burger icon
Oshi Casino Australia
Log In

Privacy Policy

This Privacy Policy explains how Oshi Casino, operated for Australian players via oshibet-au.com under the project name Oshi Casino, collects, uses, stores, shares and protects your personal information when you visit our website, create an account, or use our gambling services. It applies to all visitors, registered players and any person who interacts with our services, whether browsing, depositing, wagering, or contacting support.

We are committed to complying with applicable privacy and data protection principles, including the Australian Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs), as well as aligning our practices with the EU General Data Protection Regulation (GDPR) and relevant Mexican data protection standards where they apply to you.

Effective date: 1 November 2026

Who We Are

The Oshi Casino brand for Australian players at oshibet-au.com (Oshi Casino) is operated and controlled by the following companies:

Data Controller

  • Operating company: Dama N.V.
  • Legal form: Public limited company (N.V.) incorporated under the laws of Curaçao
  • Registration number: 152125
  • Registered address: Scharlooweg 39, Willemstad, Curaçao
  • Gambling licence: Antillephone N.V. licence no. 8048/JAZ2020-013 (online gambling / hybrid crypto-fiat operations), issued under the authority of the Government of Curaçao. Licence status was confirmed as valid as of October 2024; no later changes have been notified to us as of the date of this Privacy Policy.

Payment and Processing Agent

  • Processing subsidiary: Friolion Limited
  • Jurisdiction: Cyprus
  • Registration number: HE 419102
  • Role: Payment processing and certain support services on behalf of Dama N.V.

Data Protection Contact

Dama N.V. acts as the primary data controller for personal data processed in connection with Oshi Casino at oshibet-au.com, with Friolion Limited acting as processor or joint controller where appropriate.

  • Data Protection Officer / Data Protection Contact: Data Protection Officer, Dama N.V.
  • Postal address: Data Protection Officer, Dama N.V., Scharlooweg 39, Willemstad, Curaçao
  • Online contact: via the support or privacy contact channels indicated in your account area or on the "Contact" or "Support" sections of oshibet-au.com
  • Regulatory references: Additional corporate and licensing information may be consulted via the Antillephone N.V. validator at https://validator.antillephone.com/validate?domain=oshi.io.

When we refer to "we", "us" or "our" in this Privacy Policy, we mean Dama N.V. and, where relevant, its subsidiary Friolion Limited, in connection with the operation of Oshi Casino at oshibet-au.com.

What Personal Data We Collect

We collect and process different categories of personal data to operate Oshi Casino for Australian users and to comply with legal and regulatory obligations. The exact data we collect depends on how you use our services.

Identification and Contact Data

  • Basic identification data: full name, date of birth, gender (where provided), nationality, residential address, and postcode.
  • Contact details: email address, telephone number(s), preferred language.
  • Verification data (KYC/AML): copies or data from identity documents (e.g., passport, ID card, driving licence), proof of address (e.g., utility bill, bank statement), and, where required by law, additional documentation such as source-of-funds/source-of-wealth information.

Account and Gameplay Data

  • Account credentials: username, encrypted password, security questions or similar authentication data.
  • Profile settings: communication preferences, responsible gambling limits, interface and language settings.
  • Gameplay and behavioural data: game selections, stakes and wager amounts, wins and losses, bet history, session duration, clicks, navigation paths, in-game actions, bonuses used, bonus abuse indicators, and other activity logs associated with your account.

Payment and Financial Data

  • Payment method data: partial card details (card type, last digits, expiry date), e-wallet identifiers, bank account IBAN/BIC data where needed, crypto wallet addresses, and payment token information.
  • Transaction data: deposits, withdrawals, bonuses credited, chargebacks, reversals, and related financial records, including timestamps and currencies (e.g. AUD, crypto-assets).
  • We do not store full card numbers or CVV/CVC codes; these are processed by PCI-DSS-compliant payment service providers where applicable.

Technical and Usage Data

  • Technical identifiers: IP address, device identifiers, browser type and version, operating system, screen resolution, language settings.
  • Usage data: pages visited, referral URLs, time and date of access, clickstream data, response times, download errors, and interaction with page elements.
  • Security and log data: login attempts, password changes, account locking events, device fingerprinting information, and anti-fraud indicators.

Cookie and Tracking Data

  • Cookies: small files stored on your device when visiting oshibet-au.com, including session cookies, persistent cookies, and, where used, third-party cookies.
  • Similar technologies: web beacons, pixels, tags, SDKs, and local storage used for analytics, marketing, fraud prevention, and functionality.

Support and Communications Data

  • Support interactions: records of chats, emails, web forms, and phone communications with our support or complaints teams.
  • Complaints and dispute data: information you provide when making a complaint or dispute, including documents, screenshots, and correspondence. This may include data processed in connection with alternative dispute resolution (ADR) providers, such as Certria (https://certria.com/complaints).

Special Categories of Data

We do not intentionally collect special categories of personal data (such as health information or religious beliefs), except where you voluntarily provide such information (for example, in a self-exclusion request or responsible gambling communication) and only to the extent required to meet our legal and responsible gambling obligations.

Our services are strictly intended for persons aged 18 or over (or higher local legal gambling age). We do not knowingly collect personal data from minors.

Legal Basis for Processing

Because Oshi Casino operates for Australian users from jurisdictions outside Australia (including Curaçao and Cyprus), we apply a combination of legal bases under relevant laws, including the Australian Privacy Act and APPs, the GDPR (where applicable), and comparable Mexican rules for affected individuals. Depending on the context, we process your data on the following grounds:

Performance of a Contract

  • Account creation and management: to register your Oshi Casino account at oshibet-au.com, verify your age, allow you to log in, and manage your account settings.
  • Provision of gambling services: to enable deposits, wagers, gameplay, bonuses, withdrawals and related services described in our Terms and Conditions.
  • Customer support: to respond to your requests, resolve technical issues, handle complaints and manage disputes.

Compliance with Legal Obligations

  • KYC/AML obligations: to verify your identity, prevent fraud, money laundering and terrorism financing, and to comply with regulatory requirements under Curaçao law and other applicable regimes.
  • Record-keeping and reporting: to maintain financial and transactional records for tax, accounting, auditing and licensing purposes.
  • Responsible gambling obligations: to apply self-exclusion, betting limits and other measures required by our licence conditions and applicable standards.

Legitimate Interests

  • Service security and integrity: protecting our systems, players and business from fraud, abuse, technical threats and cheating.
  • Analytics and service improvement: monitoring site performance, improving usability and game offerings, and analysing aggregated gameplay patterns.
  • Enforcement of terms: investigating breaches of our Terms and Conditions, bonus abuse, chargebacks or other misuse.
  • Where we rely on legitimate interests, we balance our interests against your privacy rights and implement safeguards to minimise impacts.

Consent

  • Direct marketing: sending promotional emails, SMS, push notifications or in-app messages about offers, bonuses and new games, where you have opted in or where such communications are otherwise permitted by law.
  • Non-essential cookies and trackers: using analytics or advertising cookies that are not strictly necessary for the operation of the site, subject to your choices in our cookie tools or browser settings.
  • You may withdraw your consent at any time (for example, by changing your marketing preferences in your account or using the unsubscribe link in emails), without affecting the lawfulness of processing based on consent before its withdrawal.

Protection of Vital Interests and Legal Claims

  • Safety and vital interests: in rare cases, processing may be necessary to protect you or another person's vital interests, for example in connection with serious threats of harm disclosed to us.
  • Legal claims and defence: to establish, exercise or defend legal claims or respond to lawful requests from competent authorities or regulators.

Purpose of Processing

We process your personal data only for specified, explicit and legitimate purposes. The main purposes are:

  • Providing and operating the casino services: enabling registration, authentication, deposits, gameplay, promotions, withdrawals and account management at oshibet-au.com.
  • Compliance and risk management: meeting our KYC/AML obligations, verifying eligibility to play, detecting and preventing fraud, money laundering, terrorism financing, bonus abuse, collusion and other prohibited conduct.
  • Customer support and communication: responding to queries, assisting with technical problems, notifying you of changes to our terms, policies or services, and managing complaints and disputes.
  • Service optimisation and analytics: monitoring performance, analysing aggregated usage and gameplay data, testing new features and improving our website, apps and game portfolio.
  • Marketing and personalisation: sending offers and promotions (where permitted), tailoring content, bonuses and recommendations to your profile, and measuring the effectiveness of campaigns.
  • Responsible gambling: managing self-exclusion, limits, behavioural monitoring and interventions designed to support safer gambling practices.
  • Security and integrity of the platform: ensuring system security, preventing unauthorised access, maintaining backups, and performing logs analysis and incident investigation.
  • Regulatory, tax and legal obligations: keeping records, performing audits, cooperating with regulators and law enforcement, and enforcing our contractual rights.

Disclosure & Sharing

We do not sell your personal data. We share it only as necessary for the purposes described above and with appropriate safeguards in place.

Group Companies and Internal Recipients

  • Within Dama N.V. group: sharing with Friolion Limited (Cyprus) and other closely related entities and departments involved in operating oshibet-au.com (e.g., payments, fraud, compliance, customer support).
  • Staff and authorised personnel: access is strictly limited on a need-to-know basis and governed by confidentiality obligations.

Service Providers and Business Partners

  • Payment providers and banks: to process deposits, withdrawals and chargebacks, including card processors, e-wallets, bank partners and crypto payment gateways.
  • Game and platform providers: software suppliers and aggregators (e.g., casino games platform providers) who host and operate games and require access to gameplay data for technical and compliance reasons.
  • IT and security providers: hosting providers, cloud infrastructure, content delivery networks, anti-fraud tools, security and monitoring services.
  • Analytics and marketing partners: where permitted by law and subject to your consent where required, we may use analytics tools and carefully selected marketing providers or affiliates to measure and improve campaigns.

Regulators, ADR Bodies and Authorities

  • Regulators and licensing bodies: including Antillephone N.V. and other Curaçao authorities responsible for supervising our licence, who may require access to records and logs.
  • Alternative Dispute Resolution (ADR): ADR providers such as Certria (https://certria.com/complaints) when handling disputes between you and us.
  • Law enforcement and authorities: competent authorities, courts, law enforcement agencies, and governmental bodies, where we are legally required to disclose data or where disclosure is necessary to establish, exercise or defend legal claims. This may include authorities in Australia, Curaçao, Cyprus, the EU, Mexico or other jurisdictions as permitted by applicable law.

Corporate Transactions

  • In the event of a merger, acquisition, reorganisation, sale of assets or insolvency involving our business, your data may be transferred to one or more third parties as part of that transaction, subject to confidentiality and data protection safeguards and, where required, your consent.

Advertising Networks and Affiliates

  • Affiliates and marketing partners: we may share limited pseudonymised information (e.g., affiliate ID, campaign performance data) with affiliates that refer you to us, to measure and pay commissions.
  • Advertising networks: where we use third-party advertising or retargeting (if permitted in your jurisdiction), this will be based on your consent to relevant cookies and tracking technologies.