guidance on managing them through browser settings and, where applicable, on-site tools.

Reflect: By continuing to browse casiny-aussie.com, you agree to our use of cookies as described below, subject to your ability to manage preferences.

Types of Cookies We Use

  • Strictly necessary cookies:
    • Essential for the operation of casiny-aussie.com and enabling core functions such as page navigation, secure access and basic site features.
    • Typically session cookies that expire when you close your browser, though some may be persistent for a limited period.
  • Functional cookies:
    • Remember your choices and preferences (e.g. language or region settings).
    • Improve user experience without being strictly essential for the basic functioning of the site.
  • Analytics and performance cookies:
    • Collect information about how visitors use casiny-aussie.com (e.g. which pages are visited, time spent, errors encountered).
    • Used to improve the performance, content and design of our website.
    • May be set by us or by third-party analytics providers acting on our behalf.
  • Advertising and affiliate cookies:
    • Used to measure the effectiveness of our links to third-party casinos and partners (e.g. tracking conversions or sign-ups attributed to Casiny).
    • May also support, where implemented, the delivery of more relevant promotional content related to third-party offers.
    • Generally persistent and may be set by third parties under their own privacy policies.

Session vs. Persistent Cookies

  • Session cookies: Stored temporarily while you browse our site and deleted when you close your browser.
  • Persistent cookies: Remain on your device for a specified period or until deleted by you. Used, for example, to remember preferences or recognise repeat visits.

Third-Party Cookies and Tracking

  • Some cookies and tracking technologies on casiny-aussie.com are provided by third parties, including:
    • Analytics services (e.g. to measure traffic and usage patterns);
    • Affiliate networks and partner casinos (to track referrals and conversions);
    • Advertising networks (where implemented) that may use cookies to deliver relevant ads or measure campaign performance.
  • These third parties may combine information collected on casiny-aussie.com with data from other sites where they operate. Their use of data is governed by their own privacy policies and cookie notices, which we recommend you review.

Managing and Disabling Cookies

  • Browser settings:
    • You can usually configure your browser to:
      • Accept all cookies;
      • Reject all cookies;
      • Delete cookies; or
      • Notify you when a cookie is set.
    • Instructions for common browsers can be found via their "Help" menus or official support pages.
  • Site-specific controls:
    • Where available, we may offer an on-site cookie banner or preference centre that allows you to consent to or withdraw consent from categories of non-essential cookies.
  • Impact of disabling cookies:
    • Disabling or blocking certain cookies may affect the functionality or performance of casiny-aussie.com. Some features may be unavailable or may not operate as intended.

Data Security

Observe: Users expect robust protection of their data, particularly in sectors related to gambling where privacy and security concerns are elevated. Even though Casiny does not process wagers, the same standards should be applied to personal and behavioural data.

Expand: We will describe technical, organisational and procedural measures, referencing TLS encryption, access controls, audits, staff training and incident management. We will note adherence to recognised security practices and our expectation that key providers maintain certifications like ISO 27001 or SOC 2, without misrepresenting our own certification status.

Reflect: Casiny takes reasonable and proportionate steps to safeguard your personal data.

Technical Measures

  • Encryption in transit:
    • Data exchanged between your browser and casiny-aussie.com is protected using industry-standard Transport Layer Security (TLS 1.2 or higher), helping to prevent interception or tampering while data is in transit.
  • Encryption at rest (where applicable):
    • Where we store personal data in databases or file systems, we work with hosting and infrastructure providers that offer encryption at rest or equivalent protective measures, particularly for backups and storage of sensitive information.
  • Access controls:
    • Access to systems and data is restricted to authorised personnel who require it for business purposes.
    • Authentication mechanisms such as strong passwords and, where appropriate, multi-factor authentication (MFA) are implemented.
  • Network and application security:
    • Use of firewalls, security configurations and monitoring tools to detect and mitigate common threats.
    • Regular software updates and patching to address known vulnerabilities.

Organisational and Procedural Measures

  • Least-privilege and need-to-know principles:
    • Employees and contractors are granted access only to the information and systems necessary for their specific duties.
  • Staff awareness and training:
    • Personnel who handle personal data are expected to follow internal guidelines on confidentiality, data protection and information security.
  • Vendor management:
    • We seek to engage service providers that adhere to recognised security standards and offer contractual assurances (including data-processing and security obligations).
    • Where relevant, we review publicly available information on their security frameworks and certifications (for example, ISO 27001 or SOC 2) or equivalent safeguards.

Incident Response

  • We maintain processes to:
    • Detect and investigate suspected data breaches or security incidents.
    • Mitigate harm and restore secure operations as quickly as reasonably possible.
    • Assess whether notification to affected users and/or authorities is required under applicable law, and, where required, notify without undue delay.

Limitations

  • While we endeavour to protect personal data, no method of transmission or storage is entirely secure. We cannot guarantee absolute security, but we continuously review and improve our safeguards in line with evolving standards and threats.

Complaints & Contacts

Observe: Users should know how to raise concerns directly with Casiny and, if unsatisfied, how to escalate to supervisory authorities. While the primary regulatory framework is Australian, the instructions reference Mexican and EU authorities; we will therefore offer information on how to approach relevant regulators if needed, without implying that all foreign authorities have jurisdiction in every case.

Expand: We will describe a step-by-step complaint procedure, timelines and contact methods, and give examples of supervisory bodies that users may contact, depending on their location and circumstances.

Reflect: Casiny encourages users to contact us first so that we can address concerns promptly and constructively.

Contacting Casiny

  • Primary contact for privacy and complaints:
  • Preferred method: Email, with a detailed description of your concern and any supporting information.

Internal Complaint Procedure

  1. Submission: Send your complaint or enquiry to [email protected], indicating that it is a privacy or data-protection matter.
  2. Acknowledgement: We aim to acknowledge receipt of your complaint within five (5) business days.
  3. Assessment: We will review your complaint, gather relevant facts, and, where necessary, contact you for further information or clarification.
  4. Response: We will provide a substantive response as soon as reasonably possible and, in any event, within thirty (30) days from receipt of your complete complaint, unless a longer period is permitted by law due to complexity. If additional time is needed, we will inform you of the extension and reasons.
  5. Follow-up: If you are not satisfied with our response, you may request further clarification or propose alternative resolutions. We will consider such input in good faith.

Escalation to Supervisory Authorities

  • Australia:
    • If you believe we have breached Australian privacy obligations and we have not resolved your complaint to your satisfaction, you may contact:
      • Office of the Australian Information Commissioner (OAIC)
      • Website: https://www.oaic.gov.au
      • Complaint forms and contact details are available on the OAIC website.
  • European Union / EEA (where applicable):
    • If you are located in the European Union or EEA and believe your data-protection rights under the GDPR have been infringed, you may also lodge a complaint with your local data-protection authority. Contact details are available via the European Data Protection Board (EDPB) website.
  • Other jurisdictions (including Mexico):
    • Residents of other countries may have rights to complain to their national data-protection or consumer-protection authorities. You should consult the relevant authority in your jurisdiction for guidance and contact details.

Updates

Observe: Privacy practices change over time due to legal, technical and business developments, particularly in dynamic sectors such as online gambling and affiliate marketing. Users must be informed about how updates to this Policy will be communicated.

Expand: We will specify how we notify users (email, banners, dashboard alerts), how we manage version control and what advance notice is given for material changes, together with options to object or discontinue use.

Reflect: Casiny maintains a process for updating this Privacy Policy and informing users in a transparent, timely manner.

How We Update This Policy

  • We may modify or update this Privacy Policy from time to time to reflect:
    • Changes in our services, technologies or business operations;
    • Changes in applicable laws or regulatory guidance; or
    • Feedback from users or supervisory authorities.
  • Each version of the Policy will be identified by the "Last updated" date at the bottom of the document.

Notification of Changes

  • Non-material changes:
    • For minor updates that do not materially affect your rights or the way we process personal data, we may update the Policy without special notice, other than changing the "Last updated" date.
  • Material changes:
    • For significant changes that materially affect your rights or our processing practices (for example, introduction of new categories of personal data, new purposes, or significant changes in international transfers), we will provide additional notice by:
      • Displaying a prominent notice on casiny-aussie.com (e.g. banner or pop-up); and/or
      • Sending an email notification to users who have provided an email address and agreed to receive such notices.
    • We will provide such notice at least thirty (30) days before the changes take effect, where feasible, to give you an opportunity to review the updated terms.

Your Options in Case of Changes

  • If you do not agree with the updated Privacy Policy, you may:
    • Cease using casiny-aussie.com; and
    • Contact us at [email protected] to exercise any relevant rights, including deletion of your data where applicable.
  • Continued use of casiny-aussie.com after the effective date of an updated Privacy Policy will be deemed acceptance of the changes, to the extent permitted by applicable law.

Last updated: January 2026