burger icon
CrownPlay Сasino Casino
Log In

Privacy Policy

The protection of your personal information is of utmost importance at crownplay. This Privacy Policy is designed to explain how we collect, use, share, and protect information relating to individuals who use the services of crownplayz.com, including players and website visitors. This policy applies from 1 January 2025 and remains in effect until further updates are communicated in accordance with the procedures described below.

Who We Are

OBSERVE: Under regulatory and industry obligations, we are required to clearly identify the operator and its responsible contacts. EXPAND: Our operating license and key contacts have been analyzed for full legal compliance. REFLECT: We provide comprehensive transparency regarding our company and data protection oversight.

  • Operator: crownplay operates exclusively through its official website crownplayz.com under the legal entity NovaForge LTD, licensed for online gambling operations (License number: ALSI-154206028-FL2; Issuing Authority: Gaming Board of Anjouan, Union of Comoros; Valid until 31 Dec 2025).
  • Legal Address & Registration: At present, the registered office and company registration details are not separately published, but operator identity is confirmed per license documentation. Any required legal address disclosures will be made available via official communication.
  • Contact for Data Protection Enquiries: Data protection requests and enquiries can be directed to our data protection team via [email protected]. The data processing oversight is managed by the Data Protection Officer (DPO), who is contactable at this address.

Regional Compliance Note: As an operator serving Australian clients, we adopt AU principles on operator identification and data transparency under the Privacy Act 1988 (Cth) and relevant AU state/territory regulations.

What Personal Data We Collect

OBSERVE: Legal and operational obligations require explicit notification of collected data types. EXPAND: Categories have been defined in alignment with AU Privacy Principles and global online gambling standards. REFLECT: The following categories may be collected:

  • Personal Data: Full name, date of birth, e-mail address, phone number, residential address, and age-verification documents supplied during registration or account maintenance.
  • Technical Data: IP address, browser type, device identifiers, operating system, access times, and system logs automatically collected upon connection to crownplayz.com.
  • Payment Data: Cardholder names, account details, payment method, transaction IDs, and related billing data necessary to process deposits and withdrawals, subject to KYC/AML compliance checks.
  • Behavioral Data: Gaming and betting history, site navigation patterns, interaction logs, session activity (clickstream), and player preferences as analyzed for responsible gambling and service improvement purposes.
  • Cookies & Similar Technologies: Data stored via browser cookies, web beacons, pixel tags, and similar tracking mechanisms to facilitate service delivery, personalization, and analytics.

Regional Compliance Note: All data collection is subject to the requirements of the Australian Privacy Principles (APPs), including limitation of data collection to that which is necessary for lawful casino operations.

Legal Basis for Processing

OBSERVE: AU law and the nature of regulated gambling sites require lawful bases for every data operation. EXPAND: The main justifications are mapped as follows. REFLECT:

  1. User Consent: We collect and process data where you have expressly consented, including acceptance of cookies and marketing communications, with the ability to withdraw consent at any time.
  2. Contract Fulfillment: Data processing is necessary to execute our agreement with you, including account registration, identity verification, provision of gambling services, payment processing, and prize payouts.
  3. Legal Obligations: We are required by applicable laws (including AML/CTF, KYC, and anti-fraud legislation) to process and retain specific data (e.g., for age and identity verification, suspicious activity reporting).
  4. Legitimate Interests: We process certain data for legitimate business interests, including site security, fraud prevention, analytics, customer support, and optimization, provided these interests do not override your fundamental privacy rights.

Protective Clause: Where Australian law or the laws of our licensing regulator require stricter controls, these shall take precedence in relation to processing and protection.

Purpose of Processing

OBSERVE: Purpose limitation is a key privacy requirement. EXPAND: All use cases for personal data are specified and justified as required by the APPs. REFLECT:

  • Service Provision: To operate and manage user accounts, deliver online gambling services, process bets, and enable financial transactions on crownplayz.com.
  • Service Improvement: To monitor, maintain, and improve site functionality, fix issues, customize experiences, and implement technical upgrades.
  • Compliance and Safeguarding: To conduct identity and eligibility checks, fulfill KYC/AML obligations, detect and respond to fraudulent or criminal activity, and maintain regulatory compliance.
  • Marketing: To send marketing communications and special offers to users who have opted in, in accordance with legal requirements and preferences set by each user.
  • Analytics: To analyze aggregated usage data for statistical research, quality assurance, and internal reporting, without identifying individuals.

Regional Compliance Note: All purposes are reviewed regularly to ensure ongoing necessity and proportionality, as required by AU privacy law.

Disclosure & Sharing

OBSERVE: We must disclose third-party sharing and legal disclosure arrangements. EXPAND: Possible data recipients are detailed below as per AU and international standards. REFLECT:

  • Payment Partners: Data required to process deposits and withdrawals may be disclosed securely to authorized payment processors, card issuers, and banks, solely for transaction execution and anti-fraud purposes.
  • Service Providers: Technical and operational partners such as hosting providers, IT maintenance, analytics, and marketing agencies that support crownplayz.com operations, bound by data processing agreements ensuring confidentiality and security.
  • Regulatory Authorities: Relevant data may be disclosed to regulators, tax authorities, law enforcement, or government agencies pursuant to AU law, AML/CTF requirements, or as required under the operator's Anjouan license, always in compliance with due process and legitimate requests.
  • Affiliates & Advertising Networks: User data will only be shared with affiliates or advertising networks where explicit consent has been provided; any such disclosure is strictly controlled and managed by contractual restrictions.

Protective Clause: All external data sharing is governed by written contracts or legal requirements, and such third parties are required to implement equivalent data protection standards.

International Transfers

OBSERVE: Data residency matters to both users and regulators. EXPAND: As a site operated under an Anjouan license and serving AU users, international data flows may occur. REFLECT:

  • Transfer Regions: Personal data may be stored and processed in jurisdictions outside Australia, including the Autonomous Island of Anjouan, Union of Comoros, and the European Economic Area (EEA), subject to security safeguards.
  • Protection Guarantees: When transferring data internationally, we utilize Standard Contractual Clauses (SCCs), processor agreements, and technical security measures to ensure adequate protective levels. Where applicable, we leverage Privacy Shield principles (or successor frameworks), provided these meet AU and international adequacy requirements.
  • User Safeguards: Users can request additional information or clarification regarding cross-border transfer mechanisms by contacting our data protection team.

Regional Compliance Note: For AU clients, we ensure any overseas disclosure complies with Australian Privacy Principle 8 (cross-border disclosure of personal information).

Data Retention

OBSERVE: AU and international gambling law require clear data retention policies. EXPAND: Retention periods are set to satisfy operational and legal obligations, with defined deletion triggers. REFLECT:

  • Personal Data: Kept no longer than 5 years following account closure or last active transaction, unless a longer period is required by applicable law (e.g., to respond to regulatory claims or legal orders).
  • Payment & Transaction Data: Retained for a minimum of 5 years post-transaction for reporting, anti-fraud, and auditing compliance, as required by AML/CTF laws.
  • Technical and Behavioral Data: Technical logs and analytics data are maintained up to 2 years unless further retention is required for security, fraud detection, or compliance.
  • Deletion Criteria: Data is deleted or irreversibly anonymized upon user request (subject to applicable law), at the expiration of retention periods, or upon fulfillment of the processing purpose.

Protective Clause: Notwithstanding the above, specific data may be retained to resolve disputes, enforce agreements, or comply with enforceable legal obligations.

Your Rights

OBSERVE: AU privacy law provides individuals with enforceable rights concerning their personal data. EXPAND: The APPs and international best practices grant the following rights. REFLECT:

  • Access: You may request confirmation of whether your personal data is held by crownplay, and obtain a copy of your data, subject to lawful exemptions.
  • Correction: You may request that incorrect, incomplete, or outdated personal data be rectified without undue delay.
  • Deletion ("Right to Erasure"): You are entitled, in certain circumstances, to request erasure of your personal data, unless retention is required by law.
  • Restriction of Processing: Where applicable, you may request restriction of processing of your data (e.g., while a correction request is under review).
  • Objection: You may object to certain processing activities, including direct marketing, at any time.
  • Data Portability: Where technically feasible, you may request transmission of your personal data to another provider.
  • Withdrawal of Consent: For data processing based on consent (e.g., marketing), you may withdraw your consent at any time via your account settings or by contacting our support.

Regional Compliance Note: Crownplay's process for responding to user rights requests is in line with the Office of the Australian Information Commissioner (OAIC) guidelines.

Cookies & Tracking Technologies

OBSERVE: Transparency regarding tracking technologies is mandated by AU privacy guidelines and industry practice. EXPAND: Each cookie type is categorized for legal disclosure and user clarity. REFLECT:

  • Session Cookies: Temporarily stored while you interact with crownplayz.com, enabling essential site functions and maintaining session state; automatically deleted when you close your browser.
  • Persistent Cookies: Remain stored on your device to remember preferences and facilitate login, with set expiry periods (typically up to 12 months unless deleted by the user).
  • Third-Party Cookies: Used by analytics providers (e.g., Google Analytics), advertising partners, and social media integrations for the purposes of site improvement and targeted marketing.
  • Cookie Management: You can manage cookie preferences through your browser settings or, where offered, via an internal cookie consent panel on crownplayz.com. Blocking or deleting cookies may affect site functionality.

Regional Compliance Note: Crownplay provides clear information and obtains consent for non-essential cookies as required by the Australian Privacy Principles and relevant international requirements.

Data Security

OBSERVE: AU law and gambling industry standards mandate robust technical and organizational safeguards for all personal information processed. EXPAND: Specific measures implemented by crownplay are outlined below. REFLECT:

  • Encryption: All transmissions of personal or payment information over crownplayz.com are protected by industry-standard SSL encryption protocols. Sensitive data at rest is stored in encrypted form wherever technically feasible.
  • Access Controls: Access to personal information is strictly limited to authorized personnel on a need-to-know basis, governed by logged authentication and role-based restrictions.
  • Physical & Technical Security: Our systems are deployed in secure data centers with continuous monitoring, intrusion detection, and physical access controls.
  • Security Audits: Regular internal and third-party security audits are conducted to evaluate and remediate system vulnerabilities.
  • Staff Training: Employees receive mandatory data protection and security awareness training, with ongoing reviews to ensure best-practice compliance.

Protective Clause: While we employ state-of-the-art measures, no internet platform can guarantee absolute security. Users are responsible for maintaining the confidentiality of their login credentials.

Complaints & Contacts

OBSERVE: AU privacy regulations require an accessible complaints procedure and clear contact channels. EXPAND: Contact details analyzed for criticality and reliability. REFLECT:

  • Data Protection Inquiries and Complaints: All privacy questions, rights requests, or concerns regarding this policy should be addressed to the Data Protection Officer, accessible via [email protected]. Alternative general queries can be sent to [email protected].
  • Complaint Procedure: Upon receipt of a privacy complaint, our team will acknowledge the request and respond within 30 days, in accordance with OAIC guidance. Unresolved concerns can be escalated to the Office of the Australian Information Commissioner (OAIC) for independent review.

Note: Please provide sufficient detail in your inquiry to enable effective investigation and response.

Updates

OBSERVE: Privacy laws require dynamic policy review and transparent update notifications. EXPAND: The process for notification and change management is specified below. REFLECT:

  • Notification of Changes: All updates to this Privacy Policy will be posted on crownplayz.com, and users with active accounts may receive e-mail notifications describing material changes.
  • Effective Date: This policy is effective from 1 January 2025, with the last revision dated 1 January 2025. All dates, timeframes, and compliance durations referenced herein extend through 31 December 2025 unless otherwise notified.
  • User Responsibility: Users are responsible for reviewing the Privacy Policy regularly. Continued use of crownplayz.com after updates are published constitutes acceptance of the revised terms.

Regional Compliance Note: Crownplay undertakes to review this policy annually and as required to reflect evolving regulatory requirements or operational changes, with updates conforming to AU law and industry standards.