Big Baazi / Big Boost Privacy Policy

The platform collects personal data that users provide directly and information generated during use of the online services.

Types of personal information collected

The following categories of personal information may be collected:

• Identification details, such as name, date of birth and gender
• Contact details, such as email address, mobile number and postal address
• Account information, such as username, password and security settings
• Verification documents, such as PAN, Aadhaar or other KYC documents, subject to applicable Indian law and guidance
• Transaction and payment details, such as deposit and withdrawal history, payment method, bank details and UPI identifiers
• Gameplay and betting records, preferences, account activity logs and responsible gaming settings
• Technical data, such as IP address, browser type, device identifiers, operating system and access times
• Communication records, such as chats, emails, support tickets and call records where allowed by law

Personal information is collected to:

• Create, manage and secure user accounts
• Provide gaming and betting services, process payments and settle winnings
• Conduct identity verification, age checks, KYC and AML monitoring where applicable
• Support responsible gaming tools and interventions
• Improve the website, fix technical issues and customise content
• Comply with legal, tax and regulatory obligations in India and other relevant jurisdictions

Protection measures

The operator applies technical and organisational measures to protect personal information against loss, misuse, unauthorised access, disclosure, alteration or destruction, such as:

• Use of encryption for sensitive data in transit and at rest, where appropriate
• Access control based on need-to-know principles for staff and service providers
• Firewalls, intrusion detection and regular security monitoring
• Secure password and credential policies
• Regular backups and disaster recovery procedures
• Staff training on data protection and confidentiality obligations

While reasonable safeguards are maintained to protect information, no online transmission or storage system can be guaranteed as fully secure. Users are advised to keep their login details confidential and use strong passwords.

User rights

Subject to applicable law, users in India may exercise the following rights in relation to their personal data:

• Right to access: to request a copy of personal information held by the operator
• Right to correction: to ask for inaccurate or incomplete data to be updated
• Right to deletion: to request deletion of personal data, subject to legal retention requirements
• Right to restriction: to request limits on how certain data is processed
• Right to objection: to object to specific types of processing such as direct marketing
• Right to withdraw consent: to withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing

Requests can be made using the contact details provided in this document. Additional information or identity proof may be requested to process such requests.

Compliance with India laws and international standards

The operator aims to comply with applicable Indian legal requirements on data protection, privacy, information technology and online gaming, including guidance from Indian authorities. To the extent relevant, internationally recognised standards on data privacy, such as principles similar to the EU General Data Protection Regulation, are taken into account to provide a high level of protection.

Personal information is used only for lawful purposes and in a transparent manner that respects user privacy.

Main purposes of processing

Personal data may be processed for the following purposes:

• Account creation, verification and ongoing account administration
• Providing casino and sportsbook services, including game access, bet placement and account configuration
• Processing deposits, withdrawals, refunds and payment settlements
• Customer support, complaint handling and dispute resolution
• Personalising content, displaying relevant games or markets and remembering user preferences
• Monitoring usage patterns and technical performance to maintain and improve the website and apps
• Conducting analytics, statistics and reporting on aggregated or pseudonymised data

Marketing and communication

Subject to consent where required by law, contact details may be used to send:

• Service messages, security alerts and transactional notifications
• Information on updates to rules, policies or technical functions
• Limited promotional or marketing communication related to gaming services, where permitted and subject to user preferences

Users can manage marketing preferences or opt out of marketing communication at any time by using the settings in the account or the unsubscribe option in messages, subject to a reasonable processing time.

Compliance, fraud prevention and responsible gaming

Personal information may also be processed to:

• Meet legal and regulatory obligations relating to tax, anti-money laundering, combating financing of terrorism, KYC and record-keeping
• Detect, investigate and prevent fraud, misuse, cheating, account takeovers and other unlawful activities
• Conduct risk assessments and security checks
• Support responsible gaming, including enforcing self-exclusion, deposit limits, session limits and other protective tools where available

Legal bases for processing

Depending on the context, processing is based on:

• User consent for certain activities such as marketing and some cookies
• Performance of a contract to provide gaming and payment services
• Legal obligations, such as AML and KYC checks
• Legitimate interests of the operator and other users, such as maintaining security and preventing misuse, balanced against user privacy rights

Personal information is not sold to third parties for independent marketing. Any sharing of data is limited to the uses described in this document or as required by law.

Users have practical options to access and manage their personal information.

Access and updates

• Many details, such as contact information, can be reviewed and edited directly in the account area.
• For data that cannot be changed manually, users may send a written request to the data protection contact indicated in this document.
• Reasonable steps are taken to confirm identity before granting access or implementing changes.

Correction and deletion procedures

• If any personal data is inaccurate or incomplete, users may request correction or completion.
• Users may ask for deletion of certain personal data when it is no longer required for the original purpose or for legal obligations.
• Some records, such as transaction and gaming history, may be retained for a legally required period under tax, gaming, anti-money laundering or dispute-related regulations.
• When deletion is not possible due to legal duties, the data will be restricted to the minimum permitted use and kept securely.

Consent to security checks and payment processing

By using the services, creating an account or carrying out financial transactions, users:

• Consent to reasonable security checks, identity verification, age confirmation and anti-fraud reviews conducted by the operator or its appointed service providers
• Agree that payment-related data, such as bank details, card information, UPI identifiers and transaction records, may be processed by licensed payment processors, banks and other financial institutions for the purposes of deposits, withdrawals, refunds, dispute handling and legal compliance

These entities are required to use such payment data only for authorised purposes and to apply appropriate safeguards in line with contractual obligations and applicable regulation.

This gaming website is intended only for persons who are 18 years of age or older and legally permitted to participate in online gaming under the laws of their state or territory in India.

• Users are required to confirm that they are at least 18 years old at registration.
• The operator does not knowingly collect or process personal data of minors.
• Technical systems and checks are used to reduce the risk of underage access, but the operator cannot fully verify age without obtaining supporting documents such as government-issued identity proof.

If a parent or legal guardian believes that a minor has created an account or provided personal information:

• They should contact the support team or data protection contact immediately.
• Upon verification of the request and proof of guardianship, the account will be closed as soon as reasonably possible.
• Personal information related to the minor will be deleted or anonymised, except where retention is required for legal or regulatory reasons, such as fraud investigation or law enforcement requests.

Users are encouraged to keep login credentials secure and to use parental control tools on devices to prevent access by minors.

To operate online gaming and payment services efficiently, personal data may be processed in other countries, in addition to India.

• Some servers, support teams, group companies or third-party service providers may be located in jurisdictions outside India.
• These locations may have data protection rules that differ from Indian law.
• In such cases, personal information is transferred only when necessary for providing services, performing contracts, complying with legal duties or operating the business.

By using the website, creating an account or providing any personal information, users:

• Consent to the transfer, storage and processing of their data in countries where the operator or its trusted partners, payment providers, verification services and technical vendors are located
• Acknowledge that such data may be subject to the laws of those jurisdictions

The operator takes steps to ensure that all partners who receive personal information:

• Are contractually bound to maintain confidentiality
• Implement appropriate security measures to protect the data
• Use the information only for authorised purposes set out in this Privacy Policy or required by law

Where legally necessary, contractual safeguards or comparable mechanisms are used to provide a level of protection that is consistent with this document.

This Privacy Policy describes the general practices for handling personal information but does not create any right or obligation that goes beyond applicable law or the agreed terms of use.

• In case of conflict between this document and mandatory legal requirements, the relevant law will take priority.
• The operator may update or modify this Privacy Policy in response to legal, technical or business developments.
• Updated versions will be posted on the website with a revised effective date.

The disclaimer forms part of the overall agreement between the user and the operator.

• The user is considered to have accepted this Privacy Policy when they register, access the services, click to accept or otherwise indicate agreement in a manner allowed on the website.
• Continued use of the services after any change to this document constitutes acceptance of the updated Privacy Policy, to the extent allowed by law.

Users who do not agree to the terms of this Privacy Policy or any subsequent changes are requested to discontinue use of the services.

Cookies are small text files stored on a device by a website or application. They help remember user actions and preferences over a period of time.

Types and purposes of cookies

The platform may use:

• Strictly necessary cookies to enable essential functions such as login, navigation and security
• Functional cookies to remember preferences such as language, region and display settings
• Analytics cookies to collect statistics about website usage, such as pages visited, time spent and technical performance
• Behaviour and performance cookies to analyse user interaction, detect issues and improve online services
• Personalisation cookies to adapt content, show relevant games or offers and save account choices

Cookies help the operator to:

• Understand how users interact with the website
• Diagnose technical problems and maintain security
• Improve layout, navigation and content

Cookie retention and control

• Cookies used for analytics, behaviour analysis and personalisation are generally stored for up to 1 year, unless a shorter or longer period is required for legal or technical reasons.
• Users can manage cookie settings in their browser or device, including blocking or deleting cookies. Doing so may affect some website functions or reduce the quality of certain services.
• Where required by law, consent will be requested before non-essential cookies are placed on the device.

Further details about specific cookies in use may be provided in a separate cookie notice or in the account settings.

Use of this online casino and sportsbook platform is subject to this Privacy Policy, the terms of use and any other applicable rules published on the website.

• By accessing the website, creating an account or using any services, the user confirms that they have read, understood and fully accept this Privacy Policy, including any updates.
• If the user does not agree to any part of this document, they should not register or should stop using the services.

The operator may revise this Privacy Policy periodically:

• The most recent version made available on the website will apply to all processing of personal information from the date it comes into effect.
• Users are encouraged to review this document regularly to stay informed about how data is collected, used and protected.

Continued use of the services after publication of changes is treated as acceptance of the updated version, to the extent permitted by applicable law.

Certain services require sharing personal information with third parties that support operations or are involved in legal or contractual processes.

Categories of third parties

Personal data may be shared, in limited and controlled ways, with the following categories:

• Payment service providers, banks, card schemes and UPI operators processing deposits and withdrawals
• Identity verification, KYC and AML screening providers
• Technology vendors providing hosting, data storage, security, analytics, communication tools and customer support systems
• Professional advisers, such as auditors, accountants or legal consultants, bound by confidentiality
• Law enforcement agencies, courts, regulators and government bodies when required by law, regulation or court order
• Dispute resolution bodies and chargeback handlers involved in transactional issues

Where a list of key third-party partners is published on the website, users can refer to it for more detail. If a new category of partner is engaged for a different purpose, users will be informed as required by law.

Scope and responsibility

• Third parties receive only the personal information necessary for their defined tasks and must not use it for any unrelated purposes.
• They are contractually required to follow strict data protection and security standards.
• When users provide personal information for payments, verification or related services, they consent to the processing of such data by these third parties for the stated purpose.

This Privacy Policy covers only the processing carried out on behalf of the operator. Independent data practices of third parties, such as banks or external platforms, are governed by their own privacy policies.

The website may contain links, banners or references to external websites, apps or services operated by third parties.

• These external websites have their own terms, privacy policies and data handling practices.
• The operator does not control and is not responsible for the content, security, accuracy or privacy standards of external websites.
• Inclusion of a link does not mean that the operator endorses or supervises the external website or its practices.

When users leave this website by clicking an external link:

• Any information they provide to the external website is subject to that site’s privacy policy and terms.
• Users are advised to review the privacy policy of each external website before providing any personal data or completing any transaction.

Users should exercise caution and good judgement whenever they navigate to external websites or share information online.