dt33 Privacy Policy
At dt33, protecting your personal data is a fundamental part of how we operate. This Privacy Policy explains precisely what information we collect when you use the dt33 platform, why we collect it, how we store and secure it, who we may share it with, and what rights you hold over your own data. We encourage you to read this document carefully before creating an account or making any deposit.
1 Data We Collect
When you interact with dt33 — whether by browsing the platform, registering an account, making a deposit, placing a bet, or contacting our support team — we collect certain categories of personal data. The type of data collected depends on the nature of your interaction with the platform and the products or services you use. The table below summarises the main categories we process.
| Category | Examples | When Collected |
|---|---|---|
| Identity Data | Full legal name, date of birth, National ID or passport number | Account registration & KYC verification |
| Contact Data | Email address, mobile number, residential address | Registration, support interactions |
| Financial Data | bKash/Nagad/Rocket/Upay wallet number, bank account details, transaction history | Deposit, withdrawal, KYC |
| Account Data | Username, encrypted password, session tokens, account preferences | Account creation and ongoing use |
| Usage Data | Games played, bet amounts, win/loss records, session duration, login timestamps | Active gaming sessions |
| Device & Technical Data | IP address, browser type, operating system, device identifiers, screen resolution | Every platform visit |
| Communication Data | Live chat transcripts, support emails, complaint records | Support interactions |
| Verification Documents | Scanned NID, passport photo page, utility bill, selfie with ID | KYC verification requests |
We do not collect sensitive personal data such as racial or ethnic origin, political opinions, religious beliefs, or health information unless it is specifically volunteered by you during a responsible gaming interaction (for example, if you disclose a gambling-related health concern when requesting self-exclusion). Where such data is provided, it is treated with the highest level of confidentiality and used solely for the purpose for which it was shared.
2 How We Use Your Data
dt33 processes your personal data only where a lawful basis exists for doing so. We rely on the following legal bases: contractual necessity (processing required to provide the gaming services you have registered for), legal obligation (processing required to comply with applicable financial crime and identity verification requirements), legitimate interests (processing that serves a genuine operational need of the platform without overriding your privacy rights), and consent (where you have explicitly opted in to a specific type of processing, such as receiving promotional communications).
The specific purposes for which we use your data are set out below:
- Account Management: To create, maintain, and administer your dt33 player account, including verifying your identity at registration and processing any subsequent KYC requests.
- Transaction Processing: To process your deposits and withdrawals via bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, and other supported payment methods, and to maintain an accurate record of all financial transactions on your account.
- Platform Delivery: To deliver the games, sports betting markets, live casino products, and promotional offers that form the core dt33 service, and to personalise your experience where you have consented to personalisation.
- Fraud Prevention and Security: To detect, investigate, and prevent fraudulent activity, money laundering, multi-accounting, bonus abuse, and other forms of platform misuse. This includes automated monitoring of account behaviour patterns.
- Responsible Gaming: To monitor for indicators of problem gambling behaviour, to apply responsible gaming tools such as deposit limits, time-outs, and self-exclusion when requested, and to comply with our duty of care obligations toward vulnerable players.
- Customer Support: To respond to your enquiries, resolve disputes, process complaints, and provide the 24/7 English-language assistance that all dt33 players in Bangladesh are entitled to.
- Marketing Communications: To send you promotional offers, bonus notifications, and platform news by email or SMS, but only where you have provided clear consent to receive such communications. You may withdraw consent at any time by contacting support.
- Platform Improvement: To analyse aggregate usage data (anonymised where possible) in order to improve the performance, stability, and user experience of the dt33 platform.
- Legal Compliance: To meet our obligations under applicable laws and to respond to lawful requests from relevant authorities, courts, or regulatory bodies.
3 Cookies & Tracking Technologies
dt33 uses cookies and similar tracking technologies (including local storage tokens and session identifiers) to operate the platform effectively, maintain your logged-in session, remember your account preferences, and gather anonymous analytics data about how players navigate the site. Cookies are small text files stored on your device by your browser at the instruction of the dt33 server.
We use the following categories of cookies:
- Strictly Necessary Cookies: These are essential for the platform to function. They maintain your login session, protect against cross-site request forgery, and enable secure payment flows. These cookies cannot be disabled without breaking core platform functionality.
- Functional Cookies: These remember your preferences such as language settings, display options, and responsible gaming limits you have set on your account. Disabling these cookies may reduce your personalised experience but will not prevent access to the platform.
- Analytics Cookies: These collect anonymised data about which pages you visit, how long you spend on each section, and how you navigate between features. This information is used to improve the platform's design and performance. No personally identifiable data is included in analytics reports.
- Security Cookies: These assist our fraud detection systems by maintaining a fingerprint of your device environment across sessions, allowing our security team to identify unusual login patterns that may indicate unauthorised account access.
Most modern browsers allow you to control or block cookies through their settings menus. Please note that blocking strictly necessary cookies will prevent you from logging in to your dt33 account. For detailed instructions on managing cookies in your specific browser, refer to that browser's official help documentation. dt33 does not use cookies to track your activity on third-party websites outside of the dt33.app domain.
4 Data Sharing & Third Parties
dt33 does not sell, rent, or trade your personal data to third parties for their own marketing purposes. We may share your data only in the limited circumstances described below, and only to the minimum extent necessary for the stated purpose.
- Payment Processors: We share transaction data (including your mobile wallet number or bank account details and the amount of each transaction) with our payment processing partners — bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank, Visa, and Mastercard — solely for the purpose of executing your deposit and withdrawal instructions.
- Game Providers: When you play games supplied by third-party studios such as Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, or Ezugi, certain technical data (such as your player session token and bet history for that session) is transmitted to the provider's servers to enable the game to function. These providers operate under strict data processing agreements with dt33 and are not permitted to use your data for any purpose beyond game delivery.
- KYC and Fraud Prevention Services: We may use third-party identity verification services to cross-check the documents you submit during the KYC process. These services verify the authenticity of your identification documents and return a pass/fail result to dt33. They do not retain copies of your documents beyond the verification transaction.
- Professional Advisors: We may share your data with our legal advisors, auditors, or accountants where necessary for the conduct of their professional services, subject to strict confidentiality obligations.
- Regulatory and Law Enforcement Authorities: We will disclose your personal data to competent authorities if we are required to do so by a valid court order, statutory demand, or other binding legal process. Where permitted, we will notify you of such a disclosure.
- Business Transfers: In the event of a merger, acquisition, restructuring, or sale of all or part of the dt33 business, your personal data may be transferred to the acquiring entity as part of that transaction. Any such transfer will be subject to the same privacy commitments set out in this Policy, and you will be notified prior to your data being subject to a materially different privacy policy.
5 Data Retention
dt33 retains your personal data only for as long as is necessary to fulfil the purposes for which it was collected, or as required by applicable legal, regulatory, or contractual obligations. The table below sets out our standard retention periods by data category.
| Data Category | Retention Period | Basis |
|---|---|---|
| Account & Identity Data | Duration of account + 5 years after closure | Legal obligation / fraud prevention |
| Financial Transaction Records | 7 years from transaction date | Legal obligation (financial records) |
| KYC Verification Documents | 5 years from account closure | Legal obligation / anti-money-laundering |
| Game Play History | 3 years from last activity | Legitimate interests / dispute resolution |
| Support Communication Logs | 3 years from last interaction | Legitimate interests / legal claims |
| Marketing Consent Records | Until consent is withdrawn + 1 year | Legal obligation (consent evidence) |
| Technical / Device Data | 13 months from collection | Legitimate interests / security |
| Self-Exclusion Records | Minimum 5 years | Responsible gaming duty of care |
When your data reaches the end of its retention period, it is either permanently and securely deleted from our systems or anonymised so that it can no longer be associated with you as an individual. Anonymised aggregate data (for example, statistical analysis of platform usage trends) may be retained indefinitely for research and development purposes, as it no longer constitutes personal data.
If you request closure of your dt33 account, we will begin the data minimisation process within 30 days of the closure being confirmed. Certain categories of data — particularly financial records and KYC documentation — must be retained for the periods specified above regardless of account closure, in order to comply with our legal obligations.
6 Data Security
dt33 implements a layered technical and organisational security framework designed to protect your personal data against unauthorised access, accidental loss, destruction, disclosure, or alteration. Our key security measures include:
- 256-Bit SSL/TLS Encryption: All data transmitted between your device and the dt33 platform is encrypted using industry-standard 256-bit TLS encryption. This applies to every login, every game session, and every financial transaction.
- Encrypted Data at Rest: Personal data stored in our databases — including KYC documents, payment details, and account credentials — is encrypted at rest using AES-256 encryption. Decryption keys are stored separately from the encrypted data.
- Access Controls: Access to your personal data within the dt33 organisation is restricted on a strict need-to-know basis. Staff members are granted only the minimum level of access required to perform their job function, and all internal access events are logged and audited.
- Fraud Detection Systems: Our automated security systems continuously monitor account activity for patterns associated with fraud, identity theft, account takeover, and money laundering. Suspicious activity triggers immediate alerts and, where appropriate, automatic temporary account freezes pending investigation.
- Regular Security Audits: The dt33 platform and its underlying infrastructure undergo periodic security assessments conducted by independent technical specialists. Identified vulnerabilities are remediated according to a risk-prioritised schedule.
- Staff Training: All dt33 personnel who handle personal data receive mandatory data protection training at onboarding and on a regular refresher basis thereafter. Our data handling policies and security procedures are reviewed and updated in line with evolving best practices.
While dt33 takes all reasonable steps to protect your personal data, no digital platform can guarantee absolute security against all possible threats. You play an important role in protecting your own account: use a strong, unique password for your dt33 account, do not share your login credentials with anyone, and contact us immediately if you suspect your account has been accessed without your authorisation.
7 Your Rights Over Your Data
As a player on the dt33 platform, you hold a number of rights in relation to the personal data we hold about you. These rights are described below. To exercise any of them, please contact our support team via 24/7 live chat or at the email address listed in the footer of this page. We will respond to all valid data rights requests within 30 days.
- Right of Access: You have the right to request a copy of the personal data dt33 holds about you. This is commonly known as a Subject Access Request (SAR). We will provide your data in a structured, machine-readable format where technically feasible.
- Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct it. You can update some information directly through your account settings; other corrections require a support request with supporting documentation.
- Right to Erasure: In certain circumstances, you have the right to request that we delete the personal data we hold about you — for example, where the data is no longer necessary for the purpose for which it was collected and there is no legal obligation to retain it. Note that we are required to retain certain categories of data (financial records, KYC documents) for legally mandated periods regardless of an erasure request.
- Right to Restriction: You may request that we temporarily restrict the processing of your personal data in certain situations — for example, while a dispute regarding the accuracy of your data is being resolved.
- Right to Data Portability: Where processing is based on your consent or on contractual necessity and is carried out by automated means, you have the right to receive your personal data in a portable format that can be transferred to another service provider.
- Right to Object: You have the right to object to the processing of your personal data where that processing is based on our legitimate interests. Where you object to marketing communications specifically, we will cease sending them immediately upon receipt of your objection.
- Right to Withdraw Consent: Where processing is based on your consent (for example, receipt of promotional communications), you may withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
8 Contact & Complaints
If you have any questions about this Privacy Policy, wish to exercise any of your data rights, or want to raise a concern about how dt33 has handled your personal data, please contact our support team using one of the channels below. Our team operates 24 hours a day, 7 days a week, in English, to assist all players across Bangladesh.
- Live Chat: Available on every page of the dt33.app platform. The fastest way to reach our team for urgent privacy concerns or account data queries.
- Email: — please include "Privacy Request" or "Data Rights Request" in the subject line so that your message is routed directly to our data team.
- Response Time: We will acknowledge all privacy-related enquiries within 24 hours (Bangladesh Standard Time, UTC+6) and aim to resolve or provide a substantive response within 30 calendar days. Where a request is complex or involves a large volume of data, we may extend this period by a further 30 days, in which case we will notify you of the extension.
If you are not satisfied with dt33's handling of a privacy complaint after following our internal process, you may seek independent resolution through an appropriate consumer or data protection body. dt33 will cooperate in good faith with any such process and will implement any binding remediation outcomes.
dt33 reserves the right to update this Privacy Policy from time to time to reflect changes in our data practices, applicable legal requirements, or the products and services we offer. Where material changes are made, we will notify registered players by email and will display a prominent notice on the platform for at least 14 days before the new policy takes effect. Continued use of the dt33 platform after the effective date of a revised Privacy Policy constitutes your acceptance of the updated terms.
How dt33 Protects Your Privacy
Every layer of the dt33 platform is built with data protection in mind — from the moment you register to every transaction you make.
End-to-End Encryption
Every connection between your device and dt33 is protected by 256-bit SSL/TLS encryption. Your login credentials, payment details, and game data are never transmitted in plain text — not even on mobile networks.
Secure KYC Process
Your identity documents are verified through an encrypted channel and stored with AES-256 encryption at rest. Our KYC partners operate under strict data processing agreements and cannot use your documents beyond the verification purpose.
Safe bKash & Nagad Payments
Financial transactions via bKash, Nagad, Rocket, and Upay are processed through fully encrypted payment channels. Your mobile wallet number is never stored in plain text and is never shared with any party beyond the payment processor.
No Data Selling — Ever
dt33 has a strict policy against selling, renting, or trading your personal data to third-party marketers. Your information is used solely to operate the platform, process your transactions, and keep your account secure.
Full Data Rights
You can request access to, correction of, or deletion of your personal data at any time by contacting our 24/7 support team. We respond to all Subject Access Requests within 30 days and verify your identity before releasing any data.
Regular Security Audits
The dt33 platform undergoes periodic independent security assessments to identify and remediate vulnerabilities. Our security posture is continuously improved to meet the evolving threat landscape facing online gaming platforms.
Your Privacy Is Protected — Now Enjoy the Platform
You now have a complete picture of how dt33 handles your personal data. Explore our full range of casino games, live sports betting, and exclusive promotions — all delivered on a secure, fair, and privacy-first platform built for players in Bangladesh.