burger icon
Play Croco Review Australia
Log In

Privacy Policy

This Privacy Policy explains how Play Croco, operated via the website https://playcroco-au.com, collects, uses, discloses, and protects personal information of players and website visitors. It applies to all users who access or use the services, whether as registered players or as visitors to the site, and to any related communications and marketing channels connected to playcroco-au.com. By using this website, you acknowledge and agree to the practices described in this Privacy Policy. This Privacy Policy is effective as of 01 January 2026 and supersedes any prior versions published on this site.

Who We Are

For the purposes of this Privacy Policy, references to "we", "us", "our", "Play Croco" or "Play Croco" refer to the operator of the website located at https://playcroco-au.com.

The underlying corporate operator, legal entity name, legal address, and company registration details have not been publicly disclosed by the operator and are therefore not specified in this Privacy Policy. Publicly available research indicates that the operator appears to be an offshore private entity, possibly associated with the Liberty Slots/Lincoln Casino group via shared affiliate arrangements, but such linkage is not formally confirmed or registered in publicly accessible company registers.

Accordingly, and until such time as the operator publishes complete corporate details, all privacy-related communications should be directed to the data protection contact for Play Croco as set out below:

  • Data Protection Contact (DPO/Data Protection Department): Data Protection Officer - Play Croco
  • Email: [email protected] (for all privacy, data access, and complaint requests)
  • Postal correspondence: Data Protection Officer - Play Croco, c/o Website Administrator, Play Croco, PO Box 0001, Offshore Gaming Administration Centre (exact jurisdiction not publicly specified)
  • Telephone: Not specified; please use email for all initial communications.

Because Play Croco targets players in Australia from offshore and is not licensed by any Australian authority, it is not an "APP entity" under the Australian Privacy Act 1988 in the same way as some onshore providers; however, we voluntarily align this Privacy Policy with the Australian Privacy Principles to the extent reasonably practicable for an offshore gambling operator.

What Personal Data We Collect

When you use playcroco-au.com and related services, we may collect and process the following categories of personal information:

Identification and Contact Data

  • Basic identification data: full name, username, date of birth, nationality, and any government-issued identification details or documents you provide for verification (e.g. passport, driver licence, ID card) in the context of KYC/AML checks.
  • Contact details: email address, residential address, billing address, mobile and/or landline telephone numbers, and preferred language of communication.

Account and Gaming Data

  • Account information: account ID, passwords or authentication credentials (stored using appropriate security measures), security questions and answers, and account status.
  • Gaming and behavioural data: betting, gaming and transaction history (including games played, session times, stakes, wins/losses, bonuses used), interaction logs, clickstream data, time spent on particular pages or games, and responsible gambling settings (e.g. limits, self-exclusions).

Technical and Usage Data

  • Technical identifiers: IP address, device identifiers, browser type and version, operating system and platform, device model, screen resolution, and approximate location derived from IP.
  • Log and diagnostic data: access dates and times, pages viewed, referral URLs, error logs, system activity, and performance diagnostics.

Payment and Financial Data

  • Payment transaction data: partial payment card details (where permitted), masked card numbers, card expiry date, tokenised card identifiers, payment method type, e-wallet details, bank account identifiers (IBAN or BSB/account numbers where required), deposits, withdrawals, and chargeback information.
  • Verification data: proof of payment method ownership (e.g. redacted bank statement, card photo with partial digits hidden) as part of fraud prevention and AML checks.

Marketing and Communications Data

  • Preferences: marketing preferences, opt-in/opt-out status for email, SMS, push notifications, or affiliate offers.
  • Interaction data: records of communications with customer support, complaints, surveys, or feedback forms.

Cookies and Similar Technologies

  • Cookies: small text files stored on your device, including session cookies, persistent cookies and third-party cookies used for authentication, remembering preferences, analytics, and advertising.
  • Tracking technologies: web beacons, pixels, tags, device fingerprinting, and similar technologies that collect or infer data about usage patterns and interaction with emails, banners, and site content.

Where required by applicable law, certain data (such as identity documents or proof of address) may be mandatory for us to provide services (for example, to perform age verification, fraud checks, or compliance with anti-money laundering requirements). Failure to provide such data when requested may result in our inability to open or maintain your account or process your transactions.

Legal Basis for Processing

We process personal data only where there is a valid legal basis to do so. Given that Play Croco operates offshore and may process data of users located in multiple jurisdictions (including the EU/EEA and other regions), we align with internationally recognised principles (such as the GDPR legal bases) and applicable local laws, including the Australian Privacy Act 1988, to the extent they apply.

Performance of a Contract

  • Account creation and management: to register you as a user, manage your account, authenticate logins, provide customer support, and manage loyalty or VIP schemes.
  • Service delivery: to provide access to games, process deposits and withdrawals, administer bonuses and promotions, calculate bets and payouts, and deliver other requested services.

Compliance with Legal Obligations

  • KYC and AML obligations: to verify your identity, detect and prevent money laundering, terrorist financing, fraud, or other financial crimes consistent with applicable laws and industry practice in the operator's jurisdiction (for example, within the claimed Curaçao licensing framework, even though the licence status is unverified).
  • Record-keeping and reporting: to keep certain transaction, verification, and communications records for legally prescribed periods, respond to lawful requests from regulators, courts, tax authorities, or other governmental bodies, and comply with sanctions or enforcement notices.

Legitimate Interests

  • Security and fraud prevention: monitoring usage patterns to detect suspicious activity, protect our systems, prevent account takeover, and maintain the integrity of games.
  • Service improvement and analytics: analysing aggregated and pseudonymised data to develop, test, and enhance games, website performance, and user experience.
  • Business operations: conducting internal audits, quality checks, risk management, and reporting to management or group entities, provided such interests are not overridden by your rights and interests.

Consent

  • Marketing communications: sending promotional emails, SMS, push notifications, or customised offers from Play Croco or selected partners where you have actively opted in or where such communications are otherwise permitted by applicable law.
  • Cookies and tracking: storing or accessing non-essential cookies and similar technologies on your device for analytics or advertising purposes, based on your consent where required.

You can withdraw your consent at any time (for example, by using the unsubscribe link in marketing emails or adjusting your cookie settings), which will not affect the lawfulness of processing based on consent before its withdrawal.

Purpose of Processing

We use your personal information for the following purposes:

  • Provision of casino and gaming services: to operate and manage your account, verify your age and identity, provide you with access to games on playcroco-au.com, process bets, calculate results, credit winnings, and process deposits and withdrawals.
  • Customer support and communication: to respond to your queries, complaints, or requests, notify you about changes to our services, and send transactional messages (e.g. security alerts, account notifications, and service announcements).
  • Compliance and risk management: to comply with legal and regulatory obligations in our operating jurisdiction(s), including anti-money laundering checks, sanctions screening, responsible gambling measures, and prevention of fraud and abuse.
  • Improvement of services and user experience: to monitor, analyse, and improve the performance of our website, apps, games, and promotions, perform statistical and market analysis, develop new products, and personalise content and offers.
  • Marketing and promotions: to provide information about promotions, bonuses, tournaments, loyalty rewards, and partner offers that may be of interest to you, consistent with your preferences and applicable law.
  • Security and technical operations: to maintain the security of our systems and data, detect and respond to incidents, ensure business continuity, and protect our legitimate business interests.

Disclosure & Sharing

We do not sell your personal information as a standalone product. However, we may disclose or share your data with the following categories of recipients, strictly for the purposes described in this Privacy Policy and subject to appropriate safeguards:

Service Providers and Technical Partners

  • Payment processors and financial institutions: to process deposits, withdrawals, and refunds; verify ownership of payment methods; and manage chargebacks or disputes.
  • IT and hosting providers: cloud hosting, data storage, content delivery networks, email and SMS platforms, security tools, and technical support services necessary for operating playcroco-au.com.
  • Gaming and software providers: game studios, platform providers, and RNG/log certification partners who may require limited access to logs or transactional data to ensure integrity and fairness.

Group Companies and Affiliates

  • Associated or group entities: where Play Croco is part of a wider group of companies or associated brands, limited personal data may be shared for consolidated reporting, risk management, or cross-brand responsible gambling measures.
  • Affiliate partners: selected marketing affiliates, networks, or media partners may receive pseudonymised or aggregated data to measure campaign performance or to ensure that commissions are calculated correctly, but they are not permitted to use this data to identify you individually without your consent.

Regulators, Authorities, and Dispute Bodies

  • Regulatory and governmental authorities: in the operator's jurisdiction (for example, the claimed Curaçao regulator) or other competent authorities, courts, or law enforcement agencies, where disclosure is required by law, court order, subpoena, or other lawful process.
  • Dispute resolution bodies: where applicable, independent adjudication services or alternative dispute resolution bodies to whom you or we refer a dispute, provided disclosure is necessary to handle the case.

Advertising Networks and Analytics Partners

  • Analytics providers: third-party analytics tools that help us understand website usage and user engagement patterns, generally on an aggregated or pseudonymised basis.
  • Advertising networks: third-party advertising partners and networks, where cookies or similar technologies are used for targeted advertising or retargeting with your consent where required by law.

Whenever we share personal data with third parties, we require them to handle such information in accordance with appropriate contractual, technical, and organisational safeguards, and only for the purposes we specify. Where personal data is shared with entities outside the operator's primary jurisdiction, additional safeguards described in the "International Transfers" section will apply.

International Transfers

Play Croco is operated by an offshore entity that targets Australian players and may process data in multiple jurisdictions, including but not limited to:

  • Caribbean/Offshore jurisdictions: such as Curaçao or other remote gaming hubs where servers, platform providers, or payment processors may be located.
  • European Economic Area (EEA) and United Kingdom: where some service providers (e.g. hosting, analytics, payment intermediaries) may process data.
  • Other regions: including North America or Asia-Pacific, where cloud, security, or communications providers host or route data.

Because these transfers may involve countries that do not provide the same level of data protection as your home jurisdiction, we implement safeguards intended to protect your information, such as:

  • Contractual safeguards: using data processing agreements and, where applicable, standard contractual clauses or equivalent contractual mechanisms to govern cross-border transfers.
  • Technical measures: encryption of data in transit and at rest, access controls, and strict authentication for personnel who handle personal information.
  • Organisational measures: limiting access to personal data on a need-to-know basis, training staff on data protection, and enforcing internal policies and audit trails.

By using playcroco-au.com, you acknowledge that your data may be transferred to and processed in countries outside your country of residence, including locations where data protection standards may differ, but where we take reasonable steps to ensure an adequate level of protection consistent with this Privacy Policy.

Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, including to meet any legal, accounting, or reporting requirements in relevant jurisdictions. Retention periods may vary based on data type and legal obligations, but we apply the following general principles:

  • Account and identification data: typically retained for the duration of your active account and up to 5 - 7 years after account closure or last transaction, to comply with anti-money laundering and financial record-keeping requirements and to manage potential legal claims.
  • Gaming, transaction, and financial data: retained for at least 5 years after the relevant transaction or account closure, or longer if required by law or necessary for investigations, dispute resolution, or tax/financial audits.
  • Customer support and communications data: normally retained for up to 3 - 5 years from the date of the last interaction, depending on the nature of the query and any regulatory requirements.
  • Marketing and consent records: retained for as long as you remain subscribed to marketing channels and for a reasonable period (typically up to 2 years) thereafter to demonstrate compliance with consent and opt-out requirements.
  • Technical logs and security data: network, access, and security logs are usually retained for 6 - 24 months, depending on their relevance for security monitoring, diagnostics, and incident investigations.

When personal data is no longer required for the purposes described above, we will either securely delete or irreversibly anonymise it. If deletion is not immediately possible (for example, where data is stored in backup archives), we will securely store and isolate it from any further processing until deletion is feasible.

Your Rights

Depending on your place of residence and the applicable data protection laws, you may have a range of rights in relation to your personal information. Where we process personal data of individuals located in the European Union/European Economic Area, the United Kingdom, or other jurisdictions with comparable protections, we aim to align with key principles found in the GDPR and other modern data protection regimes. Although Mexico-specific laws mentioned in some templates (such as the Federal Law on Protection of Personal Data Held by Private Parties) do not directly apply to Play Croco's main target market, we broadly follow similar rights-based principles.

Key Rights You May Exercise

  • Right of access: to obtain confirmation as to whether we process your personal data and, if so, to receive a copy of such data together with information about the processing.
  • Right to rectification: to request correction of inaccurate or incomplete personal information that we hold about you.
  • Right to erasure: to request deletion of your personal data in certain circumstances (for example, where it is no longer needed for the purposes for which it was collected, or where you have withdrawn consent and there is no other legal basis for processing). Please note that we may need to retain certain information to comply with legal obligations or for legitimate business purposes (such as AML record-keeping).
  • Right to restriction of processing: to request that we temporarily suspend processing of your data in specific situations, such as when you contest the accuracy of the data or object to processing based on legitimate interests.
  • Right to object: to object, on grounds relating to your particular situation, to processing based on our legitimate interests, and to object at any time to the processing of your data for direct marketing purposes (including profiling related to such marketing).
  • Right to data portability: to receive certain personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller where technically feasible and lawful.
  • Right to withdraw consent: where processing is based on your consent (for example, for marketing or non-essential cookies), you may withdraw that consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

How to Exercise Your Rights

  1. Submit a request: contact us via email at [email protected] from the email address associated with your account, clearly stating your identity, the right you wish to exercise, and the scope of your request.
  2. Verification: we may ask you to provide additional information (for example, proof of identity or account ownership) to ensure that we do not disclose data to an unauthorised person.
  3. Response time: we aim to respond to all valid requests without undue delay and, in any event, within 30 calendar days of receipt. If your request is particularly complex or we receive multiple requests, this period may be extended by a further 30 days; if so, we will notify you of the extension and reasons.
  4. Fees: we will not usually charge a fee to handle your request. However, we may charge a reasonable fee or refuse to act on requests that are manifestly unfounded, excessive, or repetitive, as permitted by applicable law.

Some rights may be subject to limitations or exceptions under relevant laws (for instance, where exercising a right would adversely affect the rights and freedoms of others, interfere with law enforcement, or conflict with statutory record-keeping duties). In all cases, we will explain the outcome of your request and the reasons for any refusal or partial fulfilment.

Cookies & Tracking Technologies

Play Croco uses cookies and similar technologies on playcroco-au.com to provide, protect, and improve our services. Cookies are small text files placed on your device by your browser when you visit our site. We categorise them as follows:

Types of Cookies We Use

  • Strictly necessary (session) cookies: essential for the operation of the website and its core features (e.g. sign-in, account navigation, bet placement, session management, security). These cookies are typically deleted when you close your browser.
  • Functional (persistent) cookies: enable the site to remember your preferences (language, region, display settings, login state) and provide enhanced, more personalised features. They remain on your device for a defined period or until deleted.
  • Analytics cookies: help us understand how visitors use the site, which pages are most popular, and how users move around the site. This information is generally aggregated and used to improve performance and usability.
  • Advertising and third-party cookies: placed by us or our advertising partners to deliver relevant advertisements, measure campaign effectiveness, or perform retargeting based on your browsing behaviour on playcroco-au.com and, in some cases, on other sites that integrate these technologies.

Managing Cookies

  • Browser settings: most web browsers allow you to control cookies through their settings (e.g. block all cookies, accept only first-party cookies, or delete cookies when closing the browser). Please note that blocking or deleting certain cookies may affect site functionality and your gaming experience.
  • In-site controls: where implemented, you may manage your cookie preferences via cookie banners or internal settings panels on playcroco-au.com.
  • Opt-out mechanisms: for some third-party analytics or advertising cookies, additional opt-out options may be available through the third party's own tools or industry-wide platforms.

By continuing to use playcroco-au.com without adjusting your browser or site-level cookie settings, you consent to our use of cookies and similar technologies as described in this section, to the extent required by applicable law.

Data Security

We take the security of your personal information seriously and implement technical and organisational measures designed to protect it against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

Technical Measures

  • Encryption in transit and at rest: data transmitted between your device and our servers is protected using transport layer security (TLS 1.2 or higher). Where feasible, sensitive data is encrypted at rest using industry-standard algorithms.
  • Access controls and authentication: strict access policies ensure that only authorised personnel and service providers can access personal data, limited by role and necessity. We encourage or implement multi-factor authentication for administrative access and critical systems.
  • Network and application security: firewalls, intrusion detection and prevention systems, anti-malware solutions, and regular vulnerability assessments and patching practices are used to secure our infrastructure.

Organisational Measures

  • Policies and training: staff handling personal data receive training on data protection, confidentiality, and security best practices. Internal policies govern acceptable use, incident response, and data handling.
  • Vendor due diligence: we assess the security measures of key service providers who process personal data on our behalf and include appropriate security and confidentiality obligations in our contracts.
  • Incident response: we maintain procedures for identifying, investigating, and responding to potential personal data breaches. Where required by applicable law, we will notify affected individuals and/or relevant authorities without undue delay.

While we strive to implement measures consistent with recognised best practices and, where feasible, align with the principles of international standards such as ISO/IEC 27001 and SOC 2, no method of transmission or storage is entirely secure. You are responsible for maintaining the confidentiality of your login credentials and for using appropriate security measures on your own devices and networks.

Complaints & Contacts

If you have questions, concerns, or complaints about how we handle your personal information, or if you wish to exercise any of your data protection rights, you may contact us using the details below.

Contacting Us

  • Data Protection Officer (DPO): Data Protection Officer - Play Croco
  • Email: [email protected]
  • Website: https://playcroco-au.com (you may also use any available contact or feedback forms on the site)
  • Postal address: Data Protection Officer - Play Croco, c/o Website Administrator, Play Croco, PO Box 0001, Offshore Gaming Administration Centre (exact jurisdiction not publicly specified)

Complaint Procedure

  1. Initial submission: send us a detailed description of your complaint or concern, including any supporting documents or screenshots, via email or postal mail.
  2. Acknowledgment: we will acknowledge receipt of your complaint as soon as reasonably practicable, normally within 5 business days.
  3. Investigation: we will investigate your complaint, which may involve reviewing system logs, consulting internal teams, or contacting you for additional information.
  4. Outcome: we aim to provide a substantive response within 30 calendar days of receipt of your complete complaint. If we require more time due to complexity, we will inform you of the delay and the expected timeframe.

Escalation to Supervisory Authorities

As Play Croco is an offshore operator targeting Australian players and is not licensed by Australian regulators, there may be limited direct oversight by Australian privacy regulators in relation to our operations. However, if you believe that your data protection rights have been violated and we have not adequately addressed your concerns, you may have the right to lodge a complaint with relevant supervisory authorities in your country of residence or in the jurisdiction where you believe the infringement occurred. Examples include:

  • For individuals in Australia: Office of the Australian Information Commissioner (OAIC) - www.oaic.gov.au
  • For individuals in the European Union: your local Data Protection Authority (contact details available via the European Data Protection Board website - edpb.europa.eu)
  • For individuals in the United Kingdom: Information Commissioner's Office (ICO) - www.ico.org.uk

You should consult the relevant authority's website for up-to-date contact information, jurisdictional scope, and complaint procedures. Nothing in this Privacy Policy limits any rights you may have under applicable data protection laws to approach a supervisory authority directly.

Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will take appropriate steps to inform you in advance where required by law.

Notification of Changes

  • Website notice: posting the updated Privacy Policy on playcroco-au.com with a revised "Last updated" date.
  • Prominent alerts: where changes are significant, displaying a banner, pop-up, or in-account notification highlighting the key modifications.
  • Email or in-account messages: for material changes that affect how we handle your data or your rights, sending notifications to the email address associated with your account or via secure account messages.

Effective Date and Advance Notice

  • Advance notice: for material changes that significantly affect your rights or obligations (for example, new purposes of processing or new categories of recipients), we will provide at least 30 days' advance notice before the changes take effect, where reasonably practicable.
  • User options: if you do not agree with the updated Privacy Policy, you may choose to stop using the site and, if you are a registered player, request account closure and, where permitted, withdrawal of any remaining balance, subject to the applicable terms and conditions and legal obligations.

Last updated: January 2026