Data Protection & Privacy
ki kiya Privacy
Policy
Your privacy matters to us. This Privacy Policy explains exactly what personal data ki kiya collects from players in Bangladesh, how that data is used, how long it is retained, who it may be shared with, and what rights you hold over your own information. We are committed to handling your data with transparency, security, and respect.
SSL Encryption
All data transmitted between your browser or mobile device and ki kiya is protected by industry-standard SSL/TLS encryption. Your payment details and login credentials are never sent over unencrypted connections.
No Data Selling
ki kiya does not sell, rent, or trade your personal information to third-party advertisers or data brokers under any circumstances. Your data is used only for the purposes described in this Privacy Policy.
Minimal Data Collection
We collect only the personal data that is genuinely necessary to operate your ki kiya account, process payments in BDT, comply with responsible gaming obligations, and deliver a secure platform experience for Bangladeshi players.
Defined Retention Periods
ki kiya does not hold your personal data indefinitely. Retention periods are defined by purpose — active account data, financial transaction records, and KYC documents each have clearly set timelines after which data is securely deleted or anonymised.
Your Rights Respected
You have the right to access, correct, port, or request deletion of your personal data held by ki kiya at any time. Submit a data request to our support team and we will respond within 30 calendar days of receipt.
Secure Payment Data
Payment method details used for bKash, Nagad, Rocket, and bank transfer transactions are handled via tokenised or reference-based systems. ki kiya does not store full card numbers, mobile wallet PINs, or internet banking credentials on its servers.
Data We Collect
ki kiya collects personal data from you in several ways — directly when you register an account or contact support, automatically as you use the platform, and from third parties such as payment processors and identity verification services. The categories of personal data we collect are described below.
1.1 Registration Data. When you create a ki kiya account, you provide: your full legal name, date of birth, gender (optional), residential address in Bangladesh (division, district, city/thana), email address, and mobile phone number. This data is required to open an account and cannot be omitted.
1.2 Identity Verification (KYC) Data. To comply with responsible gaming obligations and anti-fraud procedures, ki kiya may request copies of: your National Identity Card (NID), passport, or driving licence; a recent proof-of-address document (utility bill, bank statement, or mobile operator statement); and confirmation that the payment method you use is registered in your name. These documents are processed and stored securely in our KYC system.
1.3 Financial Transaction Data. Each deposit and withdrawal you make on ki kiya generates a transaction record including: payment method type (bKash, Nagad, Rocket, Upay, bank, Visa, Mastercard), transaction reference number, transaction amount in BDT, date and time (Bangladesh Standard Time, UTC+6), and transaction status. ki kiya does not store full card numbers or mobile wallet PINs — only tokenised references provided by payment processors.
1.4 Gaming & Betting Activity Data. We record all game sessions, sports bets, and casino wagers placed on your ki kiya account. This includes game title and provider, stake amounts in BDT, round or event outcomes, bonus activity, and session start/end timestamps. This data is used for account history, bonus administration, and responsible gaming monitoring.
1.5 Device & Technical Data. When you access ki kiya, our servers automatically collect: IP address, browser type and version, operating system, device type (mobile, tablet, desktop), screen resolution, referring URL, pages visited, and session duration. This data is used for security monitoring, fraud detection, and platform optimisation.
1.6 Communications Data. When you contact ki kiya via live chat, email (support at ki-kiya.com), or WhatsApp, we retain the content of those communications, your contact details, and the date and time of the interaction. These records are used to resolve your query, improve our support quality, and for compliance auditing.
| Data Category | Examples | Collection Method |
|---|---|---|
| Registration Data | Name, DOB, email, phone, address | Provided directly by you |
| KYC Documents | NID, passport, proof of address | Uploaded by you on request |
| Transaction Data | Deposit/withdrawal amounts, references | Generated automatically |
| Gaming Activity | Game sessions, bet history, outcomes | Generated automatically |
| Device & Technical | IP address, browser, OS, device type | Collected automatically |
| Communications | Live chat logs, email threads | Provided during contact |
How We Use Your Data
ki kiya processes your personal data only for lawful purposes that are necessary to deliver our services to you as a player in Bangladesh. We do not use your data for purposes that are incompatible with the reason it was collected. The primary purposes for which we process your data are set out below.
2.1 Account Management. We use your registration data to create, maintain, and authenticate your ki kiya player account. This includes processing your login credentials, managing your account settings, and ensuring that only one account is held per player.
2.2 Payment Processing. Your financial transaction data and payment method details are used to process deposits and withdrawals in BDT via bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Visa, and Mastercard. Transaction records are retained for financial reconciliation and dispute resolution.
2.3 Identity Verification & Fraud Prevention. KYC documents and device/technical data are used to verify your identity, confirm your age (18+ requirement), prevent fraud, detect money laundering activity, and identify unauthorised access to your account. Our automated fraud detection systems analyse patterns in login activity, IP addresses, and transaction behaviour to flag suspicious events in real time.
2.4 Responsible Gaming. Your gaming activity data — session frequency, session duration, bet patterns, deposit history — is analysed by our responsible gaming systems to identify signs of harmful play. Where the system flags a concern, our responsible gaming team may proactively reach out to you. This processing is carried out in your vital interest and as part of our commitment to player welfare.
2.5 Bonus & Promotion Administration. We use your gaming activity data and registration data to determine your eligibility for bonuses, track progress toward wagering requirements, and administer promotional offers such as BPL cashback, Eid reload bonuses, and Pohela Boishakh free spins. Bonus terms are always stated at the time of opt-in.
2.6 Customer Support. Communications data is used to respond to your queries, resolve disputes, and improve the quality of our support service. Support interactions may be reviewed by our quality assurance team for training purposes.
2.7 Service Improvement & Analytics. Aggregated and anonymised technical and gaming data is used to analyse platform performance, identify popular game categories (slots, cricket betting, live casino), optimise page load times for mobile users on Grameenphone, Robi, and Banglalink networks, and develop new product features.
2.8 Marketing Communications. With your explicit consent, we may send you promotional emails or in-platform notifications about new games, upcoming cricket tournaments (BPL, ICC T20 World Cup), seasonal bonuses, and platform updates. You may withdraw consent for marketing communications at any time by updating your account notification preferences or by writing to support at ki-kiya.com.
Data Sharing & Third Parties
3.1 Payment Processors. To process your deposits and withdrawals, ki kiya shares necessary transaction data with payment service providers including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, and the Visa/Mastercard card processing networks. These providers receive only the data necessary to complete or verify the specific transaction and are contractually prohibited from using it for any other purpose.
3.2 Game Providers. Casino games hosted on ki kiya are delivered by third-party studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, Ezugi, Hacksaw Gaming, and Push Gaming. Your player session data (player ID, stake amounts, round results) is transmitted to these providers in real time to operate the game. Game providers receive session data in pseudonymous form where technically possible; they do not receive your name, email address, or NID details.
3.3 Identity Verification Services. Where automated or manual KYC verification is required, ki kiya may use a third-party identity verification partner to check the authenticity of documents you provide. These partners process KYC documents under strict confidentiality agreements and do not retain document copies beyond the period required for verification.
3.4 IT Infrastructure & Security. ki kiya uses cloud hosting providers and cybersecurity vendors to run and protect the platform. These providers operate as data processors under our instruction and are contractually required to implement appropriate technical and organisational security measures.
3.5 Legal & Regulatory Obligations. ki kiya may disclose personal data to relevant authorities if required to do so by a valid legal process, court order, or regulatory instruction. We will notify you of such disclosure to the extent permitted by applicable law.
3.6 Business Transfers. In the event of a merger, acquisition, or sale of substantially all assets of ki kiya, personal data held by ki kiya may be transferred to the successor entity. You will be notified of any such transfer by email and will have the opportunity to request deletion of your account and data before the transfer is completed.
Cookies & Tracking Technologies
ki kiya uses cookies and similar tracking technologies to operate the platform, remember your preferences, maintain your login session, and analyse how the site is used. The types of cookies we use are described below.
4.1 Strictly Necessary Cookies. These cookies are required for the ki kiya website to function. They maintain your login session, remember your account preferences, and ensure that the platform operates correctly on your browser. You cannot opt out of strictly necessary cookies while using the site, as they are essential for core functionality such as account access and secure payment processing.
4.2 Performance & Analytics Cookies. These cookies collect anonymised data about how visitors use ki kiya — which pages are visited most frequently, how long sessions last, and where users navigate from. This data helps us improve the platform experience. These cookies do not collect information that identifies you personally.
4.3 Functional Cookies. Functional cookies remember choices you make on the platform — such as your preferred display settings or last visited game category — to provide a more personalised experience. They do not track your activity across other websites.
4.4 Fraud Detection & Security Tokens. Certain session tokens and fingerprinting technologies are used by ki kiya and its fraud-prevention partners to identify unusual login patterns, detect bot activity, and protect your account from unauthorised access. These are a security measure and are not used for advertising.
4.5 Managing Cookie Preferences. You may manage or delete cookies at any time through your browser settings. Deleting strictly necessary cookies will log you out of your ki kiya session and may affect platform functionality. For guidance on managing cookies in your specific browser (Chrome on Android, Samsung Internet, Firefox, etc.), refer to your browser's help documentation.
Data Retention & Storage
ki kiya retains your personal data only for as long as is necessary for the purpose for which it was collected, or as required by applicable legal or regulatory obligations. Our retention framework is summarised below.
5.1 Active Account Data. While your ki kiya account remains open and active, we retain all registration data, gaming activity records, transaction history, and communications data associated with your account. This data is necessary to deliver the services you have requested.
5.2 Financial Transaction Records. Transaction records — including deposit and withdrawal history in BDT — are retained for a minimum of 5 years following the date of the transaction. This retention period reflects standard financial record-keeping best practice and is necessary to resolve disputes, respond to chargeback claims, and support any financial audit.
5.3 KYC & Identity Documents. Identity verification documents submitted to ki kiya are retained for a minimum of 5 years from the date of submission or from the date of account closure, whichever is later. After this period, document copies are securely destroyed.
5.4 Closed & Self-Excluded Accounts. Following account closure — whether initiated by you or by ki kiya — your registration data, transaction history, and communications records are retained for 5 years. After this period, personally identifiable data is either deleted or anonymised. If your account was closed due to a self-exclusion request for responsible gaming reasons, your exclusion record is retained to prevent re-registration.
5.5 Technical & Log Data. Server logs, IP address records, and device fingerprint data are retained for a rolling 12-month period for security and fraud investigation purposes, after which they are purged automatically.
5.6 Data Storage Location. ki kiya's platform data is stored on servers located in secure data centres. Where data is processed by third-party providers (payment processors, game studios, KYC services), those providers maintain their own data storage arrangements subject to the contractual obligations described in Section 3. All data processing arrangements affecting player data include appropriate security and confidentiality protections.
Data Security Measures
Protecting your personal data is a core responsibility that ki kiya takes seriously. We implement a layered approach to security that covers technical, organisational, and procedural safeguards.
6.1 Encryption in Transit. All data transmitted between your device and the ki kiya platform is encrypted using TLS (Transport Layer Security) with a minimum key strength of 256-bit. This applies to all connections — whether you access ki kiya via a desktop browser, mobile browser on Android, or any other supported device.
6.2 Encryption at Rest. Sensitive data stored in ki kiya's databases — including KYC document references, password hashes, and financial data — is encrypted at rest. Passwords are stored as salted cryptographic hashes and are never stored or transmitted in plain text. ki kiya staff cannot retrieve your plain-text password under any circumstances.
6.3 Access Controls. Access to player personal data within ki kiya's internal systems is restricted on a strict need-to-know basis. Staff members are granted access only to the data categories required for their specific role. All internal data access is logged and reviewed. Administrative access to core systems requires multi-factor authentication (MFA).
6.4 Fraud & Intrusion Detection. ki kiya operates real-time monitoring of its platform infrastructure for signs of intrusion, denial-of-service attacks, and anomalous data access patterns. Our security team is available around the clock (24/7, BST UTC+6) to respond to security incidents.
6.5 Data Breach Response. In the event of a personal data breach that is likely to result in risk to your rights or interests, ki kiya will notify affected players by email without undue delay and will describe the nature of the breach, the data categories affected, and the steps taken to address it. ki kiya will also notify the relevant authorities as required.
6.6 Your Role in Account Security. You play an equally important role in keeping your data secure. You must maintain a strong, unique password for your ki kiya account, never share your login credentials with any third party, and contact support immediately at support at ki-kiya.com if you suspect unauthorised access to your account.
Your Rights Over Your Data
As a player on the ki kiya platform, you have a number of rights in relation to the personal data we hold about you. These rights are described below. To exercise any of these rights, contact us at support at ki-kiya.com with the subject line "Data Rights Request" and your registered email address or mobile number for account identification.
7.1 Right of Access. You have the right to request a copy of the personal data ki kiya holds about you. Upon receiving a verified access request, ki kiya will provide a structured summary of your data within 30 calendar days. This will include your registration data, transaction history summary, gaming activity overview, and any KYC document references on file.
7.2 Right to Rectification. If any personal data ki kiya holds about you is inaccurate or incomplete, you have the right to request correction. You may update certain details (such as your email address or contact number) directly through your account settings. For changes to core identity data (name, date of birth), you will be asked to provide supporting documentation.
7.3 Right to Erasure ("Right to Be Forgotten"). You may request deletion of your personal data. ki kiya will honour deletion requests where there is no overriding legal obligation to retain the data. Note that financial transaction records and KYC documents are subject to retention obligations (see Section 5) and cannot be deleted within those periods. Where full deletion is not possible, ki kiya will anonymise your data so that it can no longer be linked to you personally.
7.4 Right to Data Portability. You have the right to receive a copy of your personal data in a structured, machine-readable format (such as JSON or CSV) that allows you to transfer it to another service provider. Portability requests will be fulfilled within 30 calendar days of verification.
7.5 Right to Restrict Processing. You may request that ki kiya restrict the processing of your personal data in certain circumstances — for example, while a data accuracy dispute is being resolved, or while you are awaiting a response to an erasure request. During any restriction period, ki kiya will continue to store your data but will not actively process it beyond what is legally required.
7.6 Right to Object to Marketing. You have the absolute right to object to the processing of your personal data for direct marketing purposes at any time, with no justification required. Upon receiving your objection, ki kiya will cease all marketing communications to you immediately. Your opt-out preference will be recorded in our systems and will not affect your ability to use any other ki kiya service.
7.7 Right to Lodge a Complaint. If you believe ki kiya has not handled your personal data in accordance with this Privacy Policy, you have the right to lodge a complaint with ki kiya's support team in the first instance. We aim to resolve all data-related complaints within 14 business days. If you are not satisfied with our response, you may escalate your complaint to the relevant consumer protection or data protection authority.
Contact & Data Queries
If you have any questions about this Privacy Policy, wish to exercise any of your data rights, or need to report a potential data security concern, please contact the ki kiya support team through any of the channels below. All data-related enquiries are handled with priority by our dedicated privacy team.
- Email: support at ki-kiya.com — use subject line "Privacy Enquiry" or "Data Rights Request" for fastest routing.
- Live Chat: Available 24/7 on ki-kiya.com, Bangladesh Standard Time (BST, UTC+6). Average first response under 3 minutes during peak hours.
- WhatsApp: +880 1700 000000 (plain text contact only — no links or files to this number).
8.1 Response Timeframes. ki kiya will acknowledge all formal privacy and data rights requests within 72 hours of receipt. We will aim to provide a full resolution or substantive update within 30 calendar days. For complex requests requiring extensive data retrieval or third-party coordination, we will notify you if a brief extension is required.
8.2 Updates to This Policy. ki kiya may update this Privacy Policy from time to time to reflect changes in our data practices, platform features, or applicable legal requirements. Material changes will be communicated to registered players via email to the address associated with your account. The updated policy will be published on this page with a revised effective date at the top. Your continued use of ki kiya after the effective date of an updated policy constitutes your acceptance of the revised terms. We encourage you to review this page periodically.
Ready to Play?
Explore ki kiya — Safe, Secure & Built for Bangladesh
Now that you know how ki kiya protects your data, dive into the platform. Browse hundreds of slots, bet on cricket, or explore our live casino — all with BDT payments via bKash and Nagad.