WinSpirit
Login Register
WinSpirit
🎁 Play Register

Winspirit Casino Privacy Policy

Effective from: 20 May 2026

Applies to: all visitors, registered players and prospective players of Winspirit Casino accessing the service from Australia.

Plain-English statement: this policy explains, in real terms, what personal information we collect about you, why we collect it, who we share it with, how long we keep it, and the rights you have to inspect, correct or complain about how we handle it. It is drafted against the Australian Privacy Principles (APP 1–13) under the Privacy Act 1988 (Cth).

1. Who This Policy Covers

This policy covers Winspirit Casino and the entities operating winspirit2026.com on its behalf. It does not cover third-party sites you reach by clicking external links from our pages — each of those carries its own privacy policy and you should read theirs before submitting information to them.

2. The Information We Collect (APP 3)

We only collect personal information that is reasonably necessary for one or more of our functions: running your account, processing deposits and withdrawals, meeting regulatory and anti-money-laundering obligations, communicating with you about promotions you've opted into, and improving the service.


Information you give us directly:

  • Identity information at registration: full legal name, date of birth, residential address, country of residence, email and phone number.

  • KYC documents: government photo ID, proof of address (utility bill, bank statement), and source-of-funds documentation if requested under AML/CTF rules.

  • Payment information: bank account or PayID details for withdrawals; deposit-method identifiers (such as the masked Bitcoin wallet you sent from, or your Neosurf voucher number).

  • Communication content: live chat transcripts, emails, complaint submissions.

Information we collect automatically:

  • Device and browser data: IP address, browser type, operating system, device fingerprint.

  • Behavioural data inside the product: login times, game launches, stakes, session length, balance movements.

  • Cookies and similar technologies (see Section 9).

Information from third parties:

  • Identity-verification confirmations from accredited KYC providers we instruct.

  • Payment confirmation and chargeback notifications from our payment processors.

  • Self-exclusion register status from BetStop (federal AU register) when applicable.

3. Why We Collect It (APP 6)

We use your personal information only for the purposes you would reasonably expect:

  • To open and maintain your Winspirit account.

  • To process deposits, wagers and withdrawals.

  • To verify your identity, age, and source of funds, as required by the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) and equivalent Curaçao Gaming Control Board requirements.

  • To detect, investigate and prevent fraud, money laundering, problem-gambling indicators and account-takeover attempts.

  • To send service messages (cashier confirmations, KYC requests, security alerts) — these are not marketing and you cannot unsubscribe from them while the account is open.

  • To send marketing messages only where you have opted in. You can opt out at any time from your account settings or via the unsubscribe link in every marketing email.

We do not sell your personal information to third parties for advertising purposes.

4. Who We Share It With (APP 6 and APP 8)

We share personal information only where it is necessary for the purposes above, with the following categories of recipient:

  • Payment processors and banks involved in your deposits and withdrawals.

  • KYC and identity-verification providers we instruct.

  • IT, hosting and cybersecurity service providers under written confidentiality terms.

  • Regulators and law-enforcement agencies where we are legally obliged to disclose information (under AML/CTF, court orders, or licensing-authority requests).

  • Professional advisers (lawyers, auditors) bound by confidentiality.

Some of these recipients are located outside Australia. Where we transfer personal information overseas, we take reasonable steps to ensure the overseas recipient handles your information consistently with the APPs, including contractual data-protection obligations (APP 8).

5. How We Store and Protect It (APP 11)

Personal information is stored on servers protected by industry-standard physical and logical controls: encryption at rest (AES-256), encryption in transit (TLS 1.2+), restricted role-based access for staff, regular penetration testing, and continuous monitoring for anomalous access.


No system is perfectly secure, and we do not promise otherwise. In the event of a notifiable data breach under Part IIIC of the Privacy Act, we will notify the Office of the Australian Information Commissioner (OAIC) and affected players in accordance with the Notifiable Data Breaches scheme.

6. How Long We Keep It (APP 11.2)

We retain personal information only as long as needed for the purposes for which it was collected, plus any legally mandated retention period.

  • Account and KYC data: retained for seven years following account closure, as required by the AML/CTF Act 2006 (Cth). After seven years, the records are irreversibly purged.

  • Transaction records: retained for seven years.

  • Live chat and email correspondence: retained for three years from the date of last activity.

  • Marketing-opt-in records: retained for the duration of your opt-in plus 30 days after withdrawal of consent.

7. Your Rights (APP 12 and APP 13)

You have a right to:

  • Access the personal information we hold about you. Request via [email protected] — we respond within 30 days at no charge.

  • Correct any personal information that is inaccurate, out of date, incomplete, irrelevant or misleading.

  • Complain about a suspected breach of the APPs (see Section 10).

  • Withdraw consent to marketing communications at any time.

Some access requests may be limited where granting access would compromise an ongoing investigation, breach another person's privacy, or fall under a Privacy Act exemption. We will explain in writing if a limit applies.

8. Children

Our service is strictly for adults aged 18 and over. We do not knowingly collect personal information from anyone under 18. If we become aware that we hold information about a minor, we will close the account and irreversibly purge the data.

9. Cookies and Similar Technologies

We use cookies, local storage and similar technologies to keep you signed in, remember preferences, measure how the service is used, and detect fraud. You can disable cookies in your browser, but parts of the service will not function correctly without them.


We use a small number of third-party analytics tools to understand aggregate site usage. These tools receive only aggregated and pseudonymised data, not the personal information from your account.

10. Complaints

If you believe Winspirit has breached the APPs or this policy, contact us first at [email protected]. We will acknowledge your complaint within 7 days and respond substantively within 30 days.


If you remain dissatisfied, you may escalate to the Office of the Australian Information Commissioner (OAIC) — the independent statutory regulator for the Privacy Act 1988. OAIC contact details and an online complaint form are available at oaic.gov.au.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be notified by email to registered players at least 14 days before they take effect, and the "Effective from" date at the top of this page will be updated.

12. Contact

Privacy questions: [email protected]

General support: see our Contact & Support page.