Privacy Policy
rajabazi
rajabazi is committed to protecting your personal data. This Privacy Policy explains what information we collect, how we use it, who we share it with, and what rights you have as a user of our platform in Bangladesh.
Below are the core principles that guide how rajabazi handles your personal data. These highlights summarise the key commitments described in full in the sections that follow.
Minimal Data Collection
rajabazi collects only the personal data that is strictly necessary to provide the service, verify your identity, and comply with anti-money laundering obligations. We do not collect data for its own sake.
No Selling of Your Data
rajabazi does not sell, rent, or trade your personal data to third-party marketers. Your information is shared only where strictly required by law or to deliver the services you have requested.
End-to-End Encryption
All data transmitted between your device and rajabazi is protected by 256-bit SSL/TLS encryption. Sensitive fields such as payment details and passwords are encrypted at rest using industry-standard protocols.
Right to Access & Erasure
You have the right to request a copy of the personal data rajabazi holds about you, and to request its deletion subject to legal retention obligations. Requests are handled within 30 days.
Transparent Cookie Use
rajabazi uses only the cookies necessary for session management, security, and aggregate analytics. We do not deploy third-party advertising cookies or cross-site tracking pixels without your explicit consent.
Bangladesh-Focused Compliance
rajabazi is designed for the Bangladesh market. Our data handling practices reflect the requirements of the platform's operational context, with specific provisions for bKash, Nagad, and Rocket payment data.
1. Information We Collect
When you register for and use the rajabazi platform, we collect personal data in several ways. This section describes the categories of data we collect, the source of that data, and the purpose for which it is gathered. We collect only what is necessary, proportionate, and consistent with providing you with a safe and functional online gaming experience.
Information You Provide Directly
At the point of registration and throughout your use of rajabazi, you provide us with information that enables us to create and maintain your account. This includes:
- Identity data: Full legal name, date of birth, and gender as required for age and identity verification.
- Contact data: Email address, mobile phone number, and residential address (city, district, and division within Bangladesh).
- Account credentials: Your chosen username and a hashed (never plain-text) version of your password.
- KYC documents: Copies of your National Identity Card (NID), passport, or other government-issued identification submitted during the Know Your Customer verification process.
- Payment data: bKash account number, Nagad account number, Rocket account number, Upay details, bank account information, or card details (Visa, Mastercard) as applicable to your chosen deposit and withdrawal methods.
- Communications: The content of any messages you send to our support team via email or live chat, including any attachments or screenshots you provide.
Information Collected Automatically
When you access and interact with rajabazi, our systems automatically collect certain technical and behavioural data. This helps us maintain the security of the platform, improve performance, and detect fraudulent activity:
- Device data: Device type, operating system, browser type and version, screen resolution, and device identifiers.
- Network data: IP address, internet service provider, and approximate geographic location derived from IP.
- Session data: Login timestamps, session duration, pages visited, games played, bet amounts, and navigation paths through the platform.
- Transaction data: Full history of deposits, withdrawals, bonus claims, and wagering activity associated with your account.
- Cookie and tracking data: As described in Section 4 of this policy.
2. How We Use Your Data
rajabazi uses the personal data it collects for specific, clearly defined purposes. We do not use your data for any purpose that is incompatible with the reason it was originally collected. The following table sets out the primary purposes for which we process your personal data and the legal basis for each activity:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Account registration & management | Identity, contact, credentials | Contractual necessity |
| Age & identity verification (KYC) | Identity, KYC documents | Legal obligation / contractual |
| Processing deposits & withdrawals | Payment data, transaction data | Contractual necessity |
| Fraud prevention & AML monitoring | Transaction, session, network data | Legal obligation / legitimate interest |
| Customer support | Contact data, communications | Contractual necessity |
| Responsible gaming monitoring | Session, transaction, behavioural data | Legal obligation / legitimate interest |
| Platform security & integrity | Device, network, session data | Legitimate interest |
| Promotional communications | Contact data, game preferences | Consent (opt-in only) |
| Platform analytics & improvement | Session, behavioural, device data | Legitimate interest |
Marketing Communications
rajabazi may send you promotional emails or SMS messages about bonuses, new games, seasonal offers (such as Eid or BPL promotions), or platform updates — but only if you have opted in to receive such communications. You may withdraw your consent at any time by updating your account notification preferences or by contacting support at support@rajabazi. Opting out of marketing does not affect the delivery of transactional or service-critical messages (such as withdrawal confirmations or security alerts).
Automated Decision-Making
rajabazi uses automated systems to detect fraud, identify potential problem gambling behaviour, and flag accounts for compliance review. Where an automated decision results in a material impact on your account (such as a suspension or withdrawal hold), you have the right to request human review of that decision by contacting our support team.
3. Data Sharing & Third Parties
rajabazi does not sell, rent, or trade your personal data to any third party for their own marketing or commercial purposes. We share your data only in the limited circumstances described below, and only to the extent necessary for each specific purpose.
Payment Service Providers
To process your deposits and withdrawals, rajabazi shares relevant payment data with our partner payment service providers including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank, Visa, and Mastercard. Each payment provider operates under its own privacy policy and is independently responsible for the data it processes in connection with your transactions. rajabazi shares only the minimum data required to complete each transaction.
Identity Verification Partners
To fulfil our KYC obligations, we may share identity documents and personal details with third-party identity verification service providers. These providers are contractually bound to use your data solely for the purpose of verifying your identity on our behalf and are prohibited from retaining or using it for any other purpose.
Game Software Providers
The games available on rajabazi are powered by third-party software studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, Ezugi, and others. These providers may collect anonymised session and gameplay data for the purpose of game performance monitoring and fair-play certification. No personally identifiable information is shared with game providers beyond what is technically necessary to initiate and manage a game session.
Regulatory & Law Enforcement Authorities
rajabazi may be required to disclose your personal data to regulatory bodies, financial intelligence units, law enforcement agencies, or courts where required by applicable law or where such disclosure is necessary to prevent, detect, or prosecute fraud, money laundering, or other criminal activity. Such disclosures are made only to the extent strictly required by the applicable legal obligation.
5. Data Retention & Storage
rajabazi retains your personal data only for as long as is necessary to fulfil the purposes for which it was collected, to comply with legal and regulatory obligations, and to resolve any disputes that may arise. The following general retention principles apply:
- Active account data: Retained for the duration of your account's active status plus a post-closure period as required by anti-money laundering and financial record-keeping obligations.
- Transaction records: Retained for a minimum of five (5) years from the date of each transaction, consistent with standard financial record-keeping requirements.
- KYC documents: Retained for a minimum of five (5) years from the date of account closure or the last transaction, whichever is later.
- Support communications: Retained for up to three (3) years from the date of the last interaction, to enable continuity of service and dispute resolution.
- Marketing consent records: Retained for as long as your consent remains valid and for a reasonable period thereafter to demonstrate compliance.
- Anonymised analytics data: May be retained indefinitely as it cannot be used to identify any individual.
Data Storage Location
The rajabazi platform and its associated databases are hosted on secure cloud infrastructure. All data storage systems that hold personally identifiable information are configured with access controls, encryption at rest, and regular security audits. Access to production data is restricted to authorised personnel only and is subject to strict internal access management policies.
6. Your Privacy Rights
As a user of rajabazi, you have a number of rights in relation to the personal data we hold about you. We take these rights seriously and will respond to all valid requests within 30 days. Where a request is complex or involves a large volume of data, we may extend this period by a further 30 days, in which case we will notify you of the extension and the reason for it.
Right of Access
You have the right to request a copy of all personal data that rajabazi holds about you. This is sometimes called a Subject Access Request (SAR). We will provide the data in a structured, commonly used, and machine-readable format where technically feasible.
Right to Rectification
If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected. You may update many details directly through your account settings; for changes to identity or KYC data, please contact the support team.
Right to Erasure
You have the right to request the deletion of your personal data in certain circumstances — for example, where the data is no longer necessary for the purpose it was collected, or where you withdraw consent and no other legal basis applies. Please note that this right is subject to overriding legal obligations: rajabazi is required by law to retain certain transaction and KYC records for a minimum period regardless of an erasure request.
Right to Restrict Processing
In certain circumstances (for example, while a dispute about data accuracy is being resolved), you may request that rajabazi restricts the processing of your personal data to storage only.
Right to Object
You have the right to object to the processing of your personal data where that processing is based on legitimate interests rather than contractual necessity or legal obligation. You may also object to your data being used for direct marketing purposes at any time, without needing to provide a reason.
How to Exercise Your Rights
To exercise any of the rights described above, please contact our support team by email at support@rajabazi. Include "Privacy Rights Request" in the subject line and provide sufficient information to allow us to verify your identity and locate your account. We will not charge a fee for processing straightforward requests.
7. Data Security Measures
rajabazi employs a layered approach to data security, combining technical controls, operational procedures, and personnel training to protect your personal data against unauthorised access, loss, destruction, or disclosure. While no system can guarantee absolute security, we are committed to maintaining standards that are appropriate to the risks involved in operating an online gaming platform.
Technical Safeguards
- Transport security: All communications between your device and rajabazi are encrypted using TLS 1.2 or higher. Our SSL certificate is maintained and renewed proactively.
- Encryption at rest: Sensitive fields in our databases — including payment credentials, KYC document references, and password hashes — are encrypted using AES-256 or equivalent standards.
- Access controls: Production systems are accessible only to authorised personnel via multi-factor authentication (MFA). Role-based access controls limit each team member's data access to what is strictly necessary for their role.
- Vulnerability management: rajabazi conducts regular security assessments and acts promptly on identified vulnerabilities. Third-party components and dependencies are monitored for known security issues.
- DDoS protection: The platform is protected against distributed denial-of-service attacks to ensure continuous availability and to prevent data exposure through service disruption.
Operational Safeguards
- All staff with access to personal data are subject to confidentiality obligations and receive regular data security training.
- Data access is logged and monitored for anomalous patterns. Unauthorised access attempts are investigated and escalated.
- Incident response procedures are in place to contain and manage any data security events. Where a breach is identified that poses a risk to your rights, we will notify affected users without undue delay.
8. Policy Updates & Contact
rajabazi reserves the right to update this Privacy Policy at any time. When we make material changes, we will update the "Effective Date" at the top of this page and, where appropriate, notify registered users via email. We encourage you to review this policy periodically so that you remain informed about how we protect your personal data.
Your continued use of the rajabazi platform following the posting of changes to this Privacy Policy constitutes your acknowledgement of those changes. If you do not agree with any updated version of this policy, you should discontinue use of the platform and close your account.
Contact Our Data Team
If you have any questions, concerns, or requests relating to this Privacy Policy or to the handling of your personal data by rajabazi, please contact us:
- Email: support@rajabazi — use the subject line "Privacy Enquiry" for fastest routing.
- Response time: Our support team operates 24/7 on Bangladesh Standard Time (BST, UTC+6) and aims to acknowledge all privacy-related enquiries within 48 hours.
- Postal requests: If you prefer to submit a formal written request, please contact our support team by email first to obtain the current correspondence address.
This Privacy Policy applies exclusively to the rajabazi platform. It does not apply to third-party websites or services that may be referenced in our content. Please refer to the privacy policies of those third parties (such as bKash, Nagad, or game studio providers) for information about how they handle your data independently.
Your Privacy Is Protected at rajabazi
Enjoy cricket betting, live casino, and slots with confidence — your data is secure and your rights are respected every step of the way.