burger icon
Bet365 Casino New Zealand
Log In

Privacy Policy

This Privacy Policy explains how bet-365-casino-new-zealand, operating exclusively via bet-365-nz.com, collects, uses, discloses, and protects your personal information when you use our services in New Zealand. It applies to all players and website visitors. This policy is effective as of 6 November 2025 and supersedes any previous versions.

Who We Are

OBSERVE: bet-365-casino-new-zealand is operated by Hillside (New Media Malta) plc, a private limited company, part of Bet365 Group Ltd. The registered legal address is Level G, Quantum House, 75 Abate Rigord Street, Ta' Xbiex, XBX 1120, Malta, with its global headquarters at Bet365 House, Media Way, Stoke-on-Trent, Staffordshire, ST1 5SZ, United Kingdom.
EXPAND: The designated Data Protection Officer (DPO) can be contacted for all data queries and rights requests.
REFLECT: All privacy matters relating to bet-365-casino-new-zealand (bet-365-nz.com) are handled by our DPO and support channels as detailed below.

  • Operator: Hillside (New Media Malta) plc
  • Legal Address: Level G, Quantum House, 75 Abate Rigord Street, Ta' Xbiex, XBX 1120, Malta
  • Headquarters: Bet365 House, Media Way, Stoke-on-Trent, Staffordshire, ST1 5SZ, United Kingdom
  • Company Registration Number: Not specified (available upon request)
  • Data Protection Officer (DPO): Sophie Mitchell
  • Contact Email: [email protected] (support), [email protected] (general)
  • Contact Forms: Online Form 1, Online Form 2
  • Websites: bet-365-nz.com, bet365.com

What Personal Data We Collect

OBSERVE: We collect various categories of information to deliver and improve our casino services.
EXPAND: This includes data necessary for account operation, compliance, security, and marketing, with explicit and implicit requirements for regulatory reporting.
REFLECT: Data categories are listed to ensure transparency under NZ law and international standards.

  • Personal Identification Data: Full name, date of birth, residential address, email address, phone number, government-issued ID, proof of address.
  • Account Data: Username, password, account activity logs.
  • Technical Data: IP address, browser type, device identifiers, operating system, access logs, cookies, and similar technologies.
  • Payment Data: Credit/debit card details, bank account information, payment transaction history, e-wallet details.
  • Behavioral Data: Betting history, game participation, preferences, clickstream data, interaction logs.
  • Cookies & Tracking: Session cookies, persistent cookies, third-party cookies, advertising and analytics trackers.
  • Correspondence Data: Communications with support, complaint records, survey responses.

Legal Basis for Processing

OBSERVE: bet-365-casino-new-zealand processes data according to NZ privacy law, the EU GDPR (where applicable), and relevant industry obligations.
EXPAND: Processing is based on user consent, contractual necessity, legitimate interests, and legal obligations (including KYC/AML compliance).
REFLECT: Legal grounds are clearly stated to ensure regulatory alignment and user understanding.

  1. User Consent: We process marketing and analytics data only where explicit consent is provided. Consent may be withdrawn at any time without affecting prior processing.
  2. Contract Performance: Personal and payment data are processed as required to create, operate, and maintain your bet-365-nz.com account, including facilitating deposits, withdrawals, and gameplay.
  3. Legal Obligations: We are required to collect and process certain data to comply with anti-money laundering (AML), know your customer (KYC), and responsible gambling regulations under NZ law and our international licenses.
  4. Legitimate Interests: Data may be processed to detect and prevent fraud, monitor system security, analyse performance, and improve our services, provided such processing does not override your fundamental rights.

Regional Compliance Note: All processing activities are designed to comply with the NZ Privacy Act 2020 and the Gambling Act 2003, as well as international standards where applicable.

Purpose of Processing

OBSERVE: Data processing is necessary to deliver core casino functions and ancillary services.
EXPAND: Each purpose aligns with a specific legal basis and operational requirement.
REFLECT: All purposes are disclosed for transparency and accountability under NZ and EU legal frameworks.

  • Account Management: To register, verify, and maintain user accounts on bet-365-nz.com.
  • Service Delivery: To facilitate gameplay, manage transactions, and provide customer support.
  • Compliance: To fulfill legal, regulatory, and licensing obligations, including fraud and anti-money laundering checks.
  • Communication: To send transactional, promotional, and service-related communications, subject to consent.
  • Analytics & Improvements: To analyse performance, monitor usage trends, and improve the user experience.
  • Marketing: To provide targeted offers, news, and updates with user consent.
  • Security & Integrity: To ensure the safety of accounts, prevent abuse, and safeguard financial transactions.

Disclosure & Sharing

OBSERVE: Data may be shared with third parties under specific circumstances.
EXPAND: Recipients include payment processors, service providers, regulators, affiliates, and advertising networks-with strict contractual safeguards.
REFLECT: Disclosure is limited to what is necessary for the stated purposes and legal requirements.

  • Payment Partners: Data is disclosed to financial institutions and payment processors solely to facilitate secure transactions.
  • Service Providers: Third-party vendors providing IT, analytics, customer support, and security services access data under strict confidentiality agreements.
  • Regulators & Authorities: Personal data may be disclosed to regulatory bodies such as the Malta Gaming Authority, UK Gambling Commission, and NZ authorities to comply with statutory obligations.
  • Affiliates & Subsidiaries: Information may be shared within the Bet365 Group to the extent necessary for service delivery and compliance.
  • Advertising Networks: Data is shared with third-party marketing partners only with explicit user consent for targeted advertising.
  • Legal Requirements: Data may be disclosed in response to lawful requests, court orders, or to protect our legal rights.

Protective Clause: All third parties are contractually obligated to implement adequate security and data protection standards, and data sharing is minimized in accordance with the principle of data minimisation.

International Transfers

OBSERVE: bet-365-casino-new-zealand operates globally, involving cross-border data transfers.
EXPAND: Transfers occur to the United Kingdom, Malta, Gibraltar, and other locations where our group or service providers operate.
REFLECT: All transfers are safeguarded by appropriate legal mechanisms and technical measures.

  • Transfer Destinations: Data may be transferred to and processed in countries outside New Zealand, including the United Kingdom, Malta, Gibraltar, and the European Economic Area (EEA).
  • Legal Safeguards: Transfers are governed by Standard Contractual Clauses, adequacy decisions, or equivalent data protection mechanisms as required by the NZ Privacy Act 2020 and the EU GDPR.
  • Access Controls: Only authorised personnel with a legitimate need have access to personal data, and all transfers are logged and regularly reviewed for compliance.

Protective Clause: Users are entitled to request further details regarding international transfers and the specific safeguards in place by contacting our DPO.

Data Retention

OBSERVE: Data is retained only as long as necessary for the purposes set forth in this policy.
EXPAND: Retention periods are determined by legal, regulatory, and operational requirements.
REFLECT: Deletion or anonymisation occurs upon request, expiration, or when purposes have been fulfilled.

  1. Personal Data: Retained for up to 5 years following account closure to comply with AML/KYC and statutory obligations, unless a longer period is required by law.
  2. Payment Data: Retained for 7 years for financial and auditing purposes, as required by tax or regulatory authorities.
  3. Behavioral and Technical Data: Retained for a maximum of 24 months for analytics and security, unless extended for ongoing investigations.
  4. Deletion Criteria: Data is deleted or anonymised upon expiry of the relevant retention period, receipt of a valid erasure request, or when processing is no longer necessary.

Protective Clause: All personal data is securely deleted or irreversibly anonymised upon expiration of the retention period, in accordance with NZ and EU standards.

Your Rights

OBSERVE: Users have comprehensive rights under the NZ Privacy Act 2020 and, where relevant, the EU GDPR.
EXPAND: Rights include access, correction, erasure, restriction, objection, portability, and withdrawal of marketing consent.
REFLECT: Procedures are designed to be accessible, free of charge, and timely.

  • Right of Access: You may request a copy of your personal data held by bet-365-casino-new-zealand at any time.
  • Right to Correction: You have the right to request correction of inaccurate or incomplete personal data.
  • Right to Erasure: You may request deletion of your data where legally permissible, including where processing is no longer necessary.
  • Right to Restrict Processing: You may request restriction of processing in certain circumstances (e.g., contesting accuracy or processing unlawfully).
  • Right to Object: You may object to processing based on legitimate interests or direct marketing at any time.
  • Right to Data Portability: You have the right to receive your personal data in a machine-readable format and transmit it to another controller.
  • Right to Withdraw Consent: You can withdraw consent for marketing communications at any time via account settings or by contacting support.

Exercising Your Rights (Procedures and Guarantees)

  1. Submission: Rights requests may be submitted via email ([email protected]), online contact form, or postal address (upon request).
  2. Verification: For your security, we may require verification of your identity before processing requests.
  3. Response Time: We will respond to all valid requests within 30 days from receipt. Extensions may apply for complex requests, with notification provided.
  4. Free of Charge: All rights requests are processed free of charge, except where requests are manifestly unfounded or excessive, in which case a reasonable fee may be charged.
  5. Appeals & Complaints: If you are dissatisfied with our response, you have the right to lodge a complaint with the NZ Privacy Commissioner or, where applicable, an EU data protection authority.

Regional Compliance Note: This section is fully aligned with the NZ Privacy Act 2020, the EU GDPR, and international best practices for data subject rights.

Cookies & Tracking Technologies

OBSERVE: bet-365-casino-new-zealand uses cookies and similar technologies for functionality, analytics, and marketing.
EXPAND: Users are informed about types and purposes, with management options provided.
REFLECT: Cookie practices are aligned with NZ and international requirements.

  • Session Cookies: Temporary cookies required for secure login and navigation; automatically deleted upon browser closure.
  • Persistent Cookies: Remain on your device for up to 24 months to remember preferences and login details.
  • Third-Party Cookies: Set by analytics and advertising partners to monitor site performance and deliver targeted ads (with user consent).
  • Management: Cookies can be managed or disabled via browser settings or, where available, through your account privacy panel on bet-365-nz.com.

Protective Clause: Disabling certain cookies may affect website functionality, such as secure login or game performance.

Data Security

OBSERVE: Comprehensive security measures are implemented to protect your data from unauthorised access or disclosure.
EXPAND: Technical, organisational, and procedural controls align with international security standards such as ISO 27001 and SOC 2.
REFLECT: Security is continually reviewed and strengthened to address evolving risks.

  • Encryption: All data is encrypted in transit (TLS 1.2+) and at rest using industry-standard protocols.
  • Access Controls: Multi-factor authentication, strict role-based permissions, and regular access reviews are enforced for all personnel.
  • Security Audits: Regular internal and external security audits are conducted to assess and enhance protection measures.
  • Staff Training: Ongoing data protection and information security training is provided to all relevant staff members.
  • Incident Response: Comprehensive incident response procedures are in place to detect, contain, and notify users of any data breaches in accordance with NZ law.
  • Compliance: Security practices are audited against ISO 27001, SOC 2, and Malta Gaming Authority requirements.

Protective Clause: While we employ advanced security measures, no online system is completely immune to risks; users are encouraged to maintain strong, unique passwords and report any suspicious activity.

Complaints & Contacts

OBSERVE: Multiple channels are provided for submitting complaints or queries about privacy practices.
EXPAND: Clear step-by-step process ensures user rights are upheld and escalation paths are defined.
REFLECT: All complaints are handled in accordance with NZ and international data protection frameworks.

  1. Initial Contact: Submit your complaint or enquiry via email ([email protected]), contact form (here), or by written request to our legal address.
  2. Acknowledgement: You will receive an acknowledgement within 5 business days of receipt.
  3. Investigation: Complaints are investigated by the DPO (Sophie Mitchell) or delegated data protection team.
  4. Response: A formal response will be provided within 30 days. Where further time is needed, you will be notified of the reasons and expected timeframe.
  5. Escalation: If you remain dissatisfied, you may escalate your complaint to the NZ Privacy Commissioner:
  6. EU Users: Where applicable, complaints may also be lodged with the relevant EU supervisory authority. Details are available upon request.

Protective Clause: All complaints are handled in strict confidence and in accordance with legal requirements.

Updates

OBSERVE: This policy may be updated to reflect changes in law, practices, or technology.
EXPAND: Users are provided with transparent notification of material changes and afforded options to object or close accounts.
REFLECT: Version control and changelogs ensure accountability.

  • Notification: Material changes will be communicated via email, website banners, and account dashboard alerts at least 30 days prior to taking effect.
  • User Options: Users may object to changes or close their account if they do not agree with the updated policy.
  • Version Control: This policy was last updated on 6 November 2025.
  • Changelog:
    • 6 November 2025: Full policy revision for NZ law alignment, clarification of international transfer mechanisms, and enhanced user rights procedures.

Protective Clause: Continued use of bet-365-nz.com after policy updates constitutes acceptance of the revised terms.