Section 1
Information We Collect
bdl111 collects personal information from users in several ways: directly when you register and use our platform, automatically through your device and browsing behaviour, and in some cases from trusted third-party sources such as payment processors and identity verification providers. The categories of information we collect are described in detail below.
Information You Provide Directly: When you create a bdl111 account or interact with our platform, you voluntarily provide us with personal details that are necessary for the operation of your account and for legal compliance purposes.
| Data Category | Examples of Information Collected |
|---|---|
| Identity Data | Full legal name, date of birth, gender, nationality, government-issued ID number (National ID card or passport number). |
| Contact Data | Mobile phone number, email address, residential address (including district, division, and postal code in Bangladesh). |
| Financial Data | Mobile wallet account numbers (bKash, Nagad, Rocket, Upay), card details (Visa, Mastercard — stored only in tokenised form), transaction history, deposit and withdrawal records. |
| Account Data | Username, encrypted password hash, account preferences, responsible gaming settings, bonus and promotion history. |
| Communication Data | Messages sent to our support team via live chat or email, including chat transcripts and support ticket records. |
| Verification Documents | Copies of government-issued photo ID, proof of address documents, and selfie photographs submitted for KYC (Know Your Customer) verification purposes. |
Information Collected Automatically: When you access bdl111 through any device — whether a smartphone, tablet, or desktop computer — our systems automatically record certain technical information. This includes your IP address, device type and model, operating system and version, browser type and version, session timestamps, pages visited, features used, game sessions played, and betting patterns. This technical data is used primarily for platform security, fraud detection, and service improvement purposes.
Information from Third Parties: We may receive supplementary identity and fraud-screening information from our KYC and anti-money laundering (AML) service providers. We may also receive transaction confirmation data from payment processors including bKash, Nagad, Rocket, Upay, Visa, and Mastercard. This information is used solely to verify your identity, process your transactions, and fulfil our legal compliance obligations.
Identity Information
Name, date of birth, and national ID are collected strictly for age verification and KYC compliance — never for marketing profiling.
Device & Technical Data
IP address, device type, and session data are logged automatically to protect your account from unauthorised access and fraud.
Payment Information
Financial data including bKash, Nagad, and card details is handled securely via tokenisation — raw card numbers are never stored on our servers.
Section 2
How We Use Your Data
bdl111 processes your personal data only for specific, legitimate purposes directly related to the operation of our platform and our legal obligations. We do not process your data in any manner that is incompatible with the purposes listed below, and we do not engage in the sale of personal data to third parties for commercial or marketing purposes.
- Account Management: To create, maintain, and administer your bdl111 player account, including account authentication, password management, and account preference settings.
- Identity & Age Verification: To verify that you are aged 18 or above and to confirm your identity as required by our responsible gaming and anti-money laundering obligations. 18+
- Transaction Processing: To process your deposits and withdrawals through your chosen payment method (bKash, Nagad, Rocket, Upay, Visa, or Mastercard), to reconcile your account balance, and to maintain accurate financial records in Bangladeshi Taka (৳).
- Platform Security & Fraud Prevention: To detect, investigate, and prevent fraudulent activity, money laundering, account takeover attempts, and other prohibited conduct as defined in our Terms & Conditions. We use automated monitoring systems and manual review processes for this purpose.
- Customer Support: To respond to your enquiries, resolve disputes, process complaints, and provide technical assistance through our 24/7 live chat and email support channels.
- Legal & Regulatory Compliance: To fulfil our obligations under applicable laws and regulations, including anti-money laundering (AML) requirements, responsible gaming obligations, and data protection requirements. This may include retaining records of your account activity and transactions for the legally required periods.
- Platform Improvement: To analyse aggregated, anonymised usage data for the purpose of improving our games, features, navigation, and overall user experience. Individual players are never identified in this analysis.
- Responsible Gaming: To monitor account activity for indicators of problem gambling behaviour and to proactively apply responsible gaming tools where necessary for player welfare, in accordance with our Responsible Gaming policy.
- Marketing Communications: To send you promotional offers, bonus notifications, and platform updates by email or SMS — but only if you have explicitly opted in to receive such communications. You may withdraw your consent and unsubscribe at any time by contacting [email protected].
The legal basis on which we process your data varies by purpose: account management and transaction processing are necessary for the performance of our contract with you; fraud prevention, AML compliance, and responsible gaming measures are necessary for compliance with our legal obligations; and marketing communications are based on your explicit consent.
Section 3
Data Sharing & Disclosure
bdl111 treats the privacy of your personal data with the utmost seriousness. We do not sell, rent, trade, or otherwise commercially exploit your personal information to any third party. Disclosure of your data to external parties occurs only in the specific, limited circumstances described below, and always subject to appropriate data protection safeguards.
- Payment Processors: We share the minimum necessary financial data with our payment processing partners — including bKash, Nagad, Rocket, Upay, Visa, and Mastercard — solely for the purpose of executing your deposit and withdrawal transactions. These partners are contractually bound to process your data only for this specific purpose.
- Identity Verification Providers: We work with third-party KYC and AML verification service providers who process identity documents and cross-reference them against relevant databases on our behalf. These providers operate under strict data processing agreements and are prohibited from using your data for any purpose other than the verification service they provide to bdl111.
- Game Software Providers: Our game providers — including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Ezugi, and Spribe — may process certain technical session data (such as your anonymised player session ID and game results) in order to deliver their games and resolve technical disputes. These providers do not receive your name, contact details, or financial information.
- Legal and Regulatory Authorities: We may disclose your personal data to law enforcement agencies, regulatory bodies, or other government authorities if we are legally required to do so — for example, in response to a valid court order, law enforcement request, or regulatory investigation. In such cases, we will disclose only the specific information that is legally required.
- Fraud Prevention Networks: We participate in industry fraud prevention programmes under which we may share information about confirmed fraudulent activity (such as confirmed account fraud or identity theft) with other platform operators and fraud prevention agencies for the purpose of protecting all platforms from known bad actors.
- Business Transfers: In the event that bdl111 undergoes a merger, acquisition, or sale of substantially all of its assets, your personal data may be transferred to the acquiring entity as part of that transaction. We will notify affected players via their registered email address in advance of any such transfer and will ensure that the acquiring entity is bound to honour the commitments made in this Privacy Policy.
All third parties to whom we disclose personal data are required, as a condition of their engagement with bdl111, to implement and maintain appropriate technical and organisational data security measures and to process your data only in accordance with our instructions and applicable data protection law.
Section 5
Data Security
Protecting the personal data of our players is a core responsibility that bdl111 takes extremely seriously. We have implemented a comprehensive set of technical and organisational security measures designed to protect your information against unauthorised access, accidental loss, destruction, alteration, or disclosure.
- SSL/TLS Encryption: All data transmitted between your device and the bdl111 platform is encrypted using industry-standard 256-bit SSL/TLS encryption. This ensures that your login credentials, payment details, and personal information cannot be intercepted in transit.
- Password Security: Your bdl111 account password is never stored in plain text. Passwords are processed using a one-way cryptographic hashing algorithm with a unique salt applied per account, meaning that even if our database were ever compromised, your actual password could not be recovered from the stored hash.
- Access Controls: Access to player personal data within bdl111's internal systems is governed by strict role-based access controls. Only authorised staff members whose job functions require access to specific categories of personal data are permitted to view or process that data. All internal access is logged and audited.
- Payment Tokenisation: Card payment details (Visa, Mastercard) are handled via a tokenisation process. Your actual card number is never stored on bdl111 servers — instead, a secure token issued by our payment processor is used for subsequent transactions.
- Fraud Monitoring: Our automated fraud detection systems operate continuously, monitoring account activity for indicators of unauthorised access, unusual transaction patterns, and other security risks. Suspicious activity triggers immediate automated alerts and, where necessary, temporary account security holds pending investigation.
- Incident Response: In the event of a data security incident that poses a risk to your personal data, bdl111 will notify affected players via their registered email address without undue delay, and in accordance with applicable data protection law. Our incident response team operates 24 hours a day, 7 days a week.
While we take every reasonable precaution to protect your data, it is important to acknowledge that no online platform can guarantee absolute security against all possible threats. You also play a crucial role in keeping your account secure: please use a strong, unique password for your bdl111 account, never share your login credentials with anyone, and contact [email protected] immediately if you suspect that your account has been compromised.
256-bit SSL Encryption
All platform traffic is encrypted end-to-end. Your data in transit is fully protected against interception.
Password Hashing
Your password is stored as a salted cryptographic hash — it is mathematically impossible to reverse the hash back to your original password.
24/7 Fraud Monitoring
Automated systems continuously monitor account activity and flag suspicious behaviour for immediate investigation by our security team.
Section 6
Your Rights
As a user of the bdl111 platform, you hold a number of rights in relation to the personal data we hold about you. bdl111 is committed to facilitating the exercise of these rights in a timely and transparent manner. All requests relating to your personal data rights should be submitted to our support team at [email protected], clearly marked as a "Data Rights Request".
We will acknowledge your request within 3 business days and aim to fulfil it within 30 calendar days. In cases where a request is particularly complex or where we are handling a high volume of requests, we may extend this period by a further 30 days, in which case we will notify you of the extension and the reason for it.
Please note that some rights — particularly the right to erasure — may be subject to limitations where we are required by law to retain certain records. For example, financial transaction records and KYC verification documents are subject to mandatory retention periods under applicable anti-money laundering regulations. In such cases, we will inform you clearly of the specific legal basis for retaining the data and the period for which it must be retained.
Section 7
Data Retention
bdl111 retains personal data only for as long as is necessary to fulfil the purposes for which it was collected, or as required by applicable law and regulation. Our data retention practices are summarised below. Upon expiry of the applicable retention period, personal data is securely deleted or anonymised so that it can no longer be associated with any individual.
| Data Category | Retention Period & Basis |
|---|---|
| Account & Identity Data | Retained for the duration of your active account, plus 5 years following account closure. This period covers potential legal disputes and regulatory enquiries. |
| Financial Transaction Records | Retained for a minimum of 5 years from the date of each transaction, in compliance with anti-money laundering (AML) regulations applicable to online financial services. |
| KYC Verification Documents | Retained for 5 years following account closure or the last transaction date, whichever is later, in compliance with AML record-keeping requirements. |
| Customer Support Correspondence | Retained for 3 years from the date of the last communication, to enable resolution of any subsequent disputes and to maintain service quality records. |
| Technical & Security Logs | Retained for 12 months on a rolling basis for fraud detection and platform security purposes. Anonymised aggregates may be retained longer for analytical purposes. |
| Marketing Preferences | Retained until you withdraw your consent to receive marketing communications, at which point your opt-in record is updated immediately and no further marketing is sent. |
When a retention period expires, data is permanently deleted from our live systems and all backup stores within a reasonable technical timeframe. We conduct periodic data audits to ensure that data held beyond its applicable retention period is identified and securely disposed of.
Section 8
Contact & Complaints
If you have any questions, concerns, or requests relating to this Privacy Policy or to the personal data that bdl111 holds about you, please contact our support team using the details below. We treat all privacy-related enquiries with strict confidentiality and will respond within the timeframes set out in the "Your Rights" section above.
- Email: [email protected] — please include "Privacy Enquiry" or "Data Rights Request" in the subject line so that your message reaches the appropriate team promptly.
- Live Chat: Available 24/7 in English and Bengali directly through the bdl111 platform. Our support agents can assist with general privacy questions and can escalate data rights requests to the relevant team on your behalf.
- Support Hours: 24 hours a day, 7 days a week — Bangladesh Standard Time (BST, UTC+6).
Complaints: If you are not satisfied with our response to a privacy enquiry or data rights request, you have the right to escalate your complaint. We take all complaints seriously and will conduct a thorough internal review. Where a complaint cannot be resolved to your satisfaction through our internal process, you are entitled to seek further recourse through applicable dispute resolution channels in Bangladesh.
Policy Updates: bdl111 reserves the right to update or amend this Privacy Policy at any time. When material changes are made, we will notify all registered players via their registered email address at least 7 days before the changes take effect. The "Last Updated" date at the top of this page will always reflect the date on which the most recent version of the policy came into force. Continued use of the bdl111 platform following a policy update constitutes your acceptance of the revised terms.