Legal Document
Privacy Policy — krikey11
At krikey11, protecting the personal data of every player on our platform is a fundamental responsibility — not an afterthought. This Privacy Policy explains precisely what information we collect, why we collect it, how it is stored and secured, and what rights you hold over your own data. We operate with full transparency so that every Bangladesh player can engage with krikey11 with complete confidence.
Privacy at a Glance
Our Core Privacy Commitments
256-Bit SSL Encryption
Every data transmission between your device and the krikey11 platform is protected by industry-standard 256-bit SSL encryption. This means your personal details, payment information, and account credentials are unreadable to any third party during transit.
No Sale of Personal Data
krikey11 does not sell, rent, or trade your personal data to any third party for marketing or commercial purposes — ever. Your information is collected solely to operate the platform, verify your identity, process payments, and improve your gaming experience.
Minimal Data Collection
We apply a data minimisation principle: we collect only the personal information that is strictly necessary to provide our services, comply with legal obligations, and keep your account secure. We do not collect data speculatively or beyond the scope described in this policy.
Full Player Control
You retain meaningful control over your personal data. At any time you may request access to the data we hold, request corrections, request deletion (subject to legal retention obligations), withdraw consent for marketing communications, or request a portable copy of your data by contacting our support team.
Secure Payment Processing
Payment data processed through bKash, Nagad, Rocket, Upay, Visa, and Mastercard is handled by certified payment processors operating under their own strict security frameworks. krikey11 does not store full card numbers or mobile financial service PINs on its own servers.
Transparent Cookie Use
We use cookies and similar tracking technologies exclusively to keep you logged in, remember your preferences, and generate anonymised analytics that help us improve the platform. We do not use cookies to profile you for sale to advertisers. Full details are in the Cookies section below.
Section 1
Information We Collect
krikey11 collects personal information through several channels: directly from you when you register an account or interact with the platform, automatically through your use of the site, and from trusted third-party verification and payment partners. The categories of information we collect are described in detail below.
Information You Provide Directly
- Registration data: Full legal name, date of birth, email address, Bangladesh mobile phone number, residential address (city, district, postcode), and chosen username at the time of account creation.
- Identity verification (KYC) documents: Government-issued photo identification such as your National Identity Card (NID), passport, or Bangladesh driving licence; proof of address documents such as a utility bill or bank statement dated within 90 days; and proof of payment method ownership where required.
- Financial information: Details of your chosen deposit and withdrawal methods, including mobile financial service account numbers (bKash, Nagad, Rocket, Upay) and card type and last four digits (Visa, Mastercard). Full card numbers and mobile banking PINs are never stored on krikey11 servers.
- Communications data: The content of any messages you send to krikey11 support via live chat, email, or any other communication channel, including support tickets and dispute correspondence.
- Preference data: Bonus opt-in choices, marketing communication preferences, language and notification settings stored in your account profile.
Information Collected Automatically
- Device and technical data: IP address, browser type and version, operating system, device model, screen resolution, and time zone setting (Bangladesh Standard Time, UTC+6).
- Usage and behavioural data: Pages viewed, games launched, bet amounts and outcomes, session duration, click paths, lobby navigation patterns, and feature interactions.
- Transaction logs: Timestamped records of all deposits, withdrawals, bonus activations, wager settlements, and account balance changes.
- Cookie and tracking data: Session tokens, preference cookies, and anonymised analytics identifiers. Full details are in Section 4.
Information from Third Parties
- Identity verification partners: Where krikey11 uses a third-party KYC provider to validate your submitted documents, that provider may return a verification status, risk score, and document authenticity result to krikey11.
- Payment processors: Transaction confirmation data, payment status updates, and fraud-flag notifications received from bKash, Nagad, Rocket, Upay, and card payment processors.
- Anti-fraud and AML services: Risk indicators and transaction monitoring outputs from third-party anti-money-laundering screening tools used to fulfil our compliance obligations.
| Data Category | Examples | Source |
|---|---|---|
| Identity Data | Full name, date of birth, NID number | You (registration & KYC) |
| Contact Data | Email address, Bangladesh mobile number | You (registration) |
| Financial Data | bKash / Nagad account number, card last 4 digits | You (cashier) & payment processors |
| Technical Data | IP address, browser type, device model | Automatically collected |
| Usage Data | Games played, bets placed, session duration | Automatically collected |
| Verification Data | KYC status, document authenticity result | Third-party KYC provider |
| Communications Data | Support chat logs, email correspondence | You (support interactions) |
Section 2
How We Use Your Data
krikey11 processes your personal data only for the specific, legitimate purposes described below. We identify a lawful basis for each category of processing, in line with internationally recognised data protection principles.
- Account management and service delivery: To create and maintain your krikey11 account, authenticate your identity when you log in, process deposits and withdrawals, deliver game results and betting settlements, and respond to support requests. Lawful basis: contractual necessity.
- Identity verification and KYC compliance: To verify that you meet the minimum age requirement of 18 years, confirm the accuracy of the personal information you have provided, and satisfy anti-money-laundering and know-your-customer obligations. Lawful basis: legal obligation.
- Fraud prevention and security: To detect and investigate suspicious account activity, identify duplicate accounts, prevent unauthorised access, and protect the platform from exploitation, collusion, and bonus abuse. Lawful basis: legitimate interests.
- Payment processing: To transmit your payment details to the relevant payment processor (bKash, Nagad, Rocket, Upay, card networks) to facilitate deposits and withdrawals in Bangladeshi Taka (৳ BDT). Lawful basis: contractual necessity.
- Personalisation and platform improvement: To customise your casino lobby experience, recommend games based on your play history, optimise promotional offers for your activity profile, and carry out internal analytics to improve platform performance. Lawful basis: legitimate interests.
- Marketing communications: To send you promotional emails and SMS messages about bonus offers, new game launches, BPL cricket specials, Eid promotions, and Pohela Boishakh seasonal campaigns — but only where you have explicitly opted in to receive such communications. Lawful basis: consent. You may withdraw consent at any time via your account notification settings or by contacting support.
- Legal and regulatory compliance: To maintain transaction logs, respond to lawful requests from government authorities, file mandatory reports under anti-money-laundering regulations, and enforce our Terms & Conditions. Lawful basis: legal obligation.
- Responsible gaming: To monitor for signs of problem gambling behaviour, enforce self-exclusion requests, apply deposit and session limits you have configured, and contact you proactively if our systems detect patterns associated with harmful gambling. Lawful basis: legitimate interests and legal obligation. See our Responsible Gaming page for full details.
Section 3
Data Sharing & Third Parties
krikey11 does not sell your personal data. We share your information only in the limited circumstances described below, and only to the extent necessary for each specific purpose.
- Payment processors: We share the minimum payment details necessary to process your deposit or withdrawal with our approved payment partners: bKash, Nagad, Rocket, Upay, and international card networks (Visa, Mastercard). Each payment partner operates under its own privacy framework and security standards.
- KYC and identity verification providers: We share your submitted identity documents with our third-party KYC verification partner to validate your identity as part of the mandatory account verification process. The KYC provider returns only a verification result to krikey11 and does not retain your raw documents beyond its own stated retention period.
- Anti-fraud and AML screening services: Transaction data and account identifiers may be shared with our anti-money-laundering screening provider to cross-reference against watchlists and flag high-risk transaction patterns in compliance with AML obligations.
- Game content providers: When you launch a game provided by a third-party studio — such as Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, or Ezugi — your account identifier and session token are transmitted to that provider's game server to authenticate your session and record your wager outcomes. Game providers do not receive your full personal profile or payment details.
- Legal and regulatory authorities: We may disclose your personal data to law enforcement agencies, government bodies, or courts if required to do so by applicable law, or if we reasonably believe disclosure is necessary to protect the rights, property, or safety of krikey11, our players, or the public.
- Corporate transactions: In the event of a merger, acquisition, or sale of all or a substantial part of krikey11's assets, your personal data may be transferred to the acquiring entity as part of the transaction, subject to equivalent privacy protections being maintained.
All third-party service providers engaged by krikey11 are contractually required to process personal data only for the purposes specified in our data processing agreements, to maintain appropriate security measures, and to comply with applicable data protection law. krikey11 carries out periodic due diligence reviews of its third-party data processors.
Section 4
Cookies & Tracking Technologies
krikey11 uses cookies and similar client-side storage technologies to maintain the functionality, security, and performance of the platform. A cookie is a small text file placed on your device when you visit the site. The categories of cookies we use are described below.
| Cookie Type | Purpose | Duration | Can Be Disabled? |
|---|---|---|---|
| Strictly Necessary | Maintain your logged-in session, CSRF protection tokens, load balancing identifiers | Session / up to 24 hours | No — required for the platform to function |
| Functional / Preference | Remember your language preference, notification settings, last-visited game lobby section | Up to 90 days | Yes — disabling may reduce personalisation |
| Analytics | Anonymised page-view counts, session duration, game launch frequency — used to improve platform performance and UX | Up to 12 months | Yes — via account notification settings |
| Security | Device fingerprinting for fraud detection, suspicious login pattern identification, multi-account detection | Up to 12 months | No — required to protect your account |
krikey11 does not use third-party advertising cookies, retargeting pixels, social media tracking scripts, or any technology designed to build a cross-site behavioural profile for sale to advertisers. Our analytics cookies generate only anonymised, aggregated data that cannot be used to identify you personally.
You can manage or delete cookies stored by krikey11 through your browser's built-in cookie settings at any time. Note that disabling strictly necessary or security cookies will prevent you from logging in and using the platform. If you clear cookies, you will need to log in again on your next visit and your saved preferences will be reset.
Local Storage: In addition to cookies, krikey11 may use browser local storage to cache game assets and store temporary session state, reducing load times and improving game performance. Local storage data is cleared when you log out or clear your browser's site data.
Section 5
Data Retention & Storage
krikey11 retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, or for as long as is required by applicable legal, regulatory, or contractual obligations. The retention periods below represent our standard practice.
- Active account data: Retained for the full duration your krikey11 account remains open, plus a minimum of five years after account closure to satisfy anti-money-laundering record-keeping requirements.
- KYC and identity documents: Retained for a minimum of five years from the date of verification completion, or longer if required by law. Original document images are stored in encrypted form on secure servers accessible only to the KYC compliance team.
- Transaction records: All deposit, withdrawal, wager, and bonus transaction logs are retained for a minimum of seven years for AML audit purposes.
- Support communications: Chat transcripts and email correspondence are retained for 24 months from the date of the last message in the thread, after which they are permanently deleted unless associated with an open dispute or legal matter.
- Marketing preferences and consent records: Retained for three years from the date consent was granted or withdrawn, to demonstrate compliance with consent obligations.
- Analytics and usage data: Anonymised aggregated analytics data may be retained indefinitely as it cannot be used to identify individual players. Non-anonymised usage logs are retained for 12 months.
- Dormant account data: Where an account is classified as dormant (no activity for 12 consecutive months), personal data is retained under the standard post-closure five-year schedule once the account is formally closed.
Data Storage Location: All personal data collected from krikey11 players is stored on secure servers protected by physical and electronic access controls. krikey11 applies encryption at rest for all data stores containing personal information. Backups are encrypted and stored in geographically separate locations to ensure business continuity.
Secure Deletion: When a retention period expires, personal data is securely and permanently deleted using industry-standard data destruction methods. Where data is held in backup systems, it is deleted from those backups in the next scheduled purge cycle following the expiry of the applicable retention period.
Section 6
Your Privacy Rights
As a player on krikey11, you hold meaningful rights over the personal data we process about you. The following rights are available to you and can be exercised by contacting our support team at support@krikey11 at any time.
- Right of Access: You may request a copy of all personal data that krikey11 holds about you. We will provide this in a readable electronic format within 30 days of receiving a valid request, at no charge for standard requests.
- Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you may request that we correct it. For identity data, corrections may require submission of updated KYC documentation.
- Right to Erasure ("Right to Be Forgotten"): You may request deletion of your personal data. We will fulfil erasure requests except where retention is required by law (for example, AML transaction records must be retained for a minimum of five years and cannot be erased on request). We will inform you of any data we are legally required to retain.
- Right to Restriction of Processing: You may request that we restrict the processing of your personal data in certain circumstances — for example, while the accuracy of your data is contested, or while a complaint is being investigated.
- Right to Data Portability: You may request a structured, machine-readable copy of the personal data you provided to krikey11, which you can then transfer to another service provider of your choice.
- Right to Withdraw Consent: Where krikey11 processes your data on the basis of your consent (such as marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal. Withdrawal can be done via account settings or by emailing support@krikey11.
- Right to Object: You may object to processing carried out on the basis of krikey11's legitimate interests. We will assess your objection and cease processing unless we can demonstrate compelling legitimate grounds that override your interests.
Section 7
Data Security Measures
krikey11 implements a layered approach to data security, combining technical controls, access management policies, and operational procedures to protect your personal information against unauthorised access, loss, alteration, or disclosure.
- Transport Layer Security: All data transmitted between your browser or device and the krikey11 platform is encrypted using TLS 1.2 or higher with 256-bit encryption. Connections over insecure protocols are automatically redirected to HTTPS.
- Encryption at Rest: Personal data stored in krikey11 databases — including identity documents, contact details, and financial records — is encrypted at rest using AES-256 encryption. Encryption keys are managed separately from the data they protect.
- Access Controls: Access to systems containing personal data is restricted on a strict need-to-know basis. All internal staff access is authenticated via multi-factor authentication, and access logs are reviewed periodically by the security team.
- Password Security: Player passwords are never stored in plain text. They are hashed using a modern one-way cryptographic algorithm with per-user salting. Even krikey11 staff cannot retrieve your password — only a reset is possible.
- Two-Factor Authentication: krikey11 offers and encourages SMS-based two-factor authentication (2FA) for all player accounts. Enabling 2FA significantly reduces the risk of unauthorised account access even if your password is compromised.
- Penetration Testing and Security Audits: krikey11 undergoes regular independent security assessments, including penetration testing and vulnerability scanning, to identify and remediate weaknesses before they can be exploited.
- Data Breach Response: In the event of a personal data breach that poses a risk to affected individuals, krikey11 will notify affected players without undue delay, describe the nature of the breach, the data involved, and the steps being taken to contain it and prevent recurrence.
While krikey11 takes every reasonable precaution to protect your data, no online platform can guarantee absolute security. You also play a role in protecting your account: choose a strong, unique password, enable 2FA, never share your login credentials, and contact support@krikey11 immediately if you suspect unauthorised access to your account.
Section 8
Policy Updates & Contact
krikey11 reserves the right to update or revise this Privacy Policy at any time to reflect changes in our data practices, legal obligations, or platform features. When we make material changes — meaning changes that affect your rights or the way we process your personal data in a meaningful way — we will notify you via the email address registered to your account at least seven days before the updated policy takes effect.
The effective date at the top of this policy document reflects the most recent revision. We recommend reviewing this page periodically so you remain informed of how krikey11 handles your personal data. Your continued use of the platform after the effective date of a revised policy constitutes your acceptance of the updated terms.
Minor changes — such as typographical corrections, formatting adjustments, or clarifications that do not alter the substance of our data processing practices — may be made without advance notification. The effective date will be updated to reflect even minor revisions.
This Privacy Policy should be read alongside the Terms & Conditions and Responsible Gaming policy, both of which form part of the overall agreement governing your use of krikey11. In the event of any conflict between this Privacy Policy and the Terms & Conditions on a privacy-related matter, this Privacy Policy shall prevail.
If you are not satisfied with our response to a privacy complaint after contacting us directly, you may escalate your concern to the relevant data protection authority in your jurisdiction. krikey11 will cooperate fully with any lawful regulatory investigation.
Explore krikey11
Your Data Is Safe at krikey11
Now that you have reviewed our Privacy Policy, explore Bangladesh's premier Black Diamond VIP casino — 2,000+ certified games, live BPL cricket betting, and instant bKash & Nagad deposits, all protected by 256-bit SSL encryption and a strict no-data-sale commitment.
18+ Only Please gamble responsibly. See our Responsible Gaming page for support tools and self-exclusion options.
18+ Only Gambling can be addictive. Please play responsibly. See our Responsible Gaming page for support tools and self-exclusion options.