burger icon
Paradise 8 Casino
Log In

Privacy Policy

This privacy policy explains how paradise8 (operating via paradise-play.com) collects, uses, discloses, and protects your personal information when you use our services. The policy applies to all players and website visitors in Australia. Effective as of 1 January 2025.

Who We Are

OBSERVE: The responsible gaming operator for paradise8 via paradise-play.com is part of the AffDynasty Group. Legal identifiers and address specifics are not disclosed but regulatory transparency is pursued per AU compliance best practices. EXPAND: As required by Australian privacy standards, users must have access to key contact channels and a clear operator profile. REFLECT: Legal entity and user contact points are presented below:

  • Operator: AffDynasty Group, trading as paradise8 on paradise-play.com.
  • Legal Address & Registration: Not specified; available on request via official email as per AU transparency norms.
  • Parent Company: AffDynasty Group (since 2005).
  • Contact for Privacy Issues: Data Protection Officer (DPO), email: [email protected].
  • Official Website: https://paradise-play.com

What Personal Data We Collect

OBSERVE: Data flows are mapped for gambling operations, user authentication, payments, and compliance (KYC/AML). EXPAND: All categories-as required by AU regulatory guidance and industry standards-are specified, including additional inferences on behavioral monitoring and technical tracking. REFLECT: Data types are organized for comprehensiveness and user transparency:

  • Personal Identifiers: Full name, date of birth, residential address, email address, phone numbers, identification documents submitted for verification and regulatory obligations.
  • Account Data: Username, password (hashed), account history, authentication records.
  • Payment & Financial Data: Bank account details, payment card information, transaction history, withdrawal, and deposit logs.
  • Technical & Device Data: IP addresses, device identifiers, browser and OS details, connection times, session logs.
  • Behavioral Data: Game play history, betting patterns, transaction activity, site navigation, and interaction logs.
  • Cookies & Tracking Data: Session and persistent cookies, third-party analytics scripts, advertising trackers.
  • Communication Records: Customer support emails, chat logs, correspondence history.

Legal Basis for Processing

OBSERVE: AU Privacy Act 1988 (Cth) and Anti-Money Laundering & Counter-Terrorism Financing Act compliance demands clear, lawful grounds for each processing activity. EXPAND: Harmonize consent, contractual, legitimate interest, and legal obligation bases. REFLECT: Processing is underpinned by the following legal grounds:

  1. User Consent: Where required (e.g., marketing communications, certain cookies), express consent is sought and may be withdrawn at any time.
  2. Contractual Necessity: Data processing necessary to establish and maintain your gaming account, process payments, and deliver contracted services.
  3. Legitimate Interests: Processing for operational integrity, anti-fraud mechanisms, security monitoring, player analytics, subject to fundamental rights and interests of users.
  4. Legal Obligations: Compliance with statutory duties such as KYC/AML, responsible gambling monitoring (including self-exclusion), and government reporting requirements.

Regional Compliance Note: Irrespective of processing ground, all user data is treated per the highest standard afforded under AU law.

Purpose of Processing

OBSERVE: Data usages detailed as required for AU gambling operations. EXPAND: Marketing and analytics purposes clarified, including internal development and legal risk mitigation. REFLECT: Purposes, grouped for clarity:

  • Service Provision: Operating player accounts, carrying out gaming transactions, facilitating payments and withdrawals, enabling account verification.
  • Regulatory Compliance: Fulfilling KYC/AML, responsible gambling obligations, and mandatory reporting under Australian law.
  • Security & Fraud Prevention: Monitoring system integrity, preventing unauthorised access or fraudulent activities, and ensuring safe gaming environment.
  • Service Improvement & Analytics: Using behavioral and technical data for performance tracking, product enhancement, and customer experience analysis.
  • Marketing Communications: Sending promotional emails or offers (only with explicit consent), subject to opt-out at any time.

Disclosure & Sharing

OBSERVE: Potentially involved data recipients considered, AU regulatory requirements for disclosures identified. EXPAND: Specify contractual safeguards with third parties. REFLECT: Data may be shared as follows:

  • Payment Partners: Securely sharing payment and transaction details with banking and financial intermediaries for deposits and withdrawals.
  • Service Providers: IT/cloud hosting, marketing, analytics, and customer support organizations engaged under strict confidentiality and data protection contracts.
  • Regulatory Authorities: Disclosure when required by law (e.g., auditing, AML reporting, responsible gambling enforcement) to AU or international regulatory agencies.
  • Affiliates & Marketing Networks: Disclosure for marketing purposes only with your explicit consent, in compliance with AU direct marketing laws.
  • Legal/Business Transactions: In case of reorganization, merger, sale, or group restructuring involving AffDynasty Group, user data will be subject to appropriate protective agreements.

All disclosures: Limited to the minimum necessary data and safeguarded by legally binding agreements.

International Transfers

OBSERVE: Data may transit or reside across jurisdictions as per global gambling sector practices, while AU law mandates adequate protections. EXPAND: AU Privacy Principle 8 requirements apply for cross-border disclosures. REFLECT: International transfers conducted as follows:

  • Potential Destinations: Data may be transferred to service providers in jurisdictions including the EEA, UK, and other countries where technical, support, or data-processing infrastructure is located.
  • Protection Measures: All international transfers are subject to contractual safeguards, including Standard Contractual Clauses, robust security practices, and, where required, explicit user consent.
  • Legal Safeguards: Transfers are only made where the recipient country offers a comparable level of privacy protection or appropriate safeguards are contractually stipulated.

Regional Compliance Note: User rights and protection under the AU Privacy Act continue to apply irrespective of data location.

Data Retention

OBSERVE: Categorical retention periods and deletion triggers defined by AU law and gaming sector risk controls. EXPAND: Explicit periods and criteria per legal and operational standards. REFLECT: Data is retained as follows:

  • Account Data: No longer than 5 years following account closure or last user activity, to meet statutory and regulatory obligations, unless otherwise legally mandated.
  • KYC/AML Data: Maintained for a minimum of 5 years post-account closure, per AU regulatory requirements.
  • Payment & Transaction Data: Retained for up to 7 years for legal, auditing, and fraud prevention purposes.
  • Behavioural and Technical Data: Held up to 2 years after collection for analytics, security, and service improvement unless longer retention is necessary for ongoing investigations.
  • Deletion Triggers: Data is deleted or permanently anonymised when: the retention period expires, processing purpose ends, or upon validated user request unless retention is required by law.

Your Rights

OBSERVE: AU Privacy Rights mirrored on the GDPR-like principles for user access, rectification, and erasure. EXPAND: Provide stepwise instructions and exceptions as per AU regulations. REFLECT: Users have the following rights:

  1. Access: Request a copy of your personal data held by paradise8 at paradise-play.com.
  2. Correction: Request correction of inaccurate or incomplete information in your account records.
  3. Deletion: Request deletion of personal data, unless processing is required to fulfill a legal obligation or is necessary for lawful operations.
  4. Restriction: Request limited data processing in specific circumstances (e.g., accuracy challenge, processing objection).
  5. Objection: Object to processing for direct marketing or other legitimate interest purposes.
  6. Data Portability: Request that your information be transmitted in a structured, machine-readable format to you or another provider.
  7. Withdrawal of Consent: Withdraw your permission for marketing communications or other consent-based processing at any time without penalty.

Exercise of Rights: All rights can be exercised by contacting the DPO at [email protected].

Cookies & Tracking Technologies

OBSERVE: Cookie usage categorized, management options presented for user empowerment. EXPAND: Types and purposes of cookies broken down for legal clarity. REFLECT:

  • Session Cookies: Essential for secure interaction and navigation, valid only for the duration of your browser session. Used to maintain login state and basic settings.
  • Persistent Cookies: Stored on your device between visits, used for remembering preferences and facilitating faster logins.
  • Third-Party Cookies: For analytics (e.g., traffic measurement), advertising performance, and limited marketing (with consent).

Cookie Management: You can control cookies via your browser settings and, where provided, through internal account panel preferences. Disabling certain cookies may affect your ability to use all site features.

For further details, see our separate Cookie Policy or contact our support team.

Data Security

OBSERVE: AU privacy law mandates "reasonable steps" for data safeguarding. EXPAND: Outline technical/organizational security layers. REFLECT:

  • Encryption: All sensitive personal and financial information is encrypted in transit (SSL/TLS) and at rest using industry-standard algorithms.
  • Access Controls: Staff access is limited to necessity, protected by authentication, role-based assignment, and continuous monitoring.
  • Security Audits: Regular independent and internal audits, vulnerability testing, and real-time security monitoring.
  • Staff Training: Employees receive mandatory data protection and confidentiality training as part of onboarding and ongoing professional development.
  • Incident Handling: Prompt breach notification procedures exist in compliance with AU Notifiable Data Breaches scheme.

Complaints & Contacts

OBSERVE: AU privacy rules require simple complaint mechanisms and responsive contacts. EXPAND: Set out user recourse and escalation options. REFLECT:

  • Primary Contact: All privacy inquiries should be directed to the DPO by email: [email protected].
  • Complaint Procedure: On receipt of a privacy complaint, paradise8 investigates and provides a formal response within 30 days. If you are dissatisfied, you may raise your concern with the Office of the Australian Information Commissioner (OAIC).
  • Support Channels: Support will assist via the official contact email listed above. Additional information may be provided during the complaint process where necessary for resolution.

Updates

OBSERVE: Policy change communication mandated for trust and legal compliance. EXPAND: State procedures and effective date. REFLECT:

  • Policy Revisions: Any material changes to this privacy policy will be notified via website updates and/or direct user email before becoming effective.
  • Notification Mechanism: Users are encouraged to periodically review this page for the latest privacy practices.
  • Last Update: 1 January 2025.

Regional Compliance Note: This privacy policy ensures adherence to all applicable Australian privacy and gambling data protection requirements as of 2025 and remains under ongoing review for continued regulatory conformity.