Privacy Policy — How db5555 Handles Your Data
At db5555, the privacy and security of your personal information is a fundamental commitment. This Privacy Policy explains precisely what data we collect when you use our casino and sports betting platform, why we collect it, how it is stored and protected, who it may be shared with, and what rights you hold over your own information.
Six Pillars of Data Protection at db5555
These are the core principles that govern every data-handling decision made by db5555 on behalf of our Bangladesh players
Data We Collect
When you register for and use a db5555 account, we collect a range of personal data that falls into three broad categories: information you provide to us directly, information generated automatically by your use of the platform, and information received from third-party service providers. Each category is described in detail below.
1.1 Information You Provide Directly
At the point of account registration and throughout the ongoing account lifecycle, db5555 collects the following data that you submit to us voluntarily or as a condition of account operation:
- Identity data: Full legal name, date of birth, gender, and nationality as stated on your government-issued identification document.
- Contact data: Mobile phone number (primarily a Bangladeshi number, e.g., bKash-linked), email address, and permanent residential address including district, division, and postcode.
- Verification documents: Copies or images of your National Identity Card (NID), passport, or driving licence submitted during Know Your Customer (KYC) verification.
- Financial data: Mobile wallet account numbers (bKash, Nagad, Rocket, Upay), bank account details for direct bank transfers (Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank), and transaction history related to deposits and withdrawals in BDT.
- Account credentials: Username and hashed password. db5555 never stores your password in plain text.
- Communications: Messages sent to db5555 customer support, including the content of queries, complaints, and responsible gaming self-assessment responses.
1.2 Data Generated Automatically
When you access the db5555 platform through a browser or any other interface, the following technical data is collected automatically as a standard part of how internet services operate:
- Device and browser data: IP address, device type (desktop, mobile, tablet), operating system version, browser type and version, screen resolution, and hardware identifiers.
- Usage data: Pages visited, games launched, betting markets browsed, duration of sessions, click paths, search queries entered within the platform, and timestamps of all significant account events (login, deposit, bet placement, withdrawal request).
- Geolocation data: General geographic location derived from your IP address. db5555 does not collect precise GPS-level location data.
- Cookie and tracking data: As described in Section 3 of this Privacy Policy.
1.3 Data from Third-Party Providers
db5555 may receive supplementary personal data from trusted third-party service providers in the following contexts:
- Payment processors: Transaction confirmation data (reference number, amount, timestamp, status) from bKash, Nagad, Rocket, Upay, and partnered banks to verify that a deposit or withdrawal has been processed.
- Identity verification services: Confirmation of identity document authenticity from third-party KYC verification platforms where used to supplement our internal review process.
- Fraud and risk screening: Signals or scores from fraud-detection service providers used to identify potentially fraudulent account activity or payment anomalies.
db5555 collects personal data on the following legal bases: (a) performance of the contract between you and db5555 (account registration and operation); (b) compliance with legal obligations (KYC, AML); (c) legitimate interests (fraud prevention, platform security); and (d) your consent where specifically requested.
Some data — such as your name, date of birth, contact details, and identity documents — is mandatory. Without it, db5555 cannot open or maintain your account. Other data — such as optional communication preferences — is collected only with your express consent and can be withdrawn at any time.
How We Use Your Data
db5555 uses the personal data we collect for specific, defined purposes. We do not use your data for any purpose that is incompatible with the purpose for which it was originally collected without obtaining your explicit consent. The primary purposes for which we process your data are as follows:
- Account creation and management: To register your db5555 account, verify your identity and age, maintain your account balance in BDT, and provide you with access to all platform features.
- Transaction processing: To process deposit and withdrawal requests via bKash, Nagad, Rocket, Upay, and supported Bangladeshi banks; to confirm payment completion; and to maintain accurate financial records.
- Regulatory compliance and KYC: To fulfil know-your-customer and anti-money-laundering obligations, verify that you are 18 years of age or older, and retain records as required by applicable legal obligations.
- Fraud prevention and security: To monitor account activity for patterns indicative of fraud, bonus abuse, money laundering, underage access attempts, or unauthorised login; to take appropriate protective action where risks are identified.
- Customer support: To respond to your queries and complaints submitted via email to [email protected]; to resolve disputes relating to account activity, payments, and game outcomes.
- Responsible gaming: To monitor play patterns for indicators of problem gambling behaviour; to enforce self-exclusion and deposit limit requests; and to provide personalised responsible gaming notifications where appropriate.
- Platform personalisation and improvement: To analyse aggregated usage patterns (not individual profiling without consent) to improve the platform's design, game selection, and user experience for Bangladeshi players.
- Marketing communications: Where you have given explicit opt-in consent, to send you promotional emails or SMS messages about db5555 bonuses, seasonal promotions (Eid, BPL season, Pohela Boishakh), and relevant platform updates. You may withdraw this consent at any time.
db5555 does not use automated decision-making or profiling that produces legal or similarly significant effects on you without human review. Where automated risk-scoring is used (e.g., in fraud detection), any consequential action — such as account suspension — is reviewed by a human member of the db5555 compliance team before being finalised.
| Purpose | Legal Basis |
|---|---|
| Account registration | Contract performance |
| Age & identity verification | Legal obligation |
| Payment processing | Contract performance |
| Fraud prevention | Legitimate interests |
| AML compliance | Legal obligation |
| Customer support | Contract performance |
| Responsible gaming monitoring | Legal obligation / legitimate interests |
| Marketing communications | Consent |
| Platform analytics | Legitimate interests |
You can withdraw your consent to marketing communications at any time by emailing [email protected] with the subject line "Unsubscribe". Opting out of marketing does not affect the processing of data required to operate your account or comply with legal obligations.
Data Sharing & Third Parties
db5555 does not sell, rent, or otherwise trade your personal data to any external organisation for their own commercial purposes. We share personal data with third parties only in the following specific and controlled circumstances:
- Payment service providers: Transaction data (account reference, amount, timestamp) is shared with bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, and Sonali Bank solely for the purpose of processing your deposit or withdrawal request. These providers act as independent data controllers for their own platforms and their own privacy policies govern their data use.
- KYC and identity verification partners: Where db5555 engages a third-party identity verification service to assist with document authentication, your name, date of birth, and document images may be transmitted to that service in encrypted form. These partners are contractually prohibited from using your data for any purpose other than identity verification on our behalf.
- Game software providers: When you launch a game provided by Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, Ezugi, or other certified studios, your session token and player identifier (not your full personal data) are passed to the game server to manage your session. These providers do not receive your name, financial data, or contact details.
- IT infrastructure and cloud service providers: db5555 uses third-party hosting and infrastructure services. Personal data stored on these systems is subject to the same encryption and access-control standards as data held internally. These providers act as data processors under contract with db5555.
- Legal and regulatory authorities: db5555 may be legally required to disclose personal data to government bodies, law enforcement agencies, or financial intelligence units in response to a valid legal request, court order, or statutory obligation. We will inform you of such disclosure where we are legally permitted to do so.
- Business transfers: In the event of a merger, acquisition, or sale of assets involving db5555, personal data held on our platform may be transferred to the acquiring entity, subject to equivalent privacy protections being in place. You will be notified of any such transfer in advance where legally and operationally feasible.
All third-party data processors engaged by db5555 are required to enter into a data processing agreement that mandates compliance with applicable data protection standards, limits the use of your data strictly to the agreed purpose, and prohibits onward transfer to additional parties without db5555's written authorisation.
Some of db5555's infrastructure and game provider partners operate servers located outside Bangladesh. Where personal data is transferred internationally, db5555 takes steps to ensure that equivalent data protection safeguards apply in the destination country, including through the use of standard contractual clauses and data processing agreements.
db5555 has never sold and will never sell personal data belonging to its players to any third party for advertising, profiling, credit scoring, or any other commercial purpose. Our business model is based on providing gaming services, not on monetising user data.
Every third-party data processor engaged by db5555 is subject to a binding contract that specifies data protection requirements, audit rights, and incident notification obligations. We review processor compliance on a periodic basis.
Data Retention & Storage
db5555 retains personal data for the minimum period necessary to fulfil the purpose for which it was collected, unless a longer retention period is required by applicable law or legitimate business necessity. The following table summarises our standard retention periods by data category:
| Data Category | Retention Period | Reason |
|---|---|---|
| Account registration data (name, DOB, contact) | Duration of account + 5 years post-closure | KYC and AML regulatory obligation |
| Identity verification documents (NID, passport) | Duration of account + 5 years post-closure | Anti-money-laundering compliance |
| Transaction and payment records | 7 years from transaction date | Financial record-keeping legal obligation |
| Betting and game history | 5 years from bet settlement | Dispute resolution and regulatory audit |
| Customer support communications | 3 years from last interaction | Dispute resolution and quality assurance |
| Marketing consent records | Until consent withdrawn + 3 years | Proof of consent for regulatory purposes |
| Analytics and usage data | 13 months on a rolling basis | Platform improvement; anonymised thereafter |
| Fraud and security logs | 3 years from event date | Fraud investigation and platform security |
Upon expiry of the applicable retention period, db5555 will either securely delete your personal data or, where deletion is not technically immediately feasible, anonymise it such that it can no longer be associated with your identity. Anonymised data may be retained indefinitely for statistical and analytical purposes. Please note that where you have exercised your right to erasure (see Section 6), we may retain a minimal record of the erasure request itself to demonstrate compliance.
Your Privacy Rights
As a db5555 user whose personal data we process, you hold a number of rights in relation to that data. db5555 is committed to facilitating the exercise of these rights promptly and without unnecessary friction. To exercise any of the rights described below, please contact us at [email protected] with the subject line clearly stating the right you wish to exercise. We will acknowledge your request within 5 business days and aim to fulfil it within 30 calendar days, subject to identity verification and any applicable legal limitations.
Data Security Measures
db5555 implements a layered approach to data security, combining technical safeguards, organisational controls, and staff training to protect the personal data of our Bangladesh players against unauthorised access, accidental loss, destruction, or alteration. The following measures are in place:
- Transport Layer Security (TLS/SSL): All data transmitted between your browser or device and the db5555 servers is encrypted using current TLS protocols. Our SSL certificate is maintained and renewed continuously.
- Password hashing: Account passwords are never stored in plain text. db5555 uses a strong cryptographic hashing algorithm with per-user salting, meaning that even an internal database exposure cannot reveal your actual password.
- Access controls: Access to personal data within db5555's internal systems is restricted on a strict need-to-know basis. Staff members can only access the personal data relevant to their specific role. Access rights are reviewed and updated whenever roles change.
- Multi-factor authentication: Privileged internal access to systems holding personal data requires multi-factor authentication. We encourage db5555 account holders to use strong, unique passwords and to contact support immediately if they suspect unauthorised access.
- Security monitoring and logging: db5555's infrastructure is monitored continuously for security incidents, unusual access patterns, and potential intrusion attempts. Security logs are retained for investigation and audit purposes.
- Incident response: db5555 maintains a data breach response procedure. In the event of a personal data breach that poses a risk to your rights, we will notify affected users and relevant authorities within the timeframes required by applicable law.
- Third-party security assessments: Material data processors engaged by db5555 are subject to security review as part of the onboarding process and are contractually obligated to maintain equivalent security standards.
While db5555 takes all reasonable and practicable steps to protect your personal data, no internet-based platform can guarantee absolute security against all possible threats. You also have a role to play in keeping your account secure — please use a strong and unique password, do not share your login credentials, and contact us immediately at [email protected] if you notice any suspicious activity on your account.
All connections to db5555.app are protected by SSL/TLS encryption. Look for the padlock icon in your browser's address bar to confirm your connection is secure before entering any account credentials.
Never share your db5555 username or password with anyone, including people claiming to be db5555 staff. Our support team will never ask for your password. If you receive such a request, treat it as a phishing attempt and report it to [email protected] immediately.
If a data breach occurs that is likely to result in a risk to your rights and freedoms, db5555 will notify affected users without undue delay via the email address registered to your account. We will describe the nature of the breach, the data affected, and the steps we are taking to address it.
Contact & Complaints
If you have any questions about this Privacy Policy, wish to exercise any of your data rights, or want to raise a concern about how db5555 handles your personal data, please contact our privacy team using the details below. All privacy-related correspondence is treated as confidential and handled by trained staff.
Email:
Subject line: Please use "Privacy Request" or "Data Rights" to ensure your message is routed to the correct team.
Response time: We aim to acknowledge all privacy queries within 5 business days (Bangladesh Standard Time, UTC+6) and to provide a substantive response within 30 calendar days.
Changes to This Privacy Policy
db5555 reserves the right to update this Privacy Policy at any time to reflect changes in our data practices, operational requirements, or applicable legal obligations. When we make material changes, we will post the revised policy on this page with an updated effective date and, where appropriate, notify registered users via email. We encourage you to review this page periodically to stay informed about how we protect your data. Continued use of the db5555 platform following publication of a revised Privacy Policy constitutes your acknowledgement of the updated terms.
Minors
The db5555 platform is strictly for adults aged 18 and above. We do not knowingly collect personal data from individuals under the age of 18. If you believe that a person under 18 has created a db5555 account, please contact us immediately at [email protected] so that we can investigate and take appropriate action, including account closure and data deletion.
Ready to Explore db5555?
Now that you know how we protect your data, discover everything db5555 has to offer — from cricket betting and live casino to slots, fishing games, and more. Play safely and responsibly.