Search game or provider
Log in Sign up
Log in Sign up
Casino Live Casino Promotions Tournaments VIP Mobile App Login Registration Slots Review
England
Home » Privacy Policy

Spinrise AU Official Privacy Policy & Data Protection

Effective from: 03.02.2025
Last Updated: 03.02.2025
Version: 1.0

Definitions

  • Personal Data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. For Australian residents, this is akin to “Personal Information” as defined under the Australian Privacy Act 1988.
  • Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
  • Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Spinrise is the Controller of your Personal Data.
  • Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
  • Recipient means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.
  • Third party means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
  • Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  • Personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
  • Group of undertakings means a controlling undertaking and its controlled undertakings.
  • Supervisory authority means an independent public authority responsible for monitoring the application of data protection law. For Australian residents, the relevant authority is the Office of the Australian Information Commissioner (OAIC). Where GDPR is applicable, it refers to an authority established by an EU Member State.

General

This notice, together with the General Terms and Conditions available on the Spinrise website (the “Website”), sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By registering a Player Account with the Website you confirm your acceptance of this Privacy Policy. Please be advised that if you do not accept the terms outlined in this Privacy Policy and choose not to provide the necessary personal information, your access to certain features and services offered on this Website may be limited.

Please note that this Privacy Policy constitutes an agreement between you and Spinrise. It is important to note that this Privacy Policy may be periodically updated and revised. While we will make reasonable efforts to inform you of any significant changes, we recommend that you review this Privacy Policy regularly to stay informed of our current practices regarding the collection, use, and protection of your personal information. Your continued use of the Website and/or its services will constitute your acceptance of the Privacy Policy.

Spinrise (www.spinrise.com) values your integrity and privacy immensely and is committed to managing all your personal data in a transparent, fair and lawful manner. This privacy policy (together with the Terms & Conditions and the Cookie Policy) sets out the basis upon which Spinrise collects, stores, and uses your personal data when you visit our Website, as well as what your rights are, and how the law protects those rights. We adhere to the principles of the Regulation (EU) 2016/679 (General Data Protection Regulation, “GDPR”) where applicable, and for Australian residents, the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This Website is solely intended for persons over the age of 18, and we do not knowingly collect data relating to persons under such age. If it becomes apparent to us that we have collected personal data relating to persons under the age of 18, due to reasons relating to abuse of our Website, we do our best to ensure that such data is handled in accordance with applicable law.

About us

As a data controller, Spinrise has a legal obligation under gambling regulations to process personal data from players in order to allow them to participate in games and provide them with ancillary services.

Contact Us

You may always contact us in regards to this Policy should you wish to:

  1. Confirm the accuracy of the personal information we have collected about you;
  2. Enquire about our use of your personal information;
  3. Prohibit future use of your data for direct marketing purposes;
  4. Receive a copy of personal information stored about you;

Unless you have elected not to receive promotional materials, we may use your Personal Information, including your email address and phone number, to send you marketing communications regarding products, services and promotions. This may include information about products and services from our business partners, such as casino game providers.

Whenever you decide to stop receiving such marketing and advertising material, you may opt out of this by using the unsubscribe options in the communication, in your Player Account settings or by contacting our customer support at [email protected] and/or live chat. You can configure your marketing preferences in your personal account by following the link spinrise.com/profile.

  1. Update or rectify any information that you have provided us (in such cases you shall provide any evidence we may reasonably require to effect such changes). Note it is your responsibility to ensure that we are always updated with your correct data; providing false information may be unlawful.

To fulfill your requests in accordance with this privacy policy, you can use the following means of communication:

Please note that in some cases emails may end up in spam or may not reach the addressee for technical reasons. If your request is not answered within 10 days, we strongly recommend you contact us again for clarification using alternative methods of communication.

We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

Information we collect

  • Information you provide us: This includes any information you provide when filling in forms on our account registration pages, or any other data you submit via the Website or email. It includes information provided when you register, subscribe to our service, make deposits, bets or withdrawals, participate in chat rooms, accept bonuses, provide due diligence documentation (including source of wealth information), and when you report a problem or make a complaint. This may include your name, username, address, date of birth, country of residence, identification number, email address, phone number, financial and credit card information, personal description, proof of identification, proof of address, proof of funds, and photograph.
  • Technical information: This includes the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and information about your visit, including full Uniform Resource Locators (URL). Information received from cookies is detailed in our Cookie Notice.
  • Gameplay information: Games you played, duration on each game and page, and page interaction information.
  • Analytics information: In some cases, we may collect information about your use of the Services, such as application usage, log files, user activity (e.g., pages viewed, time spent on pages, online browsing, clicks, actions), timestamps, and alerts. This is collected for troubleshooting, research, and analytics purposes.
  • Information we receive from other sources: This is information we receive if you use any of our websites or services operated by the Spinrise Group. If you use accounts on multiple sites operated by the Group, we may collate information about you from each site in one data repository for statistical purposes and to meet our Anti-Money Laundering (AML) and Responsible Gambling obligations.
    We also work with third-party data processors and controllers (e.g., business partners, sub-contractors in technical, payment, delivery, marketing services, advertising networks, analytics providers, due diligence intelligence companies, search information providers, credit reference agencies). This includes information from Publishers, Advertisers, and Partners that help us deliver ads and personalized content. This may include pseudonymous advertiser identifiers. Data processors act on our written instructions.

Categories of Data We Store About You

Personal data means any information about an individual from which that person can be identified directly or indirectly. It does not include data where the identity has been removed (anonymous data). The personal data collected and processed on you can be grouped into the following categories:

  • Identity Data: First name, middle name, last name, email, username or similar identifier, date of birth, gender.
  • Contact Data: Residential address, email address, telephone numbers, other available means of communication.
  • Financial Data: Details of your salary and wealth, sources of funds used for deposits, bank account, payment card or payment account details, including information in bank statements, income confirmation documents, and similar KYC documentation.
  • Transaction Data: Details about deposits, withdrawals, wagering, and other details of games you have played.
  • Technical Data: IP address, login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system, platform, and other technology on devices you use to access this website.
  • Usage Data: Information about how you use our website, products, and services, online identifier for login, password (encrypted), games played, login/logout times, duration of play, bonuses claimed, responsible gaming information, limits, history, and AML classification.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and our third parties, and your communication preferences.
  • Special Categories of Personal Data (Sensitive Information): In fulfillment of our legal obligations, and if you provide such information, we may collect:
    • Information related to responsible gaming that can be considered health data.
    • Information about your racial or ethnic origin (which may be obtained from identification documents). We handle such sensitive information with extra care and in accordance with applicable privacy laws.

How we can use your information

  • Information you give to us:
    • To carry out our obligations from the terms and conditions between you and us, provide gaming services, accept deposits, process withdrawals, manage fraud, answer queries/complaints, and other related matters.
    • Provided you have consented, to contact you with marketing information from the Spinrise Group about services, bonuses, promotions, and products of related sites.
    • To provide customized advertising on the site based on your interactions or Usage Data.
    • To notify you about changes to our service.
    • To meet obligations from Anti-Money Laundering Legislation, counter-terrorism financing laws, and other applicable laws.
  • Information we collect about you:
    • To administer our site and for internal operations (troubleshooting, data analysis, testing, research, statistics, surveys), typically via Cookies (see our Cookie Notice).
    • To contact you with marketing information about services, bonuses, and promotions offered by the brand you registered with (based on legitimate interest or consent), or from brand partners (with consent).
    • To carry out fraud management and risk management activities, including assigning a risk profile to your account.
    • To assess your behavior and patterns through the site to build a detailed customer profile for various purposes, including:
      • Bonus abuse prevention: A register of bonus abusers may be created, and individuals may be excluded from promotions or services.
      • Responsible gambling: Screening and monitoring transactions and behavior to ensure your interaction remains safe. A Responsible Gambling score may be assigned. You may be identified as a ‘Problem Gambler’ or vulnerable.
      • AML/CTF: Analyzing your personal data, comparing it to third-party sources, building an AML profile, and risk scoring your account. We maintain a register of high-risk customers from an AML perspective.
        (Note: Profiling is partially used with human oversight. Details of the logic are not revealed to prevent bypassing these controls.)
    • To improve our site and present content effectively.
    • To allow you to participate in interactive features.
    • To keep our site safe and secure.
    • To measure advertising effectiveness and deliver relevant promotions.
    • To make suggestions and recommendations about our products.
    • We may collect, use, and share Aggregated Data (statistical or demographic data) which does not directly or indirectly reveal your identity. If combined with personal data, it’s treated as personal data.
  • Information we receive from other sources:
    We combine this with information you give us and information we collect. This is used for the purposes above. Sources include third-party service providers (age/identity/address verification, problem gambler databases, PEP/Sanction searches) and other sites operated by the Spinrise Group.

Lawful Basis for Processing of Personal Data

  • Performance of contract: Processing necessary to provide the gaming services you requested.
  • Legal obligation: Compliance with Australian laws (e.g., AML/CTF Act, gambling regulations) and international obligations where applicable (e.g., GDPR if Spinrise has an EU establishment or targets EU individuals).
  • Consent: For direct marketing (especially from other Group brands or third parties), and for certain uses of cookies or profiling not covered by other bases.
  • Legitimate interest: For improving services, fraud prevention (where not a strict legal obligation but a business necessity), and some direct marketing from the brand you registered with (with clear opt-out).

Sharing of data

Due to the nature of our service, we may need to share your personal data with trusted third parties:

  • Any member of the Spinrise Group requiring access to provide services, for fraud/bonus abuse prevention, AML, and Responsible Gambling reasons.
  • To all members of the Spinrise Group for marketing (with your consent).
  • Employees of Spinrise (DPO, AML Officer, Payments/Anti-Fraud analysts, Support, Retention, VIP managers, etc.) to perform their duties. They are bound by confidentiality agreements.
  • Game providers: May require access to select data (e.g., username, IP address). NetEnt’s Privacy Policy also applies when playing their games (link provided in original).
  • Payment providers and related service providers: To process your payments.
  • Marketing partners: With your consent, for sending marketing material.
  • Governmental or regulatory authorities: If necessary or authorized by law (e.g., law enforcement, AUSTRAC, gambling regulators, OAIC).
  • Client communication software: Third-party software for email and live chat.
  • AML and fraud verification tools, KYC information suppliers.
  • In case of business transfers (merger, acquisition), customer personal data may be included. We will inform players by email.
  • Selected third parties under data processing agreements:
    • Lawyers, advisors, consultants for risk management or legal claims.
    • Governmental bodies, regulators for responsible gaming purposes or problem gambler registers.
    • Entities maintaining registers for crime/money laundering prevention.

We ensure third parties respect the security of your personal data, process it lawfully, and only for specified purposes according to our instructions. We don’t allow them to use your data for their own purposes.

Transfers of personal data outside of Australia/EEA

It may be necessary for us or our service providers to transfer your personal data to countries outside of Australia or the European Economic Area (EEA) to provide services or engage with service providers. 

This transfer may be necessary for:

  • Processing your bets and payment transactions;
  • Providing you with gaming and other ancillary services;
  • Identifying and performing necessary verification checks.

When we transfer your personal data to such countries, we take steps to ensure it is protected. This includes ensuring the recipient country has data protection laws considered adequate, or by using specific contracts approved for international transfers (like the European Commission’s standard contractual clauses) and taking other measures to ensure an appropriate level of protection in line with the Australian Privacy Principles and GDPR where applicable. By using our services, you accept possible transfer of your personal data to third countries under these safeguards.

Data Retention

We retain your personal data only as long as necessary for the purposes collected, including satisfying legal, accounting, or reporting requirements.

Factors considered for retention periods include the purposes of collection/processing, applicable laws/regulatory requirements (including Australian law), the nature/sensitivity of the data, and potential risks from unauthorized use/disclosure.

As per our Terms and Conditions, you or Spinrise can close your Player Account. Following closure, we retain your personal data as required by law. For Australian AML/CTF purposes and EU gaming regulations, we must retain player data submitted during registration and during the operative period for a minimum of five years (or longer if specified by Australian law, often 7 years for certain records) from the last transaction or account closure. Requests for erasure before this period cannot be met.

We may keep anonymized derivatives of your data for improving content and marketing (where no automated decision making is involved).

Your Rights

Under data protection law (including the Australian Privacy Act and GDPR where applicable), you have certain rights:

  • Request access to your personal data: A right to request a copy of the personal data we hold about you.
  • Request the correction of your personal data: If data is incomplete or incorrect, you can have it corrected. We may need evidence from you.
  • Request the erasure of your personal data: You may request erasure where we no longer have a legal basis to process or retain it. This is not absolute and may be subject to legal retention obligations.
  • Object to the processing of your personal data: Where we rely on legitimate interests, and you feel it impacts your rights. We may demonstrate compelling legitimate grounds to override your objection.
  • Request the restriction of the processing of your personal data: You can ask for temporary suspension of processing in certain scenarios (e.g., to establish data accuracy, or if use is unlawful but you don’t want erasure).
  • Request the transfer of your personal data (data portability): To receive certain data we process about you to transfer to another controller (applies to automated data processed with consent or for contract performance).
  • Withdraw your consent at any time: Where we rely on consent (e.g., for certain marketing). This won’t affect prior lawful processing. You can withdraw consent via account settings or by contacting us.
  • Lodge a complaint with a supervisory authority: For Australian residents, this is the Office of the Australian Information Commissioner (OAIC).

To exercise your rights, we may need specific information to verify your identity. We aim to respond within one month, but complex requests may take longer, and we will notify you.

Automated Decision Making

We generally do not use fully automated decision-making in establishing and carrying out our business relationship. If used in individual cases, we will inform you separately if legally required. Profiling as described earlier may involve automated elements but typically includes human oversight for final decisions.

Security of your Data

We acknowledge our strict legal obligations to protect your Personal Information. We use best business practices, applicable regulations, and appropriate technical and organizational measures to protect your data. We take reasonable precautions to ensure data submitted remains safe from accidental loss, unauthorized access, use, alteration, or disclosure.

Access to your personal data is limited to employees, agents, contractors, and other third parties with a business need to know.

Player Accounts are accessed with a unique ID and password. You may set up two-factor authentication (2FA). You are responsible for keeping your login information confidential.