burger icon
Lets Lucky Casino New Zealand
Log In

Privacy Policy

This Privacy Policy explains how lets-lucky-casino-new-zealand, available at lets-lucky-nz.com, collects, uses, protects, and manages personal information of players and website visitors. The Policy applies to all users accessing lets-lucky-nz.com from New Zealand and is effective as of 6 November 2025. By using our services, you acknowledge your understanding and acceptance of this Policy.

Who We Are

OBSERVE: lets-lucky-casino-new-zealand is operated by Just Entertainment B.V., a company registered in Curaçao. EXPAND: All regulatory and data protection responsibilities rest with this entity, and contact information is provided for transparency and compliance. REFLECT: This ensures users can exercise rights and direct inquiries efficiently.

  • Operator: Just Entertainment B.V.
  • Registered Address: Scharlooweg 39, Willemstad, Curaçao
  • Company Registration Number: 160603
  • Gaming License: OGL/2025/164/0246 (Curaçao Gaming Control Board, valid through 2025)
  • Data Protection Officer (DPO): Sophie Williams
  • Contact Email (Support): support@lets-lucky-nz.com
  • Contact Email (Complaints): complaints@lets-lucky-nz.com
  • Website: lets-lucky-nz.com

What Personal Data We Collect

OBSERVE: lets-lucky-casino-new-zealand collects multiple data types for regulatory, operational, and security purposes. EXPAND: Categories are detailed to cover explicit and implicit requirements per NZ law and industry standards. REFLECT: This transparency ensures user awareness and informed consent.

  • Personal Identification Data: Full name, date of birth, postal address, email address, phone number, identification documents.
  • Technical Data: IP address, device type, operating system, browser information, log data, access times, session cookies.
  • Payment Data: Banking details, credit/debit card information, e-wallet accounts, transaction history.
  • Behavioral Data: Betting and gaming history, site navigation, clickstream data, account preferences, communication records.
  • Cookies and Tracking Technologies: Session cookies, persistent cookies, third-party analytics and advertising cookies (see "Cookies & Tracking Technologies" below).

Legal Basis for Processing

OBSERVE: lets-lucky-casino-new-zealand processes data under legal grounds recognized in New Zealand and international privacy frameworks. EXPAND: All relevant bases are outlined, including contract, consent, legitimate interest, and legal obligation. REFLECT: This protects both the casino and users against unlawful processing.

  • User Consent: Collected when you register, subscribe to marketing, or otherwise provide data voluntarily. Consent may be withdrawn at any time.
  • Contract Fulfilment: Data is processed to establish and operate your account, process payments, and deliver requested services.
  • Legitimate Interests: Processing for anti-fraud, security, analytics, service improvements, and ensuring the integrity of gaming operations.
  • Legal Obligations: Compliance with applicable laws, including Know Your Customer (KYC), Anti-Money Laundering (AML), tax, and regulatory reporting requirements.

Purpose of Processing

OBSERVE: Data is processed for operational, legal, marketing, and security purposes. EXPAND: Each purpose is aligned with specific regulatory or business needs. REFLECT: Users are informed of all data usage contexts.

  1. Provision of Casino Services: Account creation, transaction processing, gameplay facilitation, customer support.
  2. Service Improvement: Analysing usage trends, monitoring system performance, enhancing user experience.
  3. Marketing Communications: Sending promotional offers and newsletters, subject to user consent. Opt-out is available at any time.
  4. Regulatory Compliance: Fulfilling KYC/AML, responsible gaming, and other legal obligations.
  5. Fraud Prevention and Security: Monitoring for suspicious activity, verifying user identity, maintaining system security.

Disclosure & Sharing

OBSERVE: lets-lucky-casino-new-zealand may share data with third parties under defined circumstances. EXPAND: Categories of recipients and legal bases for disclosure are detailed for full transparency. REFLECT: This ensures users understand who may access their data and under what conditions.

  • Payment Processors & Financial Institutions: For transaction processing and anti-fraud checks.
  • Service Providers: IT, analytics, marketing, and customer support service vendors, bound by confidentiality agreements.
  • Regulatory Authorities: Where required by law, including gaming regulators and law enforcement.
  • Affiliates and Subsidiaries: Only as necessary for service provision and regulatory compliance, under strict data protection controls.
  • Advertising Networks: With explicit user consent, for targeted marketing campaigns.

No personal data is sold to third parties. All disclosures comply with relevant legal requirements.

International Transfers

OBSERVE: Data may be processed outside New Zealand, primarily in Curaçao and other jurisdictions where service providers operate. EXPAND: Protective measures and legal safeguards are in place for all transfers. REFLECT: This aligns with NZ and international privacy standards to protect user data abroad.

  • Destination Countries: Data may be transferred to Curaçao, EU/EEA countries, and other jurisdictions meeting adequate data protection standards.
  • Protection Mechanisms: Standard Contractual Clauses, contractual data protection obligations, regular assessments of overseas partners' compliance.
  • User Rights: Users may request details of data transfer mechanisms and exercise rights regarding their data stored abroad.

Regional Compliance Note: All international data transfers are conducted in accordance with the New Zealand Privacy Act 2020 and applicable international frameworks.

Data Retention

OBSERVE: lets-lucky-casino-new-zealand maintains personal data only as long as needed for legal, regulatory, and operational purposes. EXPAND: Retention periods are set for each data category, with clear criteria for deletion. REFLECT: This protects user privacy while meeting all legal obligations.

  • Active Account Data: Retained for the duration of your account's activity and up to 5 years after closure, as required for regulatory compliance and dispute resolution.
  • Transactional Data: Retained for a minimum of 7 years to comply with AML/KYC and financial reporting laws.
  • Marketing Data: Retained until user opts out or withdraws consent.
  • Deletion Criteria: Data is deleted or anonymized upon user request (where permitted), account closure, or expiration of legal retention periods. Certain data may be retained longer if required for ongoing disputes or regulatory investigations.

Your Rights

OBSERVE: lets-lucky-casino-new-zealand upholds user rights under the New Zealand Privacy Act 2020 and aligns with GDPR standards. EXPAND: All rights and procedures for exercise are clearly set out, with response times and free-of-charge guarantees. REFLECT: Users are empowered to control their personal information.

  1. Right of Access: Request a copy of your personal data held by us.
  2. Right to Correction: Rectify inaccurate or incomplete data.
  3. Right to Deletion: Request erasure of your data, subject to legal and regulatory exceptions.
  4. Restriction of Processing: Limit data processing under specific circumstances (e.g., contesting accuracy, legal claims).
  5. Objection to Processing: Object to data processing for direct marketing or on legitimate grounds.
  6. Data Portability: Receive your data in a structured, commonly used, machine-readable format for transfer to another operator.
  7. Withdrawal of Consent: Withdraw marketing or other consents at any time, without affecting prior lawful processing.
  • Procedure: Submit requests via email to support@lets-lucky-nz.com or complaints@lets-lucky-nz.com. We will respond within 30 days, free of charge unless requests are manifestly unfounded or excessive.
  • Regulatory Reference: Rights are protected under the New Zealand Privacy Act 2020 and, where applicable, the EU General Data Protection Regulation (GDPR).

Cookies & Tracking Technologies

OBSERVE: lets-lucky-casino-new-zealand uses cookies and tracking technologies for functionality, analytics, and marketing. EXPAND: Types and purposes are specified, with instructions for user management. REFLECT: This supports compliance and user control.

  1. Session Cookies: Temporary cookies enabling navigation and secure use of the site, deleted upon browser closure.
  2. Persistent Cookies: Remain on your device for a defined period to remember preferences and login information.
  3. Third-Party Cookies: Set by analytics (e.g., Google Analytics), advertising networks, or social media partners for site performance measurement and targeted marketing.
  4. Management: Users can manage or disable cookies via browser settings or, where available, through internal site panels. Disabling some cookies may impact site functionality.

Data Security

OBSERVE: lets-lucky-casino-new-zealand implements rigorous technical and organizational measures to protect all personal data. EXPAND: Security protocols and standards are described; compliance with international benchmarks is emphasized. REFLECT: This ensures maximum protection against unauthorized access, loss, or misuse.

  • Encryption: TLS 1.2+ protocol for data in transit; industry-standard encryption for data at rest.
  • Multi-Factor Authentication (MFA): Used for sensitive account and administrative access.
  • Access Controls: Role-based restrictions, strict authentication, and monitoring of all access to personal data.
  • Regular Security Audits: Ongoing internal and third-party vulnerability assessments and penetration testing.
  • Staff Training: Comprehensive privacy and security training required for all personnel.
  • Incident Response: Documented procedures for prompt detection, reporting, and mitigation of data breaches.
  • Compliance: Security practices are aligned with ISO/IEC 27001 and SOC 2 standards where applicable.

Complaints & Contacts

OBSERVE: lets-lucky-casino-new-zealand provides multiple channels for privacy inquiries and complaints. EXPAND: Step-by-step procedures and escalation paths are detailed for user assurance. REFLECT: This commitment enables effective resolution of privacy concerns.

  1. Contact the DPO/Support: Email support@lets-lucky-nz.com or complaints@lets-lucky-nz.com with details of your complaint or inquiry.
  2. Online Feedback: Use the feedback or complaints form on lets-lucky-nz.com/complaints (where available).
  3. Response Timeline: All complaints will be acknowledged within 5 business days and resolved within 30 days.
  4. Escalation: If you are dissatisfied with our response, you may escalate your complaint to the Office of the Privacy Commissioner (New Zealand) at privacy.org.nz or call +64 4 474 7590.

Postal correspondence regarding privacy matters can be directed to: Just Entertainment B.V., Scharlooweg 39, Willemstad, Curaçao (Attn: DPO - Sophie Williams)

Updates

OBSERVE: lets-lucky-casino-new-zealand regularly reviews and updates this Privacy Policy. EXPAND: Notification procedures and user options are defined for transparency and legal compliance. REFLECT: Users remain informed and empowered to make choices in response to changes.

  • Notification Methods: Material updates will be communicated via email, website banners, and account dashboard alerts.
  • Advance Notice: Significant changes will be notified at least 30 days prior to taking effect, allowing users to object or close accounts if desired.
  • Version Control: This Policy is effective as of 6 November 2025. The most current version is always available at lets-lucky-nz.com/privacy-policy.
  • Changelog: Material changes will be summarized and made accessible alongside the updated policy.

Last updated: 6 November 2025