Data Statement for RocketPlay Online

Effective date: 2026

RocketPlay Casino

RocketPlay Casino operates under a licence issued by the Curaçao Gaming Control Board (GCB). This Privacy Policy governs the collection, use, storage, and disclosure of personal information belonging to users who access the platform from Australia. The Privacy Act 1988 (Cth) and the thirteen Australian Privacy Principles (APPs) apply in full to this operation.

1. Who We Are

The operator of RocketPlay Casino is a company licenced by the Curaçao Gaming Control Board. For all privacy-related enquiries, contact: [email protected] . Requests are acknowledged within two business days and resolved within thirty calendar days.

2. What Personal Information We Collect

RocketPlay Casino collects personal information that is reasonably necessary for the provision of interactive gambling services and compliance with the AML/CTF Act 2006 (Cth). This includes full legal name, date of birth, residential address, email address, phone number, government-issued identification documents, and financial data including payment method details and transaction history.

We collect device identifiers, IP addresses, browser type, session duration, and behavioural data generated during platform use. This technical data is necessary for fraud detection, account security, and service integrity. We do not collect sensitive information as defined under the Privacy Act 1988 unless required by law or with explicit consent.

3. How We Collect Personal Information

Personal information is collected directly from you at the point of account registration, identity verification, and during ongoing account activity. We collect information through the website interface, support communications, and automated technical systems. Cookies and similar tracking technologies are used — their operation is detailed separately in our Cookie Policy.

Where you provide personal information about another individual — for example, a payment account holder — you confirm that person has consented to disclosure and is aware of this Policy.

4. Why We Collect and Use Personal Information

Each collection purpose corresponds to a specific operational or legal requirement. Account management requires name, contact details, and date of birth. Identity verification under AUSTRAC obligations requires government-issued documents and address confirmation. Financial processing requires payment method details to facilitate deposits and withdrawals. Fraud prevention and AML/CTF monitoring require transaction data and behavioural patterns. Responsible gambling support requires account activity data to detect signs of problematic behaviour.

Marketing communications are sent only with express consent. Consent can be withdrawn at any time by contacting [email protected] or using the unsubscribe mechanism in each communication.

5. Disclosure of Personal Information

Personal information is disclosed to third parties only where necessary and proportionate. Service providers including payment processors, identity verification services, and IT infrastructure providers receive data under strict contractual obligations requiring them to handle it in accordance with Australian privacy law.

AUSTRAC receives reports as mandated under the AML/CTF Act 2006. Law enforcement and regulatory bodies receive disclosures in response to lawful requests or court orders. No personal information is sold to third parties for commercial purposes. This is a fact, not a marketing statement.

Where personal information is transferred outside Australia — including to Curaçao — we implement contractual safeguards requiring equivalent privacy protections to those required under Australian law, consistent with APP 8.

6. Identity Verification and AUSTRAC Obligations

RocketPlay Casino is subject to the Anti-Money Laundering and Counter-Terrorism Financing Act 2006. This means we are legally required to verify the identity of each account holder before processing financial transactions. Verification requires a valid government-issued photo identification document and proof of residential address. In some circumstances, we are required to verify the source of funds. Failure to provide verification documents results in account suspension. This is a regulatory obligation, not a discretionary policy.

7. Responsible Gambling and Data Use

Account activity data — including deposit frequency, session duration, and betting patterns — is monitored to identify indicators of problem gambling. This monitoring is conducted under the National Consumer Protection Framework. Where indicators are detected, the operator may apply deposit limits, cooling-off periods, or initiate contact with the account holder. Data used for responsible gambling monitoring is not used for marketing profiling.

8. Data Security

Personal information is protected using industry-standard encryption in transit and at rest, access controls limiting data visibility to authorised personnel, and regular security assessments. No system is immune to breach. In the event of a data breach likely to result in serious harm, we will notify the Office of the Australian Information Commissioner (OAIC) and affected individuals in accordance with the Notifiable Data Breaches scheme under the Privacy Act 1988.

9. Data Retention

Personal information is retained for as long as necessary to fulfil the purposes described in this Policy and to comply with legal obligations. Under the AML/CTF Act 2006, transaction records and identification documents are retained for a minimum of seven years after the end of the customer relationship. Marketing data is deleted upon withdrawal of consent. After the retention period expires, data is securely destroyed or de-identified.

10. Your Rights Under the Australian Privacy Principles

You have the right to request access to personal information we hold about you. You have the right to request correction of inaccurate, out-of-date, incomplete, or misleading information. You have the right to complain about a breach of the APPs. Requests are handled in accordance with APP 12 and APP 13. We will respond within thirty days. If you are dissatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner at www.oaic.gov.au.

11. Cookies and Tracking Technologies

Cookies and related technologies are used on this platform. Full details — including categories of cookies, their purposes, and your opt-out options — are set out in the Cookie Policy, available on the website.

12. Changes to This Policy

This Policy may be updated to reflect changes in law, regulatory guidance, or operational practice. The revised Policy will be published on the website with an updated effective date. Continued use of the platform after publication constitutes acceptance of the revised terms.

13. Contact and Complaints

For privacy enquiries, access requests, correction requests, or complaints, contact: [email protected] . If your complaint is not resolved to your satisfaction, you may escalate to the Office of the Australian Information Commissioner (OAIC): www.oaic.gov.au / GPO Box 5218, Sydney NSW 2001.