bdt67 Privacy Policy
At bdt67, your privacy is treated with the same care we give to your gaming experience. This Privacy Policy explains exactly what personal data we collect, why we collect it, how it is stored and protected, and what rights you hold over your own information as a player based in Bangladesh.
How bdt67 Protects Your Data
Before reading the full policy, here is a concise overview of the six core privacy principles that guide how bdt67 handles every piece of personal information entrusted to us by our Bangladeshi players.
bdt67 collects only the personal data strictly necessary to operate your account, process your transactions, and comply with applicable legal and regulatory requirements. We do not collect data speculatively or for purposes beyond those stated in this policy.
All data transmitted between your browser and bdt67 is protected by industry-standard SSL/TLS encryption. This applies to account registration, login sessions, deposit and withdrawal flows, and all communication with our support team. Your data is never transmitted over unsecured connections.
bdt67 does not sell, rent, or trade your personal data to third-party marketers or advertising networks. Data is shared only with trusted service partners essential to platform operations — such as payment processors and identity verification providers — and only under strict confidentiality agreements.
bdt67 uses cookies and similar tracking technologies solely to improve your platform experience, maintain session continuity, and analyse aggregate usage patterns. We do not use third-party advertising cookies. You can review and manage your cookie preferences at any time via your browser settings.
Personal data is retained only for as long as necessary to fulfil the purpose for which it was collected, or as required by applicable law. Account data is retained for a minimum of five years following account closure to meet anti-money laundering and financial record-keeping obligations.
Every bdt67 player has the right to access, correct, export, or request deletion of their personal data, subject to legal retention requirements. Privacy requests are handled by our dedicated support team and are responded to within 30 calendar days of submission at [email protected].
1. Information We Collect
bdt67 collects personal information from players through several channels: directly when you register an account, when you interact with the platform's features, when you contact our support team, and automatically through your use of the website. The specific categories of data collected are set out below.
Information You Provide Directly
When you register a bdt67 account or interact with our services, we collect the following categories of personal data:
- Identity data: Full legal name, date of birth, gender, and national identification number as provided during KYC verification
- Contact data: Email address, mobile phone number, and residential address including city (e.g., Dhaka, Chittagong, Sylhet, Khulna, Rajshahi) and postal code
- Account credentials: Username and encrypted password (passwords are stored using one-way hashing and are never accessible in plain text, even to bdt67 staff)
- Financial data: bKash, Nagad, Rocket, or Upay mobile wallet identifiers; bank account details where bank transfer is used; transaction history and account balance records in Bangladeshi Taka (৳ BDT)
- Identity verification documents: Copies of your National ID card (NID), passport, driving licence, utility bills, or bank statements submitted for KYC compliance
- Communications data: The content of emails, live chat transcripts, and support tickets exchanged between you and the bdt67 support team
Information Collected Automatically
When you access the bdt67 platform, our systems automatically record certain technical data required for platform security, fraud detection, and service optimisation:
| Data Category | Examples | Purpose |
|---|---|---|
| Device & browser data | Device type, operating system, browser version, screen resolution | Platform compatibility, fraud detection |
| Network data | IP address, approximate geolocation (city level), ISP | Security, eligibility verification |
| Session data | Login timestamps, session duration, pages visited | Account security, responsible gaming monitoring |
| Gaming activity | Games played, wager amounts, win/loss records, bonus usage | Account management, bonus compliance, player protection |
| Cookie & tracking data | Session tokens, preference cookies, analytics identifiers | Session management, UX improvement |
2. How We Use Your Data
bdt67 processes your personal data only for specified, explicit, and legitimate purposes. We do not use your data in any manner that is incompatible with the purposes for which it was originally collected. The primary purposes for which bdt67 processes personal data are as follows:
Account Management and Service Delivery
The core purpose for collecting your personal data is to create and manage your bdt67 account, process deposits and withdrawals in BDT, deliver the games and betting services you request, apply bonuses and promotions to your account, and provide customer support. Without this data, bdt67 cannot provide its services to you.
Identity Verification and Fraud Prevention
bdt67 is legally and operationally required to verify the identity of all account holders before processing withdrawals. KYC data — including copies of identity documents — is used exclusively to confirm that you are who you say you are, that you meet the minimum age requirement of 18 years, and that your payment methods belong to you. This data is also cross-referenced against internal fraud detection systems to identify patterns consistent with multi-accounting, bonus abuse, or money laundering.
Legal and Regulatory Compliance
bdt67 retains certain categories of transaction data and player records to comply with applicable financial record-keeping requirements, anti-money laundering (AML) obligations, and lawful requests from competent authorities. This processing is not discretionary — it is a legal obligation that takes precedence over a player's right to erasure in certain circumstances.
Responsible Gaming Monitoring
bdt67 uses gaming activity data — including session frequency, session duration, deposit patterns, and loss trajectories — to proactively identify players who may be at risk of developing a gambling problem. Where such patterns are detected, bdt67 may reach out to the player with information about responsible gaming tools, or may apply platform-level safeguards in line with our Responsible Gaming policy.
Platform Improvement and Analytics
Aggregated, anonymised usage data is analysed to understand how players navigate the bdt67 platform, which games and features are most popular, and where technical or user experience improvements can be made. This analysis does not involve personally identifiable information and cannot be used to identify individual players.
Marketing Communications
Where you have explicitly opted in to marketing communications during account registration or via account settings, bdt67 may send you promotional emails regarding new games, bonuses, seasonal promotions (such as those linked to Eid, BPL cricket, or IPL season), and VIP programme updates. You may withdraw your marketing consent at any time by updating your account preferences or by contacting [email protected]. Withdrawal of marketing consent does not affect the lawfulness of processing carried out before that withdrawal.
3. Data Sharing & Third Parties
bdt67 does not sell personal data to third parties under any circumstances. We share personal data only with carefully vetted partners and service providers who are essential to the operation of the bdt67 platform, and only to the extent strictly necessary for the purpose of the engagement.
Categories of Third-Party Recipients
- Payment processors: bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, and Sonali Bank receive the minimum transaction data necessary to process your deposits and withdrawals. These providers operate under their own privacy policies and are independently regulated.
- Identity verification providers: Third-party KYC and document verification service providers process your identity documents on bdt67's behalf for the sole purpose of confirming your identity and age. All such providers are contractually bound to process data only as instructed by bdt67.
- Game technology providers: Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, Ezugi, and other game studios may receive a pseudonymous player identifier and game session data to deliver their game content and to enable fair-play auditing. These providers do not receive your name, address, or payment details.
- Customer support platforms: Our live chat and email support infrastructure is delivered through a third-party helpdesk platform. Support conversations are stored on this platform's servers and are subject to its data processing agreement with bdt67.
- Analytics providers: Aggregated, anonymised analytics data may be processed by web analytics tools to help bdt67 understand platform usage patterns. No personally identifiable information is shared for analytics purposes.
- Law enforcement and regulatory authorities: bdt67 will disclose personal data to competent government authorities, courts, or law enforcement agencies where required to do so by applicable law or a valid legal process, without prior notice to the affected player where disclosure would compromise the legal process.
4. Cookies & Tracking Technologies
bdt67 uses cookies and similar browser-based technologies on the bdt67.app website. Cookies are small text files stored on your device that help bdt67 deliver a consistent and personalised platform experience. The following categories of cookies are used by bdt67:
| Cookie Type | Purpose | Duration | Can Be Disabled? |
|---|---|---|---|
| Strictly necessary | Session management, login state, security tokens | Session / up to 24 hours | No — required for core function |
| Functional | Language preference, theme settings, last-visited games | Up to 30 days | Yes — via browser settings |
| Analytics | Aggregate page view counts, navigation flow analysis | Up to 12 months | Yes — via browser settings |
| Fraud detection | Device fingerprinting for multi-account and bot detection | Up to 12 months | No — required for platform security |
bdt67 does not use third-party advertising cookies, retargeting pixels, or social media tracking scripts. You can control cookie settings through your browser's privacy configuration. Please note that disabling functional or analytics cookies will not prevent you from using the bdt67 platform, but may affect certain non-essential features such as personalised game recommendations and remembered preferences.
For detailed guidance on managing cookies in your specific browser — whether you use Chrome, Firefox, Edge, or a mobile browser on Android or iOS — please refer to your browser's help documentation.
5. Data Retention & Storage
bdt67 retains personal data only for as long as is necessary to fulfil the purposes outlined in this Privacy Policy, or for as long as is required by applicable law and regulation. The following retention periods apply to the principal categories of personal data held by bdt67:
- Account registration data: Retained for the duration of your active account, plus a minimum of five years following account closure, in compliance with financial record-keeping requirements.
- KYC verification documents: Retained for a minimum of five years following the date of verification, or for the duration required by applicable anti-money laundering legislation, whichever is longer.
- Transaction records: All deposit, withdrawal, and wagering records in BDT are retained for a minimum of seven years from the date of the transaction.
- Customer support communications: Live chat transcripts and email correspondence are retained for a maximum of three years from the date of the last interaction, or longer if the communication relates to an open dispute or regulatory investigation.
- Marketing preferences and consent records: Retained for the duration of your account, and for a period of three years following account closure as evidence of consent status.
- Session and analytics data: Anonymised analytics data may be retained indefinitely. Identifiable session logs are retained for a maximum of 12 months from the date of the session.
Data Storage Location
bdt67 stores personal data on secure servers. All servers used to process and store player data from Bangladesh are subject to appropriate technical and organisational security measures as described in the Security Measures section of this policy. In the event that data is processed by a third-party service provider in a different location, bdt67 ensures that appropriate contractual safeguards are in place to protect the data to a standard equivalent to that described in this policy.
6. Your Privacy Rights
As a bdt67 player, you hold specific rights in relation to your personal data. bdt67 is committed to honouring these rights promptly and transparently. To exercise any of the rights described below, please submit a written request to [email protected] with the subject line "Privacy Rights Request" and include your registered username and the email address associated with your account for identity verification purposes.
Right of Access
You have the right to request a copy of all personal data that bdt67 holds about you. bdt67 will provide this information in a structured, commonly used, machine-readable format within 30 calendar days of receiving a verified request. There is no charge for a standard access request.
Right to Rectification
If any personal data held by bdt67 is inaccurate or incomplete, you have the right to request that it be corrected. Account holders may update certain data categories directly via account settings. For data that cannot be self-corrected — such as legal name or date of birth — please contact our support team with supporting documentation.
Right to Erasure
You may request the deletion of your personal data where it is no longer necessary for the purpose for which it was collected, where you have withdrawn consent and no other legal basis for processing applies, or where the data has been unlawfully processed. As noted in the Data Retention section, certain data cannot be deleted while a statutory retention obligation remains in force.
Right to Data Portability
Where bdt67 processes your personal data on the basis of your consent or for the performance of a contract, you have the right to receive that data in a portable format and to transmit it to another controller. This right applies to data you have actively provided to bdt67, such as account registration data and preference settings.
Right to Restrict Processing
You may request that bdt67 restricts the processing of your personal data in certain circumstances — for example, while the accuracy of the data is being contested, or while an objection to processing is being assessed. During a restriction period, bdt67 will continue to store your data but will not actively process it beyond what is permitted under the restriction.
Right to Object
You have the right to object to bdt67 processing your personal data for direct marketing purposes at any time, with immediate effect. You may also object to processing carried out on the basis of legitimate interests where you believe your individual rights and freedoms override those interests. All objections will be assessed individually.
7. Security Measures
bdt67 applies a layered approach to data security, combining technical controls, operational procedures, and staff training to protect personal data against unauthorised access, accidental loss, destruction, and disclosure. The following measures are in place across the bdt67 platform:
- Transport layer security: All communications between your browser and bdt67.app are encrypted using TLS 1.2 or higher. The platform enforces HTTPS across all pages with no mixed-content exceptions.
- Password security: Account passwords are stored using a one-way cryptographic hashing algorithm with individual salts. Plain-text passwords are never stored or logged.
- Access controls: Access to personal data within bdt67's internal systems is restricted on a strict need-to-know basis. Staff access is governed by role-based permissions, multi-factor authentication, and audit logging.
- Fraud detection systems: Automated systems monitor account activity for anomalies consistent with account takeover attempts, credential stuffing, and multi-accounting. Suspicious activity triggers immediate account review and may result in temporary suspension pending investigation.
- Payment security: bdt67 does not store full payment credentials. All payment processing is handled by the respective payment providers — bKash, Nagad, Rocket, Upay, and partner banks — and bdt67 retains only transaction identifiers and timestamps.
- Vendor security assessments: All third-party service providers are assessed for security posture before engagement. Data processing agreements include contractual security requirements aligned with bdt67's own standards.
- Incident response: bdt67 maintains a data breach response procedure. In the event of a breach that is likely to result in a risk to affected players, bdt67 will notify impacted account holders without undue delay and will take immediate remediation action.
8. Changes to This Policy
bdt67 reserves the right to update or amend this Privacy Policy at any time. When material changes are made — such as changes to the categories of data collected, the purposes for which data is used, or the third parties with whom data is shared — bdt67 will notify registered players by email to the address on their account at least 14 days before the changes take effect.
The updated policy will be published on this page with the revised effective date clearly indicated at the top of the document. For non-material changes — such as typographical corrections, clarifications of existing language, or changes to contact details — bdt67 may update the policy without prior notice, and the revised version will take effect from the date of publication.
Continued use of the bdt67 platform following notification of a material policy change constitutes your acceptance of the updated terms. If you do not agree to the revised Privacy Policy, you should cease using the platform and may request account closure by contacting our support team at [email protected]. Account closure requests submitted in response to a privacy policy update will be processed within five business days.
Previous versions of this Privacy Policy are available upon request by contacting [email protected] with the subject line "Privacy Policy — Previous Version Request". bdt67 maintains an internal version history of all privacy policy revisions for a minimum period of five years.
Contact for Privacy Enquiries
All privacy-related enquiries, data subject access requests, and complaints should be directed to the bdt67 privacy team in writing at [email protected]. Please include your registered username, the email address associated with your bdt67 account, and a clear description of your request or concern. Our team operates 24/7 and will acknowledge all privacy enquiries within two business days and provide a substantive response within 30 calendar days.
Play with Confidence at bdt67
Your personal data is safe with us. Now explore bdt67's full range of casino games, cricket betting, slots, and fishing titles — all with instant bKash and Nagad deposits in BDT. 18+ only. Please gamble responsibly.