Privacy Policy
This Privacy Policy governs the collection, processing, and protection of personal information by our online gaming platform. We are committed to maintaining the highest standards of data protection in compliance with Indian privacy laws and international best practices. This policy outlines how we handle your personal data when you access our gaming services, create accounts, or engage with our platform in any capacity. Last updated: January 28, 2026.
Information Collection and Types
We collect various categories of personal information necessary for providing secure and compliant gaming services. The collection occurs through direct interactions, automated technologies, and third-party sources as permitted under applicable Indian data protection regulations. Our data collection practices are designed to ensure transparency while maintaining operational efficiency and regulatory compliance.
| Data Category | Examples | Collection Method | Retention Period |
|---|---|---|---|
| Personal Identification | Name, date of birth, address, phone number | Registration forms, verification processes | 7 years after account closure |
| Financial Information | Banking details, transaction history, payment methods | Payment processing, deposits, withdrawals | 5 years for compliance purposes |
| Technical Data | IP addresses, device information, browser data | Automated collection during platform usage | 2 years from last activity |
| Gaming Activity | Game preferences, betting patterns, session duration | Platform interactions, gameplay monitoring | 3 years for analysis purposes |
We implement sophisticated data collection mechanisms that capture essential information while respecting user privacy expectations. Identity verification documents including Aadhaar cards, PAN cards, and bank statements may be requested to comply with Know Your Customer requirements under Indian financial regulations. Biometric data is not collected unless explicitly required by regulatory authorities.
Purpose and Legal Basis
Personal data processing occurs under specific legal foundations established by Indian privacy legislation and gaming regulations. We process information to fulfill contractual obligations, comply with legal requirements, protect legitimate interests, and occasionally based on explicit user consent. Each processing activity serves defined purposes essential for platform operations and regulatory compliance.
- Account creation, management, and authentication services
- Payment processing, financial transactions, and fraud prevention
- Regulatory compliance including anti-money laundering and responsible gaming
- Customer support, dispute resolution, and technical assistance
- Platform security, risk assessment, and abuse prevention
- Marketing communications and promotional activities with proper consent
- Analytics, performance optimization, and service improvement initiatives
Our processing activities align with legitimate business interests while ensuring proportionality and necessity. We conduct regular assessments to verify that data processing remains justified and minimized. Automated decision-making systems may be employed for fraud detection and responsible gaming measures, with appropriate safeguards and review mechanisms in place.
Data Sharing and Disclosure
Information sharing occurs within strict parameters defined by contractual obligations, regulatory requirements, and operational necessities. We maintain comprehensive data sharing agreements with all third parties, ensuring equivalent protection standards and limiting data use to specified purposes. Cross-border transfers comply with applicable international data protection frameworks.
Authorized recipients of personal information include payment processors for financial transactions, regulatory bodies for compliance reporting, and technology service providers for platform maintenance. Law enforcement agencies may receive information pursuant to valid legal requests or court orders. We do not sell personal data to third parties for commercial purposes unrelated to gaming services.
- Financial institutions and payment service providers for transaction processing
- Regulatory authorities for compliance reporting and investigations
- Technology partners for platform maintenance and security services
- Legal advisors and auditors for professional consultation purposes
- Law enforcement agencies pursuant to lawful requests and court orders
International data transfers may occur when utilizing global service providers or cloud computing resources. Such transfers are protected by appropriate safeguards including adequacy decisions, standard contractual clauses, or binding corporate rules. We regularly review and update transfer mechanisms to maintain compliance with evolving regulatory requirements.
Security Measures and Protection
Comprehensive security frameworks protect personal information against unauthorized access, modification, disclosure, or destruction. Our security architecture incorporates industry-leading technologies, operational procedures, and administrative controls designed to maintain data integrity and confidentiality throughout the information lifecycle.
Technical safeguards include advanced encryption protocols for data transmission and storage, multi-factor authentication systems, and regular security monitoring. Access controls limit system permissions to authorized personnel based on job responsibilities and business requirements. Network security measures include firewalls, intrusion detection systems, and continuous vulnerability assessments.
- End-to-end encryption for sensitive data transmission and storage
- Multi-layered authentication systems with biometric capabilities
- Regular security audits and penetration testing by independent experts
- Employee training programs on data protection and security protocols
- Incident response procedures for potential security breaches
- Backup and disaster recovery systems ensuring data availability
Physical security measures protect data centers and computing infrastructure through access controls, surveillance systems, and environmental monitoring. Personnel security includes background verification procedures, confidentiality agreements, and ongoing training programs. We maintain cyber insurance coverage and incident response capabilities to address potential security events.
User Rights and Control
Indian privacy laws and our commitment to transparency provide users with comprehensive rights regarding personal information processing. These rights enable individuals to understand, control, and influence how their data is collected, used, and maintained by our platform. We have established efficient procedures for exercising these rights while maintaining operational integrity.
Users can access personal information held in their accounts, request corrections to inaccurate data, and obtain copies of information in structured formats. Deletion requests are processed subject to legal retention requirements and legitimate business interests. Communication preferences can be modified to control marketing messages and promotional content.
- Right to access personal information and processing details
- Right to rectify inaccurate or incomplete data records
- Right to delete personal information subject to legal requirements
- Right to restrict processing under specific circumstances
- Right to data portability in machine-readable formats
- Right to withdraw consent for voluntary data processing activities
- Right to object to processing based on legitimate interests
Requests are processed within statutory timeframes, typically thirty days from receipt of valid requests. Identity verification may be required to prevent unauthorized access to personal information. Complex requests or those requiring extensive data compilation may require additional processing time with appropriate user notification.
Contact Information and Updates
This Privacy Policy undergoes regular reviews to ensure continued compliance with evolving legal requirements and operational changes. Updates are published on our platform with appropriate notice periods, allowing users to understand modifications before they take effect. Significant changes may require explicit consent or provide opt-out mechanisms.
Our Data Protection Officer serves as the primary contact for privacy-related inquiries, complaints, and rights requests. Users can submit questions through multiple channels including email, online forms, and postal correspondence. We maintain detailed records of communications and ensure timely responses to all legitimate inquiries.
For privacy-related concerns, data subject rights requests, or general inquiries about information processing practices, please contact our dedicated privacy team. We are committed to addressing concerns promptly and maintaining ongoing dialogue with our user community about data protection matters. Regular privacy impact assessments help identify areas for improvement in our data handling practices.