Your Privacy Matters at 950k
This Privacy Policy explains exactly what personal data 950k collects from registered players in Bangladesh, how that data is used, who it may be shared with, and what rights you hold over your own information. We are committed to full transparency in every aspect of data handling.
Privacy at a Glance
Six core principles guide how 950k handles your personal data across every aspect of our Bangladesh-facing platform.
Minimal Data Collection
950k collects only the personal data that is strictly necessary to operate your account, process BDT transactions, satisfy KYC obligations, and deliver a safe gaming experience. We do not harvest data beyond what our legitimate operational purposes require.
Data MinimisationSSL Encryption on All Data
Every piece of data transmitted between your device and 950k's servers is protected by 256-bit SSL/TLS encryption. Data at rest is stored in AES-256 encrypted databases hosted on infrastructure with strict physical and logical access controls.
SecurityNo Data Selling
950k does not sell, rent, or trade your personal data to any third party for marketing or commercial purposes. Your information is used exclusively to operate and improve our platform and to fulfil legal and regulatory obligations.
No Sale of DataConsent-Based Processing
Where processing of your data is based on consent โ such as for personalised promotional communications โ you retain the right to withdraw that consent at any time without affecting the lawfulness of prior processing. Withdrawal of consent will not impair your ability to use the platform.
ConsentTransparent Record Keeping
950k maintains detailed records of all data processing activities, third-party data sharing agreements, and the legal basis for each category of data use. These records are reviewed quarterly and updated whenever processing activities change materially.
AccountabilityYour Rights, Always Accessible
As a 950k player, you have the right to access, correct, delete, and port your personal data at any time. You also have the right to object to certain processing and to request restriction of processing while a dispute is pending. These rights are exercised free of charge.
Your Rights1. Data We Collect
950k collects personal data across several categories. The table below summarises each category, the specific data items collected, and the purpose for which that data is gathered.
| Category | Data Items | Purpose |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, National ID (NID) number, passport number, photograph (from KYC documents) | Account registration, age verification (18+), KYC compliance, fraud prevention |
| Contact Data | Email address, Bangladesh mobile number, residential address (district, division, postal code) | Account communications, support, transaction notifications, responsible gaming alerts |
| Financial Data | bKash / Nagad / Rocket account numbers, bank account details, deposit and withdrawal history, BDT balance records, transaction timestamps | Payment processing, anti-money laundering (AML) compliance, fraud detection, withdrawal verification |
| Technical Data | IP address, device fingerprint, browser type and version, operating system, screen resolution, session tokens, login timestamps | Platform security, fraud detection, multi-account prevention, geo-compliance |
| Usage Data | Games played, bet amounts and outcomes, sports markets wagered, session duration, feature interactions, bonus activity, self-exclusion events | Platform personalisation, responsible gaming monitoring, bonus management, product improvement |
| Communications Data | Support chat transcripts, email correspondence, WhatsApp message records (where applicable), complaint records | Dispute resolution, quality assurance, regulatory record-keeping |
| Marketing Preferences | Opt-in/opt-out status for promotional emails, SMS, and in-platform notifications; preferred game categories; bonus interest signals | Targeted promotions (with consent), personalised offer delivery, campaign performance measurement |
2. How We Use Your Data
950k processes your personal data only where a clear legal basis exists. The following outlines our primary processing activities, the legal basis relied upon, and how each serves legitimate platform operations.
2.1 Account Management and Service Delivery. We use your identity, contact, and financial data to create and maintain your 950k account, process deposits and withdrawals in BDT via bKash, Nagad, Rocket, and other supported methods, settle bets, apply bonuses, and deliver the core gambling and sports betting services you have requested. The legal basis for this processing is contractual necessity โ without it we cannot provide the service.
2.2 Identity Verification and KYC Compliance. We process your identity and financial data to verify that you are who you claim to be, that you are at least 18 years of age, and that your account activity is consistent with legitimate personal use. This processing is required to satisfy our legal and regulatory obligations, including anti-money laundering (AML) requirements and responsible gaming standards.
2.3 Fraud Detection and Platform Security. We use technical data, financial data, and usage data to detect and prevent fraudulent activity including multi-accounting, payment fraud, bonus abuse, automated bot use, and collusion. This processing is carried out on the basis of our legitimate interest in protecting the security and integrity of the platform and our other players.
2.4 Responsible Gaming Monitoring. We monitor usage data โ including session length, wagering frequency, deposit patterns, and self-exclusion history โ to identify players who may be exhibiting signs of problem gambling behaviour. Where such indicators are detected, we may proactively contact the player and apply protective account restrictions. This processing is based on our legal obligation to promote responsible gambling and on our legitimate interest in player welfare.
2.5 Personalised Promotions and Marketing. With your explicit consent, we use your contact data and marketing preferences to send you personalised bonus offers, game recommendations, cricket betting promotions, seasonal campaign messages (such as Eid and BPL season offers), and other promotional communications via email, SMS, or in-platform notifications. You may withdraw consent at any time via account settings or by contacting our support team.
2.6 Platform Improvement and Analytics. We use aggregated and anonymised usage data to analyse how players interact with our platform, identify popular games and features, and guide product development decisions. This analytics processing does not identify you personally and is conducted on the basis of our legitimate interest in improving platform quality for all Bangladesh players.
2.7 Legal and Regulatory Compliance. We may process any category of your personal data where required to do so by applicable law, court order, or regulatory authority. This includes retaining transaction records for financial audit purposes, disclosing account data to law enforcement agencies investigating financial crime, and responding to formal legal requests.
Legal Bases for Processing
- Contract: Service delivery, account management, payments
- Legal obligation: KYC, AML, age verification, responsible gaming
- Legitimate interest: Security, fraud prevention, analytics, platform improvement
- Consent: Marketing communications, personalised promotions
Marketing Communications
- Only sent with your prior consent
- May include BPL, IPL, and Eid season promotions
- Delivered via email, SMS, or in-platform notification
- Opt out at any time in account settings
- Withdrawal of consent does not affect account access
Responsible Gaming Monitoring
- Usage patterns reviewed for problem gambling indicators
- Proactive contact if risk signals are detected
- Deposit, loss, and session limits enforced automatically
- Self-exclusion events permanently recorded
- Data used exclusively for player welfare โ never for targeting
3. Data Sharing & Disclosure
950k does not sell your personal data. However, to operate a secure and compliant platform for Bangladesh players, we share certain data with a limited set of trusted third parties under strict contractual and legal safeguards.
3.1 Payment Service Providers. To process deposits and withdrawals in BDT, we share necessary financial data โ including your account name, mobile financial service account number, and transaction amount โ with our payment partners including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Visa, and Mastercard. These providers receive only the minimum data required to execute and verify the specific transaction. All payment partners are bound by confidentiality agreements and industry-standard security obligations.
3.2 Identity Verification and KYC Providers. To fulfil our age verification and identity verification obligations, we may share copies of your KYC documents โ including NID, passport, and proof of address โ with third-party identity verification services. These providers process your documents solely for the purpose of confirming identity and are prohibited from retaining, selling, or otherwise using the data beyond that scope.
3.3 Game and Platform Technology Providers. Game studios and platform technology suppliers who provide games and betting infrastructure integrated into 950k may receive limited technical data โ such as session tokens and anonymised player IDs โ necessary to deliver their services. Providers such as Pragmatic Play, Evolution Gaming, Spribe, NetEnt, Microgaming, and Ezugi operate under strict data processing agreements that prohibit them from using this data for their own commercial purposes.
3.4 Legal and Regulatory Authorities. 950k is required by law to disclose player data to relevant authorities where a valid legal obligation exists. This includes providing transaction records to financial intelligence or anti-money laundering bodies, sharing account data with law enforcement agencies investigating fraud or financial crime, and complying with court orders. 950k will notify affected players of such disclosures wherever legally permissible to do so.
3.5 Fraud Prevention and Anti-Abuse Networks. To protect the integrity of our platform, 950k participates in shared fraud intelligence networks. We may share anonymised or pseudonymised risk indicators โ such as device fingerprint hashes and flagged IP ranges โ with other platform operators within our network strictly for the purpose of preventing multi-accounting and bonus abuse. No directly identifying data (name, contact details, NID) is shared through these networks.
We Will NEVER Share Your Data With
- Data brokers or marketing aggregators
- Advertising networks for behavioural profiling
- Other gambling operators for cross-marketing
- Social media platforms for ad targeting
- Any party without a valid contractual or legal basis
Authorised Third-Party Categories
- BDT payment processors (bKash, Nagad, Rocket, banks)
- KYC and identity verification providers
- Game studios and platform technology suppliers
- Legal and regulatory authorities (where required)
- Fraud prevention and AML compliance networks
- Hosting and cloud infrastructure providers
Contractual Safeguards
- All third parties operate under signed data processing agreements
- Data access is restricted to minimum necessary scope
- Sub-processors must meet equivalent security standards
- Agreements reviewed annually and upon any material change
5. Data Retention
950k retains personal data only for as long as necessary to fulfil the purpose for which it was collected, to comply with our legal obligations, or to resolve disputes and enforce our agreements.
5.1 Active Account Data. While your 950k account is active, we retain all categories of personal data collected in connection with your account. This data is necessary to provide the service, manage your BDT balance, process transactions, respond to support requests, and comply with ongoing regulatory obligations.
5.2 Post-Closure Retention. Following the closure of your 950k account โ whether voluntary or due to a breach of our Terms & Conditions โ we retain your identity, financial, and transaction data for a minimum period of 5 years from the date of closure. This retention period is required to satisfy anti-money laundering record-keeping obligations, respond to regulatory inquiries, resolve any outstanding disputes, and defend against legal claims. After the applicable retention period, your data is securely deleted or anonymised.
5.3 KYC Document Retention. Identity documents submitted for KYC verification (NID, passport, driving licence, proof of address) are retained for a minimum of 5 years following the last transaction on the account. After this period, document files are securely deleted. Anonymised records confirming that verification was completed are retained for a longer period for audit purposes.
5.4 Marketing Data Retention. Where you have provided consent for marketing communications, your contact data and marketing preferences are retained for as long as your account remains active and your consent is in force. If you withdraw consent or close your account, marketing data is removed from active campaign systems within 30 days. Archived records of consent and withdrawal are retained for 2 years for compliance purposes.
5.5 Support and Communications Data. Chat transcripts, email correspondence, and support ticket records are retained for 3 years from the date of the interaction. Records relating to formal complaints or disputes are retained for 5 years.
5.6 Anonymised Analytics Data. Aggregated, anonymised usage and analytics data โ which cannot be linked back to any individual player โ is retained indefinitely for platform performance analysis and product development planning.
Retention Summary
- Active account: Full retention while account is open
- Post-closure (identity & financial): Minimum 5 years
- KYC documents: 5 years from last transaction
- Marketing preferences: Until consent withdrawn + 30 days to purge
- Support records: 3 years (disputes: 5 years)
- Anonymised analytics: Indefinite (not personally identifiable)
Secure Data Deletion
When a retention period expires, 950k permanently deletes data using industry-standard secure deletion methods. Electronic records are overwritten to prevent recovery. Physical document copies (if any) are destroyed using certified shredding. Players may request confirmation that their data has been deleted by contacting [email protected].
6. Your Data Rights
As a registered 950k player in Bangladesh, you hold meaningful rights over your personal data. All rights below are exercised free of charge. 950k will respond to any data rights request within 30 calendar days of receipt.
Right of Access
Request a complete copy of all personal data 950k holds about you, including the purposes for which it is processed and who it has been shared with.
Right of Rectification
Request correction of any inaccurate or incomplete personal data held in your account. Corrections to KYC data may require re-submission of verification documents.
Right of Erasure
Request deletion of your personal data where it is no longer necessary for the purpose it was collected, subject to our legal retention obligations outlined in Section 5.
Right to Restrict Processing
Request that 950k limits its processing of your data while a dispute about accuracy or lawfulness is under review. Data under restriction is stored but not otherwise processed.
Right to Data Portability
Request a machine-readable copy of personal data you have provided to 950k, in CSV or JSON format, which you may transfer to another service provider of your choice.
Right to Object
Object to processing based on legitimate interest โ including direct marketing, profiling, and analytics โ at any time. Objections to marketing take effect immediately upon receipt.
Right to Withdraw Consent
Where processing is based on your consent (e.g., marketing communications), you may withdraw that consent at any time without penalty, via account settings or by emailing support.
Right Against Automated Decisions
Request human review of any significant decision made about your account solely through automated processing โ such as an automated account suspension or fraud flag โ without human involvement.
7. Data Security
950k applies layered technical and organisational security measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure.
256-bit SSL/TLS Encryption
All data in transit between your device and 950k's servers is encrypted using TLS 1.3 with 256-bit AES cipher suites. HTTPS is enforced across every page and API endpoint. HTTP Strict Transport Security (HSTS) headers prevent downgrade attacks.
EncryptionEncrypted Data at Rest
All personal data stored in 950k's databases is encrypted at rest using AES-256 encryption. Database servers are hosted on private, isolated infrastructure with no direct public internet exposure. Access is restricted to authorised personnel only via multi-factor authentication.
Storage SecurityFirewall and Intrusion Detection
950k's infrastructure is protected by enterprise-grade web application firewalls (WAF), DDoS mitigation systems, and real-time intrusion detection and prevention systems (IDS/IPS). All network traffic is continuously monitored for anomalous patterns.
Network SecurityAccess Controls and Audit Logs
Access to personal data is restricted on a strict need-to-know basis. All staff access to player records is logged with timestamps and reviewed regularly. Privileged access requires multi-factor authentication and is subject to quarterly access reviews and immediate revocation upon role changes.
Access ControlRegular Security Audits
950k conducts regular internal security reviews and periodic third-party penetration tests to identify and remediate vulnerabilities before they can be exploited. Critical findings are addressed within 48 hours of discovery. Security patches are applied to all systems on a rolling basis.
AuditingData Breach Response
In the unlikely event of a personal data breach, 950k's incident response team activates within 1 hour of detection. Affected players are notified by email within 72 hours of the breach being confirmed, detailing the nature of data affected, steps taken to contain the incident, and recommended protective actions for the player.
Incident Response8. Policy Updates & Contact
950k reviews this Privacy Policy regularly and updates it whenever our data practices change materially or when required by law. We are always available to answer your privacy-related questions.
8.1 Policy Updates. 950k reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data processing practices, legal obligations, or the services we offer to Bangladesh players. When we make material changes โ such as adding a new category of data collection, changing our data sharing arrangements, or altering retention periods โ we will notify registered players by email at least 7 days before the change takes effect. The revised policy will be published on this page with an updated effective date. Your continued use of the platform after the effective date of any update constitutes your acceptance of the revised Privacy Policy.
8.2 Minor Updates. For minor, non-material changes โ such as typographical corrections, clarifications of existing language, or formatting improvements โ we may update the policy without prior individual notification. The effective date at the top of the policy will always reflect when the most recent change was made. We encourage players to review this page periodically to stay informed of any updates.
8.3 Historical Versions. Players who wish to review a prior version of this Privacy Policy may request a copy by contacting our support team. 950k retains archived versions of all previous Privacy Policies for a period of 5 years.
8.4 Contact the Data Protection Team. If you have any questions, concerns, or complaints about how 950k handles your personal data, or if you wish to exercise any of the data rights described in Section 6, please contact our Data Protection team. We are committed to responding promptly and transparently to all privacy-related enquiries from our Bangladesh player base.
8.5 Governing Language. This Privacy Policy is published in English. In the event of any conflict between this English version and any translated summary or promotional description of the policy, the English text of this Privacy Policy shall prevail.
Data Protection Contact
- Email: [email protected]
- Live Chat: Available 24/7 within your account
- WhatsApp: +880 1700 000 950
- Response Time: Acknowledgement within 72 hours
- Full Resolution: Within 30 calendar days
- Hours: 24/7 (BST, UTC+6)
Policy Version History
- Current Version: 1 January 2026
- Previous Version: Available on request
- Review Frequency: At minimum once per calendar year
- Material change notice: 7 days advance email to all registered players
Our Privacy Commitments
- No sale of personal data โ ever
- All marketing requires explicit opt-in consent
- Data breach notifications within 72 hours
- Data rights requests answered within 30 days
- SSL encryption on all data in transit
- AES-256 encryption on all data at rest
Have Questions About Your Privacy?
Our support team is available 24/7 to help Bangladesh players understand their data rights. You can also explore our FAQ for common questions, review our Terms & Conditions, or head to the 950k Casino to start playing with full confidence.