Privacy Policy

This Privacy Policy outlines how casino-days-new-zealand ("we", "us", "our"), accessible exclusively via casino-days-nz.com, collects, uses, discloses, and protects your personal information. It applies to all players and website visitors in New Zealand who interact with our services. The Policy reflects our commitment to compliance with New Zealand privacy law, industry standards, and international best practices. Effective date: 6 November 2025.

Who We Are

OBSERVE: Casino-days-new-zealand operates under the brand casino-days-nz.com, managed by White Star B.V., a company registered in Curaçao, with legal details and contacts provided for transparency and accountability.

• Legal Operator: White Star B.V.
• Legal Address: Korporaalweg 10, Willemstad, Curaçao
• Company Registration Number: 153150
• Gaming License (Curacao): OGL/2023/159/0076, valid through 2025, issued by the Curacao Gaming Control Board (GCB)
• Contact for Data Protection:
• Email: [email protected] (Data Protection Officer / DPO)
• Website: https://casino-days-nz.com

REFLECT: All privacy-related queries must be directed to the above contacts to ensure lawful and timely processing.

What Personal Data We Collect

OBSERVE: We gather personal and technical information essential for providing regulated gambling services, fraud prevention, and compliance with NZ and international law.

• Personal Identification Data: Full name, date of birth, gender, nationality, residential address, email, phone number
• Account & Transaction Data: Username, password (encrypted), deposit and withdrawal history, betting activity, account balances
• Payment Data: Credit/debit card details, e-wallet and bank account information, payment references
• Technical Data: IP address, device type, browser version, operating system, access timestamps, device identifiers
• Behavioral Data: Betting history, game preferences, clickstream data, session logs, site navigation patterns
• Cookies & Tracking Technologies: Session cookies, persistent cookies, third-party analytics and advertising cookies
• Compliance Data: Verification documents for age, identity, source of funds (KYC/AML requirements)

REFLECT: The collection of these data categories is necessary to comply with regulatory obligations and to deliver a secure, personalized user experience.

Legal Basis for Processing

OBSERVE: Casino-days-new-zealand processes data on casino-days-nz.com in accordance with NZ law, international standards, and contractual necessity.

1. User Consent: We request explicit consent for marketing communications, cookies, and certain processing purposes. Users may withdraw consent at any time.
2. Contractual Necessity: Data is processed to establish, manage, and fulfill player accounts, execute transactions, and provide support services.
3. Compliance with Legal Obligations: Processing is required for anti-money laundering (AML), Know Your Customer (KYC), age verification, and reporting to regulatory authorities.
4. Legitimate Interests: We process data for fraud prevention, security monitoring, analytics, and service improvement, with appropriate safeguards applied.

REFLECT: These legal bases are rigorously assessed to ensure lawful, fair, and transparent data handling for all NZ users.

Purpose of Processing

OBSERVE: We process personal information for the following clearly defined, lawful purposes:

• Service Provision: To register and maintain player accounts, verify identities, manage deposits/withdrawals, and facilitate gameplay.
• Compliance: To meet all regulatory requirements including KYC, AML, and responsible gambling mandates.
• Customer Support: To respond to queries, resolve issues, and provide personalized assistance.
• Marketing & Promotions: To offer tailored promotions, newsletters, and service updates (with user consent).
• Analytics & Service Improvement: To analyze usage, improve website functionality, and enhance user experience.
• Fraud Detection & Security: To protect users and systems from fraudulent activity and ensure account integrity.

REFLECT: Each purpose is strictly limited to what is necessary for legitimate and regulatory-compliant operation within NZ.

Disclosure & Sharing

OBSERVE: Casino-days-new-zealand discloses personal data in accordance with legal and contractual obligations, always ensuring appropriate safeguards.

• Payment Processors & Financial Partners: To process deposits, withdrawals, and verify payment methods.
• Service Providers & IT Vendors: For hosting, technical support, analytics, marketing, and customer management; subject to confidentiality agreements.
• Regulatory Authorities: To comply with legal and reporting requirements (e.g., Curacao GCB, NZ authorities as applicable).
• Affiliates & Marketing Partners: For promotional activities, only with explicit user consent when required.
• Advertising Networks: Limited sharing for targeted advertising, strictly with consent and adherence to privacy controls.
• Corporate Transactions: In the event of mergers, acquisitions, or asset transfers, with notification to users and continued data protection.

REFLECT: Data is never sold to third parties. All disclosures are governed by data protection agreements to ensure ongoing confidentiality and security.

International Transfers

OBSERVE: As an international operator, casino-days-new-zealand may transfer data outside New Zealand, including to Curaçao, Canada, Cyprus (partners), and other relevant jurisdictions.

1. Data Destination Countries: Data may be processed in Curaçao (headquarters), Canada (clients), Cyprus (partners), and other countries as required for service provision.
2. Protection Measures: All transfers are secured using:
   • Standard Contractual Clauses (SCCs) where required
   • Binding corporate rules and data processing agreements
   • Industry-standard encryption and access controls
3. Legal Compliance: Transfers comply with NZ privacy law, ensuring equivalent protection regardless of data location.

REFLECT: Users are notified of international data transfers and have the right to request further information or object where legally permitted.

Data Retention

OBSERVE: Data is retained only as long as necessary for legal, regulatory, and operational purposes, with clear retention schedules.

• Personal Account Data: Retained for up to 5 years after account closure or last activity, in accordance with AML and regulatory requirements.
• Transactional & Compliance Data: Retained for 5 years from transaction or verification, to meet reporting and audit obligations.
• Marketing Data: Retained until consent is withdrawn or no longer relevant, with periodic review for accuracy.
• Cookies & Analytics Data: Retention periods vary by cookie type (see "Cookies & Tracking Technologies" below).

Deletion Criteria: Data is deleted upon user request, account closure, expiration of statutory periods, or when no longer required for processing purposes, subject to regulatory constraints.

REFLECT: All deletion requests are processed promptly, barring overriding legal requirements.

Your Rights

OBSERVE: Casino-days-new-zealand upholds all user rights under the New Zealand Privacy Act, GDPR equivalence, and international best practices.

1. Right to Access: You may request a copy of your personal data held by casino-days-nz.com at any time.
2. Right to Rectification: You can correct inaccurate or incomplete data via your account dashboard or by contacting support.
3. Right to Erasure ("Right to Be Forgotten"): You may request deletion of your data, subject to regulatory retention requirements.
4. Right to Restrict Processing: You may request limits on how your data is processed, especially during dispute resolution.
5. Right to Object: You can object to processing for direct marketing or based on legitimate interests.
6. Right to Data Portability: You may request your data in a portable format for transfer to another provider.
7. Right to Withdraw Consent: You may withdraw consent for marketing or certain processing activities at any time, without penalty.
8. Procedural Steps:
   • Submit your request via email to [email protected]
   • Requests are processed within 30 days, free of charge, unless manifestly unfounded or excessive
   • Verification of identity may be required for your protection

REFLECT: These rights are supported by transparent procedures and robust accountability mechanisms. For NZ residents, additional protections under the Privacy Act 2020 apply. If your rights are not upheld, you may escalate complaints to the NZ Office of the Privacy Commissioner.

Cookies & Tracking Technologies

OBSERVE: We use cookies and similar tracking technologies on casino-days-nz.com for essential operations, analytics, and marketing.

• Session Cookies: Temporary cookies that enable secure login and navigation; deleted when you close your browser.
• Persistent Cookies: Remain on your device to remember preferences and improve user experience.
• Third-Party Cookies: Deployed by analytics and advertising partners to measure performance and deliver relevant ads, subject to consent.
• Purposes:
  • Functionality (language settings, login state)
  • Analytics (usage statistics, error tracking)
  • Advertising (personalized offers, retargeting with consent)
• Management: You can manage or disable cookies via browser settings or our on-site privacy controls. Blocking some cookies may affect site functionality.

REFLECT: Full details and management tools are available in our Cookie Policy.

Data Security

OBSERVE: Casino-days-new-zealand implements comprehensive security measures on casino-days-nz.com to protect personal data from unauthorized access, loss, or misuse, in alignment with NZ and international standards.

1. Encryption: All data is encrypted in transit using TLS 1.2 or higher and at rest using advanced cryptographic protocols.
2. Access Controls: Role-based access, multi-factor authentication, and strict user authentication for all systems and personnel.
3. Physical & Technical Safeguards: Secure data centers, firewall protection, and intrusion detection systems.
4. Regular Security Audits: Annual penetration testing, vulnerability assessments, and continuous monitoring.
5. Staff Training: Ongoing employee education on data protection, privacy risks, and incident response.
6. Incident Response: Documented procedures for breach detection, notification, and remediation, including regulatory reporting within statutory timeframes.
7. Compliance Standards: Alignment with ISO 27001, SOC 2, and industry best practices.

REFLECT: Security measures are regularly reviewed and updated to address emerging threats and regulatory developments.

Complaints & Contacts

OBSERVE: Casino-days-new-zealand provides multiple channels for privacy-related questions and complaints to ensure user rights are respected.

• Data Protection Officer (DPO): Email: [email protected]
• Website: https://casino-days-nz.com
• Postal Address: Korporaalweg 10, Willemstad, Curaçao

Complaint Procedure

1. Submit your complaint or query via email or postal address.
2. Our DPO will acknowledge receipt within 5 business days.
3. We will investigate and aim to resolve your issue within 30 days.
4. If unsatisfied, you may escalate to the NZ Office of the Privacy Commissioner (contact: [email protected]).

REFLECT: We are committed to transparent, fair, and timely resolution of all privacy-related matters for NZ users.

Updates

OBSERVE: This Privacy Policy is subject to periodic review and updates to reflect legal, regulatory, or operational changes. All changes are communicated transparently to users of casino-days-nz.com.

• Notification Methods: Email notifications, website banners, and account dashboard alerts for material updates
• Advance Notice: For significant changes, at least 30 days' advance notice will be provided before new terms become effective
• User Options: Users may object to changes or close their account without penalty before changes take effect
• Version Control: Last updated: 6 November 2025
• Changelog: All material changes will be summarized in a public changelog available on the policy page

REFLECT: Continued use of casino-days-nz.com after changes constitutes acceptance of the revised policy. Users are encouraged to review this policy regularly.