Credit Card Betting Ban in Australia Explained

Loading...

Author: Max Cookson Last updated: June 2026 Reading time : 24 min

The bet that broke the credit-card model

The story most Australians remember about the credit-card ban for online wagering is a simple one. The Albanese government decided that betting with money you do not have is not in anyone’s interest, and from 11 June 2024 the law caught up with that view. The story I want to tell you is a more useful one: what the legislation actually says, who it actually covers, what counts as a credit-related product when the marketing language is deliberately fuzzy, and how the regulator has been enforcing it through 2024, 2025 and into 2026.

I have been watching wagering compliance from the payments side for over a decade, and the credit-card ban is the single most consequential piece of consumer-protection legislation to hit the Australian betting industry in that time. It is also one of the most misunderstood. Punters keep emailing me asking whether their digital wallet “counts”, whether bricks-and-mortar venues are covered, whether a foreign-licensed operator can ignore the rule. Those are good questions. The answers live in a piece of statute most people have never opened.

What follows is the law from a payments analyst’s vantage point — the parts that matter for everyday bettors and the parts that operators are still adjusting to. No legal advice. Plenty of statute, regulator action and the political backdrop that produced it.

Stay compliant by visiting our homepage.

The statute behind the ban — what the law actually says

Drop me in front of the Interactive Gambling Act 2001 today and I can navigate it blindfolded. That was not the case when the credit-card amendment landed. The bill that became the Interactive Gambling Amendment (Credit and Other Measures) Act 2023 added new prohibitions to the existing IGA framework, and the language is more carefully chosen than most readers notice.

The core provision is short. A licensed wagering service provider must not accept payment for an Australian customer placing a bet using a credit card, a credit-related product, or a digital currency. The key phrase is “credit-related product”. The drafters did not just write “credit card” because they knew the industry would route around that single word within a quarter. By adding “credit-related product” they captured a wider perimeter — anything that effectively extends credit to the punter for the purpose of placing the bet.

The commencement was staged. For online wagering services, the prohibition switched on 11 June 2024. For telephone betting, the ban took effect later, on 11 December 2024, giving the smaller phone-bet operators time to rework their payment flows. The penalty backbone — civil penalties enforceable by the Australian Communications and Media Authority — applied from those commencement dates onward. Pre-existing transactions before the relevant date were not retroactively unlawful, but anything from those dates forward is.

One detail that doesn’t get enough attention is which gambling products are not covered. The ban is specifically aimed at online and telephone wagering — racing, sports, novelty bets, the products regulated by the IGA. It does not extend to lotteries, keno or in-person retail venues. If you walk into a TAB outlet and tap a credit card on a pre-loaded retail terminal, that is outside the scope of this prohibition. The IGA only ever regulated interactive gambling. The credit-card amendment kept that boundary.

What about the “and other measures” piece in the act’s title? That captured a few related changes the government wanted on the same legislative vehicle — including some clarifications on direct marketing — but the headline measure, and the only one I will spend time on here, is the credit ban itself.

The drafting matters because operators read the statute, not the press release. When you see compliance teams adjusting wallet acceptance, BIN blocklists, terms-and-conditions language, what they are doing is mapping their payment stack against the language of the act. The phrase “credit-related product” is doing more work in that mapping exercise than any other three words in the law.

Who the ban actually covers — and the boundaries that aren’t obvious

“Does this apply to me?” is the question I get from operators, not punters. Punters assume the answer is “everyone, everywhere” and move on. Operators have to map the prohibition against their licence, their corporate structure and their payment processors. The boundary is narrower than the headlines suggest.

The ban applies to wagering service providers offering services to Australian customers under an Australian licence. That is the universe of operators the IGA reaches. If you are licensed in the Northern Territory, Western Australia, or any other Australian jurisdiction and you offer your services to Australian residents, you are inside the perimeter. The IGA’s geographic reach is based on where the customer is, not where the operator is incorporated, but the enforcement teeth — the penalty regime — operate against licensed entities and against entities that the regulator can establish are providing prohibited services to Australia.

The customer side is subtler. The ban is anchored to “Australian customers”, which the IGA defines by reference to where the customer is physically located when placing the bet, with their primary residence as the typical anchor. If you are an Australian resident on a holiday in Bali and you log into your AU bookmaker account, you are still an Australian customer for the purposes of the IGA. If you are a UK tourist visiting Sydney and you open a fresh account, you are subject to the same rules while you are here, with extra friction on the KYC side because the operator’s identity verification stack is built for Australian documents.

Where does this leave offshore operators? Technically they are not directly subject to the credit ban as drafted, because the law operates on Australian-licensed wagering. In practice the regulator has been waging a parallel enforcement campaign against offshore operators serving Australians, with around 220 unlicensed operators having exited the Australian market over eight years of expanded enforcement work. That is its own problem, and the credit ban interacts with it indirectly — when an Australian punter funds an offshore site with a credit card, the operator has not necessarily breached the IGA, but it has also lost any meaningful Australian recourse if things go wrong.

The other boundary worth noting is the product coverage. The ban applies to wagering, which means racing, sports, novelty events and similar markets. Online casino is already prohibited under the IGA’s existing framework — that is a separate, broader prohibition that pre-dates the credit ban — so the credit-ban question doesn’t really arise there from a legal standpoint. The only people offering online casino to Australians are unlicensed offshore sites, and as we have seen, those sit outside the direct enforcement reach of the new amendment.

For the average punter on a licensed Australian wagering site, the practical translation is that the rules are uniform. Every domestic operator, every product, every customer of those operators — the credit-related-product prohibition is in force.

What “credit-related product” actually means in practice

The day after the ban came in I had a compliance officer ask me, with a perfectly straight face, whether a debit card with a “small overdraft buffer” still counted as debit. The answer is the kind of “it depends” that drives lawyers and product managers up the wall — and is exactly why the legislation used the broader phrase.

The clearest case is a traditional credit card. Visa Credit, Mastercard Credit, an American Express card, a charge card — all unambiguously prohibited. The transaction carries a credit product flag at the BIN level. Processors at licensed operators block these before they leave the cashier.

Buy-now-pay-later facilities are nearly as clear. Afterpay, Zip, Klarna and similar products are credit, structurally. They extend a small line of credit at the point of purchase that the consumer repays over time. None of them is licensed for use at Australian wagering operators today, and the credit-card ban removes any lingering ambiguity about whether a creative operator could plug them in. They cannot.

Overdraft-funded debit cards are where it gets fuzzy. A Visa Debit linked to a transaction account that has a AU$2,000 informal overdraft is, on the BIN check, a debit card. The funds for any individual transaction may come from your own balance or from the overdraft. The operator’s processor cannot tell the difference at the moment of authorisation. In strict drafting terms, transactions funded from the overdraft portion are arguably credit-extended and would fall foul of the ban. In practice, processors rely on the BIN-level product type for compliance, and your own bank does the heavy lifting on the overdraft side. The risk for the punter is small but not zero.

Line-of-credit-style products dressed up as something else are the next layer of complication. A handful of fintechs have launched products that look like prepaid cards but draw against a credit facility for specific purchases. These tend to fail the credit-related test on first contact with a wagering processor. If your card was issued by a fintech you have not heard of, and you are not sure whether it is debit or credit, the safe assumption is that it is credit-related until you can confirm otherwise from the issuer’s product disclosure statement.

Reloadable prepaid cards funded from credit close out the awkward edge cases. If you load a prepaid Visa using a credit card transaction, you have not laundered the credit — you have just moved it one step further along the chain. Operators have started building processor-side rules to detect this pattern, and the regulator’s compliance work in 2024 and 2025 picked up exactly these kinds of edge cases.

The compliance officer’s “small overdraft buffer” question, by the way, is something most operators have decided to live with. The risk-reward of trying to detect overdraft funding at the moment of authorisation is poor. The expectation is that the bank, not the bookmaker, prevents the customer from gambling on overdraft funds, and Australian banks have been quietly tightening their gambling-block tools to do exactly that.

Apple Pay, Google Pay and the funding-source trap

Here is the mistake I see most often. A punter sets up Apple Pay on a phone, links a Visa Credit card and a Visa Debit card to the wallet, and assumes that “tap to pay at the bookmaker” lets them sneak past the credit ban. It does not, and the architecture of why is worth understanding.

When you pay with a digital wallet, the wallet itself is not the payment method. It is a token holder. What gets transmitted is a tokenised representation of the underlying card — the funding source. The processor at the bookmaker decrypts the token, identifies the BIN of the underlying card, and applies exactly the same product-type check it would apply to a card you typed manually. If the underlying card is credit, the transaction is blocked.

The customer-facing implication is straightforward. Apple Pay or Google Pay at an Australian licensed bookmaker only works if the linked card is a debit or eligible prepaid product. Many Australian wallets have multiple cards stored, and people pick the wrong one without noticing the small “Credit” badge at the top of the card image. The decline that follows looks confusing — Apple Pay flashes a red error, the bookmaker shows a generic “transaction failed” — but the cause is straightforward.

Some operators have gone further and stopped accepting digital wallets altogether for deposits. The reasoning is risk management. The compliance overhead of distinguishing tokenised debit from tokenised credit, dealing with wallets that swap their default card mid-transaction, and managing 3D Secure flows on tokenised products is more friction than the operator wants to absorb. PayID and direct Visa Debit entry are more reliable. If your preferred bookmaker no longer accepts Apple Pay, that is the most likely reason.

Samsung Pay, Garmin Pay and the other smaller wallets follow the same logic. The wallet is a token holder. The funding source decides whether the transaction is legal. There is no magic in the wallet that converts credit into debit.

The murkier case is a wallet linked to a virtual card from a fintech, where the virtual card is itself drawing on a multi-funded balance. Some neobanks now offer products that automatically pick a funding source — your savings if there is balance, your credit line if there isn’t. These have caused real headaches for compliance teams. The safest reading of the law is that any wallet transaction that could resolve to a credit-extended funding source is non-compliant. In practice, operators have responded by blocking specific BIN ranges associated with these multi-source virtual cards.

The ACMA’s compliance review in March 2025 picked up several operators whose terms still implied digital wallet acceptance for credit-funded sources. All 50 operators identified across that review removed the offending references by 30 June 2025. The tightening continues quietly through 2026.

How ACMA has been enforcing through 2024 and 2025

Watching the regulator work through the first eighteen months of the credit ban has been one of the more instructive periods of my career. The Australian Communications and Media Authority has used a mix of complaints triage, direct desk-based reviews, and formal investigations, and the public reporting gives a useful window into how priorities have shifted.

The volume baseline first. In the second quarter of 2024 — which contains the actual switchover date of 11 June — ACMA received 514 enquiries and complaints about interactive gambling, of which 463, or about 90%, were assessed as valid for IGA-related investigation. That is the steady-state load, give or take a swing in any given quarter, and the credit ban was a meaningful contributor to it during the rollout window.

The desk review in March 2025 was the more aggressive piece. ACMA pulled the public-facing terms and conditions of 50 licensed wagering operators and identified ongoing references to credit cards and cryptocurrency in deposit and payment language. By 30 June 2025, every one of those 50 operators had removed the offending references. That is a 100% compliance rate, which sounds impressive until you realise the operators were not necessarily still accepting those payment methods — many had stopped at the June 2024 commencement and simply forgot to update their static help pages. The lesson for compliance teams is that documentation hygiene matters as much as the technical implementation.

The 2024 to 2025 financial year saw ACMA open ten new investigations and close ten. The headline outcome was a AU$1 million infringement notice issued to Betchoice, paired with a mandatory two-year independent review. That is the kind of action that focuses operator attention. A million-dollar penalty plus an external compliance audit running across two annual planning cycles is materially more painful than the initial AU$247,500-per-contravention figure suggests, because the indirect costs of the independent review compound.

Across the eight years of expanded enforcement work, around 220 unlicensed offshore operators have left the Australian market. That number is mostly attributable to the broader IGA enforcement framework rather than the credit ban specifically, but the credit ban has produced a sharper line between what licensed operators must do and what offshore operators are openly doing — and the regulator has used that contrast in public communications.

The ACMA chair, Nerida O’Loughlin, has framed the enforcement approach in a way I find honest. She has been particularly direct about the risk of unregulated sites, observing that “if one of these sites decides to keep your money, and we know that happens quite regularly, there is nothing you can do about it.” That is the regulator effectively acknowledging the limits of cross-border enforcement, while reinforcing why staying inside the licensed perimeter — with its credit ban, its KYC and its dispute pathways — is the safer choice.

For 2026, the enforcement focus is on payment-flow integrity. The next desk review is expected to look beyond terms and conditions and probe actual transaction flows — the kind of work that requires technical cooperation from operators or payment processors. Operators I speak to are quietly building richer audit trails on every deposit, partly because they know the regulator’s attention is moving in that direction.

What a breach actually costs an operator

Compliance budgets are decided in boardrooms by people who want a single number. The number for the credit ban is AU$247,500 per contravention. That is the maximum civil penalty a court can impose on an operator for a breach. Whether the actual cost stops there is the more interesting question.

The first thing to understand is that contraventions are counted per breach, not per breach campaign. If a misconfigured payment processor accepts 200 prohibited credit-card deposits over a weekend before someone notices, the operator’s exposure is theoretically 200 times AU$247,500. In reality the regulator typically pursues a single representative penalty when the breaches cluster around a single failure of a control system, but the principle of per-contravention counting gives ACMA a powerful negotiating position.

The Betchoice case in 2024 to 2025 — AU$1 million infringement plus a mandatory two-year independent review — is the proof point most operators look at. The AU$1 million was, in scale, larger than four maximum-penalty contraventions. The mandatory independent review is what the compliance teams really worry about. An external auditor with the regulator’s mandate will inspect every deposit flow, every KYC integration, every record-keeping process, and they will produce reports the operator must respond to. That is months of senior staff time and tens of thousands in adviser fees on top of the cash penalty.

Reputation cost sits on top of that. Australian gambling losses hit a record AU$32 billion in 2024 — the highest in the country’s history — and any operator getting headlines in a breach context during that period gets caught in a public-policy debate they do not want to be in. The combination of a regulatory action, media coverage and the inevitable customer questions on social channels has its own price tag.

For the punter side of this equation, the practical implication is that operators are not casual about credit-related-product detection. The cost-benefit to them of accepting a borderline transaction is overwhelmingly negative. If a deposit you expected to work is blocked, the most likely explanation is that the operator’s processor flagged it for one of the criteria we covered earlier, and the operator’s compliance team would rather lose your single transaction than risk a regulator inquiry six months down the track.

The penalty structure also explains why operators have been quietly tightening rather than loosening over time. There is no upside to being a “first mover” in accepting an ambiguous payment method. Whoever decides to accept multi-source virtual cards, or BNPL-funded prepaid loads, or any of the other edge cases, is volunteering to be the test case in court. None of the licensed operators I talk to are interested in that role.

The June 2026 review — what is actually on the table

One of the smartest pieces of drafting in the credit-ban legislation was a built-in evaluation point. The Department of Infrastructure committed to a review of the ban’s effectiveness two years after commencement — meaning June 2026 onward. We are sitting in that review window now, and the conversations at the policy level have started.

The review is not a re-litigation of whether the ban should exist. The political and public-health consensus on that has only hardened since 2024, and rolling back the prohibition is not on anybody’s policy agenda. What the review does is ask harder questions about the implementation: is the credit-related-product perimeter the right one, are there gaps in the digital-wallet and prepaid-card space that have appeared since commencement, is enforcement keeping pace with payment-method innovation, and what about the offshore displacement effect.

That last point is where the review will get most interesting. H2 Gambling Capital research released in late 2025 estimates that around 36% of all online wagering by Australians now goes through offshore operators, up from 26% in 2021. Channelisation — the share of the market that stays inside the licensed perimeter — has dropped from 74% to 64% across that period. The credit ban is one of several drivers of that shift, alongside the lack of online in-play betting in Australia and the friction of mandatory pre-verification. About one in three offshore gamblers were also using credit-related funding sources despite the ban — meaning the prohibition has pushed some of the credit-funded gambling off the licensed rails rather than eliminating it.

The policy implication is delicate. If the review concludes that the credit ban is contributing to offshore leakage, the response is unlikely to be “lift the ban” — that would be politically untenable — but it could include further measures aimed at making offshore play harder. Stricter ISP-level blocking, sharper financial-rail interventions involving the banks, more aggressive payment-processor enforcement. None of those would directly affect a Visa Debit punter on a licensed Australian site, but they would shape the broader environment.

The other question the review will probably address is BNPL and the next generation of consumer-credit products. Buy-now-pay-later has been treated as a credit-related product since the ban came in, but new products keep launching, and the line between “instalment plan” and “embedded credit” gets blurrier each year. Expect the review to produce an updated definitional position, not a relaxation.

What does this mean for an Australian punter funding bets in 2026? Practically, nothing changes on your card today. Visa Debit remains your eligible Visa product. PayID remains a strong alternative. The review process will run for some months and any legislative response from it will take longer still. By the time changes flow through, you will have plenty of warning.

How the politics and the industry actually responded

The political theatre around the credit-card ban was quieter than you might expect. By 2024 the consensus across Coalition and Labor ranks on consumer protection in online wagering was solid enough that the bill drew bipartisan support. The interesting reactions came afterwards, in how the responsible ministers and the industry framed the change.

Michelle Rowland, the then Minister for Communications, put the rationale in plain language at commencement. Australians, she said, should not be gambling with money they do not have, and the government had committed to delivering a credit-card ban for online wagering and had now done so. The phrasing matters because it anchored the ban in a debt-prevention framing rather than a broader anti-gambling message. The government did not want to argue with people who choose to bet within their means; it wanted to remove the credit lever.

Amanda Rishworth, then Minister for Social Services, drew the parallel that resonated most with the public. Her observation that you cannot use a credit card to place a bet at land-based gambling, and that the same rule should now apply online, framed the change as a normalisation rather than a restriction. That argument was politically robust — most Australians had not thought about the asymmetry until it was pointed out, and once you do, the case for closing it is hard to argue with.

Industry response came from Responsible Wagering Australia, the licensed-operator peak body. Kai Cantwell, RWA’s chief executive, supported the ban publicly while flagging the broader displacement risk. His framing was that consumer protections only work if they apply consistently across all forms of gambling, and that inconsistencies push vulnerable Australians toward less-regulated channels. That is the kind of subtle point an industry body has to make carefully, and Cantwell did it well — endorsing the measure while planting the policy flag for the offshore-leakage debate that is now the centrepiece of the 2026 review.

Reform-side voices like Tim Costello at the Alliance for Gambling Reform have consistently emphasised the scale of the harm — online betting up more than 50% in five years and losses around AU$9 billion in the online-only segment. The reformers’ position is that the credit ban is one step of many, and that more aggressive measures should follow. The 2026 review is the natural focal point for that agenda.

The voice I want to leave you with is Cantwell’s, because it captures something the affiliate sites never tell you. He observed that “online gambling is the safest form of gambling as Wagering Service Providers can identify unusual behavior and intervene before harm occurs.” That is the licensed-operator argument distilled. The credit ban is the piece of that perimeter that explicitly removes one of the more dangerous funding mechanisms from the system.

Explore the use of Visa debit cards for Australian betting instead.

If you want to see how the funding side has settled in 2026, the natural follow-up reading is the explainer on digital wallets and the credit-card ban, which walks through the wallet-by-wallet edge cases the law produced.

Frequently asked questions about the credit-card ban for Australian betting