Overview of this privacy document

Types of personal data collected

The platform may collect the following categories of personal information:

• Identification data: name, date of birth, gender, nationality, and identity document details when required for verification.
• Contact information: email address, mobile number, residential address, and communication preferences.
• Account and usage data: username, password, security questions, betting history, game activity, account balances, and transaction records.
• Technical data: IP address, device identifiers, browser type, operating system, access times, and pages viewed.
• Payment and financial information: partial payment card details, payment instrument type, wallet identifiers, and transaction reference numbers, processed through secure payment providers.
• Compliance and risk data: records collected for age verification, fraud prevention, responsible gaming, and legal reporting obligations.

Personal data is collected when the user:

• Creates or manages an account for online services.
• Completes KYC (Know Your Customer) procedures or uploads documents.
• Makes deposits or withdrawals.
• Contacts customer support or participates in surveys.
• Uses the websites, mobile apps, or related online platforms.

Purpose of collection

Personal information is collected and processed for the following purposes:

• To create, manage, and secure user accounts.
• To verify identity, age, and eligibility to access gaming services.
• To process payments, withdrawals, and financial transactions.
• To provide customer support and handle user queries or complaints.
• To comply with legal obligations, anti-money laundering (AML) and counter-terrorist financing (CTF) requirements, and responsible gaming duties.
• To monitor, detect, and prevent fraud, misuse of services, or policy violations.
• To improve online services, website performance, and user experience through analysis.

Technical and organisational protection measures

Reasonable technical and organisational security measures are maintained to protect user information against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures may include:

• Use of encryption and secure communication protocols for data transfer.
• Access controls and role-based permissions for staff.
• Secure storage of electronic records and limited retention of sensitive information.
• Regular system monitoring, logging, and incident response procedures.
• Staff training on data protection, confidentiality, and responsible handling of user data.

No system can guarantee absolute security of online information. However, proportionate steps are taken to reduce risks and respond promptly to any suspected data incident, in line with internal policies and applicable standards.

User rights regarding personal data

Subject to applicable law, users in India have the following rights regarding their personal information:

• Right of access: to request confirmation whether personal data is processed and to receive a copy of such information, where permitted.
• Right to correction: to request correction or updating of inaccurate, incomplete, or outdated personal details.
• Right to deletion: to request deletion or anonymisation of personal data, subject to lawful record-keeping and regulatory requirements.
• Right to restriction or objection: to raise concerns about certain processing activities, such as profiling for risk or marketing, where allowed by law.
• Right to withdraw consent: to withdraw consent for processing where consent is the legal basis, without affecting lawfulness of past processing.

To exercise these rights, users may contact the support team through the contact options provided on the websites or apps. Identity verification may be required before processing such requests.

Legal framework and India-specific compliance

Data handling strives to align with internationally recognised standards such as the EU General Data Protection Regulation (GDPR) principles and relevant India laws and guidelines, including emerging norms under the Digital Personal Data Protection Act, 2023 and sectoral rules. The platform also considers gaming and betting regulations, anti-money laundering norms, and directions from competent authorities whenever applicable to India users.

Personal data and other information about the user is processed only for lawful purposes and in a fair and transparent manner. Main uses of collected data include:

Account administration and service delivery

• Creating and maintaining user profiles.
• Enabling login, authentication, and account security.
• Providing access to casino games, sports betting, and related online services.
• Managing preferences, language settings, and responsible gaming tools.

Transactions and financial operations

• Processing deposits and withdrawals through authorised payment providers.
• Recording transaction history and account balances for accounting and reconciliation.
• Verifying ownership of payment instruments and preventing unauthorised use.

Service quality, improvement, and analytics

• Monitoring website and app performance and resolving technical issues.
• Analysing usage patterns, game participation, and user behaviour to improve services.
• Conducting aggregated or anonymised statistics for internal reporting.

Communication and service updates

• Sending service-related notifications, such as security alerts, account changes, or policy updates.
• Responding to support tickets, complaints, and other user communications.
• Sharing important information mandated by law or regulators.

Marketing or promotional communication, where offered to India users, is based on user consent or legitimate interest in accordance with local norms. Users can modify communication preferences or opt out of certain messages through account settings or by following instructions in the communication.

Compliance, risk management, and fraud prevention

• Performing KYC checks, ongoing monitoring, and risk assessments.
• Complying with AML, CTF, sanctions, tax, and other legal obligations.
• Detecting and preventing fraud, bonus abuse, match-fixing, collusion, account takeover, and unauthorised access.
• Cooperating with law enforcement, regulators, and dispute resolution bodies as required by applicable law.

Data processing is supported by one or more lawful bases, such as user consent, performance of a contract, legal obligations, and legitimate interests relating to secure and responsible operation of online gaming services.

How users can access their personal data

Registered users can view and update most of their basic account information by logging into their online profile, including contact details and certain preferences. For broader access requests or a copy of stored personal data, users may contact support through the details provided on the websites or mobile applications.

After receiving a request, identity verification may be carried out to protect the user and prevent unauthorised disclosure. Subject to legal limits, a response is usually provided within a reasonable time.

Updating and correcting personal details

Users are responsible for ensuring that their personal information is accurate and up to date. Corrections can be made by:

• Editing details directly in account settings, where this function is available.
• Contacting customer support to request correction of information that cannot be edited online, such as verified documents or certain compliance records.

Certain data, such as verified identity information used for regulatory compliance, may only be changed upon submission of valid supporting documents and completion of additional checks.

Deletion and retention of data

Users may request deletion of their personal information where:

• The data is no longer necessary for the purpose for which it was collected.
• Processing is based on consent and the user has withdrawn that consent.
• Applicable law grants a right to erasure in the given circumstances.

However, some records must be retained for legally mandated periods, including for:

• Compliance with AML and CTF laws.
• Tax and accounting obligations.
• Handling disputes, chargebacks, and responsible gaming investigations.

In such cases, data will be restricted to limited use, securely stored, and deleted or anonymised when retention is no longer required.

Security checks and payment data processing

By creating an account and using the services, the user consents to necessary security checks and risk assessments. This may include:

• Verifying identity and age through documents and data sources that comply with law.
• Monitoring transactions for suspicious or prohibited activity.
• Evaluating device information and login patterns to protect against fraud.

Payment information is processed by approved payment service providers and financial institutions in compliance with local and international standards. Relevant data is shared only to the extent required to complete transactions, prevent fraud, and satisfy legal and regulatory requirements.

The online gaming and betting services are strictly intended for persons who are 18 years of age or older and legally permitted to participate in such activities under India law.

• During registration and verification, users are asked to confirm that they are at least 18 years old.
• Age verification checks may be conducted using identity documents and other methods, but continuous monitoring of user age cannot be guaranteed in the absence of documents.
• Accounts suspected of being operated by minors may be suspended or closed, and any related data may be reviewed.

If a parent or legal guardian believes that a minor has provided personal data or used the services, they should contact support immediately. Once verified, the platform will:

• Close the minor’s account, if any.
• Delete or anonymise personal information of the minor, except where limited retention is strictly required by law.
• Take reasonable steps to prevent re-registration by the same minor.

Users are encouraged to keep login details secure and use parental control tools on devices to help prevent unauthorised access by minors.

Services provided to India users may rely on servers, partners, and service providers located in various jurisdictions. As a result, personal information may be transferred to, stored in, and processed in countries other than India.

Such transfers may occur for:

• Hosting of websites, servers, and cloud infrastructure.
• Outsourced customer support and back-office functions.
• Payment processing through international gateways and financial institutions.
• Fraud detection, risk management, and technical security solutions.

By using the services, creating an account, or submitting personal information, the user consents to transnational transfer and processing of their data in accordance with this Privacy Policy and applicable law. Appropriate contractual, technical, and organisational safeguards are used so that all partners and processors maintain confidentiality, integrity, and security standards comparable to those applied locally.

Only partners that are subject to confidentiality obligations and data protection commitments are engaged, and access to identifiable user data is restricted to what is strictly necessary for the specific service being provided.

This Privacy Policy sets out how personal information is collected, used, and protected. However, legal disclaimers and mandatory requirements imposed by law, court orders, or regulators may modify or expand the way certain rules operate in particular cases.

• The platform may need to retain or disclose data beyond what is described here if required by applicable law, law enforcement, regulatory authorities, or dispute resolution orders.
• The policy does not limit statutory rights of users under India law, nor does it restrict legal obligations relating to anti-money laundering, counter-terrorist financing, or other compliance requirements.
• In case of conflict between this Privacy Policy and binding legal provisions, the legal provisions will prevail to the extent of the inconsistency.

This disclaimer applies when the user accepts this Privacy Policy through account registration, electronic acceptance, continued access to the services, or any other method of accession recognised under applicable law.

Cookies are small text files or similar identifiers that are stored on the user’s device by websites or mobile applications. They help recognise returning users, remember preferences, and understand how services are used.

The platform may use:

• Essential cookies: required for core website functions, security, and navigation.
• Functional cookies: used to remember settings such as language and interface preferences.
• Analytics cookies: used to collect aggregated statistics on traffic, user behaviour, and performance of the online services.
• Personalisation cookies: used to adapt content, game suggestions, or interface options based on past usage patterns.

Cookies and similar technologies are used for:

• Maintaining sessions and ensuring secure login.
• Measuring site performance and resolving technical issues.
• Analysing how users interact with games, pages, and features.
• Improving design, layout, and user experience over time.

Unless a different period is specified, non-essential cookies are generally retained on the device for up to 1 year, after which they expire or are refreshed upon repeat use. Users can manage cookie settings through browser controls or device settings, including blocking or deleting cookies. However, disabling certain cookies may affect functionality of the websites or some services.

By accessing or using the online services, registering an account, or submitting personal information, the user confirms that they have read, understood, and accepted this Privacy Policy. Continued use of the websites or mobile applications after any update to this document will be treated as acceptance of the revised terms, to the extent permitted by law.

The version of the Privacy Policy published on the official website at the time of use is the version that applies. Historical versions may be retained for record purposes. If material changes that affect user rights or the way personal data is processed are made, reasonable efforts may be taken to notify users in advance or as required by law.

Users who do not agree to this Privacy Policy should discontinue use of the online services and may contact support regarding closure of their account and handling of their personal data.

Personal data may be shared with selected third parties where necessary for legitimate purposes and as permitted by law. Such sharing can occur in the following situations:

• Service providers: companies that supply hosting, payment processing, KYC and verification tools, risk and fraud management, analytics, customer support, and IT services.
• Group entities and business partners: related companies or partners that help operate gaming platforms, manage promotions in compliance with law, or provide joint services.
• Legal and regulatory recipients: courts, regulators, law enforcement agencies, and other authorities when required by law, court order, or governmental request.
• Professional advisers: auditors, legal advisers, accountants, and consultants subject to confidentiality obligations.

The list or categories of such third parties may be described on the websites or provided upon request, subject to confidentiality and security considerations. When details are not listed, users may be informed of the purpose and scope of sharing at the point of collection or through support channels.

Providing personal information and continuing to use the online services is treated as consent to such sharing where consent is required. All third parties that receive personal data are expected to:

• Use the information only for the specified purpose.
• Apply appropriate technical and organisational security measures.
• Handle the data in accordance with applicable data protection laws and contractual obligations.

This Privacy Policy does not cover how independent third parties outside this framework may handle data they collect directly from users on their own platforms or under their own terms.

The websites and mobile applications may contain links to third-party sites or services that are not controlled or operated by this platform. These could include payment gateways, social networks, information portals, or partner offers.

• Each external website or service has its own privacy policy, data collection practices, and terms of use.
• Responsibility does not extend to how such third parties collect, use, process, or protect user data once the user leaves the official website or app environment.
• Users are encouraged to review the privacy policy and terms of any external site they visit, particularly before sharing personal or financial information.

Accessing third-party websites through links on the platform is at the user’s own discretion. Any questions about data handling on those sites should be directed to the respective third-party operators.