Glory Casino treats every byte of user information as a trust deposited by Bangladeshi players. Collection remains purposeful, storage encrypted, and sharing strictly regulated. Transparency guides every clause, balancing operational needs with individual rights. Updates appear 30 days before enforcement, giving users time to review or opt out. This policy complies with Curaçao eGaming and aligns with GDPR principles where applicable.
Data Collected & Purpose of Use
Basic identifiers – name, email, phone, date of birth – enable account creation and age checks. Transaction records track deposits via bKash or Nagad for audit trails. IP addresses and device fingerprints deter fraud without profiling behavior. Gameplay logs refine RNG fairness, never sold to third parties. Consent checkboxes during signup clarify each category.
Security Measures & Encryption Standards
256-bit SSL certificates cloak data in transit; AES-256 guards it at rest. Firewalls segregate gaming servers from personal databases. Two-factor authentication gates staff access, logged and audited quarterly. Penetration tests by independent firms precede every major release. Breach protocols mandate notification within 72 hours.
Cookies & Tracking Technologies
Essential cookies maintain logins; analytics cookies (anonymized) measure load times. Advertising cookies activate only with explicit opt-in, targeting generic promotions – not individual habits. Users revoke consent via browser settings or the site’s cookie banner. Session cookies expire on logout; persistent ones last 90 days maximum.
Third-Party Sharing & Legal Obligations
Payment processors receive minimal details under PCI-DSS. Regulators access aggregated reports during license reviews. Law enforcement requests trigger court-order verification before compliance. Marketing partners handle opt-in lists only, deleted upon unsubscribe.
User Rights & Data Control
Bangladeshi players request access, rectification or erasure via support ticket. Responses arrive within 14 days; complex cases extend to 30. Portable data exports come in CSV format. Objections to processing pause automated decisions until review. Minors’ guardians exercise rights on their behalf.
Retention Periods & Account Closure
Active accounts retain data for five years post-last login. Closed accounts purge gaming history after 30 days; financial records persist for tax compliance. Irreversible deletion confirms via email. Backups overwrite monthly, ensuring no lingering traces.