Privacy Policy

This privacy policy explains how casinoextreme, operated exclusively via the extreme-au.com website, collects, uses, discloses, and safeguards the personal information of players and website visitors in accordance with Australian law and international industry standards. This policy applies to all users engaging with our services as of 1 January 2025.

Who We Are

OBSERVE: The operator of casinoextreme is Anden Online N.V., responsible for legal and regulatory compliance. The company is registered and headquartered as follows:

Company Name: Anden Online N.V.
Legal Entity Type: N.V. (Naamloze Vennootschap)
Registration Number: 138316
Registered Address: Kaya Richard J. Beaujon Z/N, Curaçao
Regulatory License: Curaçao eGaming License 1668/JAZ (valid through 2025; status: on hold-see relevant regulatory clarifications)
Exclusive Brand Domain: extreme-au.com

EXPAND: For data protection and privacy matters specific to the Australian market, users may contact our designated data protection contact:

Data Protection Officer (DPO)/Contact: Ethan McGregor
Contact Email: [email protected]

REFLECT: All data processing activities are administered solely for legitimate casino operations to Australian online players via the extreme-au.com platform.

What Personal Data We Collect

OBSERVE: casinoextreme collects the following categories of information from users and website visitors:

Personal Data: Includes full name, email address, phone number, residential address, date of birth, and account credentials.
Technical Data: IP address, device specifications, operating system, browser type/version, access logs, and time zone settings.
Payment Data: Details of payment methods used (credit/debit card data, e-wallet addresses, cryptocurrency wallets as permitted), transaction identifiers, and withdrawal details.
Behavioral Data: Betting and gameplay history, wagering patterns, preferences, clicks, interaction records, and website navigation logs.
Cookies & Similar Technologies: Session identifiers, persistent cookies, and usage of browser-based storage for personalization, analytics, and advertising.

EXPAND: Certain data is required to comply with regulatory Know Your Customer (KYC) and Anti-Money Laundering (AML) obligations applicable in Australia and at our registration jurisdiction.

REFLECT: The collection of these data categories enables casinoextreme to deliver secure, lawful, and optimized services to all users on extreme-au.com in full compliance with legal obligations.

Legal Basis for Processing

OBSERVE: In alignment with the requirements of the Australian Privacy Act 1988 (Cth), and international best practices, casinoextreme processes personal data strictly under clear legal grounds.

User Consent: We obtain explicit consent for activities including marketing, analytics, and where consent is required by law for cookie usage or promotional communications. Users are informed of their rights to withdraw consent at any time.
Contract Fulfillment: Processing is necessary to establish and manage user accounts, process bets, handle payments and withdrawals, and deliver core casino services as contracted with the user.
Legitimate Interests: casinoextreme may process data for purposes such as fraud prevention, ensuring platform security, service optimization, and internal analytics, provided these interests do not override user rights and freedoms.
Compliance with Legal Obligations: Specific processing is mandatory for meeting regulatory requirements, including identity verification (KYC), anti-money laundering (AML) controls, responsible gambling mandates, and lawful reporting to regulators within Australia and, where applicable, Curaçao.

EXPAND: Where processing is required for regulatory or contractual obligations, users' cooperation is necessary. Failure to provide required data may result in limited or suspended access to our services.

REFLECT: Users are notified whenever the legal basis of processing changes and can exercise their data rights as described in this policy.

Purpose of Processing

OBSERVE: The principal purposes for processing personal data are:

Provision of Casino Services: Registration, account management, betting, payment processing, and customer support.
Service Improvement: Enhancing platform features, optimizing user experience, and responding to user feedback or preferences.
Marketing and Communications: Delivering offers, newsletters, and promotional content to users who have provided consent, in compliance with local spam/communication laws.
Analytics and Reporting: Monitoring website and platform performance, conducting research and statistical analysis to guide business decision-making.
Fraud Prevention and Security: Detecting, preventing, and responding to security threats, fraud, and illegal conduct, including compliance with responsible gambling obligations.

EXPAND: The above purposes include activities which are directly or indirectly necessary to fulfill our contractual and regulatory commitments.

REFLECT: Data is never used for purposes incompatible with those outlined above, and casinoextreme does not sell personal data to third parties.

Disclosure & Sharing

OBSERVE: casinoextreme may disclose user data only in the specific cases and to the recipients outlined below, ensuring all Australian and international privacy requirements are respected:

Payment Partners: Financial institutions, payment processors, and cryptocurrency service providers receive necessary data to facilitate deposits, withdrawals, and payment confirmations.
Service Providers: Third-party vendors and technical partners (e.g., hosting, IT maintenance, analytics, and mailing services) may process data under written contracts stipulating strict confidentiality and security obligations.
Regulatory Authorities: Data disclosure to regulators, law enforcement, or governmental agencies is performed solely as required by Australian law, Curaçao registration obligations, and applicable reporting requirements (e.g., for AML, KYC, or statutory disclosures).
Affiliates and Group Companies: Data may be shared with subsidiaries (Casino Brango, Yabby Casino, Limitless Casino, Casino Adrenaline) or parent company Anden Online N.V. for group compliance oversight, only as strictly authorized and compliant with legal standards.
Advertising Networks: Limited disclosure occurs only with explicit user consent to support targeted promotional campaigns and is governed by contractual privacy assurances.

EXPAND: All third parties must adhere to data protection obligations consistent with this policy and applicable Australian legal requirements. No data is disclosed for unrelated third-party marketing purposes.

REFLECT: Users may request the list of current data recipients via the contact method provided below.

International Transfers

OBSERVE: casinoextreme's operations involve international transfers of personal data, including but not limited to transfers between Australia and Curaçao, and to jurisdictions where technical service providers are located.

Protections Implemented:
- Transfers are conducted under standard contractual clauses, ensuring an adequate level of data protection as required by Australian privacy law.
- For any cross-border processing, we implement organizational and technical safeguards such as encryption, minimization of data, and strict access control.
- Where service providers are located outside Australia or the European Economic Area, we ensure contractual obligations comparable to the Privacy Shield Framework or Australian Privacy Principles, notwithstanding the Privacy Shield's inapplicability post-2020.

EXPAND: Users are notified of any material changes to data transfer mechanisms or destination countries via updates to this policy.

REFLECT: casinoextreme remains responsible for ensuring third-party recipients provide equivalent privacy protection, regardless of geographic location.

Data Retention

OBSERVE: casinoextreme applies retention periods aligned with Australian law, industry standards, and regulatory obligations:

Personal and Account Data: Retained for the period of active account use plus up to 5 years after account closure or last transaction, unless further retention is mandated for legal or compliance reasons.
Financial and Payment Data: Maintained for 5 years to enable lawful audits and fulfill anti-money laundering reporting, then securely deleted or anonymized unless law requires longer storage.
Analytical and Technical Data: Aggregated and de-identified where possible, and stored in accordance with operational needs and legal requirements.
Cookie and Usage Data: Retained per cookie expiration or user preference management, typically ranging from session duration to up to 2 years.

EXPAND: Data is deleted upon user request, subject to applicable retention requirements imposed by law-especially when deletion may impede gambling regulation compliance.

REFLECT: Deletion occurs through secure methods that prevent recovery and reuse. Retention reviews are conducted annually and upon regulatory updates.

Your Rights

OBSERVE: All users of extreme-au.com have the following rights concerning their personal data, as mandated by the Australian Privacy Act and relevant international standards:

Access: Request confirmation and access to personal data held by casinoextreme.
Correction: Request rectification of any inaccurate or incomplete personal data.
Deletion: Request erasure of personal data in circumstances where legal or regulatory retention obligations do not apply.
Restriction of Processing: Restrict the circumstances in which casinoextreme may process your data.
Objection: Object to processing, including for direct marketing or analytics purposes, subject to applicable law.
Data Portability: Obtain a copy of your data in a structured, machine-readable format where feasible.
Marketing Consent: Withdraw consent for marketing at any time using controls in your account or by contacting the DPO.

EXPAND: User requests are processed within 30 days where possible, consistent with statutory response timelines.

REFLECT: Additional identification may be requested to ensure security before fulfilling data rights requests. For further assistance, users should contact [email protected].

Cookies & Tracking Technologies

OBSERVE: extreme-au.com uses cookies and similar technologies to enable, secure, and enhance user experience:

Session Cookies: Essential for authentication and site operation; expire upon session end.
Persistent Cookies: Stored beyond session for user preferences and functional improvements.
Third-Party Cookies: Placed by analytics, advertising, or affiliate partners, subject to user consent where required.

Cookie Purposes

Functional: Enable key site features and remembered preferences (e.g., language selection).
Analytics: Monitor site performance, error reporting, and usage trends to improve services.
Advertising: Serve targeted content and measure effectiveness of campaigns, only with user consent.

Cookie Management

Users may manage or delete cookies via browser settings at any time.
Cookie preferences may be adjusted in the site's internal privacy settings panel where available.
Disabling certain cookies may impact the full functionality of extreme-au.com.

EXPAND: Instructions for managing cookies are available within browser help menus and on-site support materials.

REFLECT: Users in Australia will always be provided with clear, prior information and choice regarding non-essential cookies in compliance with local standards.

Data Security

OBSERVE: casinoextreme implements robust technical and organizational measures to safeguard user data, in compliance with Australian and international best practices:

SSL Encryption: All data transmitted via extreme-au.com is protected using industry-standard SSL/TLS protocols against interception and tampering.
Encryption at Rest: Sensitive data stored in databases is encrypted to prevent unauthorized access in the event of a breach.
Access Controls: Data access is tightly restricted to qualified personnel based on operational necessity and subject to background checks and confidentiality obligations.
Regular Audits: Security systems and procedures are reviewed and tested periodically to identify and remediate vulnerabilities.
Staff Training: Employees receive annual privacy and security training, with mandatory protocols for incident response and data handling.

EXPAND: Incident response plans are in place to ensure that any personal data breach is reported to affected users and, where necessary, to relevant regulatory authorities within required timeframes.

REFLECT: Users can report security concerns directly via [email protected] for prompt investigation.

Complaints & Contacts

OBSERVE: If users have questions, concerns, or complaints regarding privacy or the handling of their data on extreme-au.com, they can reach our Data Protection Officer:

Data Protection Officer: Ethan McGregor
Email: [email protected]

Complaint Procedure

Submission: Users should provide a clear description of their privacy-related concern via the provided email address.
Internal Review: Our DPO will review, investigate, and respond to all such communications within 30 days, in accordance with Australian law.
Escalation: If the user is dissatisfied with casinoextreme's response, they may escalate the complaint to the Office of the Australian Information Commissioner (OAIC) or a relevant Australian privacy authority.

EXPAND: Guidance and further contact options are available in our support section and from the OAIC website.

REFLECT: All complaints are handled confidentially, with a focus on timely and equitable resolution.

Updates

OBSERVE: Changes to this privacy policy will be published on the extreme-au.com website, and material updates will be communicated by email (where contact is available), website notification, or in-account messages as appropriate.

Revision Date: 1 January 2025

EXPAND: Users are encouraged to review this policy periodically for the latest information on privacy practices.

REFLECT: Continued use of the services after updates constitutes acceptance of the revised policy. For significant changes, additional consent may be required by law and will be requested before new processing activities take effect.