dcb33 Privacy Policy
Your privacy matters to us. This Privacy Policy explains exactly what personal data dcb33 collects when you use our platform, how that data is used, who it may be shared with, and the rights you hold over your own information. We are committed to handling your data with transparency, security, and respect.
End-to-End Data Security
All data transmitted between your device and dcb33 is encrypted using industry-standard SSL/TLS protocols. Sensitive details such as payment credentials are never stored in plain text on our servers.
No Unauthorised Data Selling
dcb33 does not sell, rent, or trade your personal information to third-party advertisers or data brokers. Your data is used solely to operate our platform and comply with legal obligations.
Full Transparency on Data Use
This policy explains in plain English every category of data we collect, why we collect it, the legal basis on which we process it, and how long we retain it. No hidden clauses.
Cookie Preferences You Control
We use only essential, functional, and analytical cookies. You can review and adjust cookie preferences at any time via your browser settings or our on-site cookie management tool. Disabling non-essential cookies will not affect your ability to use the dcb33 platform.
Defined Retention Periods
We do not retain your personal data indefinitely. Retention periods are tied to the purpose of collection and applicable legal requirements. Account data is held for a maximum of 5 years following account closure, in line with anti-money-laundering obligations.
Your Rights Are Protected
You have the right to access, correct, delete, and port your personal data. You may also object to certain types of processing. All data subject requests are handled within 30 days of receipt by our privacy team at [email protected].
1 Information We Collect
dcb33 collects personal data from you directly, automatically through your use of the platform, and in limited circumstances from third-party sources such as payment processors and identity verification providers. We collect only the data necessary to operate our services, comply with legal obligations, and improve your experience on the platform.
1.1 Data You Provide Directly
When you register an account or interact with dcb33 services, you provide us with the following categories of personal data:
- Identity Data: Full legal name, date of birth, gender, and nationality.
- Contact Data: Email address, mobile phone number, and residential address (including district, city, and postcode).
- Account Credentials: Username and hashed password. Passwords are never stored in plain text.
- KYC Documents: Government-issued photo identification (National ID card, passport, or driving licence), proof of address, and payment method ownership documentation submitted during the identity verification process.
- Financial Data: Mobile wallet identifiers (bKash, Nagad, Rocket, Upay) and bank account details used for deposits and withdrawals. Full payment card numbers are never stored by dcb33; card processing is handled by certified third-party payment processors.
- Communications: The content of messages you send to our support team via live chat, email, or any other support channel.
1.2 Data Collected Automatically
When you browse or use the dcb33 platform, our systems automatically record the following technical data:
- Device & Browser Data: IP address, device type, operating system, browser type and version, screen resolution, and device identifiers.
- Usage Data: Pages visited, time spent on each page, game sessions initiated, bets placed, deposit and withdrawal actions, links clicked, and navigation paths through the platform.
- Session Data: Login timestamps, session duration, logout timestamps, and session token data.
- Location Data: General geographic location derived from your IP address (country and city level). We do not access GPS or precise device location.
- Cookie & Tracking Data: Data collected via cookies, web beacons, and similar technologies as described in Section 4 of this policy.
1.3 Data from Third Parties
In certain circumstances, dcb33 receives personal data about you from third-party sources, including:
- Identity Verification Providers: Results of document verification checks performed on our behalf by accredited KYC service providers.
- Payment Processors: Transaction confirmation data, including transaction reference numbers, amounts, timestamps, and payment method identifiers.
- Fraud Prevention Services: Risk scores and flags generated by fraud detection systems that help us identify suspicious account activity.
Minimum Data Principle: dcb33 applies a data minimisation approach. We do not request or retain personal data beyond what is reasonably necessary for the stated purpose of collection. If you have questions about a specific data point we hold, contact us at [email protected].
2 How We Use Your Data
dcb33 uses the personal data collected as described in Section 1 for the following specific purposes. Each purpose is tied to a lawful basis for processing as described in Section 3.
| Purpose | Data Categories Used | Lawful Basis |
|---|---|---|
| Account registration and management | Identity, Contact, Credentials | Contract performance |
| Identity verification (KYC) | Identity, KYC Documents | Legal obligation |
| Processing deposits and withdrawals | Financial, Identity | Contract performance |
| Delivering gaming and betting services | Usage, Session, Account | Contract performance |
| Fraud prevention and security monitoring | Device, Usage, Financial, Third-party risk data | Legitimate interests / Legal obligation |
| Responsible gaming interventions | Usage, Session, Financial | Legal obligation / Legitimate interests |
| Customer support and dispute resolution | Identity, Contact, Communications, Session | Contract performance |
| Marketing and promotional communications | Contact, Usage | Consent |
| Platform analytics and improvement | Usage, Device, Cookie data | Legitimate interests |
| Regulatory reporting and compliance | Identity, Financial, KYC Documents | Legal obligation |
2.1 Marketing Communications
If you have opted in to receive promotional communications from dcb33, we may send you emails or push notifications relating to bonuses, new games, special offers, and seasonal promotions (including Eid, Pohela Boishakh, and BPL season campaigns). You may withdraw your consent to marketing communications at any time by clicking "Unsubscribe" in any email or by contacting our support team. Withdrawal of marketing consent does not affect the lawfulness of processing conducted before the withdrawal.
2.2 Automated Decision-Making
dcb33 uses automated systems to detect fraudulent activity, assess withdrawal risk, and flag accounts that may exhibit problem gambling indicators. Where an automated decision has a significant effect on your account (such as a temporary freeze), you have the right to request human review of that decision. Contact our support team at [email protected] to exercise this right.
3 Legal Basis for Processing
dcb33 processes your personal data on the following legal grounds, in accordance with applicable data protection legislation:
- Contract Performance: Processing is necessary to provide you with the services you have requested when registering your dcb33 account, including executing deposits, withdrawals, and gaming sessions.
- Legal Obligation: dcb33 is required by law to verify player identities, maintain transaction records, report suspicious activity, and implement responsible gaming measures. This processing is mandatory and cannot be opted out of.
- Legitimate Interests: dcb33 has a legitimate business interest in preventing fraud, improving platform security, analysing usage patterns to enhance the player experience, and maintaining the commercial integrity of the platform. We have assessed that these interests are not overridden by your privacy rights.
- Consent: Where dcb33 relies on your consent (primarily for marketing communications and non-essential cookies), you may withdraw that consent at any time without detriment to your account.
Note: Where processing is based on legitimate interests, you have the right to object. dcb33 will consider your objection and cease the relevant processing unless we can demonstrate compelling legitimate grounds that override your interests. See Section 8 for details on how to exercise your rights.
4 Cookies & Tracking Technologies
dcb33 uses cookies and similar technologies (including web beacons and local storage) to operate the platform, remember your preferences, and analyse how players interact with our services. The following categories of cookies are in use on dcb33.app:
| Cookie Type | Purpose | Can Be Disabled? |
|---|---|---|
| Strictly Necessary | Session management, login authentication, security tokens, load balancing | No — required for the platform to function |
| Functional | Remembering language preferences, game lobby layout, and recently played games | Yes — disabling may affect personalisation features |
| Analytical | Aggregated usage statistics to understand how players navigate the platform and identify areas for improvement | Yes — disabling will not affect platform functionality |
| Performance | Monitoring page load times, game launch performance, and error reporting | Yes — disabling will not affect platform functionality |
4.1 Managing Cookies
You can control and delete cookies through your browser settings at any time. Instructions for managing cookies are available in the Help section of all major browsers (Chrome, Firefox, Safari, Edge). Disabling strictly necessary cookies will impair the platform's core functionality, including the ability to log in and maintain a session.
dcb33 does not use third-party advertising cookies or cross-site tracking pixels. Analytical data collected via cookies is aggregated and anonymised before being used for platform improvement purposes.
4.2 Do Not Track
Some browsers include a "Do Not Track" (DNT) signal. dcb33 currently does not alter its data collection practices in response to DNT signals, as there is no universally accepted standard for how platforms should respond to these signals. We will update this position as industry standards evolve.
5 Data Sharing & Disclosure
dcb33 does not sell your personal data. We share your data only in the following specific and limited circumstances:
5.1 Service Providers
dcb33 engages trusted third-party service providers to support the operation of the platform. These providers act as data processors under our instruction and are contractually obligated to protect your data and use it only for the purposes we specify. Categories of service providers include:
- KYC and identity verification providers
- Payment processing partners (bKash, Nagad, Rocket, Upay, and banking institutions)
- Cloud hosting and infrastructure providers
- Fraud detection and anti-money-laundering screening services
- Customer support software providers
- Game suppliers (Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, Ezugi) — limited session and account status data is shared to facilitate game delivery
5.2 Legal and Regulatory Disclosure
dcb33 may disclose your personal data to regulators, law enforcement agencies, courts, or other governmental authorities where required to do so by applicable law, court order, or regulatory direction. Such disclosures may include identity data, transaction histories, and account activity records. We will notify you of any such disclosure where permitted by law to do so.
5.3 Business Transfers
In the event that dcb33 or its operating entity undergoes a merger, acquisition, restructuring, or sale of assets, your personal data may be transferred to the successor entity as part of that transaction. You will be notified of any such transfer and the privacy practices of the successor entity prior to your data being transferred, where practicable.
5.4 Aggregated and Anonymised Data
dcb33 may share aggregated, anonymised, and de-identified data with analytics partners, research organisations, or in public-facing reports. Such data contains no information that could reasonably be used to identify you as an individual.
Cross-Border Transfers: Some dcb33 service providers operate infrastructure outside Bangladesh. Where personal data is transferred internationally, dcb33 ensures that appropriate safeguards are in place — such as standard contractual clauses or equivalent mechanisms — to maintain the protection of your data in transit and at rest.
6 Data Retention
dcb33 retains personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable legal, regulatory, or operational obligations. The following retention schedule applies:
| Data Category | Retention Period | Basis |
|---|---|---|
| Account registration data (identity, contact) | Duration of account + 5 years post-closure | AML/KYC legal obligation |
| KYC verification documents | 5 years from verification date | Regulatory requirement |
| Transaction records (deposits, withdrawals) | 5 years from transaction date | Financial records obligation |
| Gaming session logs | 2 years from session date | Dispute resolution / responsible gaming |
| Support communications | 3 years from last communication | Legitimate interests / dispute resolution |
| Marketing preferences and consent records | Until consent withdrawn + 1 year | Consent management obligation |
| Analytical / cookie data | Up to 13 months | Legitimate interests |
When the applicable retention period expires, personal data is securely deleted or anonymised in accordance with our internal data disposal procedures. You may request early deletion of certain categories of data — see Section 8 for your rights in this regard. Note that requests for deletion cannot override dcb33's legal obligations to retain data for regulatory purposes.
7 Data Security
dcb33 implements a layered set of technical and organisational security measures designed to protect your personal data against unauthorised access, disclosure, alteration, and destruction. Our security programme includes the following controls:
- Encryption in Transit: All data transmitted between your device and dcb33 servers is encrypted using TLS 1.2 or higher. Our platform enforces HTTPS across all pages and API endpoints.
- Encryption at Rest: Sensitive data stored in our databases — including identity records and payment details — is encrypted using AES-256 or equivalent standards.
- Access Controls: Access to personal data is restricted on a strict need-to-know basis. Staff with access to player data undergo background checks and are bound by confidentiality obligations. Access logs are maintained and reviewed periodically.
- Password Security: Player passwords are stored using industry-standard one-way hashing algorithms. dcb33 staff cannot view your password in plain text.
- Intrusion Detection: Our infrastructure is monitored 24/7 for anomalous activity, potential intrusions, and security incidents. Automated alerts trigger immediate response procedures.
- Regular Security Reviews: dcb33 conducts periodic vulnerability assessments and penetration tests of its platform infrastructure to identify and remediate security weaknesses proactively.
7.1 Data Breach Response
In the event of a personal data breach that poses a risk to your rights and freedoms, dcb33 will notify affected users without undue delay. Notification will include the nature of the breach, the categories of data affected, the likely consequences, and the measures taken or proposed to address the breach. We maintain an internal incident response procedure aligned with recognised security frameworks.
Your Role in Security: While dcb33 takes robust measures to protect your data, account security is a shared responsibility. Please use a strong, unique password for your dcb33 account, enable any available two-factor authentication features, and contact support immediately at [email protected] if you suspect unauthorised access to your account.
8 Your Data Rights
As a player on the dcb33 platform, you hold the following rights in relation to your personal data. To exercise any of these rights, please submit a written request to [email protected] with the subject line "Data Subject Request". We will respond within 30 days of receipt, and in complex cases, we will notify you of any necessary extension within the initial 30-day period.
8.1 Right of Access
You have the right to request a copy of the personal data dcb33 holds about you, along with information about how it is used, the categories involved, who it is shared with, and how long it is retained. This is sometimes called a Subject Access Request (SAR). The first copy is provided free of charge; subsequent requests within a 12-month period may be subject to a reasonable administrative fee.
8.2 Right to Rectification
If any personal data dcb33 holds about you is inaccurate or incomplete, you have the right to request that we correct or update it. For minor corrections (such as updating a phone number or postal address), you may also make changes directly through your account settings.
8.3 Right to Erasure
You may request that dcb33 delete your personal data where it is no longer necessary for the purpose it was collected, where you have withdrawn consent (and no other lawful basis applies), or where processing was unlawful. This right is not absolute — dcb33 may be required to retain certain data to comply with legal obligations (for example, AML record-keeping requirements), in which case we will inform you of what data must be retained and why.
8.4 Right to Restriction of Processing
You may request that dcb33 restrict the processing of your personal data in certain circumstances — for example, while a rectification request is being assessed, or where you have objected to processing and dcb33 is considering that objection. Restricted data will be stored but not actively used until the restriction is lifted.
8.5 Right to Data Portability
Where processing is based on your consent or on contract performance, and is carried out by automated means, you have the right to receive a copy of your personal data in a structured, commonly used, and machine-readable format (such as JSON or CSV). You may also request that dcb33 transmit this data directly to another data controller where technically feasible.
8.6 Right to Object
You have the right to object to the processing of your personal data where that processing is based on dcb33's legitimate interests. You also have an unconditional right to object to the processing of your data for direct marketing purposes at any time. Upon receiving a valid objection to marketing, dcb33 will cease marketing communications immediately.
8.7 Rights Related to Automated Decision-Making
Where dcb33 uses fully automated processes to make decisions that significantly affect your account (such as automated risk scoring for withdrawal approval or account suspension), you have the right to request human review of that decision, to express your point of view, and to contest the outcome. Contact [email protected] to trigger this process.
Identity Verification for Data Requests: To protect your privacy, dcb33 will verify your identity before processing any data subject request. You may be asked to provide identification documents consistent with the KYC process. This step prevents unauthorised disclosure of your personal data to third parties.
9 Third-Party Services
The dcb33 platform integrates with third-party game suppliers, payment processors, and technology providers to deliver its full range of services. While dcb33 takes steps to ensure these providers maintain appropriate data protection standards, each third party operates under its own privacy policy in respect of the data it independently processes.
Game content on dcb33 is delivered by providers including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. When you launch a game, limited technical data (such as session token, account status, and currency) is shared with the relevant supplier to initialise the game session. Game suppliers do not receive your full identity or payment data.
Payment processing for bKash, Nagad, Rocket, and Upay transactions is handled by the respective mobile financial service providers. Dutch-Bangla Bank, City Bank, BRAC Bank, and Islami Bank transfers are processed by those institutions under their own applicable terms and privacy notices. dcb33 receives transaction confirmation data from these providers but does not have visibility into the internal processing activities of those financial institutions.
Links to third-party websites or services are not present on dcb33.app. If you choose to access third-party content independently, dcb33 is not responsible for the privacy practices or content of those third-party sites.
10 Policy Updates
dcb33 reviews this Privacy Policy periodically and reserves the right to update it to reflect changes in our data processing practices, applicable law, or platform functionality. The effective date at the top of this page will be updated each time a revision is made.
For material changes that significantly affect how we process your personal data — such as introducing a new category of data collection or a new purpose for processing — dcb33 will provide advance notice via on-site notification or email to your registered address. Minor corrections, clarifications, or formatting changes may be made without specific notification.
Your continued use of the dcb33 platform following notification of a material change to this Privacy Policy constitutes your acknowledgement of the updated terms. If you do not agree with a material change, you should cease using the platform and contact our support team to request account closure and data deletion in accordance with Section 8.
Version History: We maintain an internal version history of this Privacy Policy. If you wish to review a previous version of the policy, please contact [email protected] with your request. Previous versions are available on request for a period of three years from the date of supersession.
11 Contact & Complaints
If you have any questions about this Privacy Policy, wish to exercise your data rights, or would like to raise a concern about how dcb33 handles your personal data, please contact our privacy team directly:
- Email: [email protected] (subject line: "Privacy Enquiry")
- Response Time: We aim to acknowledge all privacy enquiries within 2 business days and resolve them within 30 calendar days.
- Formal Data Requests: Use the subject line "Data Subject Request" and include your full name, registered email address, and a description of your request.
- Formal Complaints: Use the subject line "Privacy Complaint" and describe the nature of the concern in detail. We will acknowledge formal complaints within 24 hours.
If you are not satisfied with dcb33's response to your privacy complaint, you may escalate the matter to the relevant data protection authority in your jurisdiction or to the regulatory body overseeing dcb33's gaming licence. Details of the applicable supervisory authority are available on request from our support team.
Commitment to Resolution: dcb33 takes privacy complaints seriously. Every formal complaint is reviewed by a senior member of our compliance team, and we are committed to resolving all data protection concerns in a fair, timely, and transparent manner consistent with this policy and applicable law.
Questions About Your Privacy?
Our support team is available 24/7 to answer any questions about how dcb33 handles your personal data. You can also review our Terms & Conditions, explore the dcb33 Casino lobby, or check our FAQ for quick answers.
Visit the FAQ Terms & Conditions Explore dcb33 Casino