burger icon
Ozwins Review Australia
Log In

Privacy Policy

This privacy policy explains how Ozwins, operating the website ozwins-au.com (the "Website"), collects, uses, discloses, and protects personal information of Website visitors and individuals who interact with our content, support channels, and related services. It applies to all users who access the Website from Australia or elsewhere, whether or not they proceed to register with or play at any third-party gambling operator referenced or reviewed on the Website. This privacy policy is effective from 1 January 2026.

Who We Are

OBSERVE: The provided corporate data does not specify a confirmed legal entity name, registered office, or company number for the operator behind Ozwins / ozwins-au.com.

EXPAND: To avoid misleading users or fabricating details, this section must (a) clarify that the site is an independent informational/review resource, (b) identify the contact channel that is actually available, and (c) acknowledge that the underlying gambling operator may be an offshore entity licensed under Curacao Master License 365/JAZ, while not claiming to be that operator.

REFLECT: We therefore provide transparent information on our role and contact point without inventing non-verified corporate details.

Ozwins is an independent online information and review service focused on offshore online casinos that target Australian players, including brands operating under Curacao Master License No. 365/JAZ. The Website is accessible at https://ozwins-au.com and is not itself a gambling operator.

As at 1 January 2026, the following information applies:

  • Operator / Legal entity name: not publicly specified in available source data. The Website is presented as an informational portal and not as the operating company behind any casino brand.
  • Registered/Legal address: not specified. No reliable registry data is available for publication.
  • Registration / company number: not specified.
  • Gaming licence of referenced operator(s): Curacao Master Licence 365/JAZ (Gaming Curacao), noted in public materials as the licensing basis for certain Ozwin-branded gambling services. This licence relates to the offshore gambling operator, not to Ozwins as an information site.

Data Protection Contact

  • Data Protection Contact / Responsible Person: Data Protection Officer (DPO) - Ozwins
  • Email: [email protected] (primary and critically important contact channel for privacy queries)
  • Phone: not specified
  • Postal address: not specified (contact via email in the first instance)

If and when a full legal entity name, registered address, or additional contact details become available, this section will be updated.

What Personal Data We Collect

OBSERVE: Users may browse the Website, contact support, follow outbound links to gambling operators, and interact with cookies and tracking tools. Personal, technical, behavioural, and payment-related information can be involved.

EXPAND: Even if gambling transactions occur on third-party domains, the Website may still collect technical logs, marketing preferences, and limited interaction data. The policy therefore must distinguish between (a) data collected directly by Ozwins and (b) data processed by third-party casino operators and partners.

REFLECT: Data categories are presented clearly so users understand what we handle and what third parties handle.

Personal Identification and Contact Data

  • Basic identifiers: name or screen name you provide in forms or emails.
  • Contact details: email address, and any phone number or social media handle you choose to share when contacting [email protected].
  • Support communications: content of your messages, feedback, complaints, and our replies.

Technical and Usage Data

  • Device and connection data: IP address, approximate location derived from IP, browser type and version, operating system, device identifiers, language settings, and referral URLs.
  • Server logs: access times, pages viewed, click paths, error logs, and interaction with on-site elements (e.g. links to third-party casinos, banners, review sections).
  • Security-related logs: data relevant for detecting fraud, abusive behaviour, or bot traffic.

Payment and Transaction Data

  • Ozwins does not process payments directly and does not collect full payment card numbers or banking credentials.
  • We may, however, receive aggregated or pseudonymised information from advertising, affiliate, or tracking partners (for example, that a user from our Website registered or deposited at a partner casino) for analytical and commercial reporting.
  • Any detailed payment or KYC data you provide to third-party casinos is handled under their own privacy policies and regulatory obligations.

Behavioural and Profile Data

  • Interaction data on our Website: clicks on links and banners, time spent on pages, navigation patterns, and engagement with reviews or guides.
  • Marketing and preference data: your marketing consents or opt-outs (e.g. newsletter subscriptions), topic preferences, and record of communications.
  • Gambling-related behaviour (indirect): where provided by partners in aggregated or pseudonymised form, such as registration, activity, or conversion statistics linked to our traffic sources.

Cookies and Similar Technologies

  • Cookies: small text files stored on your device that allow us to remember preferences, analyse traffic, and attribute referrals.
  • Pixel tags and scripts: code snippets from analytics or advertising partners that help measure performance and traffic sources.
  • Device identifiers: browser or device IDs used for security, analytics, and attribution.

More details are provided in the "Cookies & Tracking Technologies" section.

Legal Basis for Processing

OBSERVE: The Website targets users in Australia and may incidentally reach users in other regions, including the EU. Data protection obligations must therefore accommodate multiple legal bases, including consent, contract, legitimate interests, and legal obligations.

EXPAND: Even though the Website is an informational portal and may be associated with offshore gambling services regarded as illegal for Australian residents under the Interactive Gambling Act 2001 (as enforced by ACMA), personal data processing must still comply with applicable privacy standards (e.g. GDPR-style principles and Australian privacy expectations).

REFLECT: We explain clearly which legal ground applies to which type of processing.

Consent

  • We rely on your explicit consent when:
    • sending you direct electronic marketing communications (such as newsletters), where required by law;
    • using certain non-essential cookies (e.g. advertising cookies) where cookie consent tools are applied;
    • processing any optional or sensitive information you deliberately provide beyond what is necessary.
  • You may withdraw your consent at any time (see "Your Rights").

Contractual Necessity

  • Where we offer user accounts, subscriptions, or other logged-in services (now or in future), we process personal data as necessary to:
    • create and manage your account on the Website;
    • provide requested content, alerts, or communications;
    • handle your support requests or other interactions you initiate.
  • This processing is necessary to perform a contract or to take steps at your request prior to entering a contract.

Legitimate Interests

  • We process data where necessary for our legitimate interests, provided these are not overridden by your rights and interests, including:
    • operating, maintaining, and securing the Website;
    • measuring traffic, performance, and effectiveness of our content and affiliate relationships;
    • preventing fraud, abuse, or security threats;
    • conducting anonymised or aggregated analytics to improve our services;
    • defending legal claims, managing disputes, and enforcing our terms.

Compliance with Legal Obligations

  • Where applicable, we may process personal data to:
    • respond to lawful requests from regulators, law-enforcement, or courts;
    • comply with record-keeping, tax, or reporting requirements imposed in relevant jurisdictions;
    • co-operate with authorities such as the Australian Communications and Media Authority (ACMA) in connection with blocking orders or investigations concerning offshore gambling services.

Purpose of Processing

OBSERVE: The Website exists to provide information about online casinos (including offshore operators targeting Australia), and to monetise via advertising and affiliate relationships.

EXPAND: Data is needed to deliver content, manage relationships with partners, carry out analytics, address user queries, ensure security, and undertake limited marketing.

REFLECT: We list purposes in a structured, transparent manner.

  • Provision of Website and Content:
    • to display reviews, guides, ratings, and educational content about gambling and related services;
    • to adapt content layout and language to your device, browser, and preferences;
    • to ensure the Website functions properly and is accessible.
  • Customer Support and Communication:
    • to respond to queries sent to [email protected];
    • to manage complaints, feedback, and dispute-related communications;
    • to send important non-marketing notices about this privacy policy or our terms.
  • Analytics and Service Improvement:
    • to understand how users interact with the Website;
    • to optimise navigation, content placement, and site performance;
    • to analyse the effectiveness of links to third-party casinos and partners in aggregated form.
  • Marketing and Affiliate Activities:
    • to provide marketing communications where you have consented;
    • to attribute traffic and conversions to our partners and calculate commissions, using cookies and tracking tools;
    • to display or recommend offers and brands that may be relevant to your interests, subject to applicable marketing rules.
  • Fraud Prevention and Security:
    • to monitor for abnormal traffic patterns, automated access, or malicious activities;
    • to protect the integrity and availability of our systems and data;
    • to investigate suspected breaches or misuse of the Website.
  • Legal and Regulatory Compliance:
    • to respond to information requests by competent authorities;
    • to enforce or defend legal rights and comply with applicable laws and regulatory guidance, including in Australia.

Disclosure & Sharing

OBSERVE: The Website, as an affiliate/review site, necessarily interacts with multiple third-party service providers, casino operators, regulators, and dispute-resolution entities such as CDS.

EXPAND: Data sharing can be direct (e.g. support emails hosted by an external provider) or indirect (e.g. analytics tools, affiliate platforms). There must also be a clear warning that once users leave the Website for a third-party domain, those third parties become independent controllers of their data.

REFLECT: We set out the categories of recipients, bases for disclosure, and relevant safeguards.

Service Providers (Processors)

  • IT and hosting providers: companies that host our servers, backup systems, and technical infrastructure.
  • Analytics providers: tools that help us understand Website usage in pseudonymised or aggregated form.
  • Communication and ticketing tools: email hosting and support systems used to manage correspondence with you.

Affiliate, Advertising, and Partner Networks

  • We work with affiliate networks and partner operators to track referrals from our Website to third-party casinos and related services.
  • Information shared is usually limited to:
    • technical identifiers (e.g. referral IDs, cookies);
    • aggregated statistics about clicks, registrations, and conversions.
  • Any detailed personal and payment data you provide directly to a casino or other partner is processed according to their own privacy policies and licences (for example, under Curacao Master Licence 365/JAZ for certain offshore operators).

Regulators and Public Authorities

  • We may disclose data when required to:
    • comply with applicable laws, court orders, or lawful requests;
    • co-operate with authorities such as the Australian Communications and Media Authority (ACMA) in connection with investigations or blocking orders regarding illegal offshore gambling services;
    • respond to law-enforcement requests where legally obliged.

Dispute Resolution Bodies and Certification Entities

  • Where relevant, and only with appropriate legal basis, we may share information with:
    • CDS Corporation or similar bodies in connection with certification or dispute resolution involving partner casinos;
    • other dispute-resolution services engaged by users or partners.

Corporate Transactions

  • In the event of a merger, acquisition, restructuring, or transfer of assets relating to Ozwins or the Website, personal data may be transferred to the acquiring entity subject to confidentiality and continued protection under this policy or an equivalent policy.

Legal Protection

  • We may disclose information where reasonably necessary to:
    • protect our rights, privacy, safety, or property, and/or that of our users, partners, or the public;
    • detect, prevent, or address fraud, security incidents, or other harmful behaviour.

International Transfers

OBSERVE: Servers, partners, and regulators may be located in multiple jurisdictions, including but not limited to Curacao, the European Union, and Australia.

EXPAND: Cross-border transfers require appropriate safeguards under modern data-protection standards (e.g. GDPR-style frameworks). Although the Website targets Australia, users may be located elsewhere, and some vendors may be outside Australia and the EU.

REFLECT: We outline how we protect data during international transfers.

  • Hosting and Processing Locations:
    • Your data may be processed in data centres or by service providers located in the European Union, the United Kingdom, or other jurisdictions offering comparable protections.
    • Some partners, such as offshore casino operators licensed in Curacao under Master License 365/JAZ, may process personal data in Curacao or other non-EU / non-Australian jurisdictions.
  • Safeguards for International Transfers:
    • Where data is transferred from the EU/EEA or other regions with transfer restrictions, we seek to rely on:
      • EU Standard Contractual Clauses (SCCs) or equivalent contractual protections;
      • appropriate technical and organisational measures, including encryption and access controls;
      • data minimisation, pseudonymisation, or aggregation where possible.
    • For transfers solely within or to Australia, we apply privacy standards consistent with the Australian Privacy Principles where applicable.
  • Third-Party Operators:
    • When you access third-party casino sites via links from Ozwins, those sites become independent controllers of your data and may transfer it according to their own policies and licences (for example, Curacao or other offshore jurisdictions).
    • We encourage you to read each operator's privacy policy and terms carefully before registering or depositing.

Data Retention

OBSERVE: Retention periods should be limited to what is necessary, while recognising that logs and records may be needed for security, legal, and accounting reasons.

EXPAND: Different categories of data have different retention needs: contact records, technical logs, marketing consents, and partner reporting data.

REFLECT: We specify indicative retention periods and criteria.

  • Contact and Support Data:
    • Emails and support tickets sent to [email protected] are typically retained for up to 5 years from the date of last interaction, to manage follow-ups, handle disputes, and meet legal obligations.
  • Technical and Security Logs:
    • Server logs (IP address, access times, technical events) are generally kept for 6 to 24 months, depending on security and operational requirements.
    • In cases of suspected fraud, abuse, or security incidents, relevant logs may be retained longer as necessary to investigate and resolve the matter.
  • Marketing and Consent Records:
    • Records of your marketing preferences and consent withdrawals are kept for as long as you remain subscribed and for up to 3 years thereafter, to demonstrate compliance with marketing rules.
  • Affiliate and Reporting Data:
    • Aggregated and pseudonymised statistics relating to traffic, clicks, and conversions via affiliate networks may be retained for up to 7 years, where required for accounting, auditing, and contractual reasons.
  • Anonymised Data:
    • Data that has been irreversibly anonymised may be stored indefinitely, as it no longer constitutes personal information.
  • Criteria for Deletion:
    • Data is deleted or anonymised when:
      • it is no longer necessary for the purposes for which it was collected;
      • statutory or contractual retention periods have expired;
      • a valid deletion request is made and no overriding legal grounds exist to retain it.

Your Rights

OBSERVE: Users may be subject to different privacy regimes (e.g. EU GDPR-style laws and other national frameworks). The brief references GDPR and Mexican privacy law alignment, even though the Website primarily targets Australia.

EXPAND: To ensure robust protection, we adopt a rights framework substantially aligned with GDPR principles (access, rectification, erasure, restriction, objection, portability, consent withdrawal) and, where relevant, similar Latin American rights (like ARCO rights - Access, Rectification, Cancellation, Opposition - as found in Mexican law), while clarifying that the competent authority may vary by user location.

REFLECT: We provide a single, coherent set of user rights and associated procedures, with a 30-day default response time and no fee in ordinary cases.

Overview of Your Rights

  • Right of Access: to obtain confirmation whether we process your personal data and to receive a copy of such data, together with information about how it is used.
  • Right to Rectification (Correction): to have inaccurate or incomplete data corrected or updated.
  • Right to Erasure ("Right to be Forgotten" / Cancellation): to request deletion of your personal data where:
    • it is no longer necessary for the purposes collected;
    • you withdraw consent and there is no other legal basis for processing;
    • you successfully object to processing; or
    • the data has been processed unlawfully.
  • Right to Restriction of Processing: to request that we limit processing of your data in certain cases (for example, while we verify its accuracy or assess an objection).
  • Right to Object: to object to processing based on our legitimate interests, including profiling, and to object at any time to the use of your data for direct marketing.
  • Right to Data Portability: to receive personal data you provided to us in a structured, commonly used, machine-readable format, and to have it transmitted to another controller where technically feasible and legally required.
  • Right to Withdraw Consent: where processing is based on your consent, you may withdraw that consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

How to Exercise Your Rights

  1. Submit Your Request:
    • Contact our Data Protection Officer at [email protected].
    • Indicate "Privacy Request" in the subject line and clearly state which right(s) you wish to exercise.
    • Provide sufficient information to identify yourself and, where applicable, your interaction with the Website (e.g. email address used, approximate dates of contact).
  2. Verification:
    • We may request additional information to verify your identity and ensure that personal data is not disclosed to or altered by unauthorised persons.
  3. Response Timeframe:
    • We aim to respond to all valid requests within 30 days of receipt.
    • If your request is complex or numerous, we may extend this period by up to a further 30 days, in which case we will inform you of the extension and reasons.
  4. Fees:
    • We will handle your request free of charge, unless it is clearly unfounded or excessive, in which case we may charge a reasonable fee or refuse to act, as permitted by applicable law.
  5. Limitations:
    • Your rights may be subject to certain legal limitations, for example where:
      • retention is required by law or necessary for the defence of legal claims;
      • the rights of other individuals would be adversely affected by disclosure;
      • we must retain certain logs for security, anti-fraud, or regulatory reasons.

Nothing in this section is intended to exclude or limit any rights you may have under mandatory privacy laws in your jurisdiction.

Cookies & Tracking Technologies

OBSERVE: The Website uses cookies and third-party trackers for functionality, analytics, and affiliate attribution.

EXPAND: Users should understand the types of cookies, their purposes, and how to control them.

REFLECT: We categorise cookies and provide management options.

Types of Cookies We Use

  • Session Cookies:
    • Temporary cookies that remain on your device only while your browser is open.
    • Used to maintain navigation between pages and basic functions.
  • Persistent Cookies:
    • Remain on your device for a defined period or until deleted.
    • Used for remembering preferences, language settings, or login states (if applicable), and for long-term analytics and attribution.
  • First-Party Cookies:
    • Set directly by the Ozwins domain (ozwins-au.com).
    • Typically used for core site functionality and internal analytics.
  • Third-Party Cookies:
    • Set by domains different from ours, such as analytics providers, affiliate networks, or advertising partners.
    • Used to measure campaign performance, attribute referrals, and, where allowed, deliver or measure targeted advertising.

Purposes of Cookies

  • Strictly Necessary / Functional:
    • Support core functionality, such as page navigation, security features, and access to certain areas.
  • Analytics and Performance:
    • Help us understand how visitors use the Website (e.g. which pages are most visited, error messages, navigation patterns).
    • Support improvement of content and user experience.
  • Affiliate Attribution:
    • Enable us and our partners to track when a user clicks a link from Ozwins to a partner casino and later registers or performs actions on that casino site.
  • Advertising (where applicable):
    • Used by some third-party networks to deliver, measure, or limit advertising tailored to your interests, in accordance with applicable laws and your consent choices.

Managing and Disabling Cookies

  • Browser Settings:
    • You can usually configure your browser to block or delete cookies, or to alert you before they are stored. Consult your browser's help section for details.
  • Device Settings and Tools:
    • Some devices or operating systems offer additional controls for tracking technologies and advertising identifiers.
  • Impact of Disabling Cookies:
    • Blocking or deleting cookies may affect the functionality of the Website and could limit your ability to use certain features.

Data Security

OBSERVE: Handling personal data, even in limited quantities, requires robust security practices.

EXPAND: Industry-standard technical and organisational measures should be applied, including encryption, access controls, audits, and incident-response procedures, aligned where possible with frameworks such as ISO 27001 and SOC 2.

REFLECT: We summarise our security approach while acknowledging that no system is completely risk-free.

Technical Measures

  • Encryption in Transit: Data transmitted between your browser and our servers is protected using TLS 1.2 or higher, helping to prevent eavesdropping or tampering.
  • Encryption at Rest (where applicable): Certain categories of stored data are encrypted or otherwise protected using industry-standard methods.
  • Access Controls: Access to systems and databases is restricted to authorised personnel and service providers on a need-to-know basis, authenticated using strong credentials and, where feasible, multi-factor authentication.
  • Network and System Security: Firewalls, intrusion-detection or prevention systems, and regular patching are used to reduce vulnerabilities.

Organisational Measures

  • Policies and Training: Staff and contractors who may handle personal data are subject to confidentiality obligations and receive guidance on privacy and security best practices.
  • Vendor Management: Where we engage third-party service providers, we seek to ensure they implement appropriate security standards and contractual safeguards.
  • Data Minimisation: We endeavour to collect only the data necessary for clearly defined purposes and to remove or anonymise data when it is no longer needed.

Monitoring and Incident Response

  • Monitoring: Systems are monitored for unusual activity, potential vulnerabilities, and incidents.
  • Incident Response: In the event of a data breach or security incident affecting personal data, we will:
    • take prompt steps to contain and investigate the incident;
    • assess the potential impact on individuals;
    • notify affected users and relevant authorities where required by applicable law.

While we strive to implement appropriate safeguards, no online service can guarantee absolute security. Users should also take reasonable steps to protect their own devices and accounts.

Complaints & Contacts

OBSERVE: Users need accessible channels for questions, concerns, and complaints about privacy.

EXPAND: A clear escalation path should exist: first to Ozwins, then to relevant supervisory authorities, such as the Australian regulator(s) or, where applicable, data protection authorities in other regions.

REFLECT: We set out contact options and explain how complaints are handled.

Contacting Us

  • Data Protection Officer (DPO): Ozwins Data Protection Officer
  • Email: [email protected]
  • Phone: not specified
  • Online forms: not specified; please use email contact.
  • Postal address: not specified; if a postal address becomes available, it will be added to this policy.

Internal Complaint Procedure

  1. Submission:
    • Send your complaint or query to [email protected], clearly describing your concerns and, if applicable, referring to any previous correspondence.
  2. Acknowledgement:
    • We aim to acknowledge receipt of your complaint within 5 business days.
  3. Investigation and Response:
    • We will investigate the matter and endeavour to provide a substantive response within 30 days of receiving your complaint.
    • If we require more time due to complexity, we will inform you of the delay and provide an estimated timeframe.

Escalation to Supervisory Authorities

If you are not satisfied with our response or believe that your privacy rights have been infringed, you may have the right to lodge a complaint with a competent data protection or privacy authority. The appropriate authority will depend on your place of residence and the location of the relevant processing. Examples include:

  • Australia:
    • Office of the Australian Information Commissioner (OAIC) - for privacy complaints:
    • Australian Communications and Media Authority (ACMA) - for issues related to illegal offshore gambling services and communications:
  • European Union / EEA:
    • You may contact your local Data Protection Authority (DPA). A list is available on the European Data Protection Board (EDPB) website.
  • Other Jurisdictions:
    • You may contact the relevant national data protection or privacy regulator in your country.

Updates

OBSERVE: Laws, technology, and our processing activities may evolve over time.

EXPAND: Users must be informed when material changes affect how their data is processed, with reasonable advance notice where feasible and with options to object or cease using the service.

REFLECT: We describe how we will notify users and manage version control.

Policy Changes and Notification

  • We may update this privacy policy from time to time to reflect:
    • changes in our services, partners, or technical infrastructure;
    • changes in applicable laws or regulatory guidance;
    • feedback from users or supervisory authorities.
  • When we make material changes that significantly affect how we process your personal data, we will:
    • post a prominent notice on the Website (e.g. banner or pop-up);
    • and/or send an email notification to the address you have provided, where applicable.
  • For significant changes that reduce your rights or expand our processing in a manner requiring consent, we will, where practicable, provide at least 30 days' advance notice before the changes take effect.

Version Control and Effective Date

  • Last updated: January 2026
  • Earlier versions of this privacy policy may be retained for reference and compliance purposes.
  • If you do not agree with an updated version of this policy, you should stop using the Website and, where relevant, exercise your rights as described in the "Your Rights" section.