burger icon
N1 Casino Australia
Log In

Privacy Policy

This Privacy Policy explains how N1 Casino (available to Australian users via https://n1-au.com) collects, uses, shares, and protects personal information. A privacy policy is required to inform website visitors and players about what information is processed, for what reasons, and what choices and rights are available under applicable laws and industry standards. This policy applies to (i) visitors to n1-au.com, (ii) registered players, and (iii) individuals who communicate with us (for example, via support or complaints channels). Effective date: 6 November 2026.

Who We Are

OBSERVE: The operator managing the Australian-facing N1 brand is identified as Dama N.V., with a Curaçao registered address and Curaçao Commercial Register number provided. A Cyprus entity (Friolion Limited) is indicated as a payment processing subsidiary, but a full street address is not provided in the supplied data.

EXPAND: For AU-facing offshore gambling services, transparent operator identification and an accessible privacy contact are critical for Australian Privacy Principles (APPs) transparency expectations, even where the operator is established offshore. Where a formal "DPO" is not legally mandated (typical outside GDPR scope), providing a dedicated privacy contact still meets industry expectations and reduces complaint friction.

REFLECT: We therefore disclose the operator's legal identity, registration reference, and a dedicated privacy contact channel. Where specific details are not available from the provided data, we state this clearly.

  • Website/brand: N1 Casino on https://n1-au.com
  • Operator (legal entity): Dama N.V. (Naamloze Vennootschap, Curaçao public limited company)
  • Registered/legal address: Scharlooweg 39, Willemstad, Curaçao
  • Company registration: 152125, Curaçao Commercial Register
  • Payments subsidiary (as indicated): Friolion Limited, Cyprus (full street address not specified in provided data)
  • Privacy contact (Data Protection / Privacy team): [email protected] (dedicated inbox for privacy requests and questions)
  • Escalation contact (license-holder complaints, if internal process fails): [email protected] (Antillephone N.V. master license holder complaints channel)

What Personal Data We Collect

OBSERVE: N1 Casino needs player identity, contact, payment, technical and behavioural information to provide casino services and to meet KYC/AML and fraud-prevention duties typical for Curaçao-licensed operations serving AU customers.

EXPAND: Australian privacy expectations (APPs) require clear notice of categories collected, including sensitive inferences where applicable (e.g., responsible gambling flags), and clarity on what is optional vs required. Gambling services also create high-risk behavioural profiles, so transparency about betting history and device identifiers is necessary.

REFLECT: We group data into practical categories, explain common sources, and describe cookies and similar technologies distinctly for user control.

Categories of data

  • Identity & contact data: Full name, date of birth, username, email address, telephone number, residential address, country of residence, and correspondence with support.
  • Verification (KYC) data: Copies/records of identity documents, proof of address, age verification results, liveness/face-match checks where used, and verification outcomes/notes (including reasons for acceptance/rejection where permitted).
  • Payment & transaction data: Deposit/withdrawal amounts, timestamps, payment method type, transaction IDs, limited payment instrument details (for example, masked card data), bank/e-wallet identifiers, chargeback/dispute records, and fraud-screening results.
  • Gameplay & behavioural data: Betting and gaming history, session times, clicks and navigation paths, bonus activation/usage, responsible gambling interactions (e.g., limits set), and aggregated behavioural patterns used for risk and fraud analysis.
  • Technical & device data: IP address, approximate location derived from IP, device type, OS/browser, language, time zone, device identifiers (where available), login timestamps, and security/log files.
  • Marketing & preferences: Subscription status, communication preferences, consent records, campaign interactions, and referral/affiliate tracking IDs (where used).
  • Cookies and similar technologies: Session cookies, persistent cookies, SDKs/pixels, and third-party tags (subject to consent where required).

Sources

  • From you: Registration forms, verification uploads, deposits/withdrawals, communications, preference settings.
  • Automatically: Device/log data, cookies, and usage analytics generated by your interaction with n1-au.com.
  • From third parties: Payment providers, identity/age verification services, fraud-prevention vendors, and (where applicable) marketing/affiliate partners.

Legal Basis for Processing

OBSERVE: N1 Casino processes data to (i) operate accounts and deliver gambling services, (ii) detect fraud and secure systems, and (iii) satisfy licensing and KYC/AML expectations associated with a Curaçao sublicense. AU users also expect APP-aligned notice and consent where appropriate (especially for marketing and non-essential cookies).

EXPAND: While APPs do not mirror GDPR legal bases verbatim, mapping processing to recognised bases improves clarity for cross-border users and aligns with common gambling-industry compliance. Some processing is necessary to provide the service; other processing relies on consent (e.g., direct marketing) or legitimate interests (e.g., security analytics), balanced against user rights and expectations.

REFLECT: We apply the following bases, depending on the activity and context:

  • Consent: For optional processing such as certain marketing communications and non-essential cookies/advertising technologies (where consent is required or used as our standard).
  • Contract performance: To create and administer your account, provide games and related features, process deposits/withdrawals, apply bonuses according to the terms, and provide customer support.
  • Legitimate interests: To secure n1-au.com, prevent fraud and abuse, maintain service reliability, conduct internal analytics and product improvement, and enforce our terms - subject to balancing and appropriate safeguards.
  • Compliance with legal/regulatory obligations: To meet identity/age verification expectations, anti-money laundering and counter-terrorist financing controls, record-keeping, and responding to lawful requests from competent authorities in relevant jurisdictions.

Purpose of Processing

OBSERVE: The core purposes are service delivery (casino account and gameplay), operational improvement, marketing, analytics, and fraud prevention.

EXPAND: For gambling, purpose limitation should explicitly cover: KYC/AML, responsible gambling controls, dispute handling, and security monitoring. Users should be able to distinguish essential purposes from optional ones (marketing/certain cookies).

REFLECT: We use personal data for the following purposes:

  • Providing casino services: Registration, identity/age checks, account management, gameplay participation, bonus administration, deposits/withdrawals, and customer support for N1 Casino on n1-au.com.
  • Service operation & improvement: Debugging, quality assurance, internal reporting, feature development, and performance monitoring.
  • Security & fraud prevention: Protecting accounts, detecting suspicious activity, preventing chargebacks and collusion, and enforcing our terms and game integrity controls.
  • Compliance & record keeping: Maintaining audit trails, KYC/AML checks, and responding to lawful requests from relevant authorities.
  • Marketing communications: Sending offers/news where permitted and in accordance with your preferences and applicable law (including unsubscribe/opt-out mechanisms).
  • Analytics: Understanding usage of n1-au.com to improve user experience (using aggregated and, where feasible, de-identified data).

Disclosure & Sharing

OBSERVE: Data may be shared with payment partners, vendors, regulators/authorities, and (with consent) advertising/affiliate partners. The provided profile also identifies Antillephone N.V. as the master license holder for the Curaçao sublicense relevant to the AU-facing operation.

EXPAND: APPs and industry standards expect disclosure categories, reasons, and safeguards, especially where offshore transfers occur. Gambling operators also typically must share limited information for KYC/AML, fraud checks, and payment processing, and must document disclosures for complaints or disputes.

REFLECT: We disclose personal information only on a need-to-know basis as follows:

  • Payment partners and processors: To process deposits/withdrawals, manage fraud/chargebacks, and reconcile transactions. This may include processing carried out by Friolion Limited (Cyprus) as a payments subsidiary for Dama N.V. (street address not specified in provided data).
  • Service providers (processors): Hosting, cloud storage, analytics tools, email delivery, customer support tooling, identity verification, fraud-prevention, and security monitoring - under contractual confidentiality and security obligations.
  • Regulators / licensing and oversight context: Where relevant to the service, we may share information with entities involved in licensing oversight and dispute channels, including references to the Curaçao licensing framework under Antillephone N.V. (license validator available at https://antillephone.com).
  • Law enforcement / authorities: When required or permitted by law (e.g., court orders, lawful requests), or to protect rights, safety, and security.
  • Affiliates and advertising networks: Where you have provided consent (or where otherwise legally permitted), for campaign attribution, ad delivery, and measurement. You can withdraw consent as described below.
  • Corporate transactions: If Dama N.V. undergoes restructuring, merger, acquisition, or asset sale, data may be transferred subject to appropriate safeguards and notice where required.

International Transfers

OBSERVE: The operator is based in Curaçao, with payments processing presence in Cyprus, and service providers may be located in multiple regions. Australian users' data will therefore commonly be transferred offshore.

EXPAND: Under Australian privacy expectations (APP 8), cross-border disclosures should be addressed with transparency and reasonable steps to ensure overseas recipients handle data consistently with privacy protections. Additionally, for international vendors, contractual safeguards and security standards are expected, even where EU instruments (e.g., SCCs) are not strictly mandatory for all processing.

REFLECT: We may transfer and store personal data in the following locations (depending on your location, services used, and vendor hosting):

  • Curaçao: Operator administration and compliance record keeping (Dama N.V.).
  • Cyprus: Payment processing support (Friolion Limited).
  • Other jurisdictions: Where our hosting, analytics, security, email, KYC, or payment vendors operate data centres (which may include the EU/EEA, the UK, the United States, and other regions).

To protect international transfers, we use measures such as:

  • Contractual safeguards: Data processing agreements, confidentiality clauses, and (where appropriate) standard contractual clauses or equivalent contractual protections.
  • Security controls: Encryption, access control, and logging requirements for suppliers.
  • Vendor due diligence: Risk-based assessments of suppliers' security and privacy practices.

Regional compliance note (AU): Where we disclose personal information to overseas recipients, we take reasonable steps to ensure they handle it in a manner consistent with the Australian Privacy Principles, unless an exception applies.

Data Retention

OBSERVE: Retention must balance operational needs (account history, dispute handling, fraud detection) with minimisation, and must reflect common gambling record-keeping practices and KYC/AML expectations.

EXPAND: Offshore operators serving Australian players should state clear retention windows and criteria for deletion/anonymisation. Some records cannot be deleted immediately on request when required for legal compliance, fraud prevention, or dispute resolution.

REFLECT: We retain personal data only as long as necessary for the purposes described above, then delete or anonymise it unless a longer period is required by law or needed to establish, exercise, or defend legal claims.

  • Account and core profile data: Retained while your account is active and up to 5 years after account closure (or longer if required for compliance, disputes, or fraud investigations) until 2026+ retention cycles are completed.
  • KYC/verification records: Typically retained up to 5 years after account closure or the end of the business relationship, subject to applicable AML/KYC expectations and limitation periods.
  • Transaction and payment records: Typically retained up to 7 years for accounting, audit, chargeback handling, and fraud prevention, where applicable.
  • Gameplay and behavioural logs: Typically retained up to 5 years, or longer where needed for integrity investigations, disputes, or compliance checks; we prefer aggregation/anonymisation where feasible.
  • Technical logs and security events: Commonly retained from 90 days to 24 months, depending on log type and security relevance.
  • Marketing preferences and consent records: Retained while marketing is active and for a reasonable period thereafter to evidence opt-in/opt-out (and to comply with applicable anti-spam requirements).

Deletion/anonymisation occurs when:

  • The purpose expires: Data is no longer needed for the stated purpose.
  • You request deletion: We assess and action the request unless retention is required for compliance, security, fraud prevention, or legal claims.
  • Account inactivity/closure: We apply the above schedules and minimise retained data wherever feasible.

Your Rights

OBSERVE: The section requires detailed alignment with GDPR and Mexican privacy law, while the page overall must be adapted for AU. This creates a cross-jurisdictional disclosure requirement: we must explain rights in a way that remains accurate for AU users (APP access/correction/complaints) and also provide GDPR/Mexico-style rights as an alignment commitment without misrepresenting legal applicability.

EXPAND: For Australian users, key rights are access, correction, complaint handling, and marketing opt-out; deletion is not absolute under APPs. GDPR adds portability, restriction, objection, and withdrawal of consent. Mexico's LFPDPPP provides ARCO rights (Access, Rectification, Cancellation, Opposition) and rights concerning consent. The compliant approach is: (i) state baseline rights available to all users as a policy commitment, (ii) clarify that specific rights may depend on your place of residence and the law that applies, and (iii) provide a single operational procedure with a 30-day response target in 2026.

REFLECT: We provide the following rights and request procedure (free of charge in most cases), and we will apply the strongest set of rights required by the laws applicable to your request.

Rights you may have (depending on applicable law)

  • Access: Request confirmation of whether we process your personal data and obtain a copy (APP access right; GDPR access; Mexico ARCO "Acceso").
  • Correction/rectification: Request correction of inaccurate or incomplete data (APP correction; GDPR rectification; Mexico ARCO "Rectificación").
  • Deletion/cancellation: Request deletion/cancellation where appropriate (GDPR erasure; Mexico ARCO "Cancelación"). Note: gambling and KYC/AML record-keeping, fraud prevention, and dispute handling may require us to retain certain records.
  • Objection/opposition: Object to processing based on legitimate interests and/or opt out of direct marketing (GDPR objection; Mexico ARCO "Oposición"; AU marketing opt-out).
  • Restriction: Request limitation of processing in certain cases (GDPR restriction), e.g., while accuracy or an objection is being evaluated.
  • Data portability: Where applicable, request a portable copy of certain data you provided to us (GDPR portability).
  • Withdraw consent: Where processing is based on consent (e.g., certain cookies or marketing), you may withdraw it at any time; withdrawal does not affect prior processing already performed.

How to exercise your rights (procedure)

  1. Submit your request: Email [email protected] with the subject "Privacy Request - N1 Casino". Include your username, registered email, and the right you wish to exercise.
  2. Identity verification: For security, we may request additional information to verify you before disclosing or changing data (especially for access/deletion requests).
  3. Response timeframe: We aim to respond within 30 days in 2026. If the request is complex, we will inform you of the reason and expected additional time.
  4. Fees: Requests are handled free of charge in most cases. If a request is manifestly unfounded or excessive, we may charge a reasonable administrative fee or refuse the request (with explanation), as permitted by applicable law.
  5. Marketing opt-out: You can opt out at any time using the unsubscribe link in messages or by updating your account preferences (where available) and/or emailing [email protected].

Mexican privacy law alignment (reference)

Where relevant (for example, if you are located in Mexico or Mexican law applies to a particular interaction), we align our handling of rights requests with the principles of the Ley Federal de Protección de Datos Personales en Posesión de los Particulares (LFPDPPP) and its regulations, including ARCO rights and consent-related rights.

Cookies & Tracking Technologies

OBSERVE: n1-au.com uses cookies and similar tools to run the site, secure sessions, measure performance, and (where permitted) personalise advertising.

EXPAND: For AU transparency and global best practice, we should describe cookie types (session/persistent/third-party), purposes (functional/analytics/advertising), and clear management steps. Consent should be referenced for non-essential cookies as our standard.

REFLECT: We use the following technologies:

Types of cookies

  • Session cookies: Temporary cookies used to keep you logged in and maintain session security; they typically expire when you close your browser.
  • Persistent cookies: Stored for longer to remember preferences (e.g., language) and help us understand repeat visits; they expire after a set period or when deleted.
  • Third-party cookies/tags: Set by service providers (e.g., analytics, anti-fraud, advertising/affiliate attribution) to provide their services.

Cookie purposes

  • Strictly necessary/functional: Core site operation, authentication, security, and fraud prevention.
  • Preferences: Remember settings and improve usability.
  • Analytics/performance: Understand how visitors use n1-au.com and improve performance and content.
  • Advertising/attribution: Measure campaigns and (where enabled) show more relevant advertising.

How to manage cookies

  • Browser controls: You can block or delete cookies using your browser settings. Note that blocking strictly necessary cookies may prevent the site from working properly.
  • Consent controls: Where we use a cookie banner or preference tool, you can manage non-essential cookies there and change choices later.
  • Account/device level: Some marketing preferences can be controlled via your account settings (where available) and your device settings.

Data Security

OBSERVE: Gambling platforms process high-risk data (identity verification and financial transactions) and must implement strong technical and organisational controls. The prompt requires specific security measures and references to ISO 27001/SOC 2 "where applicable".

EXPAND: A defensible security section should cover: encryption in transit and at rest, authentication (including MFA), access controls and least privilege, monitoring/audits, staff training, vendor management, and incident response. Claims must be framed carefully to avoid over-promising certification unless confirmed; we can state "aligned with" or "where applicable/where maintained by vendors".

REFLECT: N1 Casino implements and maintains risk-based safeguards designed to protect confidentiality, integrity, and availability of personal information.

  • Encryption in transit: We use TLS 1.2+ for data transmitted between your device and our services.
  • Encryption at rest: Sensitive data is protected using encryption and/or strong cryptographic controls where stored, based on data classification and system design.
  • Access controls: Role-based access, least-privilege principles, credential management, and controlled administrative access.
  • Account protection: Support for multi-factor authentication (MFA) where available and additional security checks for high-risk actions (e.g., withdrawals, credential changes).
  • Monitoring and logging: Security monitoring, audit logs, anomaly detection, and fraud signals to identify suspicious activity.
  • Testing and audits: Regular vulnerability management and security reviews. Where applicable, we rely on qualified third-party assessments for critical vendors.
  • Staff training: Security and privacy awareness training and confidentiality obligations for personnel handling personal data.
  • Incident response: Documented procedures to detect, respond to, contain, and remediate incidents, including assessment of notification obligations in relevant jurisdictions.
  • Standards alignment: Our security program is designed to align with recognised information security practices (such as ISO 27001 and SOC 2 principles) where applicable to our operations and suppliers.

Important: No system is 100% secure. You are responsible for keeping your login credentials confidential and contacting us promptly if you suspect unauthorised access.

Complaints & Contacts

OBSERVE: The prompt requires comprehensive complaint channels and escalation to supervisory authorities including Mexican and EU authorities "where applicable," with direct contact information. We have an escalation email for Antillephone N.V. master license holder complaints and the license validator website. We must also provide our privacy contact and postal address (Curaçao address available). No phone number is provided.

EXPAND: For AU-facing users, an internal complaint process should be clear and time-bound, with escalation options. For Mexico, the authority is INAI. For EU, provide a practical pointer to EDPB list because specific authority depends on residence. Avoid implying EU establishment; use "where applicable".

REFLECT: If you have questions, concerns, or a complaint about privacy or data handling for N1 Casino on n1-au.com, use the channels below.

Contact channels

  • Privacy team email: [email protected]
  • Postal address (operator): Dama N.V., Scharlooweg 39, Willemstad, Curaçao
  • Regulatory complaints escalation (license-holder channel): [email protected] (use if our internal process does not resolve the issue)
  • License validation reference: https://antillephone.com (players can use the Antillephone validator/shield reference shown on the casino site footer, where available)
  • Phone: Not specified in provided data for N1 Casino privacy contacts.
  • Online form: Not specified in provided data; use email as primary channel.

Complaint procedure (step-by-step)

  1. Step 1 - Submit: Email [email protected] with "Privacy Complaint - N1 Casino" and describe the issue, relevant dates, and your account identifier (if any).
  2. Step 2 - Acknowledgement: We aim to acknowledge receipt within 7 days (2026 timeframe).
  3. Step 3 - Assessment: We investigate, which may include requesting additional information to verify identity and locate records.
  4. Step 4 - Outcome: We aim to provide a written outcome within 30 days. If more time is needed, we will explain why and provide an updated target date.
  5. Step 5 - Escalation: If unresolved, you may escalate to the license-holder complaints channel at [email protected] and/or contact relevant privacy authorities where applicable (see below).

Escalation to supervisory authorities (where applicable)

  • Mexico (INAI): Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI). Website: https://www.inai.org.mx
  • European Union (EU/EEA) authorities: If EU data protection law applies to your situation, you may contact your local supervisory authority. A directory is available via the European Data Protection Board (EDPB): https://www.edpb.europa.eu/about-edpb/about-edpb/members_en

Updates

OBSERVE: The policy must explain update notifications (email, banners, dashboard), include versioning with "Last updated: " and a changelog of material changes, and provide at least 30 days' notice for significant changes with user options to object or close accounts. Also: extend dates/timeframes to 2026.

EXPAND: For compliance and user trust, define "material changes," how notice is delivered, and what happens if users continue using services. Provide a change log anchored to November 2026 (based on the supplied last_updated 2025-11-06, extended to 2026).

REFLECT: We may update this Privacy Policy to reflect changes in law, technology, our data practices, or operational requirements.

Last updated: November 2026

How we notify you

  • Email notice: If you have an account and we have a valid email address on file, we may notify you by email.
  • Website banner/notice: We may post a prominent notice on n1-au.com.
  • Account dashboard alert: Where available, we may display an in-account message requiring acknowledgement.

Advance notice for significant changes

  • Material changes: Changes that significantly affect your rights, the categories of data collected, how we use/share data, or international transfers.
  • Notice period: For material changes, we will provide at least 30 days' advance notice in 2026 before the change takes effect, unless a shorter period is required to address urgent security or legal issues.
  • Your options: You may object to the changes by contacting [email protected] and/or close your account before the effective date (subject to any necessary compliance retention described in this policy).

Changelog of material changes

  • November 2026: Reissued policy for N1 Casino on n1-au.com; clarified offshore operator identity (Dama N.V.), cross-border transfer disclosures (Curaçao/Cyprus), detailed cookie categories and management, and formalised rights-request and complaint timelines for 2026.