Melbet Privacy Policy

What personal data is collected

The website may collect the following personal information to operate the services and meet compliance requirements:

• Account data: name, date of birth, gender (if provided), username, password (stored in encrypted or hashed form), preferred language.
• Contact data: email address, mobile number, address details.
• Identity and verification data: PAN (if required for tax or verification), Aadhaar details only when permitted and necessary, passport or driving licence, selfie or liveness check, proof of address.
• Payment and transaction information: payment method identifiers, bank or wallet details as required by the payment provider, deposit and withdrawal history, chargeback and dispute records.
• Technical data: IP address, device identifiers, browser type, operating system, app version, log files, crash reports.
• Usage data: pages viewed, features used, gameplay events, session times, responsible gaming interactions.
• Communication data: customer support messages, call recordings where lawful, email or chat history.

Why the data is collected

Personal data is used for:

• Creating and managing user accounts.
• Processing deposits, withdrawals, refunds, and disputes.
• Identity checks, fraud prevention, security monitoring, and responsible gaming controls.
• Meeting legal and regulatory duties relevant to India users, including anti money laundering checks where applicable and tax related reporting when required.
• Customer support and service communications.

Technical and organisational security measures

The operator applies reasonable security safeguards aligned with commonly used information security standards, including:

• Encryption in transit using TLS for online traffic.
• Access control, role based permissions, and audit logs for systems handling personal information.
• Monitoring for suspicious activity and account takeover attempts.
• Segregation of sensitive data, secure key management, and controlled access to verification documents.
• Vendor due diligence for third party processors such as payment providers and identity verification services.
• Incident response procedures and internal reporting for security events.

User rights

Subject to applicable law, users can request:

• Access to personal information held about them.
• Correction of inaccurate or incomplete data.
• Deletion of personal data, subject to legal retention duties.
• Restriction or objection to certain processing in specific cases.
• A copy of certain data in a portable format when supported.

India legal compliance

The operator seeks to comply with applicable Indian privacy and technology laws, including the Information Technology Act, 2000 and associated rules on reasonable security practices, and the Digital Personal Data Protection Act, 2023 where applicable. If local law requires additional notices or consents for specific activities, the website will apply them at the relevant point of collection.

The website uses collected information in a lawful and transparent way for the following purposes:

• Account services: registration, login, profile management, verification status, and responsible gaming tools.
• Transactions: deposits, withdrawals, refunds, payment confirmations, and dispute handling.
• Security and integrity: fraud detection, prevention of multiple accounts, device and IP risk checks, and protection of users and the platform.
• Compliance: identity verification, anti money laundering checks where applicable, record keeping, responding to lawful requests by regulators, courts, or law enforcement.
• Service improvement: diagnosing issues, improving website performance, testing features, and quality assurance.
• Analytics: aggregated reporting on usage patterns and service performance. Analytics may use cookies or similar technologies, subject to cookie settings where available.
• Marketing communications: sending service messages and, where lawful and consent based where required, sending promotional communications. Users can manage marketing preferences through account settings or by using available opt out links.

The operator does not sell personal data as a business model. Automated decision making may be used for fraud and security scoring, and any significant effect decisions are reviewed using appropriate safeguards where required by law.

How users can access or update data

Users can review and update certain personal information through the account profile area. If the platform cannot allow a direct edit for security reasons, the user can request an update through customer support.

Requests to correct or delete data

A user can request correction or deletion by contacting customer support and completing identity verification to protect the account. The operator may ask for additional details to locate the data and confirm the request.

Deletion requests are handled as follows:

1. The operator verifies the identity of the requester.
2. The operator reviews legal and operational retention duties, such as anti fraud records, financial records, and dispute history.
3. Data eligible for deletion is removed or anonymised within a reasonable timeframe.

Security checks and payment processing consent

By using the online services, the user agrees to reasonable security checks required to protect accounts, prevent fraud, and meet compliance duties. The user also agrees that payment data may be processed by payment service providers, banks, card networks, and wallet operators involved in deposits and withdrawals. These providers process payment related information under their own policies and applicable law.

The website is intended only for persons aged 18 years or above. The operator does not knowingly collect personal information from minors.

Age cannot always be confirmed without documents. The operator may request identity proof and may suspend or close an account until age verification is completed.

If a parent or legal guardian believes that a minor has shared personal data, the parent or guardian can contact customer support. After reasonable verification, the operator will take steps to delete the minor’s personal information, except where retention is required by law or to establish, exercise, or defend legal claims.

Personal data may be processed in countries outside India where the operator, group entities, service partners, or technical infrastructure providers operate. This may include storage, analytics, fraud prevention, customer support, and payment processing.

Use of the online services indicates consent to such transfers when consent is required under applicable law. The operator applies safeguards designed to protect confidentiality and security during cross border processing, such as contractual obligations with partners, access controls, and data minimisation.

All partners that process personal information on behalf of the operator are required to follow confidentiality and security obligations consistent with this Privacy Policy and applicable legal requirements.

This Privacy Policy sets out general rules for personal data collection and processing for the website. Certain parts of the services may be subject to additional notices, consents, or terms that can affect how specific information is handled, including due to legal changes, payment network rules, or security requirements.

This disclaimer applies once the user accepts this Privacy Policy through acceptance in the interface, by registration, by continued use of the website, or by any other form of accession recognised by applicable law. If there is a conflict between this Privacy Policy and a mandatory legal requirement, the mandatory legal requirement prevails.

Cookies are small text files stored on a user’s device when visiting websites. The website uses cookies and similar technologies for:

• Essential operation: login sessions, security controls, and fraud prevention signals.
• Statistics and analytics: measuring traffic, feature usage, and performance.
• Behaviour analysis: understanding how users interact with pages and services.
• Personalisation: saving preferences such as language, region, and display settings.
• Service improvement: testing and optimising website functions.

Cookie retention

Unless a shorter duration is required for a specific cookie type, cookies may be retained for up to 1 year.

Managing cookies

Users can manage cookies through browser or device settings. Disabling certain cookies can affect website functionality, including login and payment related features.

Use of the website and services indicates full acceptance of this Privacy Policy. If the user does not agree, the user must stop using the online services.

The operator may update this document when required due to operational changes, legal requirements, or security needs. The current version published on the website prevails and applies from the effective date stated on the page.

The operator may share personal information with third parties in limited cases and only to the extent necessary, including:

• Payment providers, banks, card networks, and wallet operators to process transactions.
• Identity verification and fraud prevention vendors for security and compliance checks.
• Technology vendors that host or maintain systems, including cloud and analytics providers.
• Professional advisers such as auditors, legal advisers, and consultants, under confidentiality duties.
• Authorities or other third parties when required by law, for dispute resolution, or to enforce agreements.

If a specific list of third parties is published on the website, it reflects the primary processors used for the services. If no list is displayed, the operator will still limit sharing to necessary purposes and will describe the purpose and scope when responding to a user request where permitted by law.

Submission of personal information for use of the services indicates consent to such sharing where consent is required. Third parties process personal data under their own privacy practices or under contractual instructions as processors, depending on their role.

The website may include links to third party websites, apps, or services. External websites operate under their own privacy policies and terms.

The operator is not responsible for the collection, use, or security of data by third party websites. Users should review external privacy policies before sharing personal information or using third party services.