Privacy Policy of crzytime
At crzytime, your privacy matters. This Privacy Policy explains exactly what personal data we collect from players in Bangladesh, why we collect it, how it is stored and protected, and the rights you hold over your own information. We are committed to handling your data responsibly, transparently, and in accordance with applicable data protection standards.
How We Protect Your Privacy
SSL Encryption
All data transmitted between your device and crzytime is protected using industry-standard SSL/TLS encryption. Your personal and financial information is never sent in plain text over the network.
Secure Data Storage
Personal data held by crzytime is stored on access-controlled, encrypted servers. Only authorised personnel with a legitimate operational need may access player data — and only to the extent strictly necessary.
No Data Selling
crzytime does not sell, rent, or trade your personal data to third-party marketers. Your information is used solely for operating your account, processing payments, and complying with legal obligations.
Purpose Limitation
We collect only the data that is genuinely necessary to provide our services. Data collected for account registration is not repurposed for unrelated activities without your explicit consent.
Marketing Opt-Out
You retain full control over whether crzytime sends you promotional communications. You may withdraw consent for marketing emails or SMS messages at any time via your account settings or by contacting our support team.
Transparent Practices
This Privacy Policy is written in plain, accessible English so that every crzytime player in Bangladesh fully understands how their data is handled — without legal jargon obscuring the key facts.
Summary: crzytime collects personal data that is necessary to operate your account, process deposits and withdrawals in Bangladeshi Taka (৳ BDT), comply with Know Your Customer (KYC) obligations, and provide a safe gambling environment. We do not sell your data. We do not share it with advertisers. We retain it only for as long as required by operational or legal necessity. This Policy explains everything in full.
1. Information We Collect
1.1 Registration Data
When you create an account on crzytime, we collect the following information: your full legal name, date of birth, email address, mobile phone number, and your preferred username and password (passwords are stored in hashed form and are never readable by crzytime staff). You may also be asked to provide your city or district of residence within Bangladesh (for example, Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, or Barisal) to assist with localised customer support.
1.2 Identity Verification (KYC) Data
As part of our Know Your Customer process, we may request copies of the following documents: a government-issued national identification card (NID), passport, or driving licence; a recent utility bill, bank statement, or other document confirming your residential address; and, where relevant, documentation confirming ownership of the payment method you have registered on the platform (for example, a screenshot of your registered bKash, Nagad, Rocket, or Upay account).
KYC documents are used solely for identity and age verification purposes. They are stored on encrypted servers and are accessible only to our compliance team. They are not used for marketing purposes and are not shared with third parties except where required by applicable law or fraud prevention obligations.
1.3 Transaction Data
We record all financial transactions associated with your crzytime account, including deposit amounts and timestamps, withdrawal requests and processing outcomes, bonus credits and wagering activity, and the payment method identifiers associated with each transaction (for example, your registered mobile financial service number for bKash or Nagad). We do not store full card numbers or complete mobile banking PINs.
1.4 Usage and Technical Data
When you access crzytime, our servers automatically collect certain technical information, including your IP address, browser type and version, operating system, device type, the pages and games you visit, session duration, and referring URL. This data is used for platform security, fraud detection, and to improve the performance and user experience of crzytime. It is not linked to your personal identity for marketing profiling purposes.
1.5 Communications Data
If you contact crzytime via live chat, email, or any other support channel, we retain records of those communications. This enables us to track the resolution of issues, maintain quality assurance, and refer to prior conversations if a dispute arises. Support communications are stored for a minimum of two years from the date of the interaction.
2. How We Use Your Data
crzytime uses the personal data we collect for the following purposes:
| Purpose | Data Categories Used | Legal Basis |
|---|---|---|
| Account creation and management | Registration data, contact details | Contractual necessity |
| Age and identity verification (KYC) | KYC documents, date of birth | Legal obligation |
| Processing deposits and withdrawals | Transaction data, payment identifiers | Contractual necessity |
| Fraud detection and prevention | Technical data, transaction data, KYC data | Legitimate interest |
| Responsible gaming monitoring | Usage data, transaction patterns | Legal obligation / legitimate interest |
| Customer support and dispute resolution | Communications data, account data | Contractual necessity |
| Promotional communications (where consented) | Contact details, usage preferences | Consent |
| Platform performance and analytics | Technical data, usage data (anonymised) | Legitimate interest |
crzytime does not use automated decision-making (including profiling) to make decisions that produce significant legal or similarly significant effects on players, except where such processing is strictly necessary for fraud prevention or responsible gaming obligations — in which case you have the right to request human review of any such decision.
3. Data Sharing & Disclosure
3.1 Service Providers
crzytime works with a limited number of carefully selected third-party service providers who assist us in operating the platform. These include payment processing partners (such as the operators of bKash, Nagad, Rocket, and Upay integrations), game software providers (such as Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi), cloud hosting and server infrastructure providers, and identity verification and fraud-screening services. Each of these service providers is bound by strict data processing agreements that prohibit them from using your data for any purpose beyond the specific service they provide to crzytime.
3.2 Legal and Regulatory Disclosure
crzytime may be required to disclose personal data to law enforcement authorities, government agencies, or other bodies where we are compelled to do so by applicable law, court order, or regulatory obligation. In such cases, we will disclose only the minimum data necessary to comply with the legal requirement and, where permitted by law, will notify the affected player.
3.3 Business Transfers
In the event that crzytime undergoes a merger, acquisition, or transfer of all or part of its business assets, player data may be transferred to the acquiring entity as part of that transaction. If this occurs, we will notify affected players via their registered email address and ensure that appropriate data protection standards continue to apply.
3.4 No Sale of Personal Data
crzytime does not sell, rent, lease, or otherwise commercially transfer your personal data to third-party advertisers, data brokers, or marketing agencies. This is an absolute commitment and is not subject to any business model exception.
4. Cookies & Tracking Technologies
4.1 What Are Cookies
Cookies are small text files placed on your device when you visit crzytime. They allow the platform to recognise your device on subsequent visits, maintain your session state, remember your preferences, and gather analytics data about how the site is used. crzytime uses both first-party cookies (set by crzytime directly) and third-party cookies (set by our service providers).
4.2 Types of Cookies We Use
- Strictly Necessary Cookies: Required for the platform to function. These include session authentication cookies that keep you logged in during your visit. They cannot be disabled without breaking platform functionality.
- Performance and Analytics Cookies: Help us understand how players interact with crzytime, which pages are visited most frequently, and where errors occur. Data collected is aggregated and anonymised where possible.
- Functional Cookies: Allow the platform to remember choices you have made, such as your preferred language, display settings, or recently played games, to provide a more personalised experience.
- Marketing Cookies (where consented): Used to deliver promotional content that is relevant to your stated preferences. These are only placed where you have provided explicit consent and may be withdrawn at any time.
4.3 Managing Cookies
You can control the non-essential cookies placed by crzytime through your browser settings. Most modern browsers allow you to block, delete, or receive notifications about cookies. Please note that disabling certain cookies may affect the functionality of crzytime — for example, you may need to log in again on each visit if session cookies are blocked. Detailed instructions for managing cookies in popular browsers (Chrome, Firefox, Safari, Edge) are available in each browser's help documentation.
5. Data Security & Retention
5.1 Security Measures
crzytime employs a comprehensive set of technical and organisational security measures to protect your personal data from unauthorised access, alteration, disclosure, or destruction. These measures include: 256-bit SSL/TLS encryption for all data in transit; AES-256 encryption for sensitive data at rest; multi-factor authentication requirements for administrative access to player data systems; regular security audits and penetration testing; automated intrusion detection systems; and strict internal access-control policies that limit data access to personnel with a demonstrated operational need.
5.2 Data Retention Periods
crzytime retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, or for as long as is required by applicable law or regulation. Our standard retention periods are as follows:
- Account and registration data: Retained for the duration of your account plus 5 years following account closure, to meet anti-money laundering and record-keeping obligations.
- KYC verification documents: Retained for a minimum of 5 years from the date of verification or account closure, whichever is later.
- Transaction records: Retained for 7 years from the date of each transaction in accordance with standard financial record-keeping requirements.
- Customer support communications: Retained for 2 years from the date of the relevant interaction.
- Technical and usage data: Retained in anonymised or aggregated form for up to 2 years for platform analytics purposes.
When data is no longer required, it is securely deleted or anonymised in accordance with our internal data disposal procedures.
6. Your Privacy Rights
As a crzytime player, you hold the following rights with respect to your personal data. To exercise any of these rights, please contact our Data Protection team at the email address set out in Section 8 of this Policy. We will respond to all substantiated requests within 30 days.
- Right of Access: You may request a copy of the personal data that crzytime holds about you, along with information about how it is processed.
- Right to Rectification: If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected without undue delay.
- Right to Erasure: In certain circumstances, you may request that crzytime delete your personal data. Note that this right may be limited where we are required to retain data by law (for example, KYC and transaction records subject to mandatory retention periods).
- Right to Restriction of Processing: You may request that we limit the processing of your data in certain circumstances — for example, while the accuracy of data is being contested.
- Right to Data Portability: Where processing is based on your consent or on a contract, you may request that we provide your personal data to you in a structured, commonly used, and machine-readable format.
- Right to Object: You have the right to object to processing carried out on the basis of legitimate interest, including profiling for responsible gaming monitoring purposes. We will cease such processing unless we can demonstrate compelling legitimate grounds that override your interests.
- Right to Withdraw Consent: Where processing is based on your consent (for example, for marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing that occurred before the withdrawal.
How to submit a data rights request: Send a written request to support@crzytime (plain text — not a clickable link) from your registered email address. Include your full name, registered username, and a clear description of the right you wish to exercise. We will acknowledge your request within 5 business days (Bangladesh Standard Time, UTC+6) and provide a full response within 30 days.
7. Payment Data & KYC
7.1 Payment Processing
All deposits and withdrawals on crzytime are processed in Bangladeshi Taka (৳ BDT) via our integrated payment partners, which include bKash, Nagad, Rocket (Dutch-Bangla Bank), and Upay. When you initiate a payment transaction, your payment credentials are transmitted directly to the relevant payment provider via an encrypted channel. crzytime does not store your full bKash PIN, Nagad PIN, or any equivalent payment authentication credential. We retain only the transaction reference, amount, timestamp, and a partial payment method identifier for record-keeping purposes.
7.2 Anti-Money Laundering (AML) Obligations
crzytime is committed to preventing financial crime, including money laundering and fraud. As part of this commitment, we monitor transaction patterns on all accounts. Where unusual activity is detected — such as large, rapid, or structurally unusual deposit or withdrawal sequences — we may place a temporary hold on the account and request additional KYC documentation or an explanation of the source of funds. This is a legal obligation and is not a reflection of any presumption of wrongdoing on the part of the player.
7.3 Third-Party Payment Provider Privacy
When you use bKash, Nagad, Rocket, Upay, or any other third-party payment method to transact on crzytime, the privacy practices of that payment provider also apply to your transaction data. crzytime is not responsible for the data handling practices of third-party payment providers. We encourage you to review the privacy policies of your payment provider directly.
8. Policy Updates & Contact
8.1 Changes to This Privacy Policy
crzytime reserves the right to update or amend this Privacy Policy at any time. Where changes are material — for example, where we introduce a new category of data collection or a new purpose for processing — we will notify registered players via their registered email address and display a prominent notice on the crzytime platform for a minimum of 14 days prior to the changes taking effect. For minor, non-material updates (such as corrections to typos or clarifications of existing practices), we will update the "Last Updated" date at the top of the Policy without individual notification.
Your continued use of crzytime following the effective date of any updated Privacy Policy constitutes your acknowledgment of the revised terms. We recommend reviewing this page periodically to remain informed of how we protect your data.
8.2 Contact & Data Protection Enquiries
If you have any questions, concerns, or requests relating to this Privacy Policy or to the personal data crzytime holds about you, please contact us at any time. Our Data Protection team can be reached via 24/7 live chat on the crzytime platform or by written enquiry to: support@crzytime (plain text — not a clickable link). Please mark the subject of your message clearly as "Privacy Enquiry" or "Data Rights Request" to ensure prompt routing to the correct team. We aim to acknowledge all written privacy enquiries within 2 business days (Bangladesh Standard Time, UTC+6).
Your Data is Safe at crzytime
Now that you understand how we protect your privacy, feel free to explore Bangladesh's most trusted online casino — live tables, cricket betting, BPL markets, and thousands of slots, all in BDT. 18+ only. Play responsibly.