jlibat Privacy
Policy
Your privacy matters to us. This Privacy Policy explains exactly what personal data jlibat collects from Bangladesh players, why we collect it, how we use and protect it, and the rights you hold over your own information. We are committed to transparency in every step of our data handling practices.
Data We Collect
When you use the jlibat platform, we collect personal data that falls into the following categories. We only collect data that is necessary for the specific purpose described and do not collect data speculatively or in excess of operational requirements.
1.1 Registration Data
When you create a jlibat account, we collect: your full legal name, date of birth, email address, mobile phone number (used as a primary contact and verification channel in Bangladesh), and a username of your choice. This information is mandatory for account creation and cannot be withheld without preventing registration.
1.2 Identity Verification Data (KYC)
As part of our Know Your Customer (KYC) obligations, we may collect copies of government-issued identification documents, which for Bangladesh players typically include the National Identity Card (NID), passport, or birth certificate. We may also collect proof of residential address (e.g., a recent utility bill or bank statement) and, in some circumstances, a selfie photograph to confirm that the document submitted belongs to you.
1.3 Financial Data
To process deposits and withdrawals, jlibat collects details of the payment methods you use. For mobile wallet payments (bKash, Nagad, Rocket, Upay), this includes your registered mobile wallet number. For card payments (Visa, Mastercard), we collect the card number (stored in truncated form only), expiry date, and billing name. jlibat does not store full card numbers; complete card data is handled exclusively by our PCI-DSS-compliant payment processing partners.
1.4 Transactional Data
We maintain a full record of all financial transactions conducted through your jlibat account, including deposit amounts, withdrawal requests, bet placements, casino wagers, bonus credits, and balance adjustments. These records are retained for compliance, dispute resolution, and fraud prevention purposes and form part of your account history.
1.5 Technical & Device Data
When you access jlibat via a web browser or mobile device, we automatically collect certain technical data, including: your IP address, device type, operating system, browser type and version, screen resolution, device identifiers, and approximate geographic location derived from your IP address. This data is used for security monitoring, fraud detection, and platform optimisation.
1.6 Behavioural & Usage Data
We collect data about how you interact with the jlibat platform, including: pages visited, games played, betting patterns, session duration, features accessed, search queries entered within the platform, and click-through paths. This data is analysed in aggregate to improve the platform experience and to identify potential responsible gaming concerns such as escalating wagering behaviour.
1.7 Communications Data
If you contact the jlibat support team via live chat, email, or any other channel, we retain a record of those communications. This includes the content of messages sent and received, the date and time of contact, and the outcome or resolution of any support case raised.
| Data Category | Examples | Mandatory? |
|---|---|---|
| Registration Data | Name, date of birth, email, mobile number | Yes — required to open an account |
| KYC / Identity Data | NID, passport, proof of address, selfie | Yes — required for first withdrawal |
| Financial Data | bKash / Nagad number, card details (truncated) | Yes — required for deposits and withdrawals |
| Transactional Data | Deposits, withdrawals, bets, bonuses | Collected automatically |
| Technical Data | IP address, device type, browser, OS | Collected automatically |
| Behavioural Data | Pages visited, games played, session duration | Collected automatically |
| Communications Data | Support chat transcripts, emails | Collected when you contact us |
How We Use Your Data
jlibat uses the personal data we collect for the following specific purposes. We do not use your data for any purpose that is incompatible with the reasons for which it was originally collected.
- Account creation and management: To register your jlibat account, verify your identity, manage your login credentials, and maintain your account profile throughout your use of the platform.
- Service delivery: To process deposits and withdrawals via bKash, Nagad, Rocket, Upay, Visa, and Mastercard; to settle sports bets on cricket, football, and other markets; to credit casino winnings; and to apply bonus funds in accordance with promotion terms.
- Identity verification and fraud prevention: To conduct KYC checks, verify that you meet the 18+ age requirement, confirm that you are not subject to a self-exclusion order, and detect, investigate, and prevent fraudulent or criminal activity on our platform.
- Responsible gaming: To monitor betting and wagering activity for indicators of problem gambling behaviour; to enforce deposit limits, cooling-off periods, and self-exclusion requests; and to reach out proactively where concerning patterns are identified.
- Legal and regulatory compliance: To comply with applicable anti-money laundering (AML) obligations, maintain transaction records as required by financial regulations, and co-operate with law enforcement or regulatory investigations where legally required.
- Platform improvement: To analyse aggregated usage data and identify areas of the platform that can be improved for Bangladesh players, including game lobby navigation, payment flow optimisation, and mobile experience enhancements.
- Customer support: To respond to your queries, resolve disputes, process complaints, and maintain a record of all support interactions for quality assurance purposes.
- Marketing communications (opt-in only): If you have explicitly opted in to receive promotional communications, we may send you information about jlibat promotions, bonus offers, BPL and IPL enhanced odds, and seasonal campaigns (e.g., Eid, Pohela Boishakh). You may withdraw this consent at any time.
- Security monitoring: To detect unauthorised access attempts, monitor for unusual account activity, and enforce platform security protocols including session management and two-factor authentication.
Legal Basis for Processing
jlibat processes personal data under the following legal bases, applied on a purpose-by-purpose basis:
3.1 Contractual Necessity
The majority of data processing on the jlibat platform is carried out because it is necessary to perform the contract between jlibat and you as a registered account holder. This includes account registration, payment processing, bet settlement, bonus management, and customer support. Without this processing, jlibat could not deliver the services you have signed up to receive.
3.2 Legal Obligation
Certain processing activities are required to fulfil jlibat's obligations under applicable law, including AML checks, transaction record retention, identity verification, and co-operation with lawful requests from competent authorities. jlibat cannot waive these obligations on the basis of individual user preference.
3.3 Legitimate Interests
jlibat processes technical, behavioural, and security data on the basis of its legitimate interests in operating a secure, well-functioning platform, preventing fraud and abuse, and improving the experience for Bangladesh players. Where we rely on legitimate interests, we have assessed that our interests do not override your fundamental privacy rights.
3.4 Consent
Where processing is not required by contract or legal obligation, and where we cannot rely on legitimate interests, jlibat will seek your explicit consent before processing your data. This applies primarily to direct marketing communications. Consent is freely given, specific, informed, and unambiguous — and you may withdraw it at any time without affecting the legality of prior processing.
Data Sharing & Third Parties
jlibat shares personal data with the following categories of third parties under strict contractual data-processing agreements:
4.1 Payment Service Providers
To process deposits and withdrawals, jlibat shares necessary financial and identity data with payment service providers including bKash, Nagad, Dutch-Bangla Bank (Rocket), Upay, and international card networks (Visa, Mastercard). Data shared is limited to what is required to authenticate and complete each transaction.
4.2 Identity Verification Partners
To conduct KYC and AML checks, jlibat may share identity documents and verification data with third-party identity verification service providers. These providers process your data solely for verification purposes and are contractually prohibited from using it for any other purpose.
4.3 Game Studios & Content Providers
When you play games provided by third-party studios — including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Hacksaw Gaming, Spribe, and Ezugi — a minimal set of technical data (such as a pseudonymous player session token) is shared with those studios to facilitate gameplay, settle outcomes, and record RTP statistics. Full personal identity data is not shared with game studios.
4.4 Fraud Prevention & Security Services
jlibat uses third-party fraud detection and cybersecurity services to protect the platform and its users. Technical and behavioural data (including IP addresses, device fingerprints, and transaction patterns) may be shared with these services for risk scoring and anomaly detection purposes.
4.5 Legal & Regulatory Authorities
jlibat will disclose personal data to law enforcement agencies, regulatory bodies, or courts where required to do so by applicable law, valid legal process, or regulatory investigation. jlibat will only disclose the minimum data necessary to satisfy the specific legal requirement and, where legally permissible, will notify the affected account holder of such disclosure.
4.6 Business Transfers
In the event of a merger, acquisition, restructuring, or sale of jlibat's business or assets, personal data held on registered accounts may be transferred to the acquiring entity as part of that transaction. In such circumstances, jlibat will notify affected users and ensure that the receiving entity is bound by data protection obligations at least as stringent as those in this Privacy Policy.
Cookies & Tracking Technologies
jlibat uses cookies and similar tracking technologies to operate the platform, remember your preferences, maintain your login session, and analyse platform usage. The following categories of cookies are used:
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Maintain your login session, prevent cross-site request forgery (CSRF), enforce security controls. Cannot be disabled without breaking core platform functionality. | Session / up to 24 hours |
| Functional | Remember your language preference, display settings, last-played games, and localisation settings relevant to the Bangladesh market. | Up to 90 days |
| Analytics | Measure page views, session durations, game lobby navigation patterns, and deposit funnel performance. Data is aggregated and pseudonymised. | Up to 12 months |
| Fraud Prevention | Device fingerprinting and behavioural analytics used to detect bot activity, account takeover attempts, and bonus abuse patterns. | Up to 12 months |
You may manage or disable non-essential cookies through your browser settings. Please note that disabling cookies categorised as "Strictly Necessary" will impair your ability to log in and use the jlibat platform. jlibat does not use third-party advertising cookies or track your activity across external websites.
Data Retention Periods
jlibat retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, or as required by applicable legal, regulatory, or contractual obligations. The following retention periods apply:
- Account and registration data: Retained for the duration of your account and for a minimum of 5 years following account closure, in compliance with applicable AML and financial record-keeping obligations.
- KYC documents: Retained for a minimum of 5 years from the date of submission or from the date of account closure, whichever is later.
- Transactional records: Retained for a minimum of 5 years from the date of each transaction.
- Technical and device data: Retained for up to 12 months for security and fraud analysis purposes, after which it is deleted or anonymised.
- Behavioural and usage data: Retained in pseudonymised aggregate form for up to 24 months for platform analytics purposes.
- Support communications: Retained for up to 3 years following the resolution of the relevant support case.
- Marketing consent records: Retained until you withdraw consent, plus an additional 12 months to evidence the withdrawal.
At the end of the applicable retention period, personal data is securely deleted or permanently anonymised in a manner that prevents re-identification. jlibat does not archive personal data beyond the periods stated above without a specific legal justification.
Your Privacy Rights
As a jlibat account holder, you have the following rights in respect of your personal data. These rights are available to all Bangladesh players regardless of their location within the country:
- Right of Access: You have the right to request a copy of all personal data jlibat holds about you, together with an explanation of how it is used, with whom it is shared, and how long it will be retained. This is commonly called a Subject Access Request (SAR).
- Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or complete it. For registration data, some corrections (e.g., name changes) will require documentary evidence.
- Right to Erasure: In certain circumstances, you have the right to request that we delete your personal data — for example, where it is no longer necessary for the purpose for which it was collected, or where you have withdrawn consent. Note that this right is subject to overriding legal retention obligations, meaning we cannot erase transaction records required for AML compliance.
- Right to Restriction: You may request that we temporarily restrict the processing of your data while a dispute about its accuracy or the lawfulness of its processing is being resolved.
- Right to Data Portability: You have the right to receive a copy of the data you have provided to jlibat in a structured, commonly used, machine-readable format (such as CSV or JSON), and to transmit that data to another service provider.
- Right to Object: You have the right to object to processing carried out on the basis of legitimate interests, including behavioural analytics. Where such an objection is made, jlibat will cease processing unless it can demonstrate compelling legitimate grounds that override your interests.
- Right to Withdraw Consent: Where processing is based on your consent (e.g., direct marketing), you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Data Security Measures
256-bit SSL Encryption
All data transmitted between your device and jlibat servers is protected by 256-bit TLS/SSL encryption, the same standard used by major international banks. This applies to every page, session, and transaction on the platform.
Two-Factor Authentication
jlibat offers two-factor authentication (2FA) on all accounts. When enabled, login from an unrecognised device requires a one-time verification code sent to your registered mobile number, significantly reducing the risk of unauthorised account access.
Encrypted Data Storage
Sensitive personal data — including KYC documents, identity records, and financial data — is stored in encrypted form on secure servers. Access to this data is restricted to authorised jlibat personnel on a strict need-to-know basis.
Continuous Security Monitoring
Our security operations team monitors the jlibat platform around the clock for signs of intrusion, anomalous access patterns, and suspicious transaction activity. Automated alerts trigger immediate investigation of any detected threat.
Regular Security Audits
jlibat engages independent third-party security auditors to conduct regular penetration testing and vulnerability assessments. Findings are remediated promptly and the platform's security posture is reviewed quarterly.
PCI-DSS Compliant Payments
Card payment processing on jlibat is handled exclusively by PCI-DSS Level 1 certified payment processors. Full card numbers are never stored on jlibat servers — only truncated card references are retained for your payment history.
Despite the security measures described above, no internet-based service can guarantee absolute security. In the event of a data breach that is likely to result in a high risk to your rights and freedoms, jlibat will notify affected account holders without undue delay and will take all reasonable steps to contain the breach, assess its impact, and prevent recurrence.
You also play an important role in keeping your jlibat account secure. You should choose a strong, unique password, enable two-factor authentication, never share your login credentials with any third party, and log out of your account when using a shared or public device. If you suspect that your account has been accessed without your authorisation, please contact the jlibat support team immediately via live chat.
Children & Underage Users
jlibat does not knowingly collect personal data from any individual under 18 years of age. During registration, all users are required to confirm that they are 18 years of age or older. Age verification is conducted as part of the KYC process prior to the processing of any withdrawal request.
If jlibat becomes aware — through KYC review, parental notification, or any other means — that a registered account is held by a person under the age of 18, the account will be suspended immediately, all pending transactions will be frozen, and any deposited funds (net of any gains) will be returned to the funding payment method following investigation. The personal data of the underage individual will be deleted as soon as the investigation is complete, except where retention is required by law.
Parents and guardians who are concerned that a minor may have accessed or registered on the jlibat platform are encouraged to contact our support team immediately at: [email protected] (plain text — not a clickable link). We will investigate all such reports as a priority matter.
jlibat also recommends that parents and guardians in Bangladesh use parental control software and device-level access restrictions to prevent minors from accessing gambling websites. Taking proactive steps at the household level is the most effective way to ensure that underage individuals cannot reach online gambling platforms.
Policy Updates & Contact
jlibat reserves the right to update or revise this Privacy Policy at any time to reflect changes in our data practices, applicable law, or platform functionality. When a material change is made to this Policy, jlibat will notify registered account holders via an in-platform notification and, where an email address is on file, by email. The effective date and version number at the top of this page will be updated accordingly.
Your continued use of the jlibat platform after the effective date of any revised Privacy Policy constitutes your acknowledgement of the updated version. If you do not agree with any change to the Privacy Policy, you should cease using the platform and contact the support team to initiate account closure and data erasure (subject to legal retention requirements).
For any questions, concerns, or formal complaints relating to this Privacy Policy or to jlibat's data handling practices, please contact the jlibat privacy team at: [email protected] (plain text — not a clickable link). All privacy-related enquiries will be acknowledged within 72 hours and substantively responded to within 30 days.
Stay Up to Date
Check this page periodically for the latest version of jlibat's Privacy Policy. The version number and effective date are always displayed at the top of this page. Material changes trigger an in-platform notification and a registered email alert.
Exercise Your Rights
To submit a Subject Access Request, request data correction, or withdraw marketing consent, email the jlibat privacy team at [email protected]. Include your account username and a clear description of your request. We respond within 30 days.
Questions & Complaints
If any aspect of this Privacy Policy is unclear, our support team is available 24/7 via live chat from within your logged-in jlibat account. For formal written privacy complaints, use the email address above. All complaints are acknowledged within 72 hours.
Your Data Is Safe with jlibat
Now that you understand how jlibat protects your personal information, explore the platform — live cricket betting, slots, casino games, and more, all secured by industry-standard encryption. For adults aged 18 and above only.