Privacy Policy — krikria
At krikria, your privacy is a core commitment, not a checkbox. This Privacy Policy explains what personal data we collect, why we collect it, how it is used, and the rights you hold as a player on our Bangladesh gaming platform.
Privacy at a Glance
- We collect only the data necessary to operate your account and comply with responsible gaming requirements.
- Your data is never sold to third parties for marketing purposes.
- All data is encrypted in transit using SSL/TLS protocols.
- You may request a copy of your personal data or its deletion at any time.
- Cookies are used to improve your experience and may be managed via your browser settings.
- Contact for any privacy-related enquiry.
Built on Trust & Transparency
Six core principles guide how krikria handles every piece of personal information on our platform.
Data Minimisation
krikria collects only the personal data that is strictly necessary to provide our services, verify your identity, and meet responsible gaming obligations. We do not collect data speculatively or in excess of what is needed.
No Data Sales
Your personal data is never sold, rented, or traded to third-party marketing organisations. Any sharing of data with partners is strictly limited to what is required to operate our platform and process your transactions.
End-to-End Encryption
All data transmitted between your browser and krikria is protected by industry-standard SSL/TLS encryption. Sensitive data such as payment details and identity documents is stored using encrypted protocols at rest.
Player Control
You retain the right to access, correct, export, or request deletion of your personal data held by krikria at any time. Our support team processes all data rights requests within 30 days of receipt.
Limited Retention
Personal data is retained only for as long as is necessary to fulfil the purpose for which it was collected, or as required by applicable law and responsible gaming regulations. Data is securely deleted once the retention period expires.
Accountability
krikria maintains internal records of all data processing activities. Our support team is available 24/7 to respond to privacy enquiries, subject access requests, and data correction requests on behalf of all registered players.
Data Controller & Scope
This Privacy Policy governs the collection, use, storage, and disclosure of personal data by krikria (referred to herein as "we", "us", "our", or "the Platform"). krikria operates as the data controller in respect of all personal data collected from players, visitors, and users of the platform, including the website at https://krikria.com and all associated subdomains, mobile interfaces, and service APIs.
This Policy applies to all individuals who interact with krikria in any capacity, including:
- Registered players who hold an active account on krikria.
- Visitors who browse the platform without registering an account.
- Individuals who contact krikria via live chat, email, or any other support channel.
- Former players whose accounts have been closed but whose data is retained as required by applicable law or responsible gaming obligations.
This Privacy Policy should be read in conjunction with our Terms & Conditions and Responsible Gaming Policy, both of which are available on the krikria platform. Where any conflict exists between this Policy and any other document, this Privacy Policy shall take precedence with respect to matters of personal data handling.
Personal Data We Collect
krikria collects personal data through several channels: directly from you when you register or interact with the platform, automatically through your use of the site, and occasionally from third-party sources such as payment processors and identity verification services. The categories of personal data we collect are outlined below.
Registration & Account Data
- Full legal name as it appears on government-issued identification.
- Date of birth (used exclusively for age verification to enforce our 18+ policy).
- Residential address, including city (Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, or other).
- Email address and contact phone number.
- Username and encrypted password.
Identity Verification (KYC) Data
- Copies of government-issued photo identification (National Identity Card, passport, or driving licence).
- Proof of address documentation (utility bill, bank statement, or official correspondence).
- Proof of payment method ownership (bKash, Nagad, Rocket, or Upay account confirmation).
Financial & Transaction Data
- Deposit and withdrawal transaction records, including amounts (৳), timestamps, and payment method references.
- Payment method identifiers (partial mobile wallet numbers, masked card numbers) — krikria does not store full payment card numbers.
- Bonus and promotional credit history.
Gaming Activity Data
- Game sessions played, including game name, provider, wager amounts, and outcomes.
- Sports betting activity, including market selections, stake amounts, and settlement records.
- Session duration and platform interaction logs.
Technical & Device Data
- IP address and approximate geolocation derived from IP.
- Browser type and version, operating system, and device type.
- Referring URL and on-site navigation path.
- Cookie identifiers and session tokens (see Section 6 for full cookie details).
| Data Category | Collected At | Required / Optional |
|---|---|---|
| Registration & Account Data | Account sign-up | Required |
| KYC / Identity Verification | First withdrawal / on request | Required for withdrawals |
| Financial & Transaction Data | Each deposit / withdrawal | Required |
| Gaming Activity Data | During game sessions | Automatic |
| Technical & Device Data | Every site visit | Automatic |
| Support & Communication Data | When contacting support | When applicable |
Legal Basis for Processing
krikria processes your personal data on one or more of the following legal bases, depending on the nature of the data and the purpose for which it is used:
- Contractual Necessity: Processing your registration data, transaction records, and gaming activity is necessary to perform the contract between you and krikria — namely, to provide you with access to our gaming services and to process your financial transactions.
- Legal Obligation: krikria is required by responsible gaming best practice and anti-money-laundering (AML) protocols to collect and retain certain categories of data, including KYC documentation and transaction histories. Compliance with these obligations requires us to process and retain this data regardless of your individual preferences.
- Legitimate Interests: krikria processes technical and device data, gaming activity logs, and fraud detection signals on the basis of our legitimate interest in maintaining a secure, fair, and operationally stable platform for all players. This processing does not override your fundamental privacy rights.
- Consent: Where krikria sends you promotional emails, newsletters, or bonus notifications, such communications are sent only on the basis of your explicit opt-in consent, given at registration or subsequently through your account settings. You may withdraw this consent at any time by contacting our support team or updating your notification preferences.
How We Use Your Data
krikria uses the personal data we collect for clearly defined purposes. We do not use your data for any purpose that is incompatible with the reason for which it was originally collected without first obtaining your consent or establishing a new legal basis for processing.
Account Management: Your registration data is used to create and maintain your krikria player account, authenticate your login sessions, and communicate important account-related information such as verification requests, deposit confirmations, and withdrawal updates.
Payment Processing: Financial data is used to process deposits and withdrawals via bKash, Nagad, Rocket, Upay, Visa, Mastercard, and supported Bangladesh bank transfer methods. Transaction records are maintained for financial reconciliation, dispute resolution, and fraud prevention purposes.
Identity Verification & Age Compliance: KYC documents are used to verify your identity, confirm that you meet our 18+ age requirement, and ensure that payment methods are registered in your own name. krikria does not use KYC data for any purpose beyond verification and legal compliance.
Responsible Gaming Compliance: Gaming activity data — including session duration, wagering frequency, and deposit patterns — is analysed to identify indicators of problem gambling behaviour. Where such indicators are present, krikria may contact you with responsible gaming resources, apply protective limits, or escalate to our responsible gaming team for review.
Platform Security & Fraud Prevention: Technical and device data, combined with gaming activity logs, is used to detect and prevent account fraud, bonus abuse, money laundering, and other prohibited activities as defined in our Terms & Conditions.
Customer Support: When you contact krikria via live chat or email, the content of your communication and any account data relevant to your query is used by our support team to resolve your issue efficiently. Support interaction logs are retained for quality assurance and dispute reference purposes.
Marketing Communications (Consent Only): Where you have opted in to receive promotional content, your email address and gaming preferences are used to send you relevant bonus offers, seasonal promotions (such as Eid and Pohela Boishakh specials), and new game announcements. You may opt out at any time.
Data Sharing & Third Parties
krikria does not sell, rent, or trade your personal data to third parties. Data sharing is strictly limited to the categories of recipient described below, and only to the extent necessary for each stated purpose.
- Payment Processors: To facilitate deposits and withdrawals, krikria shares transaction data with payment service providers including bKash, Nagad, Rocket, Upay, Visa, Mastercard, and participating Bangladesh banks (City Bank, Dutch-Bangla Bank, BRAC Bank, Islami Bank, Sonali Bank). Each payment processor operates under its own data protection terms and is responsible for the data you share directly with them during a transaction.
- Identity Verification Services: KYC documents may be shared with third-party identity verification partners engaged by krikria to carry out automated or manual document checks. These partners are contractually bound to process your data only for verification purposes and to maintain appropriate security standards.
- Game Technology Providers: To deliver games on our platform, krikria shares session and wagering data with game providers including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. This data is used by providers to deliver game content, calculate results, and provide RNG audit trails. Game providers do not receive your identity documents or payment details.
- Fraud Prevention & Security Partners: Technical and device data may be shared with fraud detection service providers to assist in identifying suspicious activity, bot traffic, and multi-accounting patterns. These providers act as data processors under our instruction and are not permitted to use your data for their own independent purposes.
- Legal & Regulatory Disclosure: krikria may be required to disclose personal data to law enforcement agencies, regulatory bodies, or courts of competent jurisdiction where required by applicable law. In such cases, krikria will disclose only the minimum data necessary to satisfy the legal requirement and will notify you of such disclosure where permitted by law.
Cookies & Tracking Technologies
krikria uses cookies and similar tracking technologies to ensure the platform functions correctly, to improve your experience, and to gather aggregated analytics about how players interact with our site. This section explains what cookies are, which types krikria uses, and how you can manage them.
A cookie is a small text file placed on your device by a website when you visit it. Cookies allow the website to recognise your device on subsequent visits and to store preferences or session state information. Cookies do not contain executable code and cannot access other files stored on your device.
Types of Cookies Used by krikria:
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Required for core platform functions — login sessions, account authentication, deposit flow, and responsible gaming tool activation. Cannot be disabled without impairing platform functionality. | Session / up to 24 hours |
| Functional | Stores your language preference, preferred game lobby view, and notification settings to personalise your experience across visits. | Up to 12 months |
| Analytical / Performance | Collects anonymised data about page views, session duration, navigation paths, and error events. Used to improve platform performance and content relevance. | Up to 24 months |
| Security | Supports fraud detection and bot mitigation systems. Helps identify unusual login patterns and suspicious activity on your account. | Session / up to 30 days |
Managing Cookies: You may manage or disable cookies at any time through your browser settings. Most modern browsers allow you to block all cookies, block only third-party cookies, or clear cookies on exit. Please note that disabling strictly necessary cookies will prevent you from logging in and using core platform features. Instructions for managing cookies in popular browsers are available via the help documentation of Chrome, Firefox, Safari, and Edge respectively.
Data Retention
krikria retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, or as required by applicable responsible gaming obligations, anti-money-laundering protocols, and general legal compliance requirements. The following retention periods apply:
- Active Account Data: Registration details, contact information, and account preferences are retained for the full duration of your active account and for a minimum of 5 years following voluntary account closure.
- KYC Documentation: Identity and address verification documents are retained for a minimum of 5 years from the date of your last transaction on krikria. This retention period reflects best-practice AML record-keeping standards.
- Financial Transaction Records: All deposit and withdrawal records, including amounts, timestamps, and payment method references, are retained for a minimum of 7 years to support financial audit requirements and dispute resolution.
- Gaming Activity Logs: Detailed game session and sports betting records are retained for a minimum of 3 years. Aggregated (anonymised) gaming statistics may be retained indefinitely for platform performance analysis.
- Support Communications: Live chat transcripts and email correspondence are retained for 2 years from the date of the interaction, after which they are securely deleted unless a related dispute is still open.
- Marketing Consent Records: Records of your opt-in and opt-out preferences for marketing communications are retained for the duration of your account and for 3 years following account closure, as evidence of consent management compliance.
Upon expiry of the applicable retention period, personal data is securely deleted or irreversibly anonymised in accordance with krikria's internal data disposal procedures. Anonymised data that can no longer be linked to an identifiable individual is not subject to this Policy and may be retained indefinitely for statistical purposes.
Your Privacy Rights
As a player on krikria, you hold a number of rights with respect to the personal data we hold about you. krikria is committed to honouring these rights promptly and transparently. The following rights are available to all registered players:
- Right of Access: You may request a copy of all personal data krikria holds about you at any time. We will provide this in a structured, commonly used format (such as PDF or CSV) within 30 days of your request.
- Right to Rectification: If any personal data held by krikria is inaccurate or incomplete, you have the right to request that it be corrected. You may update certain account details directly through your account settings; for changes to KYC-verified data, please contact support.
- Right to Erasure: You may request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected and where no legal obligation requires its retention. Please note that krikria is required to retain certain categories of data (such as KYC documents and transaction records) for legally mandated periods; these cannot be deleted on request.
- Right to Restrict Processing: You may request that krikria restrict the processing of your personal data in specific circumstances — for example, while the accuracy of data you have disputed is being verified.
- Right to Data Portability: You may request that krikria provide your personal data in a machine-readable format suitable for transfer to another service provider, where technically feasible.
- Right to Object: You may object to the processing of your data where that processing is based on krikria's legitimate interests. You also have an unconditional right to object to direct marketing processing at any time.
- Right to Withdraw Consent: Where processing is based on your consent (for example, marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.
To exercise any of the above rights, please contact our support team at with the subject line "Privacy Rights Request" and your registered account email address. krikria will acknowledge your request within 5 business days and provide a full response within 30 days. Where a request is complex or involves a large volume of data, we may extend this period by a further 30 days and will inform you accordingly.
Data Security
krikria implements a layered security architecture to protect your personal data against unauthorised access, disclosure, alteration, or destruction. Our security measures include both technical controls and organisational policies enforced across all teams with access to player data.
Technical Security Measures:
- SSL/TLS encryption on all data in transit between your browser and our servers.
- AES-256 encryption for sensitive data stored at rest, including KYC documents and financial records.
- Two-factor authentication (2FA) available to all registered players and enforced for all administrative access to player data systems.
- Automated intrusion detection and 24/7 security monitoring of platform infrastructure.
- Regular penetration testing and vulnerability assessments conducted by independent security specialists.
- Strict access controls: krikria staff access to player data is role-based, logged, and limited to the minimum required for each role's function.
Organisational Security Measures:
- All staff with access to personal data receive mandatory data protection and security awareness training upon onboarding and annually thereafter.
- Data processing agreements are in place with all third-party service providers who handle player data on krikria's behalf.
- A documented incident response procedure is in place to detect, contain, and report data breaches within the appropriate timeframes.
Despite these measures, no online platform can guarantee absolute security. You are responsible for maintaining the confidentiality of your krikria login credentials. If you suspect that your account has been compromised, or if you believe your personal data has been exposed without authorisation, please contact us immediately at .
Policy Updates & Contact
krikria reserves the right to update or amend this Privacy Policy at any time. All changes take effect from the moment the revised version is published on this page. The "Effective Date" displayed at the top of this document reflects the date of the most recent revision. Where changes are material — for example, where we introduce a new category of data processing or a new type of third-party sharing — krikria will notify registered players via their registered email address at least 7 calendar days before the changes take effect.
Your continued use of krikria following the publication of any amendment to this Privacy Policy constitutes your acknowledgement of the updated terms. If you do not accept the revised Policy, you must discontinue use of the platform and request account closure in accordance with our Terms & Conditions.
Children's Privacy: krikria is strictly an 18+ platform. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that personal data has been submitted by a person under 18, we will immediately close the associated account, void any transactions, and securely delete all data associated with that individual. If you believe a minor has registered on krikria, please contact us at immediately.
International Data Transfers: krikria primarily processes personal data within Bangladesh. Where data is transferred to service providers located outside Bangladesh (for example, international game technology providers), krikria ensures that appropriate safeguards are in place to protect your data to a standard equivalent to that described in this Policy.
Contact Us: All privacy-related enquiries, subject access requests, data correction requests, and formal privacy complaints should be directed to our support team in writing at with the subject line "Privacy Enquiry". Our bilingual support team (English and Bengali) is available 24 hours a day, 7 days a week, with average response times of 2–5 minutes via live chat and within 5 business days for formal written privacy requests.
Ready to Play on krikria?
Now that you understand how we protect your data, explore our full range of games, sports betting, and exclusive promotions — all on a platform built with your security and privacy in mind.