burger icon
Doubleu Review Australia
Log In

Privacy Policy

This Privacy Policy explains how Doubleu, operated in connection with the website doubleu-au.com, collects, uses, discloses, and protects personal information of users in Australia who visit our website, interact with our content, or contact us. It applies to visitors, readers, and other users of our services but does not itself operate a real-money gambling service. This Privacy Policy is effective as of 1 January 2026 and replaces any prior versions for Australian users.

Who We Are

OBSERVE: Doubleu is a review and informational project focused on the social casino game DoubleU Casino, associated with doubleu-au.com. The underlying operator of the DoubleU-branded social gaming services is DoubleU Games Co., Ltd., a company based in South Korea.

EXPAND: For clarity, this Privacy Policy governs the processing of personal information carried out via https://doubleu-au.com (the "Site"). The Site provides reviews and information and may link to or reference products and services of third parties, including DoubleU Games Co., Ltd. We are not the operator of real-money gambling and do not process payment card information for gambling transactions.

REFLECT: Users require clear identification of responsible entities and easy access to contact channels, including a central email address for privacy issues.

Operator and Contact Details

  • Project/Brand name: Doubleu (Doubleu review site for Australia)
  • Primary domain: https://doubleu-au.com
  • Underlying game operator: DoubleU Games Co., Ltd.
  • Registered/Head office (operator): Seoul, South Korea (including operations in Gangnam-gu, Seoul, South Korea). Precise street address and postal code are not specified in the data available to us.
  • Country of corporate registration: South Korea (Seoul)
  • Game licence status: DoubleU Casino is classified as a social game (virtual goods with no monetary value); no real-money gambling licence is listed as required under current information.

Data Protection Contact

  • Data protection / privacy contact for this Site:
  • Preferred channel for privacy requests: [email protected]
  • Postal address for operator (to the extent known): DoubleU Games Co., Ltd., Seoul, South Korea (for formal written communications, users should verify the most recent corporate postal address on the official site https://doubleugames.com).

While a specific Data Protection Officer (DPO) name is not specified, all privacy-related queries will be handled by our data protection function via the above email address.

What Personal Data We Collect

OBSERVE: We collect limited information on the Site itself (e.g. analytics, contact enquiries), while broader data about game usage may be collected by DoubleU Games Co., Ltd. or platform providers (e.g. Apple, Google, Facebook). This section covers data processed in connection with doubleu-au.com.

EXPAND: For transparency, we group data into categories: identification/contact data, technical data, behavioural/usage data related to our Site, cookies and similar technologies, and, where applicable, limited payment-related metadata for advertising/affiliate tracking (but not your credit card details).

REFLECT: The level of detail ensures compliance with Australian Privacy Principles (APPs) and aligns with international standards such as GDPR-style categorisation.

Categories of Personal Data

  • Identity and contact data (if you provide it to us):
    • Full name, display name or alias
    • Email address (e.g. when you contact us at [email protected] or subscribe to updates)
    • Phone number (only if you choose to provide it in a communication to us)
  • Technical and device data (automatically collected when you visit the Site):
    • IP address and approximate location (country, region, city-level where derivable)
    • Device identifiers (browser type and version, device type, operating system, language settings)
    • Log information (access dates and times, visited pages, referrer URL, click paths, error logs)
  • Usage and behavioural data (related to our Site, not your in-game bets):
    • Pages viewed, links clicked, time spent on pages
    • Interaction with review content (e.g. outbound clicks to the official game or app stores)
    • Engagement with newsletters or marketing emails (opens, clicks, unsubscribes)
  • Payment and transaction-related metadata:
    • We do not process your credit card or bank details for real-money gambling.
    • We may receive anonymised or pseudonymised information from advertising partners or app stores such as:
      • Attribution identifiers and campaign IDs
      • Information confirming that a purchase of virtual items occurred (without full payment details)
  • Cookies and similar technologies:
    • Cookies, web beacons, pixels, SDKs and similar technologies set by us or third parties (see "Cookies & Tracking Technologies" below).
  • Communications data:
    • Content of your messages, inquiries, or feedback, including attachments and metadata (time sent, medium used).

Legal Basis for Processing

OBSERVE: Doubleu targets users in Australia and must comply with Australian privacy law (particularly the Privacy Act 1988 (Cth) and Australian Privacy Principles), while also aligning with global standards commonly applied to online services.

EXPAND: Although GDPR does not directly apply to all Australian users, we adopt a similar structure of legal bases: consent, contract-like necessity, legitimate interests, and compliance with legal obligations (such as anti-fraud and record-keeping aligned with broader regulatory expectations).

REFLECT: This hybrid explanation offers transparency for users from multiple regions and supports cross-border consistency in our practices.

Our Legal Grounds for Processing

  • Consent
    • We rely on your explicit consent where required, including:
      • Sending direct electronic marketing (e.g. newsletters) where consent is mandatory.
      • Using certain non-essential cookies and advertising technologies.
    • You may withdraw your consent at any time (see "Your Rights" below).
  • Performance of a contract or steps at your request
    • We process data as reasonably necessary to:
      • Operate and provide the Site and related services you request (e.g. responding to enquiries).
      • Manage subscriptions to email updates or notifications you sign up for.
  • Legitimate interests (balanced against your rights and expectations)
    • We process data to:
      • Secure our systems and prevent fraud, abuse, or misuse.
      • Analyse Site performance and use (analytics) to improve services.
      • Tailor content and recommendations regarding social casino products (e.g. DoubleU Casino) in a way that remains responsible and non-exploitative.
    • Where required by local law, we provide opt-out mechanisms for marketing and profiling.
  • Compliance with legal obligations
    • We may process and retain certain information to:
      • Respond to lawful requests by courts, regulators or law enforcement.
      • Maintain records necessary for accounting, taxation, or general corporate compliance.
    • In the broader social gaming ecosystem, anti-fraud and consumer protection expectations may require logs to be retained for specified periods.

Purpose of Processing

OBSERVE: Users of Doubleu expect clear explanations of how their data is used in connection with an informational and review site, as distinct from a gambling operator.

EXPAND: Our activities focus on delivering content, operating the Site, communicating with users, conducting analytics, and ensuring security and fraud prevention, including responsible presentation of social casino content.

REFLECT: Listing the specific purposes enhances transparency and supports informed consent, in line with Australian standards and international best practice.

How We Use Your Information

  • Providing and operating the Site
    • To display and personalise content about Doubleu and related social casino games.
    • To manage technical operations, including troubleshooting, load balancing, and system maintenance.
  • Communication and support
  • Analytics and service improvement
    • To understand how users interact with our pages and outbound links (e.g. clicks to the official corporate site doubleugames.com or app stores).
    • To improve design, content structure, and user experience.
    • To assess the effectiveness of our reviews and information in an Australian context.
  • Marketing and informational communications
    • To send newsletters, promotional or informational messages about Doubleu-related content, where permitted by law and subject to your preferences.
    • To run non-invasive advertising campaigns or sponsored content, with appropriate disclosures.
  • Security, fraud prevention and compliance
    • To protect the Site and underlying infrastructure from cyberattacks, abuse or unauthorised access.
    • To investigate suspicious activities and enforce our terms of use.
    • To comply with legal duties, respond to lawful requests and protect our legal rights.

Disclosure & Sharing

OBSERVE: Australian privacy law requires transparent identification of third parties to whom personal information may be disclosed.

EXPAND: Given the nature of Doubleu, disclosure is mainly to technical service providers, analytics tools, advertising partners (with consent where required), affiliated entities (such as DoubleU Games Co., Ltd.) and, where necessary, regulators or law enforcement.

REFLECT: We seek to minimise data sharing, only disclosing what is necessary for specific purposes and applying contractual safeguards.

Categories of Recipients

  • Technical and hosting providers
    • Companies that host our servers, provide content delivery networks (CDNs), or maintain IT infrastructure.
    • These providers may process IP addresses, logs, and related technical data.
  • Analytics and measurement partners
    • Web analytics providers that help us understand usage patterns on doubleu-au.com.
    • Such partners typically receive pseudonymised or aggregated data.
  • Marketing, affiliate and advertising partners
    • Advertising networks and partners that place sponsored links or track conversions related to Doubleu or social casino content.
    • Data sharing with such partners may involve cookies, identifiers, and event data, subject to your consent where required.
  • Corporate affiliates and underlying operator
    • DoubleU Games Co., Ltd. and related corporate entities to:
      • Assess performance and reach of content related to their products.
      • Ensure global compliance, security and product improvement.
  • Regulators, law enforcement and legal advisors
    • Courts, regulators (including Australian authorities) and law enforcement agencies when we are legally required to do so or when disclosure is necessary to protect our rights, users, or the public.
    • External legal, financial or compliance advisors under confidentiality obligations.
  • Business transfers
    • In the event of a merger, acquisition, restructuring or sale of assets, user information may be transferred as part of that transaction, subject to continued protection consistent with this Privacy Policy.

International Transfers

OBSERVE: Our Site serves users in Australia but relies on infrastructure and corporate entities located in South Korea and potentially other jurisdictions.

EXPAND: Data may be processed or stored outside Australia, including but not limited to South Korea, the European Union, the United States, and other locations of our hosting, analytics and advertising providers.

REFLECT: Cross-border transfers require safeguards to protect personal information to standards comparable to those in the user's home jurisdiction.

Where Your Data May Be Processed

  • Primary corporate jurisdiction: South Korea (DoubleU Games Co., Ltd., Seoul, including Gangnam-gu).
  • Service provider locations: Potentially the European Union, the United States, and Asia-Pacific regions, depending on the location of our hosting, analytics and advertising partners.

Transfer Safeguards

  • We seek to use service providers that:
    • Implement appropriate technical and organisational security measures; and
    • Are bound by written contracts obligating them to handle personal information only on our documented instructions and for specified purposes.
  • Where data is transferred from jurisdictions with specific cross-border transfer requirements (for example, from the European Economic Area), we aim to rely on:
    • Standard Contractual Clauses (SCCs) or equivalent contractual safeguards where appropriate; and
    • Risk assessments and supplementary safeguards, such as encryption and access controls.

Regional Compliance Note: While Australia does not use SCCs in the same way as the EU, we take reasonable steps to ensure that overseas recipients do not breach the Australian Privacy Principles in relation to your personal information.

Data Retention

OBSERVE: Data retention periods must be clearly defined and limited to what is necessary for the purposes described.

EXPAND: Given the nature of a review and informational site, most data can be retained for relatively short periods, subject to legal and security requirements.

REFLECT: Specifying indicative timeframes helps users understand how long their data remains identifiable and supports compliance with data minimisation principles.

Retention Periods and Criteria

  • Identity and contact data
    • Stored for as long as necessary to respond to your enquiries or provide any ongoing communications you have requested.
    • In general, we do not retain contact-related data for more than 5 years after the last meaningful interaction, unless a longer period is required for legal, accounting or dispute-resolution purposes.
  • Technical and log data
    • Standard web server logs are typically retained for up to 12 months from the date of collection, unless required longer for security investigations or legal reasons.
    • Aggregated or anonymised statistical data may be retained indefinitely, as it no longer identifies individuals.
  • Usage and behavioural data
    • Identifiable analytics data is generally retained for up to 3 years, subject to configuration of our analytics tools.
    • Where possible, we apply pseudonymisation or aggregation to reduce privacy risks.
  • Marketing data
    • Information related to your marketing preferences and consent is retained for as long as we send you marketing or until you withdraw consent or opt out, after which we retain minimal information to respect your opt-out request.
  • Legal and dispute-related data
    • Information relevant to potential or actual legal disputes, regulatory inquiries, or investigations may be retained until the matter is fully resolved and for up to 7 years thereafter, in line with common limitation periods.

Once the applicable retention period expires, or data is no longer required for the purposes stated, we will take reasonable steps to delete, anonymise, or irreversibly de-identify the data.

Your Rights

OBSERVE: Users increasingly expect rights akin to those provided under GDPR and comparable privacy regimes. The prompt also references alignment with Mexican privacy law, indicating a need for broad, rights-based transparency.

EXPAND: While this Site primarily targets Australia, we structure user rights to be understandable to individuals from multiple jurisdictions, including EU-style rights (access, rectification, erasure, restriction, portability, objection) and rights under Mexican data protection standards (e.g. ARCO rights).

REFLECT: Implementing a uniform, high-standard rights framework ensures robust protection and simplifies processes for users worldwide.

Core Rights You May Exercise

  • Right of access
    • You may request confirmation of whether we hold personal information about you and receive a copy of that information, along with an explanation of how it is used.
  • Right to rectification (correction)
    • You may request that we correct inaccurate or incomplete personal information we hold about you.
  • Right to deletion / erasure
    • You may request deletion of your personal information where:
      • It is no longer necessary for the purposes for which it was collected; or
      • You have withdrawn consent (where processing was based on consent); or
      • You have successfully objected to processing; or
      • We are required by law to delete it.
    • We may need to retain certain data where legally required (e.g. for record-keeping or dispute resolution).
  • Right to restriction of processing
    • You may request that we restrict processing of your information (for example, while we verify its accuracy or assess an objection).
  • Right to object
    • You may object at any time to:
      • Direct marketing (we will honour this without undue delay); and
      • Processing based on legitimate interests, where your particular situation justifies an objection.
  • Right to data portability
    • Where technically feasible and applicable (e.g. for data provided by you and processed by automated means with your consent), you may request that we provide your data in a structured, commonly used and machine-readable format or transmit it to another controller.
  • Right to withdraw consent
    • Where we rely on your consent (for example, for marketing emails or some cookies), you may withdraw that consent at any time by:
      • Using unsubscribe links in emails; or
      • Adjusting cookie preferences (where available); or
      • Contacting us at [email protected].
    • Withdrawal does not affect the lawfulness of processing before withdrawal.

How to Exercise Your Rights

  • Submission: Send a clear request to [email protected], indicating:
    • Your name and contact details;
    • Which right(s) you wish to exercise; and
    • Any relevant context (e.g. approximate dates of interaction with the Site).
  • Verification: We may request reasonable additional information to verify your identity before fulfilling your request, to protect your privacy and security.
  • Response timeframe: We aim to respond to all valid requests within 30 days of receipt. If we need more time for complex or numerous requests, we will inform you of the extension and the reasons.
  • Fees: We handle rights requests free of charge. We may charge a reasonable fee or refuse to act where a request is manifestly unfounded or excessive, in line with applicable law.

Users in jurisdictions such as the European Union or Mexico may have additional specific rights under their local laws. We endeavour to honour such rights to the extent reasonably practicable and not in conflict with Australian or South Korean law.

Cookies & Tracking Technologies

OBSERVE: Cookies and similar technologies are key tools for analytics and advertising on review sites.

EXPAND: We use a combination of first-party and third-party cookies and technologies for essential functionality, analytics, and, where applicable, advertising/affiliate tracking.

REFLECT: Providing an overview of cookie types and control mechanisms supports informed consent and APP-compliant transparency.

Types of Cookies We Use

  • Session cookies
    • Temporary cookies that expire when you close your browser.
    • Used for basic functionality such as navigation and maintaining temporary preferences during a session.
  • Persistent cookies
    • Remain on your device for a specified period or until you delete them.
    • Used to remember your preferences, improve performance, and recognise returning visitors.
  • First-party cookies
    • Placed by doubleu-au.com directly to support core site operations and analytics.
  • Third-party cookies and similar technologies
    • Set by analytics providers, advertising networks, or social media platforms.
    • Used for audience measurement, conversion tracking, and, where applicable, personalised or contextual advertising for Doubleu-related content.

Purposes of Cookies

  • Strictly necessary / functional
    • Enable the Site to function correctly (e.g. page navigation, security, basic preferences).
  • Analytics and performance
    • Help us understand how visitors use the Site so we can improve performance and user experience.
  • Advertising and affiliate tracking
    • Measure the effectiveness of outbound links to third-party services (e.g. corporate site or app stores) and support advertising campaigns.

Managing and Disabling Cookies

  • Browser settings
    • You can usually configure your browser to:
      • Block all cookies;
      • Block cookies from specific sites; or
      • Delete cookies when you close your browser.
    • Disabling cookies may affect some functionality and user experience on the Site.
  • Device and platform controls
    • Mobile operating systems and app stores (e.g. Apple App Store, Google Play) may provide additional privacy settings to limit tracking.
  • In-site preferences
    • Where available, we may provide cookie preference tools or banners that allow you to accept or reject certain categories of cookies.

Data Security

OBSERVE: Users expect strong technical and organisational safeguards for their personal information.

EXPAND: Doubleu and associated corporate entities implement layered security measures, including encryption, access controls, audits, and staff training. The underlying operator is associated with ISO/IEC 27001 information security certification, extended to 2026.

REFLECT: While no system is perfectly secure, we are committed to maintaining a high level of security in line with international best practice.

Technical and Organisational Measures

  • Encryption
    • Data in transit between your browser and our Site is protected using TLS 1.2+ encryption (HTTPS) where supported.
    • Where appropriate, data at rest is encrypted or otherwise protected using industry-standard methods.
  • Access controls and authentication
    • Access to systems containing personal information is restricted to authorised personnel on a need-to-know basis.
    • Multi-factor authentication is implemented for critical administrative systems where feasible.
  • Security governance and standards
    • DoubleU Games Co., Ltd. is associated with ISO/IEC 27001 information security management certification, valid through at least 2026 (exact expiry not specified).
    • We also consider controls consistent with recognised standards such as SOC 2 where relevant.
  • Monitoring, testing and audits
    • Regular monitoring of systems for unusual activity, potential vulnerabilities and security incidents.
    • Periodic internal reviews and, where applicable, external assessments of security controls.
  • Staff training and confidentiality
    • Personnel with access to personal information receive guidance on data protection, confidentiality, and security best practices.
    • Confidentiality agreements are used where appropriate.
  • Incident response
    • We maintain procedures to respond to suspected personal data breaches, including containment, investigation, remediation and, where required, notification to affected users and relevant authorities.

Despite our efforts, no security measure is entirely infallible. Users should also take care to protect their devices and accounts, particularly when interacting with third-party platforms such as app stores or social networks.

Complaints & Contacts

OBSERVE: Clear complaint channels and escalation pathways are essential for compliance with privacy frameworks and to maintain user trust.

EXPAND: We offer contact methods for queries and complaints, explain our internal handling process, and identify supervisory authorities users may contact if dissatisfied.

REFLECT: Providing transparent escalation routes supports accountability and subjects our practices to independent oversight.

Contacting Us

Internal Complaint Procedure

  1. Submission
    • Send your complaint or question to [email protected], clearly marking it as a "Privacy Complaint" or "Privacy Request".
  2. Acknowledgment
    • We will use reasonable efforts to acknowledge receipt of your complaint within 7 days.
  3. Investigation and response
    • We will investigate the matter and aim to provide a substantive response within 30 days of receipt.
    • If more time is required due to complexity or volume, we will inform you of the delay and expected timeframe.
  4. Further steps
    • If you are dissatisfied with our response, you may escalate your complaint to a relevant data protection or privacy authority.

Supervisory Authorities

  • Australian users
    • You may contact the Office of the Australian Information Commissioner (OAIC):
      Website: https://www.oaic.gov.au
      Phone (Australia): 1300 363 992
  • Users in the European Union or EEA (where applicable)
  • Users in Mexico (where relevant)
    • Under Mexican data protection regulations, you may submit complaints to the competent authority (currently the National Institute for Transparency, Access to Information and Personal Data Protection - INAI). You should refer to the INAI website for current procedures and contact details.

Updates

OBSERVE: Privacy policies must be updated to reflect changes in law, technology, and services.

EXPAND: We maintain version control and provide notice of significant changes through user-facing channels such as email (where appropriate), on-site banners, or account-related notices.

REFLECT: Advance notice of material updates supports user autonomy, allowing individuals to review changes and, if they wish, discontinue use.

How We Update This Policy

  • Versioning and effective date
    • The current version of this Privacy Policy is identified by the "Last updated" date below.
    • Previous versions may be archived for reference where necessary.
  • Notification of changes
    • For non-material changes (e.g. clarifications, formatting), we may update the Policy without specific notice, though we will revise the "Last updated" date.
    • For material changes that significantly affect how your data is processed or your rights, we will provide more prominent notice, which may include:
      • Banner or pop-up notifications on the Site;
      • Email notifications if we have your email address and the change is relevant to your relationship with us; or
      • Notices in any user account dashboards or communication channels we operate.
  • Advance notice
    • Where feasible and required for significant changes, we will provide at least 30 days' advance notice before the updated Policy takes effect.
    • During this period, you may review the changes and, if you do not agree, you may cease using the Site and, if applicable, request deletion of your data.

Last updated: January 2026