dbt33 Privacy Policy —
Your Data, Handled with Integrity
At dbt33, protecting your personal information is not an afterthought — it is a core responsibility. This Privacy Policy explains in plain, formal English exactly what data we collect from players in Bangladesh, how it is used, who may access it, and what rights you hold over your own information. We process your data transparently and securely, in line with internationally recognised data protection principles.
End-to-End Encryption
All data transmitted between your device and dbt33 servers is protected by AES-256 encryption over TLS. Whether you are making a bKash deposit or updating your profile, your information travels through a fully secured channel at all times.
No Sale of Personal Data
dbt33 does not sell, rent, or trade your personal information to third-party marketers, data brokers, or advertising networks. Your data is used exclusively to operate and improve the dbt33 platform, process your transactions, and fulfil our legal obligations.
Minimal Data Collection
We collect only the data that is strictly necessary for account operation, KYC verification, payment processing, and regulatory compliance. dbt33 does not collect browsing histories outside the platform, social media profiles, or other non-essential data points.
Strict Access Controls
Access to player data within dbt33 is restricted on a strict need-to-know basis. Only authorised personnel whose job functions require access to specific data categories are granted permission. All internal access is logged and audited regularly.
Your Right to Update & Delete
Players have the right to access, correct, and request deletion of their personal data at any time, subject to our legal retention obligations. Requests are handled by our Data Protection Officer and processed within 30 days of receipt.
Marketing Opt-Out
Receiving promotional emails, SMS notifications, or in-platform offers from dbt33 is entirely optional. You may withdraw your marketing consent at any time through your account settings or by contacting our support team, without any effect on your ability to use the platform.
1. Data We Collect
dbt33 collects personal data from players through several channels: during account registration, during ongoing use of the platform, during payment transactions, when players contact our support team, and through automated technical means such as server logs and cookies. The categories of data we collect are described in detail below.
1.1 Registration Data
When you create a dbt33 account, we collect the following information directly from you: full legal name, date of birth, email address, mobile phone number, username, and password (stored in hashed, non-reversible format). You may also be asked to provide your city of residence (for example, Dhaka, Chittagong, Sylhet, Khulna, or Rajshahi) for verification and localisation purposes.
1.2 Identity Verification (KYC) Data
To comply with anti-money laundering (AML) and fraud prevention requirements, dbt33 may request and retain copies of government-issued identity documents such as your National Identity Card (NID), passport, or birth certificate. Where proof of address is required, we may also request a recent utility bill, bank statement, or similar document. KYC documents are stored securely and accessed only by authorised compliance personnel.
1.3 Financial & Transaction Data
dbt33 records all deposit and withdrawal transactions associated with your account, including the payment method used (for example bKash, Nagad, Rocket, Upay, or bank transfer), transaction amounts in Bangladeshi Taka (BDT), timestamps, and transaction reference numbers. We do not store full bKash or bank account numbers on our own servers; payment credentials are handled by our PCI-compliant payment processing partners.
1.4 Gaming Activity Data
We record your gaming history, including games played, bet amounts, session durations, win/loss outcomes, and bonus usage. This data is used for account management, responsible gaming monitoring, fraud detection, and game improvement purposes. Gaming activity data is never shared with third-party advertisers.
1.5 Technical & Device Data
When you access dbt33, our servers automatically log certain technical data, including your IP address, browser type and version, operating system, device type, referring URL, pages visited, and session timestamps. This data is used for security monitoring, fraud prevention, and platform optimisation. It is not used to build advertising profiles.
1.6 Communication Data
If you contact dbt33 via our support team — through live chat, email, or any other channel — we retain records of those communications, including your name, contact details, the content of your messages, and the outcome of any support interactions. These records are kept to resolve disputes, improve service quality, and comply with applicable record-keeping obligations.
| Category | Collected |
|---|---|
| Registration Info | Yes |
| KYC / Identity | If Required |
| Payment Records | Yes |
| Gaming History | Yes |
| Device / IP Logs | Yes |
| Support Records | Yes |
| Social Media Data | Never |
| Third-Party Profiles | Never |
2. How We Use Your Data
dbt33 processes your personal data only where we have a lawful basis for doing so. The primary lawful bases we rely upon are: performance of a contract (processing your account and transactions), compliance with a legal obligation (KYC, AML, age verification), legitimate interests (fraud prevention, security monitoring, platform improvement), and consent (marketing communications).
2.1 Account Management
Your registration data is used to create and maintain your dbt33 account, verify your identity and age, authenticate your logins, process your deposits and withdrawals, and communicate with you about your account status. Without this processing, dbt33 cannot provide you with its services.
2.2 Payment Processing
Transaction data is processed to execute your deposits and withdrawal requests via your chosen payment method (bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, City Bank, Islami Bank, or Sonali Bank), to maintain an accurate financial record of your account balance, and to produce statements upon request. All payment processing complies with applicable financial security standards.
2.3 Fraud Prevention & Security
Technical and device data, along with your gaming activity and transaction patterns, are analysed by our fraud prevention systems to detect and prevent unauthorised account access, bonus abuse, money laundering, and other prohibited conduct as described in our Terms & Conditions. Where suspicious activity is detected, dbt33 may suspend an account pending investigation and, where required by law, report the matter to relevant authorities.
2.4 Responsible Gaming Monitoring
Gaming activity data — including session lengths, bet sizes, frequency of play, and deposit patterns — is used to power our responsible gaming monitoring systems. Where these systems identify patterns that may indicate problem gambling behaviour, our responsible gaming team may reach out to offer support, suggest cooling-off periods, or apply account-level limits in accordance with our Responsible Gaming Policy.
2.5 Customer Support
Communication data is used to respond to your support enquiries, resolve account disputes, process complaints, and improve the quality of our support service. Support records may also be reviewed during internal audits and quality assurance processes.
2.6 Marketing Communications (Consent-Based)
Where you have explicitly consented to receive marketing communications from dbt33, we may use your email address and/or phone number to send you promotional offers, seasonal bonuses (including Eid reload bonuses, Pohela Boishakh free spins, and BPL betting offers), and platform news. You may withdraw this consent at any time through your account settings or by contacting [email protected]. Withdrawal of marketing consent does not affect your ability to use the platform.
2.7 Platform Improvement & Analytics
Anonymised and aggregated data derived from gaming activity and platform usage patterns is used to improve game selection, user interface design, promotional strategy, and overall platform performance. This analytics processing does not involve data that could identify you as an individual.
3. Data Sharing & Disclosure
dbt33 does not sell, rent, or trade your personal data. We share your information only with trusted third parties who are strictly necessary to the operation of the platform, and only to the minimum extent required for the specific purpose. All third-party data processors are contractually bound to process your data only on dbt33's instructions and in accordance with applicable data protection standards.
3.1 Payment Processing Partners
To execute deposits and withdrawals, dbt33 shares the minimum necessary transaction data with payment providers such as bKash, Nagad, Rocket, Upay, and our banking partners. These providers process your payment credentials in accordance with their own privacy policies and applicable financial regulations. dbt33 does not store your full mobile banking PIN or bank account passwords.
3.2 Game Technology Providers
The games available on the dbt33 platform are supplied by third-party studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. These providers may receive anonymised or pseudonymised session data necessary to deliver game functionality, calculate RTP (Return to Player), and detect cheating. They do not receive your full name, NID, or financial account details.
3.3 KYC & Identity Verification Services
dbt33 may use third-party identity verification services to process KYC documents and verify player identities. These services are bound by strict data processing agreements and are prohibited from using your identity documents for any purpose other than the specific verification task for which they were engaged.
3.4 Legal & Regulatory Disclosure
dbt33 may be required to disclose player data to law enforcement agencies, regulatory bodies, financial intelligence units, or courts of competent jurisdiction where required or permitted by applicable law. In such cases, we will disclose only the minimum data required by the legal obligation and, where permitted, will notify the affected player. dbt33 will not voluntarily disclose player data to any government body beyond what is legally mandated.
3.5 Business Transfers
In the event of a merger, acquisition, asset sale, or restructuring involving dbt33, your personal data may be transferred to the acquiring entity as part of the transaction. In such circumstances, dbt33 will ensure that the receiving entity is bound by privacy obligations at least equivalent to those in this Privacy Policy, and will notify affected players of the transfer prior to it taking effect where reasonably practicable.
- Third-party advertisers or ad networks
- Data brokers or list providers
- Social media platforms
- Competitors or affiliate trackers
- Any party without a legal basis
4. Cookies & Tracking
dbt33 uses cookies and similar tracking technologies to operate and improve the platform. A cookie is a small text file placed on your device by a web server when you visit a website. Cookies allow the platform to recognise your browser, maintain your session, remember your preferences, and collect anonymised usage analytics.
4.1 Essential Cookies
These cookies are strictly necessary for the platform to function. They manage your login session, maintain your account authentication state, and ensure that your in-game progress and balance are accurately displayed. Without essential cookies, core platform features cannot operate. No consent is required for essential cookies as they are necessary for the performance of the contract between you and dbt33.
4.2 Analytics Cookies
dbt33 uses anonymised analytics cookies to understand how players navigate the platform — which pages are most visited, where sessions typically begin and end, and which features are used most frequently. This data is aggregated and does not identify individual players. Analytics cookies are set only where permitted by applicable data protection standards.
4.3 Preference Cookies
Preference cookies store non-sensitive player settings such as display language, preferred lobby view, and notification preferences. These cookies improve the user experience by allowing the platform to remember your settings between sessions. They do not store any personally identifiable information or financial data.
4.4 Managing Cookies
You may manage or disable cookies through your browser's settings at any time. Please note that disabling essential cookies will prevent you from logging in and using core platform features. Disabling analytics or preference cookies will not prevent you from accessing the platform but may reduce the quality of your experience. For detailed guidance on managing cookies in your specific browser, please refer to your browser's help documentation.
| Cookie Type | Purpose | Consent Required |
|---|---|---|
| Essential | Session, auth, balance | No |
| Analytics | Anonymised usage stats | Yes |
| Preference | UI settings, language | Yes |
| Marketing | Not used by dbt33 | N/A |
5. Data Security
dbt33 implements a comprehensive set of technical and organisational security measures to protect your personal data against unauthorised access, accidental loss, destruction, alteration, or disclosure. Our security infrastructure is reviewed and updated regularly to address evolving threats.
5.1 Technical Safeguards
All data in transit between your device and dbt33 servers is encrypted using TLS 1.2 or higher with AES-256 cipher suites. Data at rest — including player account records, KYC documents, and transaction histories — is stored on encrypted servers with access restricted to authorised personnel only. Passwords are stored using one-way cryptographic hashing with salting; dbt33 employees cannot view your password in plain text.
5.2 Organisational Safeguards
Access to production systems and player data is granted on a strict need-to-know basis, controlled by role-based access management (RBAM). All personnel with access to personal data undergo background screening and receive regular data protection training. Access logs are maintained and reviewed as part of our routine security audit programme. Any member of the dbt33 team who violates data protection policies is subject to disciplinary action up to and including termination of employment or contract.
5.3 Incident Response
In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of affected players, dbt33 will notify affected players without undue delay and, where required, report the breach to the relevant supervisory authority within the timeframes mandated by applicable law. Notifications will be sent to the email address registered on your dbt33 account and will describe the nature of the breach, the categories of data affected, and the steps dbt33 is taking to address it.
6. Data Retention
dbt33 retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, and in accordance with any applicable legal, regulatory, or contractual retention requirements. When the applicable retention period expires, data is securely deleted or irreversibly anonymised.
6.1 Account Data
Personal data associated with an active dbt33 account is retained for the lifetime of the account plus a period of 5 years following permanent account closure. This retention period is required to comply with anti-money laundering record-keeping obligations and to resolve any post-closure disputes.
6.2 Transaction Records
Financial transaction records — including deposit and withdrawal histories — are retained for a minimum of 5 years from the date of each transaction. In certain circumstances, regulatory requirements may extend this period further. Transaction records are used to satisfy financial audit requirements and to investigate any retrospective dispute concerning your account balance.
6.3 KYC Documents
Identity verification documents submitted during the KYC process are retained for the duration of the account plus 5 years post-closure, consistent with standard AML compliance practice. KYC documents are stored in an access-restricted secure document store, separate from operational player account databases.
6.4 Support Communications
Records of customer support interactions are retained for 3 years following the resolution of the relevant support case. These records are used to manage follow-up queries, conduct quality audits, and resolve escalated complaints.
6.5 Marketing Consent Records
Where you have provided consent to receive marketing communications, dbt33 retains a record of that consent — including the date, channel, and scope of consent — for as long as your account is active and for 2 years following any withdrawal of consent. This record is maintained to demonstrate compliance with consent-based marketing obligations.
| Data Type | Retention Period |
|---|---|
| Account / Profile Data | Active + 5 years |
| Transaction Records | 5 years minimum |
| KYC Documents | Active + 5 years |
| Support Communications | 3 years post-resolution |
| Marketing Consent | Active + 2 years |
| Server / Access Logs | 12 months rolling |
7. Your Privacy Rights
As a dbt33 player, you hold a number of rights in relation to your personal data. These rights may be exercised at any time by contacting our Data Protection Officer at [email protected]. We will respond to all verified requests within 30 calendar days.
Right of Access
You may request a copy of all personal data dbt33 holds about you, along with information about how it is processed and with whom it is shared.
Right to Rectification
If any personal data dbt33 holds about you is inaccurate or incomplete, you have the right to request that it be corrected without undue delay.
Right to Erasure
You may request deletion of your personal data where it is no longer necessary for the purpose for which it was collected, subject to our legal retention obligations.
Right to Restrict Processing
You may request that dbt33 restricts the processing of your personal data in certain circumstances, such as while the accuracy of data is being contested.
Right to Data Portability
You may request that dbt33 provides your personal data in a structured, commonly used, machine-readable format for transfer to another service provider.
Right to Object
You have the right to object to the processing of your personal data where dbt33 relies on legitimate interests as the lawful basis, including profiling for fraud detection.
Right to Withdraw Consent
Where processing is based on your consent (such as marketing communications), you may withdraw that consent at any time without affecting the lawfulness of prior processing.
Right to Lodge a Complaint
If you believe dbt33 has not handled your personal data in accordance with this Privacy Policy, you have the right to lodge a complaint with our Data Protection Officer or a relevant supervisory authority.
8. Contact & Data Officer
dbt33 has designated a Data Protection Officer (DPO) who is responsible for overseeing compliance with this Privacy Policy and applicable data protection obligations. The DPO can be contacted directly for any privacy-related enquiries, rights requests, or concerns about how dbt33 processes your personal data.
8.1 General Privacy Enquiries
For general questions about this Privacy Policy, how your data is processed, or the rights available to you, please contact our support team at [email protected]. Our support team operates 24 hours a day, 7 days a week, in English, and is available to assist players across Bangladesh including Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, and Cox's Bazar.
8.2 Formal Data Protection Requests
Formal requests relating to the exercise of your privacy rights — including subject access requests, rectification requests, erasure requests, and objections to processing — should be submitted in writing to [email protected] with the subject line "Data Protection Request". We will acknowledge your request within 5 business days and respond in full within 30 calendar days. Where a request is particularly complex or numerous, we may extend this period by a further 60 days, in which case we will notify you of the extension and the reasons for it.
8.3 Policy Updates
dbt33 reserves the right to update this Privacy Policy from time to time to reflect changes in our data processing practices, applicable law, or platform functionality. When material changes are made, we will notify registered players by email to the address on file and update the "Last Updated" date at the top of this page. We encourage players to review this Privacy Policy periodically. Continued use of the dbt33 platform following notification of a material change constitutes acceptance of the updated policy.
8.4 Governing Language
This Privacy Policy is written in English, which is the governing language for all legal interpretations of its content. This document constitutes the complete statement of dbt33's privacy practices and supersedes any prior communications on the subject.
Ready to Play at dbt33?
Your privacy is protected every step of the way. Explore our full range of games — from live casino tables and cricket betting to slots and exclusive game categories — all secured with SSL encryption and instant bKash and Nagad payment processing.
18+ only. Please play responsibly. If gambling is affecting your life, visit our Responsible Gaming page.