burger icon
Playzilla Review Australia
Log In

Privacy Policy

This Privacy Policy explains how Playzilla, operated for the Australian market via the website playzilla-aussie.com (the "Website"), collects, uses, discloses and protects personal information of its users. It applies to all Website visitors, players, account holders and any person who interacts with our services. By accessing or using the Website, you acknowledge that you have read and understood this Privacy Policy.

Effective date: 1 January 2026

Who We Are

For the purposes of this Privacy Policy, "we", "us" and "our" refer to the operator of Playzilla for this brand context.

  • Operator: Rabidi N.V., a private limited liability company incorporated under the laws of Curaçao.
  • Registered office / legal address: Dr. H. Fergusonweg 1, Willemstad, Curaçao.
  • Company registration number: 151791 (Curaçao commercial register).
  • Gambling licence: Online gaming licence No. 8048/JAZ, held by Antillephone N.V. and used by Rabidi N.V. under the applicable master licence issued by the Government of Curaçao.

The Website playzilla-aussie.com is used to provide information and access to Playzilla services to users, including users located in Australia, subject to any local restrictions. While Rabidi N.V. is licensed in Curaçao and is not regulated by Australian gambling regulators, we apply privacy practices aligned with international standards, including the EU General Data Protection Regulation (GDPR) as a benchmark and, where relevant, comparable principles to those found in the Australian Privacy Act 1988 (Cth).

Data Protection Contact

Rabidi N.V. has appointed an internal contact point for privacy and data protection matters.

  • Data Protection Contact / Data Protection Officer (DPO) function: Data Protection Department, Rabidi N.V.
  • Email (primary): [email protected]
  • Email (general information): [email protected]
  • Postal address for privacy correspondence: Data Protection Department, Rabidi N.V., Dr. H. Fergusonweg 1, Willemstad, Curaçao.

You may contact the Data Protection Department using the above details for any questions, requests or complaints regarding this Privacy Policy or our handling of your personal data.

What Personal Data We Collect

We collect and process different categories of personal data when you visit or use the Website, create an account, participate in gaming activities, or contact us. The exact data collected may vary depending on your interactions with us, your device settings and the services you use, but typically includes the categories set out below.

Identification and Contact Data

  • Basic identity details: full name, date of birth, gender, country of residence, and, where required for verification, copies or details of identification documents (such as passport, ID card or driving licence).
  • Contact information: email address, telephone number, residential address, and preferred language of communication.
  • Account details: username, password, security questions, account status and related profile settings.

Technical and Device Data

  • Device identifiers: IP address, device type, operating system, browser type and version, device language, and other device-level identifiers (where available).
  • Usage and log data: dates and times of access, referring/exit pages, pages viewed, clicks, interaction logs, error logs, approximate geolocation derived from IP address, and session identifiers.
  • Network data: information relating to your internet service provider and connection type, where technically required for security, troubleshooting and fraud detection.

Payment and Financial Data

  • Payment instrument data: limited information relating to your chosen payment method (e.g. type of card, masked card number, issuing bank, e-wallet identifier or other payment account reference). Full card numbers are generally processed by our payment service providers and not stored by us except where strictly necessary and lawful.
  • Transaction data: deposits, withdrawals, bonuses, wagering, balances, currency, timestamps of transactions, and associated transaction identifiers.
  • Verification and risk data: results of payment-related screenings, KYC/AML checks, sanctions list matches and other compliance-related records connected to your payments.

Behavioral and Usage Data

  • Gaming and betting history: games played, stakes, wins and losses, session lengths, bet types, game preferences, bonuses used and other related activity data.
  • Interaction data: clicks, navigation paths, in-site search queries, promotional codes used, participation in tournaments, campaigns or loyalty programs, and responses to surveys or feedback requests.
  • Marketing and communication data: your marketing preferences, newsletter subscriptions, records of marketing communications sent and your interactions with them (such as opens and clicks).

Communications and Support Data

  • Customer support records: emails, online chat logs, complaint records, call notes (where applicable) and any information you voluntarily provide when contacting us.
  • Verification documents: additional documents you send to us (e.g. utility bills, bank statements, source-of-funds documents) for identity verification, responsible gambling or compliance assessments.

Cookies and Similar Technologies

  • Cookies: small text files stored on your device that are used for essential Website functions, performance measurement, personalization and marketing (see "Cookies & Tracking Technologies" section below).
  • Similar technologies: tracking pixels, tags, scripts and local storage objects used to collect and store information about your interactions, including analytics identifiers and advertising identifiers.

We will generally collect personal data directly from you (for example, through registration forms or your interactions with the Website). We may also receive data from third parties such as payment service providers, fraud prevention partners, affiliates, and identity verification providers, where lawful and relevant to your account or transactions.

Legal Basis for Processing

Because our operations are based in Curaçao and our services are internationally accessible, we rely on a combination of legal bases recognised under applicable data protection frameworks, including GDPR principles used as a benchmark. Depending on the specific processing activity, we may process your personal data on one or more of the bases below.

Performance of a Contract

  • Account creation and management: We process your identification, contact, technical and account data to create and maintain your user account, enable you to log in, and provide access to the Website and gaming services.
  • Provision of gaming services: We process gaming, transaction and behavioral data in order to accept bets, record outcomes, credit winnings, process deposits and withdrawals, and manage bonuses and loyalty programs.
  • Customer support: We use your contact and communication data to respond to your inquiries, handle complaints and provide ongoing service assistance.

Compliance with Legal Obligations

  • KYC/AML requirements: As a licensed online gaming operator, we are required under Curaçao law and international standards to perform know-your-customer (KYC), anti-money laundering (AML) and counter-terrorist financing (CTF) checks. This involves verifying your identity, age and, where applicable, source of funds.
  • Regulatory reporting: We may need to retain and disclose certain transaction, account and verification data to regulators, supervisory authorities or other competent bodies, in line with applicable laws.
  • Record-keeping: We maintain accounting and transactional records for the periods required by law for taxation, accounting, auditing and compliance purposes.

Legitimate Interests

We may process your data where necessary to pursue our legitimate business interests, provided that such interests are not overridden by your rights and freedoms. These interests include, in particular:

  • Security and fraud prevention: Monitoring logins, transactions and behaviour to detect and prevent fraud, abuse, bonus misuse, account takeover, money laundering, and other unlawful or improper activities.
  • Service improvement and analytics: Using aggregated or pseudonymised data to analyse Website performance, improve user experience, optimise game offerings, and develop new features.
  • Enforcement of legal claims: Establishing, exercising or defending legal claims, including debt collection, dispute resolution and the enforcement of our Terms and Conditions.

Consent

  • Marketing communications: We will send you email, SMS or push notifications for direct marketing purposes (such as promotions, offers and newsletters) only where you have given your consent or where another lawful basis allows it in your jurisdiction. You may withdraw your consent at any time.
  • Non-essential cookies and tracking: We use certain cookies and tracking technologies for analytics and advertising only with your consent, where required by applicable laws.

Where we rely on consent, you are free to refuse or withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. Some services may be limited if certain data is not provided or if you disable particular cookies.

Purpose of Processing

We process your personal data for specific, explicit and legitimate purposes, and do not process it further in a manner incompatible with those purposes. The primary purposes are as follows.

Provision and Operation of Services

  • Account registration and verification: To create, verify and manage your player account on the Website, including age and identity verification.
  • Gaming operations: To provide you with access to casino games, betting services and related functionalities, record your wagers, calculate outcomes and manage balances and payouts.
  • Customer care: To provide support, respond to your questions, resolve technical issues and handle complaints.

Compliance and Risk Management

  • Regulatory compliance: To comply with obligations under gaming, AML/CTF, sanctions and other applicable laws, including monitoring transactions and reporting suspicious activities.
  • Responsible gambling: To implement responsible gambling tools (such as limits, time-outs and self-exclusion), assess risk behaviours and support harm minimisation initiatives where applicable.
  • Security: To secure our systems, prevent unauthorised access, detect cyber-attacks, and ensure the integrity of the Website and gaming environment.

Service Improvement and Personalisation

  • Analytics: To analyse Website traffic, user behaviour and game performance, using aggregated and/or pseudonymised data where possible to improve our services.
  • Personalised content: To tailor game recommendations, bonuses and offers to your profile and preferences, within the limits of applicable marketing and consent requirements.
  • Testing and development: To test new features, implement updates, and improve usability and performance.

Marketing and Promotions

  • Direct marketing: To send newsletters, promotional messages and personalised offers regarding our products and services or those of selected partners, subject to your consent where required.
  • Advertising: To measure the effectiveness of our campaigns, manage affiliate relationships and display relevant advertisements on our own or third-party platforms.

Legal and Business Purposes

  • Legal claims: To establish, exercise or defend legal claims, including in relation to disputes with players, regulatory inquiries or third-party claims.
  • Business administration: To manage our operations, including internal reporting, auditing, risk management and corporate governance.

Disclosure & Sharing

We do not sell your personal data. However, we may disclose or share your data with carefully selected recipients where necessary for the purposes set out in this Privacy Policy, and always subject to appropriate safeguards.

Group and Operator Entities

  • Rabidi N.V. and related entities: Your data may be shared within Rabidi N.V. and, where applicable, affiliated entities or brands involved in the provision of Playzilla services, to the extent necessary for operational, compliance and support purposes.

Service Providers and Partners

  • Payment service providers: Banks, card processors, e-wallets and other payment intermediaries that process your deposits and withdrawals. They receive the data necessary to complete transactions and perform anti-fraud checks.
  • Technical and hosting providers: Companies providing hosting, IT infrastructure, security, content delivery networks, email delivery, SMS gateways and customer support tools.
  • Game providers: Licensed gaming software providers that supply the games available on the Website. In some cases, they may act as independent data controllers for in-game data processing.
  • Verification and risk management partners: Identity verification services, KYC/AML screening providers, fraud detection and credit risk management services.
  • Analytics and marketing providers: Web analytics, advertising networks, affiliation platforms and campaign management tools, which may use cookies and similar technologies subject to your consent where required.

Affiliates and Advertising Networks

  • Affiliate partners: Partners who refer users to us via affiliate links may receive limited performance and conversion data (e.g. anonymised or pseudonymised identifiers, registration and deposit confirmations) to calculate commissions and optimise campaigns.
  • Advertising networks: Subject to your consent and applicable law, we may share pseudonymised identifiers and aggregated data with advertising networks for the purposes of targeted advertising and performance measurement.

Regulators, Authorities and Legal Recipients

  • Regulatory authorities: Gaming regulators in Curaçao or other competent jurisdictions may receive your data where necessary for licence compliance, inspections, audits or investigations.
  • Law enforcement and public authorities: We may disclose data to police, courts, tax authorities or other public bodies where required by law, court order, or in order to protect our rights or the rights of third parties.
  • Professional advisers: Lawyers, auditors, consultants and other advisers who require access to data in the course of providing services to us, subject to strict confidentiality obligations.

Business Transfers

  • Corporate transactions: In connection with a merger, acquisition, reorganisation, sale of assets or restructuring, your data may be transferred to another entity as part of the transaction, subject to continued protection in line with this Privacy Policy.

International Transfers

Because Rabidi N.V. is established in Curaçao and works with international service providers and partners, your personal data may be transferred to and processed in countries outside your country of residence. This may include, for example:

  • Curaçao: Where our main operational and compliance activities are carried out.
  • European Economic Area (EEA) / United Kingdom: Where certain game providers, payment processors, analytics and IT service providers are based.
  • Other regions: Including, but not limited to, data centres or support facilities located in North America or Asia, depending on our service provider locations.

We take appropriate measures to ensure that any such international transfers comply with applicable data protection requirements and that your personal data remains protected. These measures may include:

  • Contractual safeguards: Implementing data processing agreements and, where applicable, standard contractual clauses or equivalent mechanisms recognised by relevant data protection frameworks.
  • Technical and organisational measures: Encryption, access controls and other security measures to protect data during transfer and at the destination.
  • Due diligence: Carefully assessing the data protection standards of recipient countries and the practices of our service providers, and selecting providers that offer robust security and privacy commitments.

By using the Website and providing your personal data, you acknowledge that your data may be transferred to, and processed in, countries outside your jurisdiction, subject to the safeguards described above.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, to comply with legal and regulatory obligations, and to resolve disputes and enforce our agreements. Retention periods may vary depending on the category of data and applicable laws.

General Retention Principles

  • Operational necessity: Data is kept for the duration of your account being active and for a reasonable period thereafter for the purposes described in this Privacy Policy.
  • Legal requirements: Certain records must be kept for fixed minimum periods under gaming, AML/CTF, accounting and tax laws.
  • Limitation periods: We may retain data for the duration of statutory limitation periods relevant to potential legal claims.

Indicative Retention Periods

  • Account and identification data: Normally retained for up to five (5) years after account closure or last activity, unless a longer period is required by AML/CTF or other legal obligations.
  • Transaction and gaming data: Typically retained for five (5) to seven (7) years from the relevant transaction or activity date, in line with regulatory and accounting requirements.
  • Marketing data: Retained until you withdraw your consent or object to marketing, after which it will be promptly deleted or anonymised, subject to technical constraints and record-keeping obligations.
  • Technical logs and security data: Retained for shorter periods, generally from several months up to two (2) years, unless needed longer for security investigations or legal proceedings.

Deletion and Anonymisation

  • Deletion on request: Where you validly request erasure and no overriding legal basis exists to retain your data, we will delete or irreversibly anonymise the relevant data.
  • Anonymisation: In some cases we may anonymise data so that it can no longer be associated with you; we may use such anonymised data indefinitely for statistical, analytical or reporting purposes.

Your Rights

We aim to respect and facilitate the exercise of your privacy rights in line with applicable data protection principles, taking into account international standards such as the GDPR. The rights described below may be subject to limitations and conditions under the laws that apply to our processing and to your circumstances.

Access to Your Data

  • You may request confirmation as to whether we process personal data about you and, if so, obtain a copy of such data together with information about the processing (e.g. purposes, categories, recipients, retention periods).

Correction (Rectification)

  • You have the right to request that inaccurate or incomplete personal data concerning you be corrected or completed. Where possible, you may also update certain details directly through your account settings.

Deletion (Erasure)

  • You may request the deletion of your personal data in certain circumstances, for example where the data is no longer necessary for the purposes for which it was collected, or where you have withdrawn consent (if consent was the legal basis and no other basis exists).
  • We may not be able to delete data that we are required to retain under AML/CTF, gaming or other legal obligations, or where retention is necessary for the establishment, exercise or defence of legal claims.

Restriction of Processing

  • You may request that we restrict the processing of your data in specific cases, for example where you contest the accuracy of the data or object to processing and we are verifying such objection.

Objection to Processing

  • You may object, on grounds relating to your particular situation, to processing based on our legitimate interests. In such cases, we will cease processing unless we demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or where processing is required for legal claims.
  • You may always object to the use of your data for direct marketing purposes, including profiling related to such marketing. If you object, we will stop using your data for this purpose.

Data Portability

  • Where technically feasible and applicable, you may request to receive certain personal data that you have provided to us in a structured, commonly used and machine-readable format, and to have that data transmitted to another controller where the processing is based on consent or contract and carried out by automated means.

Withdrawal of Consent

  • Where we rely on your consent (for example for marketing communications or non-essential cookies), you have the right to withdraw that consent at any time.
  • Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal, but it may limit certain functionalities or services.

Cost and Timeframes

  • Free of charge: We will handle your requests free of charge, unless they are manifestly unfounded or excessive (for example, repetitive requests), in which case we may charge a reasonable fee or refuse to act on the request.
  • Response time: We aim to respond to valid requests within thirty (30) days of receipt. If we require more time due to complexity or volume, we will inform you of the extension and reasons.

How to Exercise Your Rights

  • Contact: Submit your request by email to [email protected] or [email protected], or in writing to our postal address (Data Protection Department, Rabidi N.V., Dr. H. Fergusonweg 1, Willemstad, Curaçao).
  • Verification: To protect your account and data, we may require additional information to verify your identity before acting on your request.

Cookies & Tracking Technologies

We use cookies and similar technologies on the Website to ensure its proper functioning, enhance user experience, perform analytics and, where permitted, provide personalised marketing. Cookies are small text files that are stored on your device when you visit the Website.

Types of Cookies We Use

  • Strictly necessary cookies (session and persistent): These cookies are essential for the operation of the Website and enable core functionalities such as page navigation, secure login, fraud prevention and session management. The Website cannot function properly without these cookies.
  • Functional cookies: These cookies remember your preferences (such as language, region, login status) and enhance the functionality and personalisation of the Website.
  • Analytics and performance cookies (first-party and third-party): These cookies collect information about how visitors use the Website, such as which pages are visited most frequently and error messages encountered. We use this information to improve performance and usability.
  • Advertising and targeting cookies (third-party): Subject to your consent where required, these cookies track your browsing activities across websites to deliver more relevant advertisements and measure the effectiveness of our marketing campaigns.

Similar Technologies

  • Tracking pixels and tags: Small code fragments used in emails and on web pages to understand how users interact with our content (e.g. whether emails are opened or links clicked).
  • Local storage: Browser-based storage mechanisms used for similar purposes as cookies, such as remembering your preferences.

Managing Cookies

  • Browser settings: Most web browsers allow you to manage cookies, including blocking or deleting them. Please refer to your browser's help section for instructions.
  • In-site settings: Where available, you may manage certain cookie preferences through a cookie banner or settings panel on the Website.
  • Impact of disabling cookies: If you block or delete certain cookies, some Website features may not function correctly, and your user experience may be affected.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction or damage. While no system can be guaranteed as completely secure, we continuously work to maintain a high level of security appropriate to the risks.

Technical Security Measures

  • Encryption in transit: Data transmitted between your browser and our servers is protected using industry-standard Transport Layer Security (TLS 1.2 or higher).
  • Encryption at rest: Sensitive data fields are stored using encryption or other appropriate pseudonymisation techniques, where feasible and proportionate.
  • Access controls: Access to personal data is restricted to authorised personnel and service providers on a need-to-know basis, secured through authentication mechanisms and role-based permissions.
  • Network security: Firewalls, intrusion detection and prevention systems, and other safeguards are used to protect our infrastructure.

Organisational Measures

  • Policies and procedures: Internal policies govern data protection, information security, access management, and incident handling.
  • Staff training: Employees handling personal data receive regular training on data protection obligations, security best practices and confidentiality.
  • Vendor management: We conduct due diligence on key service providers and require appropriate data protection and security commitments through contractual arrangements.

Monitoring and Incident Response

  • Monitoring: Systems are monitored for unusual or suspicious activities that may indicate security issues.
  • Incident response: In the event of a data breach or security incident affecting personal data, we will take prompt steps to mitigate the impact, investigate the cause, and, where required by law, notify relevant authorities and affected individuals.

Where relevant, we aim to align our practices with recognised information security frameworks (such as ISO 27001-type controls or similar), although formal certification may not be held for all systems or entities.

Complaints & Contacts

If you have questions or concerns about this Privacy Policy or our handling of your personal data, you are encouraged to contact us first so that we can attempt to resolve the issue.

Contact Channels

  • Email (support and privacy): [email protected]
  • Email (general information): [email protected]
  • Postal address: Data Protection Department, Rabidi N.V., Dr. H. Fergusonweg 1, Willemstad, Curaçao.

Internal Complaint Procedure

  1. Submission: Send a detailed description of your complaint, including relevant dates, account details (if applicable) and supporting documents, using one of the contact channels above.
  2. Acknowledgement: We will acknowledge receipt of your complaint within seven (7) business days, where feasible.
  3. Investigation: Your complaint will be reviewed by the appropriate department (for example, Customer Support, Compliance or Data Protection). We may contact you for additional information if needed.
  4. Response: We will aim to provide a substantive response within thirty (30) days of receiving your complete complaint. If more time is required due to complexity, we will inform you of the delay and expected timeframe.

Supervisory Authorities and External Recourse

As Rabidi N.V. is established in Curaçao, the main regulatory oversight for gaming and certain compliance aspects is exercised by the relevant Curaçao authorities. The Website and services are not regulated by Australian authorities for gambling purposes, and Australian players generally have no direct recourse under Australian gambling regulation against Rabidi N.V. in relation to gaming services. However, depending on your location and applicable laws, you may have the right to lodge a complaint with a data protection or consumer authority in your jurisdiction of residence.

You may, for example:

  • Contact your national or regional data protection authority (for users located in jurisdictions with such authorities, such as EU/EEA member states) regarding our handling of personal data.
  • Seek independent legal advice as to any additional remedies that may be available under the laws applicable to you.

Details of specific authorities will vary by jurisdiction. We will reasonably cooperate with competent authorities in investigating and resolving valid complaints within the scope of applicable law.

Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements or the services we provide. The most current version will always be available on the Website.

Notification of Changes

  • Website publication: Any updated Privacy Policy will be posted on playzilla-aussie.com, with the "Last updated" date revised accordingly.
  • Direct notice: For material changes that significantly affect your rights or how we process your data, we will provide additional notice, which may include email notifications, Website banners, or alerts in your account dashboard.

Advance Notice and Your Options

  • Advance notice: Where feasible and required for significant changes, we will provide at least thirty (30) days' advance notice before the new terms take effect.
  • Your continued use: By continuing to use the Website or services after changes take effect, you are deemed to accept the updated Privacy Policy, unless a different form of consent is required by law.
  • Right to object or close account: If you do not agree with the updated Privacy Policy, you may object to certain changes (where permitted by law) or choose to close your account and discontinue use of the Website. In such cases, we will continue to process your data only as necessary to comply with legal obligations and for legitimate purposes such as dispute resolution.

Last updated: January 2026