Privacy Policy — How cricks Protects Your Data
At cricks, your privacy is not an afterthought. This Privacy Policy explains in plain English exactly what personal data we collect, why we collect it, how we use it, and what rights you hold over your own information as a player on the cricks platform.
Important: By creating a cricks account and using the platform, you acknowledge that you have read and understood this Privacy Policy. This policy applies to all services offered at https://cricks.vip, including casino games, cricket betting, crash games, live dealer products, and all associated features. If you do not agree with any part of this policy, please discontinue use of the platform and contact [email protected] to request account closure.
Our Privacy Commitments
End-to-End Encryption
All data transmitted between your device and the cricks platform is protected by industry-standard TLS/SSL encryption. Sensitive data at rest — including payment details and identity documents — is encrypted using AES-256.
We Never Sell Your Data
cricks does not sell, rent, or trade your personal information to third-party marketers under any circumstances. Your data is used solely to operate the platform, process payments, and comply with anti-fraud obligations.
You Control Your Data
Every registered cricks player has the right to access, correct, and request deletion of their personal data. Submit a data request at any time by emailing [email protected] and our team will respond within 10 business days.
Minimal Data Collection
cricks collects only the personal data that is strictly necessary to deliver the platform's services, verify player identity, process payments in BDT, and meet responsible gaming obligations. We do not collect data beyond these purposes.
Clear Retention Limits
Personal data is held only for as long as it is needed for the purpose it was collected, or as required to satisfy legal retention obligations. Data that is no longer required is securely deleted or anonymised in line with our retention schedule.
Transparent Cookie Use
cricks uses cookies and similar technologies to keep your session active, remember your preferences, and analyse platform performance. No behavioural advertising cookies are placed without your awareness. Full details are in the Cookies section below.
1. Information We Collect
When you interact with the cricks platform — whether by registering an account, making a deposit, placing a wager, or contacting our support team — we collect certain categories of personal information. The specific data collected depends on your level of engagement with the platform.
1.1 Information You Provide Directly
The following personal data is collected directly from you during account registration and ongoing platform use:
| Data Category | Examples | When Collected |
|---|---|---|
| Identity Data | Full name, date of birth, nationality | Account registration & KYC verification |
| Contact Data | Email address, mobile phone number | Account registration |
| Financial Data | bKash/Nagad/Rocket wallet numbers, bank account details, transaction history | Deposit & withdrawal requests |
| Verification Documents | National ID card (NID), passport, driving licence | KYC process |
| Login Credentials | Username (passwords stored as salted hashes — never in plain text) | Account registration |
| Communications | Support tickets, live chat transcripts, email correspondence | Customer support interactions |
1.2 Information Collected Automatically
When you access the cricks platform, certain technical data is collected automatically by our servers and analytics systems:
- IP address and approximate geographic location (city-level, not precise GPS)
- Device type, operating system, and browser version
- Session duration, pages visited, and features used within the platform
- Referring URL (the website that directed you to cricks, if applicable)
- Time and date stamps for all account actions, including cricks login events, deposits, and wager placements
- Cookie identifiers and similar tracking tokens (see the Cookies section for full details)
1.3 Information from Third Parties
In certain circumstances, cricks may receive personal data about you from third-party sources, including:
- Payment processors (bKash, Nagad, Rocket, Upay, Visa, Mastercard) who confirm transaction status and wallet ownership
- Identity verification service providers used during the KYC process
- Fraud prevention and anti-money laundering (AML) screening services
- Affiliate partners who referred you to the cricks platform (limited to referral tracking data only)
Data received from third parties is subject to the same protections and usage limitations as data collected directly from you. cricks does not purchase consumer data lists from data brokers.
2. How We Use Your Data
cricks uses personal data only for clearly defined, legitimate purposes directly connected to the operation of the platform and the delivery of services to registered players. The table below summarises the primary purposes for which your data is processed.
| Purpose | Data Used | Lawful Basis |
|---|---|---|
| Account creation & management | Identity data, contact data, login credentials | Contractual necessity |
| Processing deposits & withdrawals in BDT | Financial data, identity data | Contractual necessity |
| Identity & age verification (KYC / 18+ compliance) | Verification documents, identity data, date of birth | Legal obligation |
| Fraud prevention & AML screening | Financial data, device data, IP address, transaction history | Legal obligation & legitimate interest |
| Responsible gaming monitoring | Wager history, session data, deposit frequency | Legal obligation & legitimate interest |
| Customer support | Contact data, communications, account history | Contractual necessity |
| Platform analytics & performance improvement | Device data, session data, feature usage (anonymised where possible) | Legitimate interest |
| Promotional communications (opted-in players only) | Contact data, game preferences | Consent |
2.1 Marketing Communications
cricks will only send you promotional emails, SMS messages, or in-platform notifications about bonuses, tournaments, and seasonal offers if you have actively opted in to receive such communications during registration or through your account settings. You may withdraw your marketing consent at any time by updating your notification preferences within your cricks account or by emailing [email protected]. Withdrawal of marketing consent does not affect your ability to use the platform or receive transactional communications (such as deposit confirmations and withdrawal receipts).
2.2 Automated Decision-Making
cricks operates automated systems for fraud detection, responsible gaming monitoring, and bonus eligibility assessment. These systems analyse patterns in account activity and may trigger automated actions such as flagging a transaction for manual review, placing a temporary hold on a withdrawal, or prompting a responsible gaming check-in. Where an automated decision has a significant effect on your account, you have the right to request human review of that decision by contacting [email protected].
3. Data Sharing & Third Parties
cricks does not sell, rent, or otherwise commercially transfer your personal data to third parties. However, in order to operate the platform effectively and comply with applicable legal requirements, we share limited personal data with the following categories of trusted third-party service providers.
3.1 Categories of Third-Party Recipients
- Payment Processors: bKash, Nagad, Rocket, Upay, Visa, Mastercard, and USDT infrastructure providers receive the minimum financial data required to execute deposit and withdrawal transactions in BDT.
- KYC & Identity Verification Providers: Specialist identity verification services receive copies of submitted identity documents and personal details solely to complete the KYC process on behalf of cricks.
- Game Technology Providers: Pragmatic Play, Microgaming, NetEnt, Evolution Gaming, Spribe, and Ezugi receive anonymised session identifiers to deliver game content and settle wager results. These providers do not receive your full identity profile.
- Fraud & AML Screening Services: Anti-fraud and anti-money laundering screening tools receive transaction data and device fingerprint information to identify suspicious activity patterns.
- Cloud Infrastructure & Hosting Providers: cricks uses secure, reputable cloud hosting providers to store platform data. These providers act as data processors under binding data processing agreements and are contractually prohibited from using your data for any purpose other than hosting.
- Legal & Regulatory Authorities: cricks will disclose personal data to law enforcement agencies, financial regulators, or courts when legally compelled to do so by a valid legal order or where we have a good-faith belief that disclosure is necessary to prevent fraud, money laundering, or other criminal activity.
3.2 International Data Transfers
Some of cricks's third-party service providers operate infrastructure located outside Bangladesh. Where personal data is transferred internationally, cricks takes reasonable steps to ensure that the receiving party applies data protection standards equivalent to those described in this Privacy Policy, including through the use of contractual data processing agreements.
Our Commitment: Under no circumstances does cricks share your personal data with third-party advertisers, data brokers, social media platforms, or marketing networks for the purpose of targeted advertising or commercial profiling.
4. Cookies & Tracking Technologies
The cricks platform uses cookies and similar client-side storage technologies to deliver a functional, secure, and personalised user experience. This section explains what cookies we use, why we use them, and how you can manage your cookie preferences.
4.1 What Are Cookies?
Cookies are small text files stored on your device by your web browser when you visit a website. They allow the website to recognise your device on subsequent visits, remember your preferences, and maintain session state — for example, keeping you logged in to your cricks account between page loads without requiring you to re-enter your credentials on every click.
4.2 Types of Cookies Used by cricks
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Maintain your logged-in session, remember your currency (BDT) preference, enable the cricks login flow and secure payment processing | Session / up to 24 hours |
| Functional | Remember your game lobby preferences, last-visited sections, and notification settings | Up to 30 days |
| Analytics | Measure page performance, session duration, feature engagement, and error rates to improve the platform (data aggregated and anonymised) | Up to 12 months |
| Fraud Prevention | Device fingerprinting tokens used to detect suspicious login attempts and duplicate account creation | Up to 90 days |
4.3 Managing Your Cookie Preferences
Strictly necessary cookies cannot be disabled as they are essential for the secure operation of the cricks platform. For all other cookie categories, you may adjust your preferences through your browser's built-in cookie management settings. Please note that disabling functional or analytics cookies may affect the quality of your experience on the platform. Clearing all cookies will log you out of your cricks account and reset your saved preferences.
4.4 No Cross-Site Tracking
cricks does not deploy third-party advertising pixels, social media tracking scripts, or cross-site behavioural tracking tools. Analytics data collected via cookies is used exclusively for internal platform improvement purposes and is not shared with advertising networks.
5. Data Security Measures
cricks applies a layered approach to data security, combining technical controls, organisational policies, and ongoing staff training to protect your personal information against unauthorised access, loss, alteration, or disclosure.
5.1 Technical Safeguards
- TLS/SSL Encryption: All data in transit between your device and cricks servers is encrypted using Transport Layer Security (TLS 1.2 or higher), preventing interception by third parties.
- AES-256 Encryption at Rest: Sensitive stored data, including identity documents, payment details, and KYC records, is encrypted at rest using AES-256 symmetric encryption.
- Password Hashing: Account passwords are never stored in plain text. cricks uses industry-standard salted hashing algorithms to ensure that even in the event of a data breach, passwords cannot be recovered in their original form.
- Firewalls & Intrusion Detection: The cricks platform infrastructure is protected by enterprise-grade firewalls and real-time intrusion detection systems that monitor for anomalous access patterns.
- Access Controls: Access to personal data within the cricks organisation is restricted on a strict need-to-know basis. Staff members can only access the minimum personal data required to perform their assigned function.
5.2 Incident Response
In the event of a data security incident that affects the personal data of cricks players, we will take immediate steps to contain the incident, assess its scope, and notify affected players via their registered email address as promptly as practicable. Our security team operates a documented incident response procedure and conducts regular security drills to ensure preparedness.
Security Tip: You can significantly strengthen your own account security by using a unique, strong password for your cricks login and by never sharing your credentials with anyone. cricks staff will never ask for your password by any communication channel.
6. Data Retention & Deletion
cricks retains personal data only for as long as is necessary to fulfil the purposes for which it was collected, unless a longer retention period is required by applicable legal, regulatory, or audit obligations.
6.1 Standard Retention Periods
- Active Account Data: Retained for the full duration of your account being active on the cricks platform, plus a minimum of five years following account closure to satisfy anti-money laundering record-keeping requirements.
- KYC & Identity Documents: Retained for a minimum of five years from the date of submission or from the date of account closure, whichever is later, in accordance with financial regulatory requirements.
- Transaction Records: All deposit and withdrawal records in BDT are retained for a minimum of seven years to satisfy financial record-keeping obligations.
- Customer Support Communications: Retained for three years from the date of the interaction, unless the communication relates to an ongoing dispute or legal matter, in which case retention continues until resolution.
- Analytics & Session Data: Aggregated and anonymised analytics data may be retained indefinitely, as it no longer constitutes personal data once anonymised. Raw session logs are deleted after 90 days.
6.2 Requesting Data Deletion
You may request deletion of your personal data at any time by contacting [email protected]. Upon receipt of a valid deletion request, cricks will delete or irreversibly anonymise all personal data that we are not legally required to retain within 30 days. Please note that data subject to mandatory legal retention periods (such as KYC records and transaction logs) cannot be deleted prior to the expiry of those retention periods, even upon request.
6.3 Account Closure & Data
Closing your cricks account does not result in the immediate deletion of all your personal data. Your data will continue to be held for the retention periods specified above and will then be securely deleted or anonymised in line with our standard schedule. During the post-closure retention period, your data will not be used for any marketing purpose, and your account will not be reactivated without a new explicit request from you.
7. Your Rights Over Your Data
As a cricks player, you hold specific rights over your personal data. cricks is committed to honouring these rights promptly and without unnecessary barriers. To exercise any of the rights described below, please contact our data team at [email protected] with the subject line "Data Rights Request" and a clear description of your request.
7.1 Summary of Your Rights
- Right of Access: You have the right to request a copy of all personal data that cricks holds about you. We will provide this in a commonly used, machine-readable format within 10 business days.
- Right to Rectification: If any personal data held by cricks is inaccurate or incomplete, you have the right to request that it be corrected. Account profile details (such as your email address or phone number) can be updated directly within your cricks account settings without the need to contact support.
- Right to Erasure: Also known as the "right to be forgotten", this right allows you to request the deletion of your personal data where it is no longer necessary for the purpose it was collected, subject to legal retention obligations as described in Section 6.
- Right to Restrict Processing: You may request that cricks restrict the processing of your personal data in certain circumstances — for example, while a data accuracy dispute is being resolved.
- Right to Data Portability: You may request that cricks provide your personal data in a structured, portable format so that you can transfer it to another service provider where technically feasible.
- Right to Object: You may object to the processing of your personal data for direct marketing purposes at any time. You may also object to processing based on legitimate interests, though such objections will be assessed against the specific circumstances.
- Right to Withdraw Consent: Where cricks processes your data on the basis of consent (e.g., marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out before the withdrawal.
7.2 Response Timelines
cricks aims to acknowledge all data rights requests within two business days and to provide a full response within 10 business days. In cases where a request is complex or involves a large volume of data, we may extend this period by up to a further 20 business days, in which case we will notify you of the extension and its reason before the initial 10-day period expires.
How to Submit a Request: Email [email protected] with the subject "Data Rights Request". Include your registered cricks username and a clear description of the right you wish to exercise. We may ask for identity verification before processing your request to ensure we are responding to the correct account holder.
8. Policy Updates & Contact
cricks reviews and updates this Privacy Policy periodically to reflect changes in platform features, payment methods, applicable law, or internal data handling practices. The most recent version of this policy is always published at https://cricks.vip/privacy-policy, with the effective date displayed at the top of the document.
8.1 Notification of Material Changes
Where an update to this Privacy Policy constitutes a material change to the way in which cricks processes your personal data, we will notify all registered players via their registered email address at least 14 days before the updated policy takes effect. Continued use of the cricks platform following the effective date of a revised policy constitutes acceptance of the revised terms. If you do not agree with a material change, you should request account closure before the effective date.
8.2 Contact & Data Enquiries
For any questions, concerns, or requests relating to this Privacy Policy or cricks's data handling practices, please contact our support team using the details below:
- Email (plain text — not a clickable link): [email protected]
- Subject line for data enquiries: "Privacy Policy Enquiry" or "Data Rights Request"
- Response time: Within 2 business days for general enquiries; within 10 business days for formal data rights requests
cricks is committed to resolving all privacy-related concerns in good faith and in a timely manner. If you are not satisfied with our response to a data rights request, you may have the right to escalate your complaint to a relevant data protection supervisory authority in your jurisdiction.
8.3 Children's Privacy
The cricks platform is strictly for adults aged 18 and above. cricks does not knowingly collect personal data from individuals under the age of 18. If you have reason to believe that a minor has provided personal data to cricks, please notify us immediately at [email protected] and we will take prompt action to delete the relevant data and close the associated account.
Questions About Your Privacy at cricks?
Our support team is available around the clock to address any privacy concerns. You can also explore our FAQ for quick answers, or head to your account via cricks Login to manage your data preferences directly.
Visit FAQ cricks Login Terms & Conditions18+ only. Please gamble responsibly. SSL secured. Fair play certified.