Data Protection & Privacy
tbatee Privacy Policy
Your privacy matters to tbatee. This Privacy Policy explains in plain, formal English how we collect, process, store, and protect your personal data when you use our online casino and sports betting platform. We are committed to handling your information transparently, securely, and in accordance with applicable data protection principles.
Privacy at a Glance
How tbatee Protects Your Information
Encrypted Data Storage
All personal and financial data stored by tbatee is protected using bank-grade AES-256 encryption at rest. Our database infrastructure is isolated behind multiple firewall layers and is not accessible from the public internet.
No Data Selling
tbatee does not sell, rent, or trade your personal information to third-party advertisers or marketing networks. Your data is used solely for the operational purposes described in this Privacy Policy.
Player-Controlled Access
Registered players can review, update, or request deletion of their personal data at any time by contacting our support team. We process all valid data requests within 30 days of receipt.
Secure Transmission
All data transmitted between your device and tbatee's servers is encrypted using TLS 1.3 protocols. Our SSL certificate ensures that every session — from login to deposit to withdrawal — is protected against interception.
Minimal Data Collection
tbatee collects only the personal information that is strictly necessary for account operation, KYC compliance, payment processing, and responsible gaming obligations. We do not collect data beyond what is required for these legitimate purposes.
Transparent Practices
This Privacy Policy is written in plain, formal English and published publicly at tbatee.com/privacy-policy. Any material changes to our data practices are communicated to registered players via their registered email address before taking effect.
Section 1
Information We Collect
tbatee collects personal information from players through several channels: directly from you when you register an account or complete KYC verification; automatically through your use of the platform; and, in limited circumstances, from third-party sources such as payment processors and identity verification services. The categories of personal data we collect are described below.
Registration & Identity Data
When you create a tbatee account, we collect your full legal name, date of birth, residential address, email address, and Bangladesh mobile number. This information is required to create your account, verify your identity, and comply with our Know Your Customer (KYC) obligations. You may also be required to submit a copy of your National Identity Card (NID), passport, or other government-issued photo identification document as part of the KYC process.
Financial & Transaction Data
tbatee records all financial transactions associated with your account, including deposit amounts, withdrawal requests, bet history, bonus credits, and account balance changes. We also collect the payment method details necessary to process your transactions — for example, your bKash or Nagad mobile number, or your bank account information. Full card numbers are never stored on tbatee's servers; card transactions are processed through PCI-DSS compliant payment gateways.
Technical & Usage Data
When you access tbatee, our systems automatically record certain technical data including your IP address, device type, operating system, browser type and version, session duration, pages visited, games played, and approximate geographic location derived from your IP address. This data is used for platform security, fraud detection, performance optimisation, and responsible gaming monitoring.
Communications Data
If you contact tbatee's customer support team by email or live chat, we retain records of those communications, including the content of your messages, timestamps, and any attachments you provide. This data is used to resolve your query, improve our support quality, and maintain an accurate record of our interactions with you.
tbatee does not collect sensitive personal data categories such as racial or ethnic origin, political opinions, religious beliefs, health data, or biometric data, except where the collection of biometric or health data is strictly required for responsible gaming obligations (for example, processing a medical self-exclusion request).
| Data Categories Summary | |
|---|---|
| Identity Data | Name, DOB, NID, address |
| Contact Data | Email, mobile number |
| Financial Data | Transaction history, payment methods |
| Technical Data | IP address, device, browser |
| Usage Data | Games played, session logs |
| Communications | Support chat and email records |
| KYC Documents | Photo ID, proof of address |
Section 2
How We Use Your Data
tbatee uses the personal data it collects only for the purposes described in this Privacy Policy, and only where a legitimate legal basis exists for that processing. The primary legal bases on which tbatee relies are: performance of a contract (your use of the tbatee platform constitutes a contract with us); compliance with a legal obligation (KYC, AML, and responsible gaming requirements); and our legitimate business interests (fraud prevention, platform security, and service improvement), where those interests are not overridden by your privacy rights.
The specific purposes for which we use your data are as follows:
- Account Management: To create, maintain, and administer your tbatee player account, including processing your login credentials, managing your balance, and applying your account preferences and settings.
- Identity Verification (KYC): To verify your identity and age in accordance with our KYC obligations. This includes cross-referencing the documents you submit with third-party identity verification databases where permitted.
- Payment Processing: To process your deposits and withdrawal requests via your chosen payment method, including bKash, Nagad, Rocket, Upay, bank transfer, Visa, and Mastercard.
- Fraud & AML Monitoring: To detect, investigate, and prevent fraudulent activity, money laundering, and other financial crimes. Our automated AML monitoring systems analyse transaction patterns and flag activity that falls outside normal parameters.
- Responsible Gaming: To monitor your gaming behaviour for indicators of problem gambling and to enforce self-exclusion, cooling-off periods, and deposit limits where applicable. tbatee takes its responsible gaming obligations seriously and uses data proactively to protect vulnerable players.
- Customer Support: To respond to your support queries and to maintain records of our communications with you for quality assurance and dispute resolution purposes.
- Platform Improvement: To analyse usage patterns, identify bugs, and improve the performance, design, and content of the tbatee platform.
- Promotional Communications: To send you information about tbatee promotions, bonuses, and seasonal offers relevant to your interests — but only where you have opted in to receive such communications. You may opt out at any time by contacting [email protected].
tbatee does not use your personal data for automated individual decision-making that produces legal or similarly significant effects, except in the context of automated fraud detection. Where an automated fraud alert results in account suspension, you have the right to request a manual review by contacting our support team.
Legal Bases for Processing
tbatee processes personal data only where a valid legal basis exists: contractual necessity, legal obligation, legitimate interests, or (for promotional communications) your explicit consent. We do not process your data beyond the purposes stated in this policy.
Marketing Opt-Out
If you have opted in to receive promotional emails from tbatee and wish to unsubscribe, send a plain-text email to [email protected] with the subject line "Unsubscribe". We will remove you from our marketing list within 5 business days.
Section 3
Data Sharing & Disclosure
tbatee does not sell, rent, or otherwise transfer your personal data to third parties for their own commercial purposes. We share your personal data only in the limited circumstances described below, and only to the minimum extent necessary for each stated purpose.
Service Providers & Data Processors
tbatee works with a limited number of carefully selected third-party service providers who process personal data on our behalf. These include payment processing partners (bKash, Nagad, Rocket, Upay, and card payment gateways), identity verification providers, cloud hosting and infrastructure providers, and customer support platform providers. All third-party processors are required to process data only on tbatee's documented instructions, to maintain appropriate security measures, and to comply with applicable data protection obligations.
Game Providers
Games available on the tbatee platform are supplied by certified third-party game providers including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. When you play a game supplied by one of these providers, certain session data (such as your player session token, game outcomes, and bet amounts) is transmitted to the game provider's server in order to render and resolve the game. This data transmission is a technical necessity of the game architecture and does not constitute a data sale. Each game provider operates under its own data protection obligations.
Legal & Regulatory Disclosure
tbatee may be required to disclose personal data to law enforcement agencies, regulatory authorities, or courts in response to a lawful request, court order, or legal obligation. In such cases, tbatee will disclose only the minimum data required to comply with the legal obligation and will, where legally permitted, inform the affected player of the disclosure.
tbatee does not transfer personal data to third countries outside of those necessary for payment processing and game delivery. Where cross-border data transfers occur, appropriate safeguards — including standard contractual clauses or equivalent data transfer mechanisms — are in place to protect your information.
| Third-Party Data Recipients | |
|---|---|
| Payment Processors | bKash, Nagad, Rocket, Upay, card gateways |
| Identity Verification | KYC / AML screening providers |
| Game Providers | Session data only (Pragmatic Play, Evolution, etc.) |
| Cloud Infrastructure | Hosting / CDN providers (data processing agreements in place) |
| Legal Authorities | Only on lawful request |
| Advertisers | Never |
Section 5
Data Security & Storage
tbatee implements a comprehensive set of technical and organisational security measures designed to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. These measures are reviewed and updated on a regular basis in response to evolving security threats.
Our core security measures include:
- Transport Layer Security (TLS 1.3): All data transmitted between your device and tbatee's servers is encrypted using TLS 1.3, the current industry standard for secure web communication. Our SSL certificate is renewed regularly and our domains are HSTS-enabled.
- AES-256 Encryption at Rest: Personal data and financial records stored in tbatee's databases are encrypted using AES-256 symmetric encryption. Encryption keys are managed using a dedicated key management system with strict access controls.
- Access Controls: Access to personal data within tbatee's internal systems is restricted on a strict need-to-know basis. Staff access is governed by role-based permissions, multi-factor authentication requirements, and comprehensive audit logging.
- Penetration Testing: tbatee's platform infrastructure undergoes regular penetration testing conducted by independent security specialists. Critical vulnerabilities identified during testing are remediated on a priority basis.
- Incident Response: tbatee maintains a documented data breach incident response procedure. In the event of a personal data breach that poses a risk to affected individuals, tbatee will notify impacted players via their registered email address within a reasonable timeframe.
While tbatee employs robust security measures, no internet-based system can guarantee absolute security. Players are advised to use a strong, unique password for their tbatee account, to enable two-factor authentication (2FA), and to ensure that the device they use to access tbatee is protected with up-to-date security software.
Infrastructure Security
tbatee's servers are hosted in ISO 27001-certified data centre facilities. Physical access to server hardware is restricted and monitored 24/7. All data backups are encrypted and stored in geographically separate locations to ensure resilience.
PCI-DSS Compliance
Card payment processing on tbatee is handled exclusively through PCI-DSS Level 1 compliant payment gateways. Full card numbers are never stored on tbatee's servers. Tokenisation is used for recurring payment method recognition.
Section 6
Data Retention Periods
tbatee retains personal data only for as long as is necessary for the purposes for which it was collected, or as required by applicable legal or regulatory obligations. The retention periods applied to each category of personal data are outlined in the table alongside this section.
Account data for active players is retained for the duration of your account's active status plus a minimum period of five years following account closure. This extended post-closure retention period reflects tbatee's legal obligations under AML and financial record-keeping requirements. KYC documentation is retained for a minimum of five years from the date of submission or the date of account closure, whichever is later.
Financial transaction records — including deposit history, withdrawal records, and bet history — are retained for a minimum of five years from the date of the transaction. This retention is required for AML compliance, dispute resolution, and financial audit purposes.
Communications data (customer support records) is retained for a period of two years from the date of the last communication in each support case. After this period, support records are anonymised or permanently deleted.
Technical and usage data (session logs, IP records) is retained for a maximum of 12 months for security and fraud detection purposes, after which it is aggregated and anonymised or permanently deleted.
When a data retention period expires, tbatee permanently deletes or irreversibly anonymises the relevant personal data. Anonymised data (from which no individual can be identified) may be retained indefinitely for statistical and analytical purposes without further notice to the player.
| Retention Schedule | |
|---|---|
| Account Data | Duration of account + 5 years |
| KYC Documents | 5 years post-submission or closure |
| Transaction Records | 5 years from transaction date |
| Support Communications | 2 years from last interaction |
| Session / IP Logs | 12 months maximum |
| Marketing Preferences | Until opt-out + 1 year |
Section 7
Your Privacy Rights
As a tbatee player, you have a number of rights in relation to the personal data we hold about you. tbatee is committed to honouring these rights promptly and transparently. To exercise any of the rights described below, please contact us at [email protected] with the subject line "Privacy Rights Request" and include your registered account email address for verification purposes. We will respond to all valid requests within 30 days.
Right of Access
You have the right to request a copy of the personal data tbatee holds about you, including the categories of data, the purposes of processing, and any third parties with whom it has been shared.
Right to Rectification
You have the right to request correction of any inaccurate or incomplete personal data we hold about you. Account details can be updated by contacting support, subject to identity verification.
Right to Erasure
You may request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to tbatee's legal obligations to retain certain records under AML and financial regulations.
Right to Restrict Processing
You may request that tbatee restricts the processing of your personal data in certain circumstances — for example, while the accuracy of your data is being verified following a rectification request.
Right to Data Portability
Where processing is based on your consent or on contractual necessity, you have the right to receive your personal data in a structured, commonly used, machine-readable format (such as CSV or JSON).
Right to Object
You have the right to object to the processing of your personal data for direct marketing purposes at any time. You may also object to processing based on legitimate interests, though tbatee may continue processing where it can demonstrate compelling legitimate grounds.
Please note that some rights — particularly the right to erasure — may be limited where tbatee is required by law to retain your data. In such cases, we will inform you of the applicable retention obligation and restrict processing of your data to the minimum necessary for that legal compliance purpose only.
Section 8
Updates to This Policy
tbatee reserves the right to update or revise this Privacy Policy at any time in response to changes in applicable law, changes in our data processing practices, or improvements to our platform. The effective date at the top of this policy will be updated to reflect the date on which any revision takes effect.
Where a material change is made to this Privacy Policy — for example, a change in the categories of data we collect, a change in the third parties with whom we share data, or a change in our data retention periods — tbatee will notify registered players via their registered email address at least 14 days before the change takes effect. Continued use of the tbatee platform following the effective date of a revised Privacy Policy constitutes your acceptance of the revised terms.
The most current version of this Privacy Policy is always available at tbatee.com/privacy-policy. We recommend that you review this page periodically to stay informed of how tbatee handles your personal data. If you have questions about any changes to this policy, please contact our support team at [email protected].
Contact our Data Team: For any privacy-related queries, data rights requests, or concerns about how tbatee handles your personal information, contact us at: [email protected] — subject line "Privacy Rights Request". We aim to respond to all privacy correspondence within 5 business days.
Stay Informed
All registered tbatee players receive advance email notification of any material changes to this Privacy Policy. Ensure your registered email address is current and accurate so you do not miss important policy updates. You can update your contact details by contacting our support team.
Ready to Play?
Explore tbatee Securely
Your privacy is protected at every step. Browse our full game library, follow live cricket markets, or visit our FAQ for more information about how tbatee keeps your account safe.