The platform collects personal data to provide secure services to users in Bangladesh and to meet legal requirements.

What personal data is collected

• Identity and KYC: full name, date of birth, photo ID or passport, self-portrait for verification, proof of address.
• Contact details: mobile number, email address, postal address.
• Account and gameplay: username, preferences, responsible gaming settings, chat or support messages.
• Payments: transaction records, billing details, partial card data, and mobile financial service identifiers such as bKash, Nagad, or Rocket. Full payment data is handled by certified providers.
• Technical data: device identifiers, IP address, browser type, operating system, language, cookies, and log files.

Why the information is collected

• Create and manage accounts, verify identity, and prevent fraud.
• Process deposits and withdrawals, and keep accurate financial records.
• Deliver and improve online services, fix issues, and personalize settings.
• Meet regulatory duties such as AML and KYC checks under Bangladesh laws and international standards.

Protection measures

• Encryption in transit and at rest, TLS 1.2+ for all pages that collect personal information.
• Tokenisation for payment data, access controls based on roles, multi-factor authentication for staff.
• Segmented networks, DDoS protection, security monitoring, and audit logs.
• Vendor due diligence, confidentiality agreements, and periodic penetration testing.
• Privacy by design, staff training, and incident response procedures.

User rights

• Access a copy of personal data and request explanations about processing.
• Correct inaccurate information or update contact details.
• Request deletion or restriction where permitted by law.
• Object to certain processing and withdraw consent at any time, without affecting prior lawful processing.
• Request portability for data provided by the user, when technically feasible.

Compliance in Bangladesh

DBBet aligns its practices with applicable laws of Bangladesh including the Cyber Security Act 2023, the Prevention of Money Laundering Act 2012 and relevant Bangladesh Bank KYC guidelines, and follows international data protection principles similar to GDPR.

Personal data is processed lawfully and transparently for the following purposes:

• Account servicing: registration, login, account settings, and customer support.
• Transactions: deposits, withdrawals, refunds, chargebacks, and reconciliation.
• Service improvement: troubleshooting, performance monitoring, and feature development.
• Personalisation: language, region, and responsible gaming preferences.
• Analytics and security: usage statistics, fraud prevention, AML screening, and risk scoring.
• Regulatory compliance: reporting required by financial and supervisory authorities in Bangladesh.
• Marketing: sending service updates or promotional messages only when consent is given, with an opt-out at any time.

Users can exercise their rights in the following ways:

• Access and update: review personal data and edit certain fields in account settings or by contacting [email protected].
• Correction: request rectification of inaccurate information, providing supporting documents where needed.
• Deletion: request erasure of personal data that is no longer required, except where retention is required by anti-money laundering or accounting laws.
• Timeframe: the platform aims to respond within 30 days, or informs if more time is needed for complex requests.

Identity verification is required before granting access or acting on a deletion request to protect user privacy. By using DBBet, users consent to security checks and to payment data processing by certified payment service providers and banks for AML, KYC, and fraud prevention. Consent can be withdrawn where processing is based on consent only, but legal or contractual processing may continue where applicable.

The services are intended for persons aged 18 years and above. The operator does not knowingly collect personal data from minors and cannot confirm age without identity documents. If a parent or guardian believes a minor has created an account, they should contact [email protected]. Upon verified request, any personal information of the minor will be deleted and the account will be closed.

Personal data may be stored or processed outside Bangladesh in locations where hosting, payment, fraud prevention, or support partners operate. Using the site means the user consents to such transfers. DBBet ensures confidentiality and appropriate safeguards by using contractual protections such as standard data protection clauses, access controls, and encryption. Users can request information about transfer safeguards by contacting the privacy address listed in this policy.

This disclaimer may limit, clarify, or modify how certain rules in this document apply in practice, subject to mandatory laws. It becomes effective when the user accepts the Privacy Policy by signature, affirmative acceptance, or accession through continued use of the services. Nothing in this section removes non-waivable rights provided by applicable law in Bangladesh. If any term conflicts with mandatory legal requirements, the mandatory rule prevails.

Cookies are small files placed on a device by websites to store settings and identify a browser. The platform uses cookies for statistics, behaviour analysis, personalisation, and site improvement. Unless a different period is required by law or the purpose requires a shorter time, cookies are retained for up to 1 year. Users can manage cookie preferences in the browser or through the on-site cookie settings. Essential cookies are required for security and core functionality and cannot be disabled.

By accessing or using the services, the user fully accepts this Privacy Policy. If the policy changes, the current version published on the website prevails. Continued use after an update indicates acceptance of the revised policy. Users who do not agree should stop using the services and contact support for assistance regarding their data.

Personal data may be shared with third parties where required by law, for dispute resolution, or to perform agreements. Typical recipients include payment gateways and banks, mobile financial services, identity verification and AML providers, fraud detection and security vendors, hosting and cloud services, auditors, and legal advisors. A current list of key categories is maintained on the website or provided upon request. Providing data constitutes consent to transfer it to such parties for the stated purposes. Each third party processes information under its own privacy policy and applicable law.

The website may include links to external websites that have their own privacy practices. DBBet is not responsible for how those websites collect or use personal information. Users should review the privacy policy of each external site and proceed with care before providing any data.