Casinos on Bonaire implement stricter player registration: questions arise about privacy and data usage

KRALENDIJK – Two casinos on Bonaire, Divi Flamingo Beach Resort & Casino and Coral Casino Plaza Resort Bonaire, have recently begun implementing stricter registration and identification procedures for players. Visitors are now required to present identification documents and, in some cases, provide additional personal information.

At Divi Flamingo Beach Resort & Casino, visitors are asked to surrender their ID card or passport for verification. Address details are also requested. According to an explanation from the casino manager, visitors may also be asked for a "source of income," meaning proof of income. The casino states that this approach is necessary due to stricter regulations aimed at preventing money laundering.

The casino also displays a notice stating that from October 31, 2025, visitors must be members of the Players’ Club and present valid photo identification upon entry. According to the announcement, existing members only need to show their membership card if their identification details are already in the system.

What happens to the data?

Coral Casino Plaza Resort Bonaire also checks for ID cards or passports at the entrance. While copies are not made immediately, players are given the option to register. At other times, copies of personal data are also made. However, according to visitors, there is no clear explanation of what happens to the collected data, how long it is retained, and how it is stored and used.

Data protection concerns

These developments come at a time when data security on Bonaire is receiving increased attention. Earlier this month, Scholengemeenschap Bonaire reported a data breach in which information was stolen. What exactly was stolen and how much data was affected remains unknown. Last month, there was also a major data breach in the European Netherlands at telecommunications company Odido. Since then, hackers have been spreading customers’ personal data daily. Hackers are distributing personal information such as bank account numbers, passports, email addresses, and customer passwords on a daily basis.

What is legally permitted and prohibited?

Making copies of identification documents is only permitted under regulations when it is necessary. For casinos, this may be justified for player identification, money laundering checks, enforcement of access bans or addiction registers, and for payouts or special VIP accounts. At the same time, it is not permitted to routinely store copies of identification documents without clear justification.

When a casino makes a copy, the company must clearly explain why this is necessary. Additionally, only necessary data may be processed, copies must be properly secured, and data may not be retained longer than necessary. Visitors must also be informed about how their data is stored and used.

Uncertainty among visitors

Visitors report that they do not always receive sufficient explanation about the purpose of data processing. This raises questions about transparency and privacy. Whether the enhanced controls are part of new local or international regulations has not been officially confirmed.