dbd22 Privacy
Policy
At dbd22, protecting your personal data is a core responsibility we take seriously. This Privacy Policy explains exactly what information we collect, why we collect it, how we use and safeguard it, and what rights you hold over your own data as a player on our platform.
Protected
Important Notice: This Privacy Policy ("Policy") describes how dbd22 ("we", "us", "our") collects, uses, discloses, and protects personal data provided by users ("you", "Player") when accessing or using the dbd22 platform at dbd22.app. By registering an account or using our services, you acknowledge that you have read and understood this Policy. This Policy should be read alongside our Terms & Conditions and Responsible Gaming Policy.
dbd22 does not sell, rent, or trade your personal information to third-party marketing companies or data brokers. Your data is used solely to operate and improve our platform and fulfil our legal obligations.
All data transmitted between your device and dbd22 is protected by TLS 1.3 encryption. Sensitive fields such as passwords and payment details are additionally hashed or tokenised at rest, never stored in plain text.
You have the right to access, correct, export, or request deletion of your personal data at any time. Submit a data request by contacting [email protected] and our team will respond within 10 Bangladesh business days.
Where technically feasible, dbd22 stores player data on servers located in or proximate to Bangladesh. Any international data transfers are governed by appropriate safeguards to ensure equivalent levels of data protection.
We use only essential and analytical cookies to operate the platform and understand usage patterns. We do not deploy aggressive third-party advertising cookies that track you across unrelated websites.
We retain your personal data only for as long as necessary to fulfil the purposes described in this Policy or as required by applicable law. Account data is held for a minimum of five years after account closure for compliance purposes.
Information We Collect
dbd22 collects personal data from you in several ways: directly when you register or use our services, automatically through your interactions with our platform, and from third-party sources where permitted by law. The categories of personal data we collect are described below.
1.1 Registration & Account Data
When you create a dbd22 account, we collect the personal information you provide, which includes:
- Full legal name (as it appears on your official identity document)
- Date of birth (used for mandatory age verification — 18+ only)
- Residential address, including division, district, and postal code within Bangladesh
- Mobile phone number (serves as your primary account identifier and OTP delivery channel)
- Email address (optional, for account recovery and promotional communications where opted in)
- Username and encrypted password
1.2 Identity Verification (KYC) Data
To comply with our know-your-customer obligations and to verify that you meet the 18+ age requirement, dbd22 may collect copies of:
- National Identity Card (NID) issued by the Bangladesh Election Commission
- Valid passport (biographical data page)
- Bangladesh driving licence (front and reverse)
- Proof of address documentation (e.g., utility bill, bank statement dated within 90 days)
1.3 Financial & Transaction Data
When you make deposits or request withdrawals, we collect data relating to those transactions, including:
- bKash, Nagad, Rocket, or Upay mobile account number (sender number)
- Bank account name, account number, and bank name (for bank transfer transactions)
- Transaction reference numbers and timestamps
- Deposit and withdrawal amounts in Bangladeshi Taka (৳ BDT)
- Transaction status and processing outcomes
dbd22 does not store full card numbers or CVV codes. Card payment processing is handled by PCI-DSS compliant third-party payment processors who tokenise card data before it reaches our systems.
1.4 Gaming & Betting Activity Data
We record your activity on the platform to provide the service, detect fraud, and comply with responsible gaming obligations, including: games played, wagers placed and amounts, outcomes and winnings, session durations, bonus usage, and betting history across all sports and casino markets.
1.5 Technical & Device Data
When you access dbd22, our systems automatically collect certain technical information, including:
- IP address and approximate geographic location derived from it
- Device type, operating system, and browser version
- Session timestamps, page visits, and click-path data
- Cookies and similar tracking technologies (see Section 4)
1.6 Communications Data
When you contact our customer support team via email, live chat, or any other channel, we retain records of those communications, including the content of your messages, timestamps, and any resolution notes, for quality assurance and dispute resolution purposes.
How We Use Your Data
dbd22 uses your personal data for specific, clearly defined purposes. We do not use your data in ways that are incompatible with the purposes described at the time of collection. The primary purposes for which we process your data are as follows:
| Purpose | Description |
|---|---|
| Account Management | Creating, maintaining, and managing your dbd22 account; processing registration, login authentication, and password recovery; enabling OTP verification for secure access. |
| Service Delivery | Processing deposits and withdrawals via bKash, Nagad, Rocket, Upay, and bank transfer; crediting winnings; applying bonuses; settling bets; providing access to casino games, slots, and cricket betting markets. |
| Age & Identity Verification | Confirming that you are aged 18 or above and that your account details match your verified identity, in compliance with our responsible gaming obligations and anti-fraud controls. |
| Fraud Prevention & Security | Detecting, investigating, and preventing fraudulent transactions, bonus abuse, money laundering, multi-accounting, collusion, and unauthorised account access. Monitoring for suspicious patterns using automated and manual review processes. |
| Responsible Gaming | Monitoring gaming behaviour to identify patterns indicative of problem gambling; enforcing player-requested deposit limits, loss limits, time-outs, and self-exclusions; sending responsible gaming communications where appropriate. |
| Customer Support | Responding to your queries, complaints, and support requests; maintaining records of communications for quality assurance and dispute resolution; training our support team. |
| Legal & Compliance | Fulfilling anti-money laundering (AML) and counter-terrorism financing (CTF) obligations; retaining records as required by applicable law; responding to lawful requests from law enforcement or regulatory authorities. |
| Platform Improvement | Analysing aggregated, anonymised usage data to improve platform features, game selection, payment methods, and user experience. Conducting internal research and analytics to inform product development decisions. |
| Marketing & Promotions | Sending promotional communications about bonuses, tournaments, and seasonal offers (e.g., Eid promotions, BPL season offers) where you have opted in to receive such communications. You may opt out at any time by contacting [email protected]. |
Legal Basis for Processing
dbd22 processes your personal data on the basis of one or more of the following lawful grounds, depending on the nature of the processing activity:
- Contractual Necessity: Processing your registration data, transaction data, and gaming activity data is necessary to perform our contract with you — that is, to provide you with access to the dbd22 platform and its services. Without this processing, we cannot operate your account or settle your bets.
- Legal Obligation: Certain processing activities — particularly KYC identity verification, AML transaction monitoring, and data retention — are required by applicable law. We are obligated to collect and retain this data regardless of your preferences.
- Legitimate Interests: Processing for fraud prevention, platform security, responsible gaming monitoring, and service improvement is carried out on the basis of dbd22's legitimate interests in maintaining a safe, fair, and commercially sustainable platform. We have balanced these interests against your privacy rights and determined that our legitimate interests are not overridden by your rights in these contexts.
- Consent: Where we send you optional promotional communications or use non-essential analytical cookies, we do so on the basis of your explicit consent. You may withdraw consent for these activities at any time without affecting the lawfulness of processing carried out before withdrawal.
Cookies & Tracking Technologies
Cookie Summary: dbd22 uses a minimal set of cookies required to operate the platform securely and to understand how players use our services. We do not use advertising tracking cookies or cross-site behavioural profiling technologies.
Cookies are small text files placed on your device when you visit dbd22.app. We also use similar technologies such as local storage and session tokens. The categories of cookies we use are described below:
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Essential to operate the platform: session authentication tokens, CSRF protection, login state, and security identifiers. The platform cannot function without these cookies. | Session / up to 30 days |
| Functional | Remember your preferences such as language display, preferred payment method, and responsible gaming settings. These improve your experience but are not essential to core functionality. | Up to 12 months |
| Analytical | Collect anonymised or pseudonymised data about how users navigate dbd22 — pages visited, session duration, error rates. Used to improve platform performance and usability. No personally identifiable data is shared with analytics providers. | Up to 24 months |
You may control cookie preferences through your browser settings. Most modern browsers allow you to block, delete, or restrict cookies. Note that disabling strictly necessary cookies will prevent you from logging in to your dbd22 account or completing transactions. For instructions on managing cookies in your browser, refer to your browser provider's help documentation.
Data Sharing & Third Parties
dbd22 does not sell, rent, or trade your personal data to any third party. We share your data only in the specific, limited circumstances described below, and only to the extent necessary for the stated purpose:
- Payment Processors: We share transaction data (amount, reference, mobile number or bank details) with our payment processing partners — including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, City Bank, and card processing providers — solely to execute your deposit and withdrawal instructions. These partners are contractually bound to process your data only for payment fulfilment purposes.
- Game Software Providers: To operate casino games and slots, technical session data is shared with certified game providers including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. This data is limited to what is necessary to run the game and record the outcome. Game providers do not receive your full personal profile.
- Identity Verification Services: Where automated KYC document checks are used, copies of identity documents may be shared with our KYC verification partner. Such partners operate under strict data processing agreements and may not use your documents for any purpose other than verification.
- Law Enforcement & Regulators: We may disclose personal data where required by a valid court order, statutory obligation, or lawful request from a government authority or law enforcement agency. Where permitted, we will endeavour to notify you of such a disclosure.
- IT Infrastructure & Security: We use trusted cloud infrastructure and cybersecurity service providers to host and protect the dbd22 platform. These providers access personal data solely in the course of providing their contracted services and are bound by confidentiality obligations.
- Business Transfers: In the event of a merger, acquisition, or sale of assets involving dbd22, personal data may be transferred to the acquiring entity, subject to the same protections described in this Policy. You will be notified of any such transfer in advance where practicable.
All third parties with whom dbd22 shares personal data are required to implement appropriate technical and organisational security measures and are prohibited from using your data for their own commercial purposes.
Data Retention
dbd22 retains personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable legal, regulatory, or contractual obligations. The following retention periods apply:
| Data Category | Retention Period | Rationale |
|---|---|---|
| Account & Registration Data | Duration of active account + 5 years after closure | Legal and compliance obligations; dispute resolution; fraud investigation |
| KYC Identity Documents | Duration of active account + 5 years after closure | AML/CTF regulatory obligations |
| Transaction Records | 7 years from transaction date | Financial record-keeping requirements |
| Gaming Activity Logs | 5 years from date of activity | Responsible gaming monitoring; dispute resolution; fraud detection |
| Customer Support Communications | 3 years from last interaction | Quality assurance; dispute resolution |
| Analytical / Technical Logs | 13 months on a rolling basis | Platform performance monitoring and improvement |
| Marketing Consent Records | Until consent is withdrawn + 3 years | Evidence of lawful basis for marketing communications |
At the end of the applicable retention period, personal data is securely deleted or anonymised in a manner that prevents reconstruction of personal identifiers. Where data anonymisation is applied, the resulting anonymised dataset is no longer considered personal data and may be retained indefinitely for statistical and research purposes.
Your Privacy Rights
As a dbd22 player, you hold meaningful rights over your personal data. We are committed to honouring these rights in a timely and transparent manner. To exercise any of the rights described below, contact us at [email protected] with the subject line "Data Rights Request" and include your registered mobile number and a description of your request. We will respond within 10 Bangladesh business days.
You may request a copy of all personal data dbd22 holds about you, along with information about how it is used and with whom it is shared.
If any personal data we hold about you is inaccurate or incomplete, you may request that we correct or update it. Contact [email protected] with the correct information and supporting documentation.
You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to our legal retention obligations which may require us to retain certain records.
You may request that we limit the processing of your data — for example, while a rectification request is being resolved or where you contest the accuracy of data we hold.
Where processing is based on your consent or contractual necessity and carried out by automated means, you may request that we provide your data in a structured, machine-readable format for transfer to another provider.
You may object to processing carried out on the basis of legitimate interests, or to the use of your data for direct marketing purposes. Objections to marketing will be actioned immediately; other objections are subject to assessment.
Where processing is based on consent — such as marketing communications or non-essential cookies — you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of prior processing.
Where dbd22 uses automated processes that produce decisions with significant effect on you (e.g., account suspension flags), you may request human review of that decision by contacting [email protected].
Data Security
dbd22 applies a comprehensive set of technical and organisational security measures designed to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. Our security framework includes:
- TLS 1.3 Encryption in Transit: All data transmitted between your browser or device and our servers is encrypted using Transport Layer Security (TLS) 1.3. This ensures that your account credentials, transaction details, and personal information cannot be intercepted during transmission.
- Encryption at Rest: Sensitive personal data stored on our servers — including identity documents and payment identifiers — is encrypted using AES-256 encryption. Passwords are hashed using industry-standard algorithms and are never stored in recoverable plain text.
- Access Controls: Access to personal data within dbd22's internal systems is restricted to staff members who require it to perform their job functions. Role-based access control (RBAC) policies are enforced, and all access is logged and audited.
- Intrusion Detection & Monitoring: Our infrastructure is monitored 24/7 by automated intrusion detection systems (IDS) that flag and respond to anomalous access patterns, brute-force attempts, and other security threats in real time.
- Regular Security Testing: dbd22 conducts periodic vulnerability assessments and penetration testing of its systems to identify and remediate security weaknesses before they can be exploited.
- OTP Authentication: Account login and sensitive operations are protected by one-time password (OTP) verification sent to your registered mobile number, providing a second authentication factor against credential theft.
Despite our robust security measures, no system connected to the internet can guarantee absolute security. In the event of a personal data breach that is likely to result in a risk to your rights, dbd22 will notify affected players without undue delay and will take all appropriate remedial action. If you suspect unauthorised access to your account, contact [email protected] immediately and change your password.
Children & Minors
dbd22 is strictly an adults-only platform. We do not knowingly collect personal data from individuals under the age of 18. All players are required to confirm that they are aged 18 or above at the point of registration, and identity verification checks are performed to confirm this.
If dbd22 discovers or has reasonable grounds to believe that a registered account belongs to a person under 18 years of age, we will:
- Immediately suspend the account pending investigation.
- Void all bets and gaming activity conducted from that account.
- Refund any remaining real-money balance to the depositing payment method, subject to verification that the depositor is a parent or guardian.
- Permanently close the account and delete all associated personal data to the extent not required by law.
Parents and guardians who believe that a minor in their care may have registered an account on dbd22 are urged to contact us immediately at [email protected]. We take underage gambling extremely seriously and maintain strict controls to prevent minors from accessing our services. We recommend the use of parental control software to restrict access to gambling websites on shared devices.
18+ Strictly Enforced: dbd22 operates exclusively for adults aged 18 and above. Age verification is mandatory for all players. If you are a minor, you must not use this platform. For responsible gaming support, visit our Responsible Gaming page.
Policy Updates & Contact
Updates to This Policy
dbd22 reserves the right to update or revise this Privacy Policy at any time to reflect changes in our practices, applicable law, or platform features. When material changes are made — such as changes to the categories of data we collect, how we share it, or your rights — we will provide at least 7 days' advance notice by posting a prominent notice on the dbd22 platform and, where we hold your email address, sending you a notification directly.
The "Effective Date" shown in the hero section of this page reflects the date on which the current version of this Policy came into force. Your continued use of the dbd22 platform after the effective date of any revised Policy constitutes your acceptance of those changes. Prior versions of this Policy are available upon written request to [email protected].
How to Contact Us
If you have any questions, concerns, or complaints regarding this Privacy Policy, how we handle your personal data, or if you wish to exercise any of your data rights described in Section 7, please contact the dbd22 privacy team using the details below. We are committed to responding to all privacy-related enquiries within 10 Bangladesh business days.
- Email: [email protected] (plain text — not a clickable link)
- Subject Line: "Privacy Enquiry" or "Data Rights Request"
- Availability: 24 hours a day, 7 days a week, 365 days a year
- Response Time: Within 10 Bangladesh business days (Bangladesh Standard Time, UTC+6)
All privacy requests submitted via email must include your registered mobile number and a brief description of your request so that we can locate your account and respond accurately. For identity verification purposes, we may ask you to confirm additional account details before processing sensitive data requests such as erasure or portability.
Privacy Contact: For all data protection enquiries, email [email protected] — available around the clock, every day of the year, including public holidays observed in Bangladesh such as Eid, Victory Day (16 December), and Independence Day (26 March).
Your Privacy Is Safe at dbd22
Now that you understand how dbd22 protects your personal data, explore everything our platform has to offer — from live casino and cricket betting to hundreds of slots and exclusive Bangladesh-market promotions.
18+ only | Play Responsibly | Bangladesh | SSL Secured | Fair Play Certified