Privacy Policy — 365bdt Data Protection Commitment
At 365bdt, your privacy is taken seriously. This Privacy Policy explains precisely what personal data we collect when you use our platform, why we collect it, how it is stored and protected, who it may be shared with, and what rights you hold over your own information.
Your Privacy at a Glance
Identity Data Collected at Registration
When you open a 365bdt account, we collect your name, date of birth, contact details, and payment method information. This data is required to verify your identity, confirm you are aged 18 or older, and process your deposits and withdrawals accurately.
SSL Encryption on All Data
Every connection between your device and the 365bdt platform is protected by industry-standard SSL/TLS encryption. Sensitive data — including passwords and payment details — is encrypted both in transit and at rest using recognised cryptographic standards.
Cookies for Platform Performance
365bdt uses essential and analytical cookies to maintain your session, remember your preferences, and understand how users interact with the platform. We do not use cookies to serve third-party advertising. You can manage cookie preferences through your browser settings.
Limited Third-Party Sharing
Your data is never sold to third parties. We share data only with trusted service providers who are contractually obligated to process it on our behalf — including payment processors like bKash and Nagad, identity verification partners, and game studio providers such as Evolution Gaming and Pragmatic Play.
You Control Your Data
You have the right to access the personal data 365bdt holds about you, request corrections, ask for a copy in a portable format, and in certain circumstances request deletion. Submit a data request at any time through the live chat support channel or via the support email address listed in this policy.
Defined Retention Periods
365bdt retains personal data only for as long as it is necessary for the purpose for which it was collected, or as required by applicable law. Account records are typically retained for a minimum of five years after account closure to meet anti-money-laundering and fraud-prevention obligations.
1. Data We Collect
1.1 Registration and Identity Data
When you create a 365bdt account, we collect the following information directly from you: your full legal name, date of birth, residential address, email address, and mobile phone number. This information is required to open your account, verify that you meet the minimum age requirement of 18 years, and communicate with you regarding your account activity, promotions, and security alerts.
1.2 Identity Verification (KYC) Documents
As part of our Know Your Customer (KYC) process, we may ask you to provide copies of government-issued identity documents such as your National ID card, passport, or birth registration certificate. We may also request a recent utility bill, bank statement, or mobile banking statement (such as a bKash or Nagad transaction history) to verify your registered address and confirm the source of funds used for deposits. KYC documents are processed securely and retained only for as long as legally required.
1.3 Financial and Payment Data
To process deposits and withdrawals, we collect details relating to the payment method you use — including your bKash mobile wallet number, Nagad account number, Rocket number, Upay account reference, bank account name and number, or card details where Visa or Mastercard transactions are used. Full card numbers are not stored on 365bdt servers; card data is tokenised and handled by our PCI-compliant payment processing partners.
1.4 Transaction and Betting History
We record all financial transactions conducted through your account, including deposits, withdrawals, bonus credits, and bet settlements. We also maintain a full record of your betting and gaming activity — including the markets, games, stakes, and outcomes of each wager placed. This data is used for account management, dispute resolution, fraud prevention, and responsible gaming monitoring.
1.5 Technical and Usage Data
When you access the 365bdt platform, we automatically collect certain technical information about your device and your browsing session. This includes your IP address, device type, operating system, browser type and version, screen resolution, referring URL, and the pages or sections of the platform you visit. We also collect session duration and interaction data, such as the games you open and the features you use. This information helps us improve platform performance, diagnose technical issues, and detect suspicious access patterns.
1.6 Communications Data
If you contact the 365bdt support team via live chat or email, we retain a record of that correspondence. This includes the content of messages exchanged, the date and time of contact, and any documents or screenshots you share during the interaction. Communication records are used to resolve disputes, train support staff, and ensure service quality.
2. How We Use Your Data
2.1 Account Management and Service Delivery
The primary purpose for which 365bdt processes your personal data is to provide you with access to the platform and its features. This includes creating and maintaining your account, authenticating your identity when you log in, processing your deposits and withdrawals through your chosen payment method, calculating and settling your bets, and delivering any bonus or promotional credits to which you are entitled.
2.2 Identity Verification and Fraud Prevention
365bdt is committed to operating a secure and fair platform. We use your registration data, KYC documents, and transaction history to verify your identity, confirm your age eligibility, detect and investigate suspicious activity, prevent money laundering, and identify accounts that may be operating in breach of our Terms and Conditions. Where fraud or abuse is detected, we may share relevant data with law enforcement or regulatory authorities as required by applicable law.
2.3 Responsible Gaming Monitoring
We analyse your betting patterns, session frequency, deposit behaviour, and account interactions to identify signs that gambling may be causing harm. Where our responsible gaming monitoring tools flag a concern, we may contact you to offer support resources, impose protective account restrictions, or take other measures in your interest. This processing is carried out in accordance with our Responsible Gaming commitments and applicable player protection standards.
2.4 Customer Support
Your personal data — including account history, transaction records, and prior support correspondence — is accessed by our support team when you raise a query or complaint. This allows us to respond accurately and efficiently to your request and to maintain a consistent service record.
2.5 Platform Improvement and Analytics
We use aggregated and anonymised usage data to understand how the platform is being used, which features are most popular, where technical issues occur, and how the overall user experience can be improved. Where possible, analytics processing is performed on data that cannot identify you as an individual.
2.6 Marketing Communications
With your consent, we may send you promotional communications about new games, special offers, seasonal promotions (such as Eid, BPL season, or T20 World Cup campaigns), and platform updates. You may withdraw your consent to marketing communications at any time by updating your notification preferences within your account settings or by contacting the support team. Withdrawing consent will not affect the lawfulness of any processing carried out before the withdrawal.
2.7 Legal and Regulatory Compliance
In certain circumstances, 365bdt is required by law to process and retain personal data — for example, to comply with anti-money-laundering obligations, respond to court orders, or cooperate with investigations by competent authorities. In these cases, data may be retained for the periods mandated by applicable law regardless of your account status.
3. Data Sharing & Disclosure
365bdt does not sell, rent, or trade your personal data with any third party for their own commercial purposes. Data sharing is limited strictly to the categories of recipients described below, and only to the extent necessary for the purpose in question.
| Recipient Category | Purpose | Safeguards |
|---|---|---|
| Payment Processors | Processing deposits and withdrawals via bKash, Nagad, Rocket, Upay, Visa, Mastercard, and partner banks | Contractual data processing agreements; PCI-DSS compliance where applicable |
| KYC / Identity Verification Partners | Verifying user identity and age, screening against sanctions lists | Contractual agreements; data minimisation; secure document handling |
| Game Studio Providers | Delivering casino and live dealer game content (Evolution Gaming, Pragmatic Play, NetEnt, Microgaming, Spribe, Ezugi) | Data sharing limited to session tokens and anonymised game-play IDs where possible |
| Analytics Providers | Platform performance monitoring and aggregated usage analysis | Data anonymised or pseudonymised before transfer; no direct identification |
| Law Enforcement / Regulatory Bodies | Responding to lawful requests, court orders, or regulatory investigations | Disclosure limited to what is legally required; legal review conducted before disclosure |
| Fraud Prevention Services | Identifying and preventing fraudulent account activity, money laundering, and collusion | Contractual agreements; data used only for fraud prevention purposes |
3.1 International Data Transfers
Some of our third-party service providers operate servers located outside Bangladesh. Where personal data is transferred internationally, 365bdt takes steps to ensure that the receiving party provides an adequate level of data protection — for example, through standard contractual clauses or equivalent data protection frameworks. If you have questions about the specific countries to which your data may be transferred, contact our support team.
5. Data Retention
5.1 Retention Principles
365bdt retains personal data for no longer than is necessary for the purpose for which it was originally collected. Once data is no longer required — either because your account has been closed, a legal retention period has elapsed, or the processing purpose no longer applies — we take steps to securely delete or anonymise it.
5.2 Active Account Data
While your 365bdt account remains active, we retain all registration data, KYC documents, transaction history, betting records, and support correspondence associated with it. This data is actively used for account management, responsible gaming monitoring, fraud prevention, and customer service delivery.
5.3 Post-Closure Retention
Following the closure of your account — whether initiated by you or by 365bdt — we retain your personal data for a minimum period of five years. This retention period reflects anti-money-laundering obligations, fraud prevention requirements, and the possibility that a dispute or legal claim may arise after account closure. At the end of this retention period, data is securely deleted unless a specific legal obligation requires further retention.
5.4 Marketing Data
If you have consented to receive marketing communications from 365bdt, we retain your contact details and marketing preferences for as long as your consent remains active. If you withdraw your consent, we will remove you from active marketing lists promptly, but may retain a record of your previous consent and withdrawal for compliance purposes.
5.5 Technical and Log Data
Server logs, IP address records, and other technical data collected during your use of the platform are typically retained for a shorter period — generally between 6 and 12 months — unless a specific security investigation or legal proceeding requires longer retention.
6. Data Security
6.1 Encryption
All data transmitted between your device and the 365bdt platform is encrypted using SSL/TLS protocols. Sensitive data stored on our servers — including passwords, KYC documents, and payment references — is encrypted at rest using recognised industry-standard algorithms. Passwords are stored in hashed form and are never stored or transmitted in plain text.
6.2 Access Controls
Access to personal data within 365bdt is restricted on a need-to-know basis. Staff members who process personal data as part of their role are subject to confidentiality obligations and receive regular training on data protection practices. Administrative access to production systems is protected by multi-factor authentication and access logging.
6.3 Payment Security
Payment processing on the 365bdt platform is handled by third-party payment providers that are independently certified under applicable payment security standards. Full card numbers are not stored on 365bdt systems. All payment data is tokenised at the point of entry, meaning the sensitive details are replaced with a non-sensitive reference value before they reach our servers.
6.4 Account Security — Your Responsibilities
In addition to the technical measures we apply, your own account security practices are important. We recommend that you use a strong, unique password for your 365bdt account, enable two-factor authentication (2FA) from within your account settings, and never share your login credentials with anyone. If you believe your account has been accessed without your authorisation, contact the 365bdt support team immediately via live chat.
6.5 Data Breach Response
In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of affected users, 365bdt will take immediate steps to contain the breach, assess its scope, and — where required — notify affected users and relevant authorities without undue delay. We maintain an internal incident response procedure to manage such events effectively.
7. Your Privacy Rights
As a user of the 365bdt platform, you hold a number of rights in relation to the personal data we hold about you. These rights are set out below. To exercise any of these rights, contact the 365bdt support team via live chat or at the email address listed in section 8 of this Privacy Policy.
| Right | What It Means for You |
|---|---|
| Right of Access | You may request a copy of the personal data 365bdt holds about you. We will respond to a verified access request within a reasonable timeframe. |
| Right to Rectification | If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct it. You can update many details directly within your account settings. |
| Right to Erasure | In certain circumstances, you may request that we delete your personal data. This right is subject to limitations — for example, we are not required to delete data that we are legally obligated to retain. |
| Right to Restriction | You may ask us to restrict the processing of your personal data in certain circumstances — for example, while a dispute about the accuracy of your data is being resolved. |
| Right to Data Portability | You may request a copy of your personal data in a structured, commonly used, machine-readable format, suitable for transfer to another service provider where technically feasible. |
| Right to Object | You may object to the processing of your personal data for direct marketing purposes at any time. You may also object to other forms of processing where we rely on legitimate interests as our legal basis, subject to our ability to demonstrate overriding grounds. |
| Right to Withdraw Consent | Where processing is based on your consent — for example, marketing communications — you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing prior to the withdrawal. |
7.1 How to Submit a Data Rights Request
To exercise any of the rights described above, contact the 365bdt support team via live chat on the platform or by sending a written request to the support email address listed in section 8. We will verify your identity before processing any data rights request to ensure that personal data is not disclosed to or amended by an unauthorised party. We aim to respond to all data rights requests within 30 days of receipt.
8. Policy Updates & Contact
8.1 Changes to This Privacy Policy
365bdt reserves the right to update or revise this Privacy Policy at any time. When material changes are made, the revised policy will be published on this page with an updated effective date. We may also notify you of significant changes via a notice displayed upon login or via the contact details registered on your account. We encourage you to review this page periodically to stay informed about how your data is protected. Your continued use of the 365bdt platform following the publication of a revised Privacy Policy constitutes your acceptance of those changes.
8.2 Children's Privacy
The 365bdt platform is strictly for adults aged 18 and above. We do not knowingly collect personal data from individuals under the age of 18. If you are a parent or guardian and you believe that a minor has registered on the platform or provided personal data to us, please contact the support team immediately. We will take steps to close the account and delete the associated data promptly upon confirmation.
8.3 Links to Third-Party Content
The 365bdt platform integrates content from third-party game studio providers. These providers operate their own privacy practices, which are independent of this Privacy Policy. 365bdt is not responsible for the privacy practices of third-party game studios or any other external services. We recommend reviewing the privacy documentation of any third-party service you interact with.
8.4 Contact Us
If you have any questions about this Privacy Policy, wish to exercise a data rights request, or want to raise a concern about how your personal data has been handled, please contact the 365bdt support team:
- Live Chat: Available 24/7 directly through the platform
- Support Email: [email protected] (plain text — not a clickable link)
- Support Hours: All day, every day — Bangladesh Standard Time (BST, UTC+6)
We treat all privacy-related enquiries with priority and aim to provide a substantive response within 5 business days. For formal data rights requests requiring identity verification, the response period may extend to 30 days from the date your identity is confirmed.
Ready to Play Responsibly?
Now that you understand how 365bdt handles your personal data, explore the platform with confidence. From live cricket betting to premium slot games and live casino tables — everything is here, secured and fair.
18+ only. Play responsibly. Terms & conditions apply.