Privacy Policy — How gizabet Protects Your Information
At gizabet, protecting the personal information of every Bangladesh player is a core obligation, not an afterthought. This Privacy Policy explains exactly what data we collect, why we collect it, how it is stored and secured, and what rights you hold over your own information.
256-Bit SSL Encryption
Every page, transaction, and account interaction on gizabet is protected by 256-bit SSL encryption. Data transmitted between your device and our servers cannot be intercepted in readable form.
Always ActiveNo Selling of Personal Data
gizabet does not sell, rent, or commercially trade your personal information to any third-party advertisers, data brokers, or marketing networks. Your data is used solely to operate and improve your experience on this platform.
GuaranteedFull Transparency
This Privacy Policy is written in plain English so that every Bangladesh player can understand clearly what data is held about them, why it is held, and how to exercise their rights to access, correct, or delete it.
Plain EnglishKYC Identity Verification
Identity documents submitted during KYC verification (NID, passport) are stored in an encrypted document vault with strict access controls. Only authorised compliance staff may access these documents, solely for verification purposes.
Secure VaultCookie Control
gizabet uses only essential and functional cookies required for the platform to operate correctly. We do not deploy third-party advertising cookies or cross-site tracking pixels that follow you across the internet after leaving our site.
Minimal CookiesRight to Erasure
You may request the deletion of your personal data from gizabet systems at any time, subject to legal retention obligations. Verified erasure requests are actioned within 30 days of receipt and confirmation of your identity.
Your Right1. Data We Collect
When you interact with gizabet — whether by registering an account, making a deposit, placing a bet, contacting support, or simply browsing the platform — certain categories of data are collected and processed. The table below summarises the main categories of personal data we collect and the context in which each category arises.
| Data Category | Specific Data Points | Collection Context |
|---|---|---|
| Identity Data | Full legal name, date of birth, nationality | Account registration and KYC verification |
| Contact Data | Bangladesh mobile number, email address | Account registration, two-factor authentication |
| Identity Documents | Bangladesh NID scan or passport copy | KYC verification prior to first withdrawal |
| Financial Data | Payment method type, bKash/Nagad account reference, deposit and withdrawal history | Deposits, withdrawals, AML compliance checks |
| Transaction Data | Bet history, game session records, win/loss records, bonus usage | Gameplay, account activity, responsible gaming monitoring |
| Technical Data | IP address, device type, browser type and version, operating system, session timestamps | Automatic collection via server logs and cookies |
| Usage Data | Pages visited, features used, click paths, search queries within the platform | Automatic collection for platform performance and UX improvement |
| Communications Data | Content of support tickets, live chat transcripts, email correspondence | Customer support interactions |
gizabet does not knowingly collect personal data from individuals under the age of 18. If we discover that data has been submitted by a person under 18, that data will be deleted promptly and the associated account will be closed in accordance with our age-restriction policy.
2. How We Use Your Data
gizabet processes your personal data for the following specific and legitimate purposes. We rely on one or more lawful bases for each processing activity as described below.
Account Management and Service Delivery: Your identity and contact data are used to create and maintain your gizabet account, verify your identity, process your deposits and withdrawals via bKash, Nagad, Rocket, Upay, and partner banks, and deliver the full range of betting and casino services you have requested. This processing is necessary for the performance of the contract between you and gizabet.
Security and Fraud Prevention: Technical data, including your IP address and device fingerprint, is analysed to detect unusual login patterns, identify potential account takeover attempts, prevent the creation of duplicate accounts, and flag suspicious transaction activity. This processing is necessary to protect both you and the integrity of the gizabet platform.
Know Your Customer (KYC) and Anti-Money Laundering (AML) Compliance: Identity documents and financial transaction data are processed to fulfil our obligations under applicable AML standards. This includes verifying that deposit sources are legitimate, monitoring for structuring or unusual withdrawal patterns, and maintaining records required by compliance frameworks. This processing is carried out in the public interest and as a legal obligation.
Responsible Gaming Monitoring: Your transaction history, session duration data, and betting patterns are reviewed by our responsible gaming systems to identify potential indicators of problem gambling behaviour. Where indicators are present, our team may reach out proactively to offer support tools. This processing is carried out in your vital interest and in the public interest.
Customer Support: Communications data from support interactions — including ticket content and chat transcripts — is used solely to resolve your query, improve the quality of our support, and maintain records of actions taken on your account at your request.
Platform Improvement and Analytics: Aggregated and anonymised usage data is used to understand how players navigate gizabet, which features are most used, and where performance issues arise. This data is not linked back to individual player profiles in any analytical report.
Promotional Communications: If you have opted in to marketing communications at the time of registration, we may use your contact data to inform you of promotions, seasonal offers (such as BPL or Eid special bonuses), and platform updates. You may withdraw your marketing consent at any time by contacting support@gizabet. Withdrawal of marketing consent does not affect your ability to use the platform.
- gizabet does not use your personal data for automated decision-making that produces legal or similarly significant effects without human oversight.
- We do not use your data to build behavioural profiles for sale to third-party advertisers.
- Financial data (bKash or Nagad account references) is used only to process the specific transaction for which it was provided; it is not stored as a reusable payment token without your explicit consent.
3. Data Sharing and Third Parties
In the course of operating the gizabet platform, your personal data may be shared with the following categories of third-party service providers. In each case, sharing is limited to the minimum data necessary and is governed by written data processing agreements.
Payment Processors: To process your deposits and withdrawals, gizabet shares transaction details (amount, your payment account reference, timestamp) with the relevant payment provider — bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, or BRAC Bank. These providers receive only the data required to execute the specific payment transaction and are not granted access to your full account profile or betting history.
Identity Verification Partners: For KYC compliance, gizabet may use a trusted third-party identity verification service to cross-reference the documents you submit (NID or passport) against authoritative databases. These partners operate under strict confidentiality agreements and do not retain your documents beyond the verification process.
Game Content Providers: Casino game content on gizabet is delivered by third-party game studios (including providers such as Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi). These providers may receive anonymised session identifiers necessary to deliver game content and record round outcomes. They do not receive your full identity data, contact data, or financial data.
Customer Support Infrastructure: Our support ticketing and live chat systems are operated on secure cloud infrastructure. Support agents access your account data only as necessary to resolve your specific query.
Legal and Regulatory Disclosure: gizabet may be required to disclose personal data to competent authorities in response to a lawful request — for example, in the context of a fraud investigation, AML inquiry, or court order. In all such cases, only the specific data requested will be disclosed, and only to the extent required by the applicable legal obligation. gizabet will notify you of any such disclosure where it is legally permitted to do so.
gizabet does not transfer your personal data to servers or processors located outside Bangladesh or the Asia-Pacific region without implementing appropriate data protection safeguards. Where any cross-border transfer is necessary, it is documented and subject to equivalent data protection standards.
4. Cookies and Tracking Technologies
gizabet uses cookies and similar local storage technologies to make the platform function correctly and to improve your experience. The cookies we use fall into the following categories.
| Cookie Type | Purpose | Can Be Disabled? |
|---|---|---|
| Strictly Necessary | Maintain your login session, remember your account preferences, ensure secure page transitions, and prevent cross-site request forgery (CSRF) attacks. | No — the platform cannot function without these. |
| Functional | Remember your preferred language setting, last visited game category, and display preferences such as odds format. | Yes — disabling these may reduce convenience. |
| Analytics | Collect anonymised data about how pages are used, which features are most accessed, and where errors occur. Data is aggregated and not linked to individual accounts. | Yes — via browser cookie settings. |
gizabet does not use advertising cookies, retargeting pixels, or third-party social media tracking cookies. We do not allow any third-party advertising network to set cookies through our platform.
Most web browsers allow you to view, manage, and delete cookies through the browser's settings panel. Clearing cookies will log you out of your gizabet session and reset your functional preferences. For instructions on managing cookies in your specific browser, refer to your browser's official help documentation.
In addition to cookies, gizabet's server infrastructure automatically logs your IP address and user-agent string each time your browser makes a request to our servers. These server logs are retained for a maximum of 90 days for security auditing purposes and are then deleted unless they are required as evidence in an ongoing investigation.
5. Data Security and Storage
gizabet employs a layered security architecture to protect personal data from unauthorised access, accidental loss, destruction, or disclosure. The following security measures are in place at all times.
- Encryption at Rest: All personally identifiable data stored in gizabet databases is encrypted using AES-256 encryption. This ensures that even in the unlikely event of a database breach, raw data is not readable without the corresponding decryption keys, which are stored separately under their own access controls.
- Encryption in Transit: All data transmitted between your device and gizabet servers is encrypted using TLS 1.3. The padlock icon visible in your browser's address bar confirms that your connection to gizabet is encrypted.
- Access Controls: Access to systems containing personal data is granted on a need-to-know basis. Staff accounts are protected by strong password policies and multi-factor authentication. All access events are logged and reviewed periodically by our security team.
- Document Storage: KYC documents (NID scans, passport copies) are stored in an encrypted document vault that is physically and logically separated from the main application database. Access is limited to trained compliance officers.
- Penetration Testing: gizabet commissions independent security assessments of its platform infrastructure on a regular basis to identify and remediate vulnerabilities before they can be exploited.
- Incident Response: In the event of a data security incident, gizabet has a documented incident response procedure. Affected players will be notified promptly if a breach is determined to have affected their personal data, along with a description of what data was involved and what steps are being taken.
While gizabet takes every reasonable technical and organisational precaution to protect your personal data, no internet-based service can guarantee absolute security. You are also responsible for protecting your own account by using a strong, unique password, not sharing your login credentials, and keeping your registered mobile number secure, as it is used for OTP-based two-factor authentication.
gizabet's servers are hosted in secure data centre facilities in the Asia-Pacific region. Physical access to these facilities is restricted, monitored 24 hours a day, and subject to independent security certification.
6. Your Data Rights
As a gizabet account holder, you have the following rights with respect to your personal data. To exercise any of these rights, contact the gizabet data team at support@gizabet with the subject line "Data Rights Request". We will verify your identity before processing any request and will respond within 30 days of receipt.
Right of Access: You have the right to request a copy of the personal data that gizabet holds about you. This includes your account registration data, transaction history, bet history, and support correspondence. We will provide this in a structured, commonly used format.
Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected. For example, if your registered name contains a typographical error, you may request that it be updated to match your NID or passport.
Right to Erasure: You may request the deletion of your personal data from gizabet systems. This right is subject to certain limitations — for example, we are required to retain financial transaction records for a minimum period for AML compliance purposes, and this retention obligation takes precedence over an erasure request for that specific category of data. Where erasure is not possible for all data categories, we will explain precisely which data must be retained and why.
Right to Restriction of Processing: In certain circumstances — for example, where you contest the accuracy of your data or where you have objected to processing and a determination is pending — you may request that we restrict our processing of your data to storage only until the matter is resolved.
Right to Data Portability: You have the right to receive your personal data in a machine-readable format (such as JSON or CSV) so that it may be transferred to another service provider if you choose. This right applies to data that you have directly provided to gizabet and that is processed on the basis of your consent or our contractual obligation to you.
Right to Withdraw Consent: Where gizabet processes your personal data on the basis of your consent (for example, for promotional communications), you may withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal, and it does not affect your right to continue using the gizabet platform.
Right to Object: You have the right to object to processing carried out on the basis of legitimate interests. We will consider your objection and cease processing unless we can demonstrate compelling legitimate grounds that override your interests, or unless the processing is necessary for the establishment, exercise, or defence of legal claims.
7. Data Retention Policy
gizabet retains personal data only for as long as it is necessary for the purpose for which it was collected, or as required by applicable legal and compliance obligations. The following retention periods apply to the main categories of data we hold.
| Data Category | Retention Period | Basis for Retention |
|---|---|---|
| Account Registration Data | Duration of account + 5 years after closure | AML compliance and dispute resolution |
| KYC Identity Documents | 5 years from date of verification | AML and KYC compliance obligations |
| Financial Transaction Records | 7 years from transaction date | Legal and financial audit obligations |
| Bet and Game History | 3 years from date of activity | Dispute resolution, responsible gaming review |
| Support Correspondence | 3 years from last interaction | Quality assurance and dispute history |
| Server Access Logs | 90 days | Security auditing |
| Marketing Preferences | Until consent is withdrawn | Consent-based processing |
Upon expiry of the applicable retention period, personal data is securely and permanently deleted from gizabet's active systems and backup archives. Deletion processes are logged for accountability purposes. Anonymised, aggregated statistical data derived from your account activity (e.g., monthly active player counts, average session duration) may be retained indefinitely, as it cannot be used to identify you as an individual.
If you request account closure, gizabet will begin the closure process within two Bangladesh Standard Time business days. Your account will be deactivated immediately, meaning you will no longer be able to log in. However, the underlying data associated with your account will be retained for the periods specified in the table above in accordance with our legal obligations, before being deleted.
8. Updates to This Policy
gizabet may update this Privacy Policy from time to time to reflect changes in our data processing practices, changes in applicable laws, or improvements to the platform that introduce new data handling activities. When we make material changes to this policy, we will notify you by sending a notification to the email address registered to your account, or by displaying a prominent notice on the gizabet platform for a period of not less than 14 days prior to the changes taking effect.
We encourage you to review this Privacy Policy periodically. The date at the top of this page ("Effective: 1 January 2026") indicates when the current version was last updated. Your continued use of the gizabet platform after the effective date of any updated Privacy Policy constitutes your acceptance of the changes described in that update.
If you have any questions about this Privacy Policy, wish to exercise any of your data rights, or wish to raise a concern about how your personal data has been handled, please contact the gizabet support team at support@gizabet. We treat all privacy enquiries with the same priority as account security matters and aim to respond within two Bangladesh Standard Time business days.
Your Privacy Is Secure — Now Enjoy the Platform
Browse cricket betting markets, live casino tables, slots, and more — all on a platform that takes your data security as seriously as your gaming experience. 18+ only. Please play responsibly.