burger icon
Cleopatra Сasino Casino
Log In

Privacy Policy

cleopatracasino, operated via cleo-patra.com, issues this privacy policy to explain how and why we process your personal information as a player or website visitor. This privacy policy applies to all users of our casino and related online services and is effective as of 1 January 2025.

Who We Are

OBSERVE: cleopatracasino operates exclusively under the domain cleo-patra.com. The legal operator is Cleopatra N.V., registered at Scharlooweg 39, Willemstad, Curaçao, with registration number 152125 and an E-gaming license OGL/2023/174/0082 (Curaçao Gaming Control Board, valid until 2025).

  • Responsible Person: Data protection matters are handled by our designated team available at [email protected] (Data Protection Officer contact point).
  • Physical Address: Scharlooweg 39, Willemstad, Curaçao.
  • Legal Entity: Cleopatra N.V., founded 2017, is the sole operator of cleopatracasino for the purposes of this policy and compliance with Curaçao and relevant AU data protection requirements.

EXPAND: No regional AU office; all requests processed centrally to ensure consistent application of international and AU-compliant data protection standards.

What Personal Data We Collect

OBSERVE: cleopatracasino via cleo-patra.com collects data essential for user management, regulatory compliance, and service provision, which includes:

  • Personal Details: Full name, date of birth, address, e-mail address, and phone number, submitted during registration, verification, or communication.
  • Technical Data: IP address, device information, browser type, operating system, connection logs, geolocation, and server log files collected automatically during access.
  • Payment Information: Banking details, payment card data, e-wallet details, and transaction histories, required for processing deposits and withdrawals.
  • Behavioral Data: Betting history, account activity, gaming preferences, click logs, time spent on site, and session analytics gathered for security, personalization, and legal obligations.
  • Cookies & Tracking: Use of session and persistent cookies, as well as similar tracking technologies (described in detail below) for authentication, analytics, and advertising purposes.

EXPAND: Data may be collected directly from users, automatically via website interactions, or from third parties (such as payment providers or affiliates, always ensuring AU-compliant safeguards).

Legal Basis for Processing

OBSERVE: cleopatracasino processes personal data strictly within the framework of applicable AU privacy law (including the Privacy Act 1988 (Cth) and Australian Privacy Principles), Curaçao requirements, and established iGaming standards.

  1. User Consent: Data is processed based on clear, informed consent for activities such as direct marketing, use of cookies for analytics, or special promotional participation. Users may withdraw consent at any time without penalty.
  2. Contract Fulfillment: Data is essential for executing the user agreement, managing casino accounts, verifying identity (KYC), processing payments, fulfilling withdrawal requests, managing responsible gambling self-exclusions, and providing customer support.
  3. Legal Obligations: cleopatracasino is legally required to process and retain certain data for regulatory compliance, anti-money laundering (AML), combating the financing of terrorism (CFT), taxation, and recordkeeping, especially for AU players and transactions subjected to periodic audits.
  4. Legitimate Interests: To prevent fraud and ensure integrity, data is processed for internal analytics, IT security, player protection, risk management, and service improvement, always ensuring privacy rights are not overridden by business needs.

REFLECT: cleopatracasino ensures all processing meets the highest AU compliance requirements, with data subjects' rights always respected, and additional protective clauses in place for international transfers and third-party disclosures.

Regional Compliance Note: This privacy policy fully adapts core Privacy Act and AU iGaming regulatory requirements, including proper consent mechanisms and detailed KYC/AML justifications.

Purpose of Processing

OBSERVE: Your personal and technical data is processed by cleopatracasino through cleo-patra.com for the following legally justified purposes:

  • Casino Service Provision: To register and manage user accounts, verify identity, enable gameplay, process transactions, and deliver customer support.
  • Service Improvement: For the analysis of gaming behavior and technical feedback to develop, optimize, and secure casino offerings in line with AU regulatory standards.
  • Marketing Communications: To inform you about new features, promotions, or loyalty programs, subject to your explicit opt-in consent and with a clear option to unsubscribe at any time.
  • Analytics: Aggregated and anonymized data is used for business analytics, service enhancements, and regulatory reporting, without compromising your individual privacy.
  • Fraud Prevention & Security: To identify suspicious activities, prevent unauthorised access, comply with anti-fraud and AML policies, and contribute to safer online gambling in the AU context.

EXPAND: Other possible uses include cooperation with authorities during regulatory inspections, responding to legal claims, and managing responsible gambling programs.

Disclosure & Sharing

OBSERVE: cleopatracasino will never sell your personal data. However, there are circumstances when limited data sharing is legally necessary or explicitly consented to by you:

  • Payment Partners: Your payment data may be disclosed to accredited banks, payment processors, and e-wallet providers (within or outside AU jurisdiction) solely for processing your deposits and withdrawals.
  • Service Providers: Trusted technical partners (e.g., IT infrastructure, game suppliers, customer support tools) may access certain data under strict confidentiality agreements, ensuring all AU and international data protection safeguards are upheld.
  • Regulators: Compliance with requests from regulatory authorities such as the Curaçao Gaming Control Board and, when applicable, AU regulatory agencies.
  • Affiliates: Your data may be shared with verified affiliate marketers only with your informed consent, subject to the same privacy guarantees.
  • Advertising Networks (with Consent): Certain profile data may be shared with advertising partners only with your express opt-in, for personalized promotions or targeted content.

REFLECT: All third parties are contractually obligated to process data only for the specific designated purposes, provide equivalent data protections, and not use or retain your personal information outside the specified scope.

International Transfers

OBSERVE: As the operational headquarters are in Curaçao, your data may be transferred outside AU. cleopatracasino rigorously ensures such international transfers comply with all applicable laws and provide robust protection for your rights.

  • Destination Countries/Regions: Your data may be transferred to Curaçao, the EU, or other trusted jurisdictions solely for the purposes set out above.
  • Protection Guarantees: All transfers are governed by contractual safeguards, such as Standard Contractual Clauses approved by relevant data protection authorities, and by ensuring that receiving parties implement AU-equivalent data protection standards.
  • Additional Protections: cleopatracasino monitors international legislative changes to ensure ongoing compliance, excluding data transfers to parties without adequate safeguards.

REFLECT: Users are entitled to request detailed information on the specific safeguards applied to international data transfers and exercise their rights as detailed below.

Data Retention

OBSERVE: cleopatracasino follows industry best practice for data minimization and storage limitation. Retention periods are defined in line with AU regulatory obligations and AML/KYC standards:

  • Personal Data: Retained for as long as your account is active and up to five (5) years following account closure or your last transaction, as required by anti-money laundering laws and regulatory authorities.
  • Technical and Behavioral Data: Retained for three (3) years after collection, unless ongoing legal or security obligations require longer retention.
  • Payment Data: Retained until payment is completed and reconciled, and then for five (5) years for audit and compliance purposes.
  • Cookies & Tracking Data: Stored according to cookie type - see Cookies section for detailed durations; typically, session cookies are deleted once your session ends, and persistent cookies stored no longer than two (2) years.

Deletion Criteria: Data is securely erased following expiry of the applicable retention period, upon your verified request (unless legally prohibited), or once its processing purpose has ceased.

REFLECT: cleopatracasino ensures secure destruction of data with robust deletion protocols and regular retention schedule reviews in line with current AU legal standards.

Your Rights

OBSERVE: Under AU law and best-practice global data standards, you have comprehensive rights in relation to your personal data held by cleopatracasino through cleo-patra.com:

  • Access: Request a copy of your personal data and information on how it is processed.
  • Correction: Rectify inaccuracies or incomplete details in your personal information.
  • Erasure ("Right to be forgotten"): Request deletion of your data, subject to regulatory retention requirements (e.g., for AML).
  • Restriction: Ask us to limit processing of particular types of data in certain circumstances (e.g., pending dispute resolution or legal review).
  • Objection: Object to data processing for direct marketing or on grounds relating to your particular situation, with prompt action upon validation.
  • Data Portability: Obtain your provided information in a structured, machine-readable format and transfer it to another provider where feasible.
  • Withdraw Consent: Where processing is based on your consent (e.g., marketing), you may withdraw this at any time without affecting the lawfulness of prior conduct.

Procedures: Most rights may be exercised by contacting [email protected]. cleopatracasino will respond to all validated requests within thirty (30) days or as required by AU law, subject to appropriate verification and regulatory constraints.

Cookies & Tracking Technologies

OBSERVE: cleopatracasino uses several types of cookies and tracking technologies to maintain core site functions, enhance your experience, and comply with regulatory expectations:

  • Session Cookies: Essential for authenticating users and managing sessions. These are temporary and expire at the end of each browsing session.
  • Persistent Cookies: Used for remembering preferences and login details across sessions, with lifetimes up to two (2) years, after which they are automatically deleted.
  • Third-Party Cookies: Placed by analytics services, advertising partners, and social media networks (with explicit consent). These facilitate measurement of site usage, retargeting, and performance marketing.

Purposes: Functional (site operation and security), analytics (usage trends and improvement), and advertising (personalized promotions, subject to your opt-in).

  • Cookie Management: You may manage or disable cookies via your browser settings or the dedicated cookie management panel on cleo-patra.com. Note that disabling certain cookies may impair the usability of casino services.

EXPAND: Full details are available in the site's Cookie Policy. For AU visitors, cleopatracasino implements clear consent banners and opt-out mechanisms as required under local privacy standards.

Data Security

OBSERVE: cleopatracasino commits to the strictest technical and organizational measures to protect your personal information, aligned with both AU and Curaçao requirements:

  • SSL Encryption: All data transmissions between your device and cleo-patra.com are secured with industry-standard SSL/TLS encryption protocols to prevent unauthorised interception.
  • Data Encryption: Critical personal and payment data is securely encrypted both in transit and at rest.
  • Access Controls: Data access is limited to authorised staff only, based on their roles, and monitored via access logs.
  • Security Audits: Regular internal and independent audits are conducted to assess vulnerabilities and continuously enhance security posture.
  • Staff Training: Employees receive ongoing training in privacy, IT security, and regulatory best practices, with disciplinary procedures for violations.

REFLECT: These measures are reviewed and updated regularly in line with emerging threats and AU-specific guidance. cleopatracasino has established robust incident response plans for timely notification of data breaches as required by law.

Complaints & Contacts

OBSERVE: If you have concerns about privacy, data processing, or your rights, cleopatracasino provides the following channels for inquiries and complaints:

  • Data Protection Contact: All inquiries should be addressed to our Data Protection Officer via [email protected]. Please include clear identification and details of your request or complaint.
  • Complaint Procedure: cleopatracasino investigates all complaints promptly. You will receive an acknowledgment within five (5) working days and a substantive response or resolution within thirty (30) days, or sooner if required by AU regulators.
  • Escalation: If dissatisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC).

EXPAND: All complaints are logged and reviewed as part of our continuous compliance and service improvement processes, with regular reporting to senior management.

Updates

OBSERVE: cleopatracasino may update this Privacy Policy from time to time to reflect regulatory changes, service improvements, or industry best practice. Users will be notified of material changes via e-mail and prominent site banners within cleo-patra.com.

  • Notification Procedure: All updates include a clear revision date and summary of material changes.
  • Continued Use: Continued use of cleo-patra.com services after notification signifies acceptance of the updated policy. Users are encouraged to review this policy regularly.

Last Revision Date: 1 January 2025