Privacy Policy — Stay Casino Australia
This Privacy Policy explains what personal data Stay Casino collects from Australian players, why it’s collected, how long it’s kept and what rights you have over it. Stay Casino is owned and operated by Metlait SRL, licensed and regulated by the Government of the Autonomous Island of Anjouan, Union of Comoros, under Licence No. ALSI-202509073-FI2. Australia doesn’t licence local online casinos, so real-money pokies reach Australian punters through international operators like this one — a normal, common arrangement that’s covered in more detail in our independent Stay Casino Australia review. This page sits alongside the operator’s own privacy documentation and is written to help Australian players understand, in plain English, what actually happens to their data once they sign up.
If you’re not comfortable with any part of this policy, the simplest option is not to register an account. By creating one, submitting KYC documents, or simply browsing the cashier and account pages, you’re agreeing to the data practices described below. This site, and the casino itself, are strictly for players aged 18 and over.
What Personal Data We Collect
Stay Casino collects data at three separate points in the player journey: when you register, when you go through identity verification (KYC), and passively while you use the site or app. Each category serves a different, specific purpose — nothing is collected “just in case.”
Registration Data
To open an account you’ll be asked for your full name, date of birth, email address, mobile number, residential address and a password. This is the minimum needed to identify you as an eligible adult player and to be able to contact you about your account. Date of birth in particular exists to confirm you’re over 18 — Stay Casino, like every licensed operator, will not open an account for a minor and will close and refund any account later found to belong to one.
KYC (Know Your Customer) Data
Before your first withdrawal, and sometimes earlier if flagged by fraud-monitoring systems, you’ll need to submit a government-issued photo ID (passport, driver’s licence, or similar) and proof of address (a recent utility bill or bank statement, typically). Depending on your payment method and deposit volume, proof of payment source — such as a card photo with the middle digits obscured or a screenshot of an e-wallet account — may also be requested. Full detail on this process lives on our KYC and AML policy page; be aware the operator’s stated verification window runs up to 30 business days, which is on the slower end for the industry and worth planning around before you request a large withdrawal.
Technical and Behavioural Data
Like virtually every online casino, Stay Casino automatically logs technical information whenever you visit: IP address, device type, operating system, browser version, referring URL, pages viewed, session duration and general gameplay patterns (which pokies you play, session length, wager sizes in aggregate). This is collected through cookies and similar tracking technologies — see the dedicated cookie policy, linked further down this page, for the full breakdown of what’s set and why.
Data We Collect at a Glance
| Data type | Why it’s collected | Retention |
|---|---|---|
| Personal ID (name, date of birth, government ID) | Age verification, identity confirmation, KYC/AML compliance | Duration of account, plus statutory record-keeping (typically around 5 years after closure) |
| Contact details (email, phone, address) | Account communication, verification, service and promotional messages | Duration of account; deleted or anonymised on verified request |
| Payment data (deposit/withdrawal method, transaction history) | Processing deposits and withdrawals, fraud and AML screening | Around 5 years after the last transaction, per AML obligations |
| Technical data (IP, device, browser, cookies) | Security, fraud detection, site performance and optimisation | Up to 12 months, longer only where tied to an active security investigation |
How We Use Your Data
Data isn’t collected for its own sake. In practice it’s used to: verify you’re a real adult opening a genuine account; process deposits and pay out winnings to the correct person; run the KYC and AML checks the licence requires; detect and prevent fraud, bonus abuse and multiple-accounting; respond to support tickets; send account-related emails (bonus confirmations, KYC requests, security alerts); and, where you haven’t opted out, send promotional emails about new pokies or offers. Gameplay data in aggregate also feeds into responsible gambling monitoring — unusually long sessions or rapid loss patterns can trigger a welfare check or a suggestion to set deposit limits, which is a genuine safety feature rather than a marketing tool.
None of this data is sold to unrelated third-party marketers. Where it’s shared, it’s shared with the specific categories of recipient described below, for the specific purposes described below — not handed over wholesale.
Legal Bases for Processing
Even though Australia doesn’t licence or regulate this operator directly, Stay Casino processes data under recognised legal bases that mirror standard international privacy frameworks:
- Contractual necessity — processing your name, payment details and transaction history is unavoidable to actually run your account and pay out winnings.
- Legal obligation — KYC and AML checks exist because the Anjouan licence requires them, not because the operator finds them fun to administer.
- Legitimate interest — fraud prevention, bot detection and basic marketing analytics fall under this basis, balanced against your right not to be over-profiled.
- Consent — non-essential cookies and promotional email are consent-based; you can withdraw consent at any time (see Cookies and Your Privacy Rights below).
Who We Share Your Data With
Stay Casino shares data with a limited set of third parties, each necessary to actually deliver the service:
- Payment processors — providers handling Visa, Mastercard and Maestro transactions, e-wallets (MiFinity, Skrill, Neteller, eZeeWallet, Paysafe), Neosurf vouchers, crypto payment gateways (Bitcoin, Ethereum, Litecoin, USDT) and bank transfer rails all receive the minimum transaction data needed to move your money.
- KYC/identity verification providers — third-party document-checking services that confirm your ID and proof of address are genuine, rather than the casino’s own staff eyeballing scans.
- Analytics providers — standard web analytics tools that track anonymised or pseudonymised usage patterns to help the operator understand which pages and games are actually working, not to build a marketing dossier on any one individual.
- Affiliate and marketing partners — if you arrived at Stay Casino through a referral link (including this site), a tracking identifier confirms the referral so the affiliate is credited; no personal account data is passed back to the affiliate.
- Regulators and law enforcement — where legally compelled, primarily around AML obligations tied to the Anjouan licence.
Every one of these categories is bound by its own confidentiality and data-handling terms with the operator — this isn’t an open data-sharing free-for-all.
Cookies and Similar Technologies
Stay Casino uses cookies for three broad purposes: keeping you logged in and your session secure, remembering preferences (currency, language), and measuring which pages and promotions actually get used. Some cookies are strictly necessary and can’t be switched off without breaking core site functionality (like staying logged into the cashier); others are optional and tied to analytics or marketing, and you can decline these through your browser settings or any consent banner presented on first visit. The full list of cookie categories, typical lifespans and how to manage or clear them is covered on the dedicated cookie policy page — this section is intentionally a summary, not the full technical detail.
How We Store and Protect Your Data
Account and payment data is stored on servers protected by industry-standard encryption in transit (SSL/TLS) and access controls that restrict who inside the organisation can view sensitive fields like full payment card numbers or ID scans. Password data is stored hashed, not in plain text. Access to KYC documents specifically is limited to verification and compliance staff — customer support agents handling a routine bonus query generally can’t pull up your passport scan. A fuller account of the technical security measures in place, including how account takeover attempts and phishing are handled, sits on the security page. No system is unbreakable, and Stay Casino, like any operator, can’t promise data will never be compromised — what it can do, and does, is apply reasonable, current-standard safeguards and notify affected players if a breach genuinely occurs.
Your Privacy Rights
Regardless of where Stay Casino is licensed, Australian players are extended a consistent set of rights over their own data, broadly in line with global privacy norms:
Right of Access
You can request a copy of the personal data Stay Casino holds on you. This is typically actioned through a support ticket and may require identity confirmation first, to stop someone else requesting your data.
Right of Correction
If your name, address, date of birth or contact details are wrong or out of date, you can request they be corrected. Note that core identity fields tied to KYC (name, date of birth) may require a fresh document to support the change, for fraud-prevention reasons.
Right of Deletion
You can request account closure and deletion of data that isn’t legally required to be retained. In practice, transaction and KYC records tied to AML obligations will still be held for the statutory period even after account closure — this isn’t optional on the operator’s part, it’s a licence condition.
Right of Portability
Where technically feasible, you can request your data in a portable, commonly used format (such as a CSV or PDF export of transaction history) rather than only a written summary.
Right to Object and Withdraw Consent
You can opt out of marketing emails at any time via the unsubscribe link or account preferences, and object to non-essential analytics processing through cookie settings. This doesn’t affect the processing that’s contractually or legally required to keep your account running.
To exercise any of these rights, contact [email protected]. Response times vary, but a reasonable expectation is a matter of weeks rather than days for anything requiring manual document review.
International Data Transfers
Metlait SRL, the company behind Stay Casino, is registered in Costa Rica, with its operations licensed out of Anjouan, Union of Comoros. That means your data is very likely processed and stored on servers located outside Australia, potentially across more than one jurisdiction depending on which payment processor or KYC vendor is involved in a given transaction. This is standard for offshore-licensed operators serving Australian players, since none of them are permitted to hold an Australian gambling licence in the first place. If cross-border data transfer is a dealbreaker for you personally, that’s a legitimate reason to sit this operator out — but it’s not a hidden or unusual practice within the international online casino space, and there’s no legal penalty for an Australian player choosing to use an offshore site.
Children and Minors
Stay Casino is restricted to players aged 18 and over, full stop. No data is knowingly collected from anyone under 18, and any account later discovered to belong to a minor will be closed immediately, with deposited funds refunded and winnings voided. Parents or guardians concerned about underage access should look at device-level and network-level blocking tools (Gamban, BetBlocker) rather than relying solely on the operator’s own age gate, which — like most online age gates — is a self-declaration at signup rather than a hardware check.
Changes to This Privacy Policy
This policy is reviewed periodically and may be updated to reflect new payment methods, new regulatory requirements tied to the Anjouan licence, or changes to how third-party providers handle data. Material changes are typically flagged with an updated “last modified” date at the top of the operator’s own privacy documentation, and significant changes affecting how your data is used may be communicated by email. Continued use of your account after an update constitutes acceptance of the revised policy — if you disagree with a change, the appropriate response is to raise it with support or close your account.
Related Policies
This page focuses specifically on personal data, but it’s one piece of a bigger picture. The broader legal relationship between you and the casino — account rules, bonus terms, dispute handling — sits in the terms and conditions. Tracking technologies get their own dedicated cookie policy, account and payment protection measures are covered on the security page, and the identity verification process itself is detailed on the KYC and AML page. And if gambling is starting to feel less like entertainment and more like a problem, the responsible gambling page lists the deposit limits, cooling-off periods and Australian support services available.
Contact Us
Questions, access requests, correction requests or complaints about how your data is handled can be sent to [email protected], or raised through live chat for a faster initial response on general queries (document-based requests will still need to go through email for verification reasons).
Sign Up & Claim BonusAbout Our Editorial Team
We’re not Stay Casino, and this page isn’t written from the inside — it’s our independent read of the operator’s KYC, security and terms documentation, checked against each other rather than paraphrased from a press release. Our job here is helping an Australian reader understand what they’re actually agreeing to before they click register. Notice something in this policy that’s drifted from what the operator now states on its own site? Get in touch and we’ll take another look.
18+. Gambling can be addictive — play within your means. Gambling Help Online: 1800 858 858.