Neospin Privacy Policy
This policy explains how Neospin Casino ("Neospin", "we", "our") collects, uses, stores and discloses personal information when you visit the website or hold an account. We are committed to handling personal information consistently with the Australian Privacy Act 1988 and the thirteen Australian Privacy Principles (APPs) administered by the Office of the Australian Information Commissioner (OAIC). Each section below is tied to a specific APP so you can see exactly how we apply it.
Scope and Governing Law
This policy applies to all users who interact with the Neospin website at https://neo.playlink.me, the Neospin Android application and the Neospin iOS web app. It applies to information collected from Australian residents from the date of first contact and remains in force throughout the account lifecycle and applicable post-closure retention windows.
APP 1 — Open and Transparent Management of Personal Information
This document is itself the open expression of our information-handling practices. It is published in plain English on a public URL with no login wall, dated at the foot, and version-controlled. Material changes are flagged in the account inbox at least seven days before they take effect. A privacy contact channel ([email protected]) is provided for queries and complaints.
APP 2 — Anonymity and Pseudonymity
Where lawful, you may interact with Neospin without revealing your identity — for example, browsing the public site or reading bonus terms. Account creation, deposits, withdrawals and bonus redemption require verified identification by Australian anti-money-laundering law. We do not pretend a casino account can be anonymous; the AML/CTF Act 2006 makes that impossible.
APP 3 — Collection of Solicited Personal Information
We collect only the information needed to operate your account, satisfy KYC, and process payments. Specifically:
- Identity: full name, date of birth, residential address, AU mobile number, email.
- Verification documents: government photo ID, proof of address, proof of payment.
- Financial: payment method tokens (we do not store full card numbers — only the last four digits and a tokenised reference).
- Behavioural: pages visited, games played, bet history, session duration.
- Device: IP address, device ID, browser type, operating system.
We do not collect sensitive information (health, religion, political opinions) for any purpose.
APP 4 — Dealing With Unsolicited Personal Information
If we receive personal information we did not ask for — for example, a punter sending a passport scan to a marketing email — we either route it into our normal KYC pathway (with the user's confirmation) or destroy/de-identify it within 30 days. We log the receipt and the disposition.
APP 5 — Notification of the Collection
At the point of collection we tell you what we are collecting, why, and what happens if you do not provide it. This appears on the registration form, the deposit page, and the KYC upload screen. The notice quotes the relevant legal basis (AML/CTF for KYC; contract performance for game play; consent for marketing).
APP 6 — Use or Disclosure
We use personal information for the purposes for which we collected it: account management, transactions, fraud detection, regulatory reporting, marketing (when you have opted in). We do not sell personal information. We disclose information only to: payment processors (to settle deposits and withdrawals), KYC/AML verification providers, our regulator, AU and overseas law enforcement when legally compelled, and our internal team on a need-to-know basis.
APP 7 — Direct Marketing
You can opt out of marketing emails or SMS at any time from the Account → Communications panel, or via the unsubscribe link in any email. Opt-out takes effect within 24 hours. You cannot opt out of transactional messages (login alerts, withdrawal confirmations, security warnings) while your account is active — those are operational, not marketing.
APP 8 — Cross-Border Disclosure
Some processors operate outside Australia: the casino licensee in Curacao, the payment processors in the EU, the KYC verifier in the UK, and the customer-support floor in the Philippines. For each, we maintain a data-processing agreement requiring the processor to handle personal information consistently with the APPs. A list of overseas processors is published below and updated when it changes.
| Processor | Country | Purpose |
|---|---|---|
| Casino licensee | Curacao | Account host, regulatory reporting |
| KYC provider | UK | Identity verification |
| Card processor | EU | Card transactions |
| Customer support | Philippines | Live chat night shift |
| Cloud infrastructure | Singapore / EU | Hosting, backups |
APP 9 — Government-Related Identifiers
Australian government identifiers (drivers licence number, Medicare number, passport number) are collected only when AML law requires. They are not used to identify you outside the AML context, and they are not disclosed except to the AUSTRAC reporting pathway when triggered.
APP 10 — Quality of Personal Information
We update your record when you change details inside the account. If we discover an inconsistency (a mismatched address on a utility bill versus the registered address), we ask you to confirm or update before proceeding. Stale data is purged on the retention windows below.
APP 11 — Security of Personal Information
Account passwords are hashed with a current-generation algorithm. Identity documents are stored in an encrypted container (AES-256 at rest, TLS 1.3 in transit). Access is role-based and logged; AML staff see KYC documents, payments staff see transactions, support staff see contact data — no role sees everything by default. We retain records as follows:
- Active account data: for the life of the account.
- KYC and transaction records after account closure: 7 years (AML/CTF Act minimum).
- Marketing engagement data after opt-out: deleted within 30 days.
- Customer support transcripts: 2 years.
- Server access logs: 90 days.
APP 12 — Access to Personal Information
You can request a copy of all personal information we hold about you by emailing [email protected]. We respond within 30 days at no charge. Where the request is complex or voluminous we may extend by 30 days with notice. We refuse access only on the narrow grounds permitted by the Privacy Act, and we explain the refusal in writing.
APP 13 — Correction of Personal Information
If you find an error in the information we hold, write to [email protected] with the correction. We action verifiable corrections within seven days. If we disagree with a proposed correction, we attach your statement to the record so anyone reading it sees both views.
Complaints
Privacy complaints go first to [email protected]; we acknowledge within five business days and resolve within 30. If you remain unsatisfied, you may complain to the OAIC at oaic.gov.au or by phone on 1300 363 992.