okbdt Privacy Policy — Your Data, Handled with Care
At okbdt, protecting your personal information is a responsibility we take seriously. This Privacy Policy explains exactly what data we collect when you use our platform, why we collect it, how it is stored and secured, who it may be shared with, and what rights you hold over your own information. We believe that transparency builds trust — and trust is the foundation of every great gaming experience.
Our Core Privacy Commitments
These cards summarise the principles that guide every data decision at okbdt. Full details are available in the legal sections below.
Minimal Data Collection
We collect only the personal data we genuinely need to operate your account, verify your identity, process payments, and keep the platform secure. We do not collect data for its own sake.
No Data Sales
okbdt does not sell, rent, or trade your personal data to marketing companies, data brokers, or any third party for commercial gain. Your information is yours.
Industry-Standard Security
All data in transit is protected by SSL/TLS encryption. Sensitive stored data is encrypted at rest using AES-256. Our infrastructure undergoes regular independent security audits.
Your Rights, Respected
You have the right to access, correct, export, or delete your personal data at any time. Submit a data request to [email protected] and we will respond within 5 business days.
Bangladesh-First Approach
Our data practices are designed with Bangladeshi players in mind. We work with local payment partners including bKash, Nagad, and Rocket, and handle all related data with the same rigour as international standards.
Marketing Opt-Out
Promotional communications are always opt-in. You can withdraw consent for marketing emails, SMS alerts, and push notifications at any time through your account settings or by contacting support.
Information We Collect
When you interact with the okbdt platform — whether by registering an account, making a deposit, placing a wager, or simply browsing our site — certain information about you is collected. We categorise the personal data we collect into three broad groups: information you provide directly, information generated automatically by your use of the platform, and information obtained from third parties in the course of verifying your identity or processing payments.
1.1 Information You Provide Directly
The following data is collected when you register, complete KYC verification, make a payment, or contact our support team:
- Identity Information: Full legal name, date of birth, gender, and nationality as they appear on your National Identity Card (NID) or Bangladesh Passport.
- Contact Information: Email address, mobile phone number, and residential address (city, district, and postal code).
- KYC Documents: Scanned or photographed copies of your NID, passport, or other government-issued identification; utility bills or bank statements submitted as proof of address; screenshots or confirmation letters from bKash, Nagad, Rocket, or Upay confirming that the mobile wallet is registered in your name.
- Financial Information: Details of the payment methods linked to your okbdt account (mobile wallet numbers, partial bank account details). Full card numbers are never stored by okbdt — card transactions are processed by PCI-DSS-compliant third-party payment processors.
- Support Communications: The content of any messages, emails, or live chat conversations you have with the okbdt support team, including any attachments or screenshots you submit.
- Responsible Gaming Inputs: Any deposit limits, session time limits, self-exclusion requests, or cool-off periods you set via the responsible gaming tools in your account dashboard.
1.2 Information Collected Automatically
When you access the okbdt platform, our servers and analytics systems automatically record certain technical and behavioural data:
- Device and Technical Data: IP address, device type (mobile, tablet, or desktop), operating system and version, browser type and version, screen resolution, and device language settings.
- Usage Data: Pages visited on the okbdt website, time and duration of visits, games launched, bet amounts and outcomes (for platform integrity purposes), session start and end times, and navigation paths through the platform.
- Location Data: Approximate geolocation derived from your IP address. We use this to apply regional access controls and to detect suspicious login patterns. We do not access GPS-level device location without explicit permission.
- Cookies and Tracking Data: Information collected via cookies, web beacons, and similar technologies. See Section 4 (Cookies and Tracking Technologies) for full details.
1.3 Information from Third Parties
In certain circumstances, okbdt receives personal data about you from third-party sources in order to verify your identity, prevent fraud, and comply with anti-money laundering obligations:
- Payment Processors: bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, Islami Bank, Sonali Bank, and City Bank may share transaction confirmation data, mobile wallet registration status, and account holder name data with okbdt as part of payment processing and verification.
- Identity Verification Services: Where automated document verification is employed, a licensed third-party KYC provider may share the result of an identity check (pass/fail and confidence score) with okbdt. The underlying biometric or document data remains with the KYC provider and is subject to their own privacy policy.
- Fraud and AML Screening: okbdt may check your details against commercially available fraud databases and sanctions lists as part of our anti-money laundering and know-your-customer obligations.
Data Categories Summary
| Category | Examples |
|---|---|
| Identity | Name, DOB, NID |
| Contact | Email, phone, address |
| Financial | Wallet number, bank name |
| Technical | IP address, device type |
| Behavioural | Games played, bets placed |
| Communications | Support chat, email |
How We Use Your Information
okbdt uses the personal data collected from you for specific, legitimate purposes. We do not use your data in ways that are incompatible with the purposes described at the time of collection. The legal basis for each processing activity is identified below.
2.1 Account Management and Service Delivery
We use your identity, contact, and financial information to create and maintain your player account, verify your eligibility to use the platform, process deposits and withdrawals via your chosen payment method, deliver promotional bonuses you have opted into, and provide customer support. This processing is necessary for the performance of the contract between you and okbdt.
2.2 Identity Verification and Regulatory Compliance
We are obliged to verify the identity and age of every player before permitting real-money withdrawals. Your KYC documents and identity information are processed for this purpose, as well as to comply with anti-money laundering (AML) obligations, fraud prevention requirements, and responsible gaming regulations. This processing is carried out on the basis of legal obligation and legitimate interest.
2.3 Platform Security and Fraud Prevention
Technical data including IP address, device fingerprint, login times, and session behaviour is analysed by our automated security systems to detect suspicious activity such as multiple account registration, credential stuffing attacks, bonus abuse, and payment fraud. Where suspicious activity is detected, okbdt may take protective action including temporary account suspension pending manual review.
2.4 Personalisation and Product Improvement
Behavioural and usage data helps us understand how players interact with the okbdt platform. We use aggregate, anonymised analytics to improve game selection, optimise page performance, prioritise feature development, and tailor promotional offers. We do not use individually identified behavioural data to make automated decisions that significantly affect you without human oversight.
2.5 Marketing Communications
With your consent, okbdt may send you promotional emails, SMS messages, and push notifications about new games, bonuses, tournaments, and seasonal promotions (such as Eid specials or BPL cricket offers). You may withdraw your marketing consent at any time through the Notifications section of your account dashboard or by replying STOP to any SMS. Withdrawal of marketing consent does not affect the lawfulness of prior communications or the processing of data for non-marketing purposes.
2.6 Responsible Gaming Obligations
okbdt uses your gaming activity data — including bet frequency, session duration, deposit patterns, and self-imposed limit history — to monitor for signs of problem gambling behaviour. Where our systems identify patterns consistent with harmful gambling, our responsible gaming team may proactively contact you to offer support resources and tools. This processing is carried out on the basis of our legitimate interest in player welfare and our commitment to responsible gaming standards.
Data Sharing and Disclosure
okbdt does not sell your personal data to any third party. We share data only where necessary to deliver our services, comply with legal obligations, or protect the security of the platform and its users. The categories of recipients with whom your data may be shared are set out below.
3.1 Payment Service Providers
To process your deposits and withdrawals, okbdt shares the minimum necessary payment and identity data with our payment partners: bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, Islami Bank, Sonali Bank, and City Bank. These partners act as independent data controllers for their own services and are bound by their own privacy policies and applicable financial regulations.
3.2 Game Software Providers
The games available on okbdt are powered by third-party software studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. To deliver game content and maintain fair-play certification, limited technical data (such as a pseudonymous player identifier and session token) is shared with game providers. These providers do not receive your full name, NID, or payment details.
3.3 KYC and Fraud Screening Services
Where automated identity verification is used, your document images and biometric data may be processed by a licensed KYC technology provider. okbdt selects providers that operate under strict data processing agreements and comply with internationally recognised data protection standards. Data shared with KYC providers is used solely for verification purposes and is not used by those providers for any other commercial purpose.
3.4 Legal and Regulatory Authorities
okbdt will disclose personal data to law enforcement agencies, regulatory bodies, or courts of competent jurisdiction where we are required to do so by law, court order, or regulatory direction. We will, where legally permissible, notify affected users of such disclosures. okbdt may also disclose data where disclosure is necessary to protect the vital interests of a person, to prevent imminent harm, or to defend against a legal claim.
3.5 Business Transfers
In the event that okbdt undergoes a merger, acquisition, restructuring, or sale of all or part of its business assets, your personal data may be transferred as part of that transaction. You will be notified of any such transfer and of any changes to the privacy practices applicable to your data before the transfer takes effect. The acquiring entity will be required to honour the commitments made in this Privacy Policy.
Cookies and Tracking Technologies
okbdt uses cookies and similar tracking technologies to ensure the platform functions correctly, to remember your preferences, to maintain your logged-in session, and to gather aggregate analytics about how users navigate the site. A cookie is a small text file placed on your device by a web server; it cannot execute code or carry viruses.
4.1 Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Session management, login authentication, security tokens, and CSRF protection. These cookies are essential — the platform cannot function without them. | Session / up to 24 hours |
| Functional | Remembering your preferred language, game lobby view settings, last-used payment method, and responsible gaming reminder settings. | Up to 90 days |
| Analytics | Aggregated, anonymised data about page views, navigation paths, session duration, and feature engagement. Used to improve platform design and performance. No individually identifiable data is retained. | Up to 12 months |
| Security / Fraud Detection | Device fingerprinting and behavioural signals used by our fraud prevention system to detect suspicious account activity, multi-accounting, and automated bot traffic. | Up to 12 months |
4.2 Managing Your Cookie Preferences
Strictly necessary cookies cannot be disabled as they are essential to the secure operation of your account. You may disable functional and analytics cookies at any time via the Cookie Preferences panel in your account settings. You may also configure your browser to refuse cookies globally, though this will impair certain features of the okbdt platform, including the ability to stay logged in between sessions.
4.3 Third-Party Cookies
Some cookies placed on your device when visiting okbdt originate from third-party services integrated into the platform, such as game software providers and analytics tools. These third parties set cookies under their own domain and according to their own privacy policies. okbdt does not control third-party cookies and recommends reviewing the privacy policies of the relevant providers for full details.
Cookie Control Summary
- Strictly Necessary — always active, cannot be turned off
- Functional — on by default, user can opt out
- Analytics — on by default, user can opt out
- Security — always active, required for fraud prevention
Manage preferences via account settings or adjust your browser's cookie controls.
Data Security and Storage
okbdt implements a multi-layered technical and organisational security framework designed to protect your personal data from unauthorised access, accidental loss, destruction, or disclosure. No security system is impenetrable, but we apply industry best practices and review our controls regularly.
5.1 Encryption
All data transmitted between your device and the okbdt platform is protected by TLS 1.2 or higher encryption, indicated by the HTTPS padlock in your browser's address bar. Sensitive personal data stored in our databases — including identity documents, payment method details, and account passwords — is encrypted at rest using AES-256 encryption. Passwords are hashed using a cryptographically strong one-way algorithm (bcrypt) and are never stored in recoverable plain text.
5.2 Access Controls
Access to personal data within the okbdt organisation is granted on a strict need-to-know basis. Internal staff roles are assigned the minimum data access rights required to perform their job functions. Access permissions are reviewed quarterly. All internal access to the production database is logged, and anomalous access patterns trigger an automatic alert to our security team. Employees with access to personal data are bound by confidentiality obligations as a condition of their employment.
5.3 Infrastructure Security
The okbdt platform is hosted on cloud infrastructure that undergoes independent security certification. Our servers are protected by web application firewalls (WAF), intrusion detection systems (IDS), and distributed denial-of-service (DDoS) mitigation. Penetration testing is conducted at least annually by an independent security firm, and critical vulnerabilities are remediated within 72 hours of identification.
5.4 Data Breach Response
In the event of a data breach that poses a risk to your personal information, okbdt will conduct an immediate internal investigation and, where required, notify affected users within 72 hours of confirming the breach. Notifications will be sent to your registered email address and will describe the nature of the breach, the categories of data affected, the likely consequences, and the steps okbdt has taken or plans to take to address the situation. We will also report qualifying breaches to relevant authorities as required by applicable law.
5.5 Data Location
Your personal data is primarily stored on servers located in data centres with strong security certifications. Where data is processed by a third-party service provider in a different jurisdiction, okbdt ensures that adequate data transfer safeguards are in place, including contractual obligations aligned with recognised international data protection standards. okbdt does not transfer personal data to jurisdictions with inadequate data protection frameworks without implementing appropriate supplementary safeguards.
Your Privacy Rights
As a user of the okbdt platform, you hold specific rights in relation to the personal data we hold about you. okbdt is committed to honouring these rights promptly and without undue obstruction. To exercise any of the rights described below, please write to us at [email protected] with the subject line "Data Rights Request" and include your registered username and a description of your request.
6.1 Right of Access
You have the right to request a copy of the personal data okbdt holds about you. Upon receipt of a verified request, we will provide a structured summary of your data within 5 business days. This summary will include the categories of data held, the purposes for which it is processed, the parties with whom it has been shared, and the retention period applicable to each category.
6.2 Right to Rectification
If any personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected. Minor corrections (such as updating a phone number or email address) can be made directly through your account settings. For corrections to identity documents or KYC information, contact support with the corrected documentation and we will process the update within 3 business days.
6.3 Right to Erasure
You have the right to request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected, where you withdraw consent and there is no other lawful basis for processing, or where the data has been unlawfully processed. Please note that certain data must be retained for specified periods to comply with legal and regulatory obligations — for example, transaction records and KYC documents may be required for up to 5 years under AML regulations. In such cases, okbdt will delete all data that is not subject to a mandatory retention obligation and will clearly explain what data must be retained and why.
6.4 Right to Restriction
You may request that okbdt restrict the processing of your personal data — meaning we continue to store it but do not use it for any purpose — while a correction request is being resolved, where processing is unlawful and you prefer restriction over erasure, or where okbdt no longer needs the data but you require it for a legal claim.
6.5 Right to Data Portability
Where processing is based on your consent or on a contract, and is carried out by automated means, you have the right to receive a copy of your personal data in a structured, commonly used, machine-readable format (such as JSON or CSV) so that you can transfer it to another service provider.
6.6 Right to Object to Marketing
You have an absolute right to object to the use of your personal data for direct marketing purposes at any time. Upon receipt of such an objection, okbdt will immediately cease all marketing communications to you and will update your preferences in our systems within 48 hours.
Your Rights at a Glance
- Access — receive a copy of your data
- Rectification — correct inaccurate data
- Erasure — request deletion of your data
- Restriction — pause processing of your data
- Portability — export your data
- Opt-Out — stop marketing communications
Response within 5 business days. No fee. Email [email protected].
Data Retention Policy
okbdt retains personal data only for as long as is necessary to fulfil the purposes described in this Privacy Policy, to comply with applicable legal and regulatory obligations, to resolve disputes, and to enforce our agreements. When the applicable retention period expires, data is securely deleted or anonymised so that it can no longer be linked to any individual.
7.1 Retention Schedule
| Data Category | Retention Period | Basis for Retention |
|---|---|---|
| Account registration data (name, email, phone) | Duration of account + 2 years after closure | Contractual obligation, dispute resolution |
| KYC identity documents (NID, passport, address proof) | Duration of account + 5 years after closure | AML regulatory requirement |
| Financial transaction records (deposits, withdrawals) | 7 years from transaction date | AML and financial record-keeping regulations |
| Support communications (chat logs, emails) | 3 years from last interaction | Legitimate interest, dispute resolution |
| Responsible gaming records (limits, self-exclusions) | Duration of account + 5 years after closure | Responsible gaming compliance |
| Technical and usage logs (IP, device, session data) | 12 months from collection | Security, fraud prevention |
| Marketing preferences and consent records | Duration of account + 3 years after closure | Proof of consent, legal compliance |
| Analytics data (anonymised, aggregated) | Indefinite (no personal identifiers retained) | Product improvement (no personal data retained) |
7.2 Account Closure and Data Deletion
When you close your okbdt account, we begin the process of deleting or anonymising data that is no longer required. Data subject to mandatory retention periods (particularly KYC documents and financial transaction records) will be retained in a restricted archive for the legally required period and then permanently deleted. You will not receive marketing communications after your account is closed unless you subsequently re-register and provide fresh consent.
7.3 Self-Exclusion Data
If you have registered a self-exclusion request with okbdt, your exclusion record and the associated personal data are retained for the full duration of your self-exclusion period and for a minimum of 5 years thereafter. This is to prevent the reactivation of accounts for excluded players and to support responsible gaming compliance. Self-exclusion records are not deleted upon request during the active exclusion period.
Updates to This Privacy Policy
okbdt reviews this Privacy Policy at least once per calendar year and whenever there is a material change to our data processing practices, a change in applicable law, or the introduction of a new service or technology that affects how personal data is handled. The most current version of this Privacy Policy is always available at okbdt.net/privacy-policy.
8.1 How We Notify You of Changes
For minor, non-material changes (such as corrections to wording, clarifications of existing practices, or updates to contact details), we will update the "Last Updated" date at the top of this page without providing individual notice.
For material changes — meaning changes that meaningfully affect your rights, the categories of data we collect, the purposes for which it is used, the third parties with whom it is shared, or the security measures we apply — okbdt will provide at least 14 days' advance notice by email to your registered address and via a prominent notice on the platform. If you do not agree with the revised Privacy Policy, you may close your account before the changes take effect. Continued use of the okbdt platform after the effective date of a revised policy constitutes acceptance of that policy.
8.2 Contact and Questions
If you have any questions about this Privacy Policy, wish to exercise your data rights, or want to raise a concern about how okbdt handles your personal information, please contact our privacy team:
- Email: [email protected] (subject line: "Privacy Enquiry")
- Response Time: Within 5 business days for all privacy-related enquiries
- Language: All privacy communications are handled in English
- Support Hours: 24/7 via live chat in your account dashboard; email monitored during Bangladesh Standard Time (BST, UTC+6) business hours
Ready to Explore okbdt Responsibly?
You are now fully informed about how okbdt handles your personal data. Browse our full game library, check our FAQ for any remaining questions, or access your account — all on Bangladesh's trusted casino platform. 18+ only. Please play responsibly.