crickxe Privacy Policy
Your privacy matters to us. This Privacy Policy explains exactly what personal data crickxe collects, why we collect it, how we use it, who we share it with, and how we protect it — so you can make informed decisions about your account.
Identity & KYC Data
We collect your full name, date of birth, NID or passport details, and address for account verification and Know Your Customer (KYC) compliance. This data is stored securely and never sold to third parties.
Contact & Mobile Data
Your registered mobile number and email address are used for account communications, deposit and withdrawal confirmations, security alerts, and — where you have opted in — promotional notifications via SMS or email.
Financial Transaction Data
Transaction records covering bKash, Nagad, Rocket, Upay, and bank transfer deposits and withdrawals are retained for financial audit, anti-money laundering (AML) compliance, and dispute resolution purposes.
Gaming Activity Logs
We record your betting history, game sessions, bonus claims, and account activity logs. This data supports responsible gaming monitoring, fraud detection, dispute resolution, and personalised account management.
Technical & Device Data
IP addresses, device type, browser fingerprint, operating system, and session timestamps are collected automatically to maintain platform security, prevent fraudulent access, and optimise the platform experience.
256-Bit SSL Encryption
All data transmitted between your device and crickxe servers is protected using 256-bit SSL encryption. Sensitive data at rest is stored using industry-standard encryption protocols on secure, access-controlled infrastructure.
Information We Collect
crickxe collects personal data through several channels: information you provide directly when registering an account or completing KYC verification; information generated automatically when you use the platform; and, in limited circumstances, information received from trusted third-party identity verification or payment processing partners.
The categories of personal data we collect include:
| Category | Examples | Collection Method |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, NID or passport number, photograph | Provided directly during registration and KYC verification |
| Contact Data | Mobile number, email address, residential address in Bangladesh (Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, Cox's Bazar) | Provided directly during registration or account update |
| Financial Data | bKash / Nagad / Rocket / Upay mobile wallet number, bank account details, deposit and withdrawal records, transaction timestamps | Provided during deposit or withdrawal and generated automatically by the payment system |
| Gaming Activity Data | Bet history, game session logs, bonus claims, win/loss records, responsible gaming tool usage | Generated automatically during platform use |
| Technical Data | IP address, device type, operating system, browser type and version, session duration, referring URL | Collected automatically via server logs and cookies |
| Communications Data | Live chat transcripts, email correspondence, support ticket content | Generated when you contact the crickxe support team |
crickxe does not collect special category data (such as health information, religious beliefs, or political opinions) and does not knowingly collect any personal data from individuals under the age of 18. If we become aware that data has been collected from a minor, that data will be deleted immediately and the associated account closed.
You are not required to provide all categories of data to access the platform, but certain data is mandatory for account registration, KYC verification, and the processing of financial transactions. Where data is optional, this will be indicated at the point of collection.
How We Use Your Data
crickxe processes your personal data only for legitimate, specified purposes. We do not use your data for any purpose that is incompatible with the reasons for which it was originally collected. The primary purposes for which we process personal data are set out below.
- Account management: Creating, verifying, maintaining, and administering your crickxe account, including processing your registration details and authenticating your identity at login.
- KYC and age verification: Verifying that you meet the 18+ age requirement and confirming your identity in compliance with our account verification obligations. KYC checks are conducted before your first withdrawal and may be repeated periodically.
- Financial transaction processing: Processing deposits and withdrawals via bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank, Visa, and Mastercard; generating transaction receipts; and maintaining accurate financial records.
- Platform operation and improvement: Providing access to casino games, sports betting markets, live dealer tables, crash games including Dice and Space Max, and all other crickxe platform features; diagnosing technical issues; and improving platform performance and user experience.
- Fraud prevention and security: Detecting, investigating, and preventing fraudulent activity, money laundering, duplicate accounts, bonus abuse, and other prohibited conduct as defined in the crickxe Terms & Conditions.
- Responsible gaming: Monitoring gaming activity for signs of problematic gambling behaviour; applying self-exclusion, deposit limit, and take-a-break tools; and providing targeted responsible gaming information where appropriate.
- Customer support: Responding to your enquiries, resolving disputes, processing complaints, and maintaining records of our correspondence with you.
- Regulatory compliance: Meeting applicable anti-money laundering (AML), counter-terrorism financing (CTF), and data protection obligations.
- Marketing communications (opt-in only): Sending promotional emails or SMS notifications about bonuses, BPL season offers, Eid promotions, Pohela Boishakh specials, and other crickxe offers — but only where you have explicitly opted in to receive such communications. You may withdraw your consent at any time via your account settings or by contacting support.
Data Sharing & Disclosure
crickxe shares your personal data with third parties only where it is necessary to deliver platform services, comply with legal obligations, or protect the security and integrity of the platform. All third parties who receive your data are required to handle it in accordance with applicable data protection standards and are prohibited from using it for any purpose beyond that for which it was disclosed.
The categories of third parties with whom we may share your personal data are as follows:
- Payment processors: bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank, and card networks including Visa and Mastercard receive the transaction data strictly necessary to process your deposits and withdrawals. These providers operate under their own data protection policies and are independently regulated financial institutions.
- Identity verification providers: Third-party KYC and age verification service providers may receive copies of your identification documents and personal details for the purpose of confirming your identity. These providers are contractually bound to process your data solely for verification purposes.
- Game technology providers: Platform providers including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi receive technical session data (such as player ID and game session tokens) necessary to deliver game content. These providers do not receive your full identity or financial records.
- Fraud prevention and AML services: Where required by our compliance obligations, transaction data and account behaviour data may be shared with specialist fraud detection and anti-money laundering monitoring services.
- Legal and regulatory authorities: crickxe will disclose personal data to law enforcement agencies, financial intelligence authorities, or other competent authorities where we are legally required to do so, or where we have a good-faith belief that disclosure is necessary to investigate suspected illegal activity, protect the rights of the platform or other users, or respond to a lawful legal process.
- Professional advisers: Our legal counsel, auditors, and financial advisers may access personal data to the extent strictly necessary for the provision of their professional services to crickxe.
crickxe does not transfer your personal data outside Bangladesh to jurisdictions with lower data protection standards without first ensuring that appropriate safeguards are in place. Where such transfers are necessary for the delivery of game content or payment services, they are conducted under contractual protections that require the recipient to maintain data protection standards equivalent to those applied by crickxe.
Cookies & Tracking Technologies
crickxe uses cookies and similar tracking technologies (including local storage objects and session tokens) to operate the platform, maintain your session state, remember your preferences, and gather analytical data that helps us improve the platform experience for players across Bangladesh.
The types of cookies used on crickxe are described below:
Required for the platform to function. These include session authentication tokens, CSRF protection cookies, and load-balancing cookies. They cannot be disabled without breaking core platform functionality. No consent is required for these cookies.
Used to measure platform performance, track page views, and understand how players navigate crickxe. Analytics data is aggregated and anonymised. These cookies help us identify popular game categories, optimise page load times, and improve navigation.
Store your platform preferences such as your last visited game category, display language setting, and notification preferences. These cookies improve your experience by avoiding the need to re-enter settings on each visit.
Help us identify suspicious activity patterns, detect automated bots, and flag potentially fraudulent login attempts. These cookies are an essential component of our platform security infrastructure and operate alongside server-side fraud monitoring systems.
Most web browsers allow you to control cookie behaviour through your browser settings. You can set your browser to block cookies, delete existing cookies, or notify you when a cookie is set. Please note that disabling strictly necessary cookies will prevent you from logging in or using the crickxe platform. Disabling preference or analytics cookies will not affect your ability to use core platform features but may result in a less personalised experience.
crickxe does not use third-party advertising cookies or behavioural retargeting technologies that track your activity across external websites.
Data Retention
crickxe retains personal data only for as long as it is necessary for the purposes described in this Policy, or as required by applicable legal, regulatory, or audit obligations. We apply a structured data retention schedule that balances our operational needs with our commitment to minimising the amount of personal data we hold.
The general retention periods applied by crickxe are as follows:
- Account registration data: Retained for the lifetime of the account and for a minimum of 5 years following permanent account closure, in compliance with AML and financial record-keeping obligations.
- KYC and identity verification documents: Retained for a minimum of 5 years following account closure or the last transaction, whichever is later.
- Financial transaction records: Retained for a minimum of 5 years following the date of the transaction, in line with financial audit and AML compliance requirements.
- Gaming activity logs: Retained for a minimum of 3 years following the session date, for responsible gaming monitoring, dispute resolution, and fraud detection purposes.
- Customer support communications: Retained for 2 years from the date of the last correspondence, unless the subject matter of the communication relates to an ongoing dispute or investigation.
- Technical and device data (server logs): Retained for 12 months on a rolling basis, unless specific log entries are required to be preserved for security investigation or legal proceedings.
- Marketing consent records: Retained for as long as the consent remains active, plus 3 years following withdrawal of consent, to demonstrate compliance with consent obligations.
Upon expiry of the applicable retention period, personal data is securely deleted or anonymised so that it can no longer be associated with an individual player. Where data must be retained beyond the standard period due to a specific legal hold, players will be notified where practicable.
Data Security Measures
crickxe takes the security of your personal data seriously and implements a range of technical and organisational measures designed to protect your data against unauthorised access, accidental loss, destruction, or disclosure. While no digital platform can guarantee absolute security, we continuously review and update our security practices to address emerging threats.
Our key security measures include:
- 256-bit SSL/TLS encryption: All data transmitted between your device and our servers is encrypted in transit using 256-bit SSL/TLS protocols, preventing interception by third parties.
- Encryption at rest: Sensitive personal data stored on our servers — including identity documents, financial records, and authentication credentials — is encrypted at rest using industry-standard encryption algorithms.
- Access controls: Access to personal data within crickxe is restricted to authorised personnel on a strict need-to-know basis. All internal access to player data is logged and subject to periodic audit.
- Two-factor authentication (2FA): Players are strongly encouraged to enable 2FA on their crickxe accounts to add an additional layer of authentication security beyond the password.
- Intrusion detection and monitoring: Our infrastructure is protected by real-time intrusion detection systems, automated anomaly alerting, and 24/7 security monitoring to identify and respond to suspicious activity promptly.
- Penetration testing: crickxe conducts periodic security assessments and penetration tests to identify and address vulnerabilities in our platform infrastructure before they can be exploited.
- Incident response: In the event of a data breach that poses a risk to players, crickxe will follow a documented incident response procedure that includes containment, assessment, notification, and remediation steps. Affected players will be notified without undue delay where the breach is likely to result in a high risk to their rights and freedoms.
Players also have an important role to play in keeping their accounts secure. We recommend choosing a strong, unique password for your crickxe account, enabling 2FA, never sharing your login credentials, and contacting support immediately if you suspect that your account has been accessed without your authorisation.
Your Privacy Rights
crickxe respects your right to understand, access, and control your personal data. As a player, you have the following rights with respect to the personal data we hold about you.
- Right of access: You have the right to request a copy of the personal data that crickxe holds about you. We will provide this information within a reasonable timeframe, subject to identity verification.
- Right to rectification: If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct it. You can update certain information directly within your account settings.
- Right to erasure: You may request that we delete your personal data where it is no longer necessary for the purposes for which it was collected, where you withdraw consent (where consent is the legal basis for processing), or where the data has been processed unlawfully. Please note that erasure requests may not be fulfilled where we are legally required to retain the data — for example, to comply with AML record-keeping obligations.
- Right to restrict processing: You may request that we restrict the processing of your personal data in certain circumstances, for example where you contest the accuracy of the data or where you have objected to processing pending verification of our legitimate grounds.
- Right to data portability: Where processing is based on your consent or on the performance of a contract, you have the right to receive your personal data in a structured, commonly used, machine-readable format.
- Right to withdraw consent: Where we process your data on the basis of your consent (for example, for marketing communications), you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
- Right to object to marketing: You may opt out of marketing communications at any time by updating your notification preferences in your account settings or by contacting the crickxe support team via live chat.
To exercise any of the rights described above, please contact the crickxe support team via the live chat facility available within the platform. We may need to verify your identity before processing your request. We will respond to all privacy rights requests within a reasonable timeframe. Where a request is complex or involves a large volume of data, we will inform you of the expected timeline.
Please note that the exercise of certain rights — particularly erasure — may result in the closure of your crickxe account if the data requested for deletion is necessary for us to provide the service or fulfil legal obligations.
Policy Updates & Contact
crickxe reviews this Privacy Policy periodically and will update it to reflect changes in our data processing practices, legal requirements, or platform features. When we make a material change to this Policy, we will notify registered players via their registered email address or via an on-platform notification prior to the change taking effect. The effective date at the top of this Policy will be updated to reflect the date of the most recent revision.
Players are encouraged to review this Policy periodically to stay informed about how crickxe protects their personal data. Your continued use of the platform following the posting of any update constitutes acceptance of the revised Policy. If you do not accept the revised Policy, you should close your account and cease using the platform.
This Policy is effective as of January 2026 and supersedes all previous versions of the crickxe Privacy Policy.
Privacy Enquiries
If you have any questions about this Privacy Policy, wish to exercise a privacy right, or have a concern about how your personal data is being handled, please contact the crickxe support team via the live chat facility available within the platform.
You may also reach us by email at: support@crickxe (plain text — not a clickable link). We aim to respond to all privacy enquiries within 5 business days. Bangladesh Standard Time (BST, UTC+6) applies to all response time commitments.
Have Questions About Your Privacy?
Our support team is available around the clock to answer any questions about your personal data on crickxe. You can also review our Terms & Conditions, explore our Responsible Gaming tools, or head back to the casino lobby. 18+ only.