burger icon
Stay Casino Canada
Log In

Privacy Policy

This Privacy Policy explains how stay-casino-canada ("we", "us", "our"), operating exclusively at stay-casino-ca.com, collects, uses, shares, and protects your personal data. It applies to all players and website visitors in Canada (excluding Ontario) who use our services. Effective date: November 6, 2025.

Who We Are

OBSERVE: Our services are operated by Hollycorn N.V., a company registered under the laws of Curaçao, with registration number 144359 and legal address at Scharlooweg 39, Willemstad, Curaçao. Payment processing is managed by our subsidiary, Libergos Limited, Cyprus (registration number HE 371971). EXPAND: Data protection oversight is provided by our Data Protection Officer (DPO).

REFLECT: For all privacy inquiries or concerns, please contact our DPO via the above-mentioned support email address.

What Personal Data We Collect

OBSERVE: We collect personal and technical data needed for account operation, legal compliance, and service improvement. EXPAND: Data types include:

  • Personal Data: Full name, date of birth, address, email, phone number, identity documents (for KYC/AML).
  • Account & Transaction Data: Username, passwords, account activity, betting history, deposits, withdrawals.
  • Technical Data: IP address, geolocation, device identifiers, browser type, access logs, session data.
  • Payment Data: Payment card/bank details, transaction IDs, payment processor data (via Libergos Limited, Cyprus).
  • Behavioral Data: Gaming activity, clickstream, time on site, marketing preferences.
  • Cookies & Tracking: Session cookies, persistent cookies, third-party analytics and marketing cookies.

REFLECT: These categories ensure transparency in our data practices and support regulatory compliance.

Legal Basis for Processing

OBSERVE: Our data processing complies with Canadian law and international standards. EXPAND: The principal legal bases are:

  • User Consent: Voluntary acceptance of our terms, marketing opt-ins, and cookie consents.
  • Contract Performance: Data necessary to create and manage your account, process deposits/withdrawals, and deliver gaming services.
  • Legal Obligations: Compliance with KYC (Know Your Customer), AML (Anti-Money Laundering), fraud detection, regulatory reporting, and responsible gambling duties.
  • Legitimate Interests: Service improvement, marketing analytics, security, and fraud prevention, balanced against your privacy rights.

REFLECT: All processing activities are limited to what is necessary for these purposes, with safeguards for your rights.

Purpose of Processing

OBSERVE: We use your data only for specified, lawful purposes. EXPAND: The main purposes include:

  • Providing, maintaining, and securing access to the stay-casino-ca.com gaming platform.
  • Fulfilling contractual obligations - account management, payouts, bonus administration.
  • Improving the quality and functionality of our services, including troubleshooting and analytics.
  • Marketing communications, newsletters, and promotional offers (with your consent).
  • Ensuring responsible gambling and preventing fraudulent or unlawful activity.
  • Complying with legal and regulatory requirements in all operating jurisdictions.

REFLECT: We do not use your data for purposes incompatible with those described above.

Disclosure & Sharing

OBSERVE: We may disclose your data to third parties only as permitted by law and strictly for operational necessities. EXPAND: Data may be shared with:

  • Payment Partners: Banks, payment processors (Libergos Limited, Cyprus), and financial institutions for transaction processing.
  • Service Providers: IT, security, analytics, and customer support partners acting on our instructions.
  • Regulators: Curaçao Gaming Control Board, other competent authorities as required by law.
  • Affiliates & Advertising Partners: For marketing purposes only with your explicit consent.

REFLECT: All recipients are contractually bound to maintain confidentiality and data security. Personal data is never sold to third parties.

International Transfers

OBSERVE: Data may be transferred outside Canada, notably to Curaçao (headquarters) and Cyprus (payment processing). EXPAND: Such transfers are protected by:

  • Standard Contractual Clauses: We use EU-approved contractual safeguards for international data transfers.
  • Data Security Measures: Encryption and access controls apply to all data regardless of location.
  • Processing Agreements: All service providers and subsidiaries are contractually obliged to meet applicable data protection standards.

REFLECT: We ensure all transfers comply with Canadian and international data protection laws.

Data Retention

OBSERVE: Data retention is strictly limited to what is necessary for legal, contractual, and regulatory purposes. EXPAND: Our retention periods are:

  • Personal & Account Data: Retained for up to 5 years after account closure, unless a longer period is required by law (e.g., for legal disputes or regulatory investigations).
  • Transaction & Payment Records: Retained for at least 5 years to comply with KYC/AML obligations.
  • Cookies & Behavioral Data: Retained according to cookie type (see "Cookies & Tracking Technologies" section); session cookies deleted after session, persistent cookies up to 2 years.
  • Deletion Criteria: Data is erased upon user request (subject to legal exceptions), expiration of retention period, or when no longer required for the purpose collected.

REFLECT: When data is deleted, we ensure it is securely and irreversibly destroyed in compliance with regulatory requirements.

Your Rights

OBSERVE: Under Canadian and international privacy laws, you have specific rights regarding your personal data. EXPAND: These include:

  1. Right of Access: Request a copy of your personal data held by us.
  2. Right to Rectification: Request correction of inaccurate or incomplete data.
  3. Right to Erasure: Request deletion of your personal data ("right to be forgotten") where no longer necessary or upon withdrawal of consent, subject to statutory obligations.
  4. Right to Restrict Processing: Request a temporary halt to data processing in specific circumstances.
  5. Right to Object: Object to processing for direct marketing or when processing is based on legitimate interests.
  6. Right to Data Portability: Receive your data in a structured, commonly used format and have it transmitted to another controller where feasible.
  7. Right to Withdraw Consent: Withdraw consent for marketing at any time without affecting prior lawful processing.

Procedures for Exercising Your Rights

  • Email support@stay-casino-ca.com with your request, specifying the right you wish to exercise.
  • Requests will be acknowledged within 5 business days and responded to within 30 calendar days, free of charge, unless manifestly unfounded or excessive.
  • If you are unsatisfied with our response, you may escalate your complaint to the relevant data protection authority (see "Complaints & Contacts" section).

REFLECT: We are committed to upholding all user rights in accordance with Canadian law and international standards.

Cookies & Tracking Technologies

OBSERVE: stay-casino-ca.com uses cookies and similar technologies for essential and analytical purposes. EXPAND: Types and purposes:

  • Session Cookies: Temporary, deleted when you close your browser; necessary for secure login and navigation.
  • Persistent Cookies: Remain on your device for a defined period (up to 2 years); used for remembering preferences and login details.
  • Third-Party Cookies: Set by analytics (e.g., Google Analytics), marketing, and affiliate partners for site performance and promotional purposes.

Managing Cookies

  • Adjust your browser settings to block or delete cookies at any time.
  • Use our internal cookie consent panel to manage preferences (where available).
  • Disabling cookies may affect certain functionalities of the website.

REFLECT: For more details, refer to our separate Cookie Policy available on stay-casino-ca.com.

Data Security

OBSERVE: We implement robust technical and organizational measures to secure your data. EXPAND: Security practices include:

  • Encryption: All data transmitted is protected using TLS 1.2+; sensitive information is encrypted at rest and in transit.
  • Access Controls: Multi-factor authentication, strict user permissions, and role-based access for staff.
  • Regular Audits: Security assessments, penetration testing, and compliance reviews.
  • Incident Response: Documented procedures for rapid detection, containment, and notification of data breaches.
  • Staff Training: Ongoing education in data protection, privacy, and security protocols.
  • Certification: Alignment with international standards such as ISO 27001 and SOC 2 where applicable.

REFLECT: While no system is infallible, we take all reasonable steps to mitigate risks and respond promptly to security incidents.

Complaints & Contacts

OBSERVE: If you have concerns about your data or our privacy practices, you can contact us or escalate to authorities. EXPAND: Complaint channels and procedures:

Complaint Procedure

  1. Submit your complaint via email or mail with a detailed description of your concern.
  2. We will acknowledge receipt within 5 business days and respond within 30 calendar days.
  3. If unresolved, you may contact the Office of the Privacy Commissioner of Canada (https://www.priv.gc.ca/en/, Phone: 1-800-282-1376).

REFLECT: We are committed to resolving all privacy complaints in a fair and timely manner, and to cooperating with supervisory authorities.

Updates

OBSERVE: We may update this Privacy Policy to reflect changes in law or our practices. EXPAND: Notification procedures include:

  • Advance email notifications to registered users (minimum 30 days before material changes take effect).
  • Website banners and account dashboard alerts highlighting key changes.
  • Changelog for material updates available within the policy document.

Version Control

  • Last updated: November 6, 2025
  • Changelog: Policy updated to reflect new CA data protection requirements and operational changes as of 2025.

User Options: If you disagree with material updates, you may object or close your account before changes become effective.

REFLECT: Continued use of stay-casino-ca.com services after the effective date of changes constitutes acceptance of the updated policy.