Time to Spin Big.
Every Spin, Every Win.
The Novibet Casino Privacy Policy protects players' safety by keeping their information safe and private. Account holders trust you because you are very clear about how you handle their money and personal information. This document explains how personal information is kept, shared, and protected, in accordance with Australia data laws and the highest standards in the industry. Transaction safety, encryption, and user control over settings are all very important. Every time you put money into or take money out of $, it goes through multi-factor security and trusted payment processors. All records, including personal and payment information, are encrypted when they are stored and when they are sent. Regular audits by outside parties check to see if the storage, retention, and process controls are working. For Australian participants, the notice tells you what rights you have to access stored data and how to ask for changes, deletions, or downloads of your information. There are special support channels just for your area to answer your questions. We tell users to turn on two-factor authentication, use different passwords for each account, and change their account recovery options often. Customer support can help you or give you more information based on the laws and financial practices of Australia. To learn more about cookie settings, how third parties can use your data, and how to resolve disputes, look at the full outline. Consistently putting safety first when withdrawing money, being open about how data is handled, and banking in $.
When you create an account, you have to give important information like your name, date of birth, email address, physical address, and mobile number. To lower the risk of interception, these details are encrypted when they are sent and stored. To stop fraud or account misuse, identity verification is done by securely uploading documents like passports or national IDs. Every time you make a transaction, the system keeps track of your deposits, withdrawals, and balance in $. This lets real-time monitoring algorithms find unauthorised access or strange behaviour. If $ move in a way that isn't normal, the compliance team gets an alert to check it out. Patterns of use, like where people log in, what devices they use, and what type of browser they use, are always being looked at. If discrepancies from regular activity are noticed, two-factor authentication is prompted to the player, reducing the risk of account compromise. All personal information is kept on separate servers with limited access and is watched around the clock for attempts to break in. Data is shared exclusively with trusted partners involved in processing payments, verifying identities, or fulfilling legal obligations. We don't sell information to other people. If a player decides to close an account, the data that is kept is kept to a minimum and only for as long as the law requires. Players can update their personal information, set account limits, and manage their notification preferences through personalised control panels. Transparent logs let users review recent account activities, supporting proactive security awareness.
To safeguard all financial transactions such as withdraw $ and deposit to $, robust Transport Layer Security (TLS) 1.3 with strong cipher suites is deployed on every authentication and payment interface. This makes sure that any data sent between devices and the platform is kept private and safe from being intercepted by people who shouldn't be able to see it at all times. AES-256 is used to store account credentials, private information, and payment information when they are not in use. You can use multi-factor authentication and biometric options (if your device supports them) to log in to your account. This makes password-only systems much less risky. Each player session gets its own unique cryptographically secure tokens. This stops session hijacking and cross-site request forgery. Hardware security modules take care of key management, and key rotation happens according to the rules set by the Australian government and the industry. Web application firewalls and intrusion detection systems keep an eye on everything all the time to look for any unauthorised access attempts or strange user behaviour. All logs containing sensitive data are anonymized and encrypted, and retention schedules comply with legal mandates in Australia. Regular third-party penetration testing and audits validate the effectiveness of implemented protocols. Encryption keys are never stored in application source code, and administrative access is governed by strict role-based controls. For additional user safety, customers are advised to activate all available security features on their accounts and avoid sharing authentication details with anyone. Consult the support section for guidance on keeping your balance in $ protected during online sessions.
Ensuring full and transparent consent from Australian participants is mandatory throughout account creation and session activity. When they start the registration process, applicants look over a long list of permissions for collecting, using, and processing identifiers. Before you can use any of the features, the system shows you checkboxes for explicit approval for communication preferences, responsible gambling settings, cross-device tracking, and how to handle payment transactions in $.
Users can set up approvals for marketing messages, third-party tool integrations, geolocation, and session tracking during the onboarding process. If you don't give discretionary consents, it doesn't affect your eligibility for a core account or your ability to deposit to $ and withdraw winnings, unless Australia law requires it.
Signing up is not the end of consent mechanisms. A real-time popup asks for confirmation before turning on new site features or changing policies that affect how data is handled. Customers must confirm their permissions again for each gameplay session, especially when using personalised recommendations or taking part in tournaments. Players can change or take back any existing consents at any time through the Account Settings dashboard. This will cause the system to immediately comply and change the way it tracks players. Strict logging keeps a record of every transaction that requires consent. According to Australia rules, these logs must be kept and can be accessed on request for review or export.
In accordance with Australia laws, player information can only be shared with third parties in very specific situations. Data is never sold or shared for business purposes. Instead, disclosures are only made to regulatory bodies, payment providers, analytical service partners, and fraud prevention networks to protect users. Legal obligations that require disclosure include responding to subpoenas, audits, requests from financial authorities, or court orders that are specific to the gaming sector in Australia. As part of routine checks for anti-money laundering, certain identity and transaction data are shared with certified financial institutions and risk assessment platforms. These disclosures are limited to what is necessary: name, age, address, transaction history, and account status in $ if they are relevant to the inquiry. Working with payment processors: When you put money into or take money out of an account in $, important information like the user's account number, the amount of the deposit or withdrawal, and verification data is sent safely over encrypted channels. The laws of Australia say that each partner must follow strict rules about privacy and security. Usage analytics and making things better: Before being sent outside the company, data that is shared for analytics is made anonymous. These partners only get statistical patterns, like the types of devices used, the times of sessions, and the total amount of activity in the game. They never get any personally identifiable information. Under the law, players still have the right to ask for a list of all third parties who have received their information. If you have questions or concerns about how information is being handled, you should contact support right away.
One of the most important things for the safety of the Australian platform is making sure that only authorised users can log in. When a customer signs up, they choose a unique username and set a password that is harder to guess. The password must be at least 10 characters long and include a mix of letters, numbers, and special symbols. Every 180 days, users are asked to change their passwords, and they are notified by email that has been verified. All logins use Multi-Factor Authentication (MFA), which means that you need more than just your username and password. You also need a code that is only good for a short time and is sent to your phone or an approved authenticator app. Every new device or browser must have MFA done by the account holder. Managing sessions and setting timeouts After 15 minutes of inactivity, automatic session timeout kicks in. To resume activities like depositing to $ or viewing transaction histories, you must fully re-authenticate. When someone tries to log in too many times in a row, their account is temporarily locked and an email is sent to the registered email address. This lowers the risk of brute-force attacks.
Players should not share their login information or store their passwords on shared devices. The support team will never ask for passwords or other private information over the phone, in chat, or by email. Users can turn on access logs for extra security. These logs show every login attempt, including the time, device, and IP address used, in their profile settings. People who have accounts are responsible for keeping their login information private. If you see someone getting into your account without permission or doing something strange, you should contact support right away. This will make sure that quick action is taken to protect your personal and financial safety, like freezing balances in $ if necessary.
For players from Australian, the rules for keeping information follow the rules set by Australia data protection laws and licensing authorities. To meet legal, tax, and anti-fraud requirements, identifiable information, payment records, and gameplay activity logs are kept. The length of time that data is kept depends on the type of data, as shown below.
Purpose: Checking Identity Five years after the last transaction or account closure Compliance, anti-money-laundering Transaction History ($) At least five years Regulatory reporting, user verification Gameplay Logs Up to 5 years Dispute resolution, fraud investigation Marketing Preferences Immediately upon withdrawal or opt-out Consent management Requesting closure of your profile triggers additional processes. You can turn off your user account from the account dashboard or by asking customer support to do it for you. When a profile is closed, access to it is taken away, but it must still be kept for audits by the government and the company. After the legal holding periods are over, any non-essential data connected to deactivated profiles is either deleted or made anonymous. Players should send written requests to the support team, including their registered email address and proof of identity, to speed up the deletion of personal information that is not required by law. You can change or cancel your communication preferences and marketing consents at any time through your account settings. This makes sure that unwanted communication stops right away. If you have a balance in $ when you delete your account, make sure to take out $ before you close it. Residual balances can be handled according to withdrawal procedures before the rest of the user records are limited and set to be deleted.
Australian users who want to look over or change their personal information can start the process by logging into their account and going to the secure profile management section. Strict identity verification rules protect the accuracy of changes and keep people from getting in without permission.
Sign in and go to your profile's dashboard. Find the "Data Access & Correction" tool in the menu for settings. You can either "View My Data" or "Request Correction." To get your confirmation back, send it through your registered Australia contact method (email or SMS). To make changes, fill out the online form with the field(s) that need to be changed, attach any relevant supporting documents, and confirm the changes with two-factor authentication. After you submit, your registered contact information will get a status update and a tracking ID.
Within 10 business days, all requests are looked at. Users must show an accepted Australia ID or other proof of identity if more proof is needed. We will only process requests that come from the payment and contact information linked to your $ account. This is to stop people from making changes without permission. As required by local Australia data rules, all corrected information is shown in $ payment records and withdrawal requests. To make sure you can always access your account, double-check that any changes to your contact or financial information match the information you use for transactions. If you need help, please use the secure support channel to get in touch with the customer support team and give them your tracking ID.
Bonus
for first deposit
1000AUD + 250 FS
Switch Language
