Data Protection & Privacy
Privacy Policy — gita7
Your privacy matters deeply to us. This Privacy Policy explains exactly what personal data gita7 collects when you use our platform, how we use it, who we may share it with, and the rights you hold over your own information. We are committed to handling your data with the care, transparency, and security you deserve as a gita7 player.
Our Privacy Commitments
Six principles that guide every decision we make about your personal data at gita7.
End-to-End Encryption
Every byte of data transmitted between your device and gita7's servers is protected by 256-bit SSL/TLS encryption — the same standard used by leading financial institutions globally. Your credentials and transaction data are never sent in plain text.
No Data Selling
gita7 does not sell, rent, or trade your personal information to third-party advertisers, data brokers, or marketing agencies. Your data is used solely to operate, improve, and secure your gita7 account experience — nothing more.
You Control Your Data
You have the right to access a copy of all personal data gita7 holds about you, request corrections to inaccurate information, and request deletion of your data (subject to legal retention obligations). Submit requests via our 24/7 live chat or email support.
Secure Data Storage
Secure Data StorageAll personal data is stored on secure servers with strict access controls, firewall protection, and regular independent security audits. Only authorised gita7 personnel with a legitimate operational need may access player account data, and all access is logged and monitored.
Transparent Cookie Use
gita7 uses cookies and similar technologies only for essential platform operation, fraud prevention, and anonymous analytics. We do not deploy advertising tracking pixels or share browsing data with ad networks. You can manage cookie preferences at any time from within your browser settings.
Defined Retention Periods
gita7 retains personal data only for as long as it is necessary to fulfil the purposes for which it was collected, including compliance with legal and anti-money laundering obligations. When data is no longer required, it is securely deleted or anonymised in accordance with our data retention schedule.
1 Information We Collect
When you register and use a gita7 account, we collect personal information that is necessary to provide you with a safe, compliant, and high-quality gaming and betting experience. The categories of personal data we collect are described below.
Information You Provide Directly
When you create a gita7 account or interact with our support team, you provide us with the following information:
- Identity data: Your full legal name, date of birth, and national identity number (as submitted during KYC verification).
- Contact data: Your mobile phone number (Bangladesh mobile number) and, where provided, your email address.
- Account credentials: Your chosen username and encrypted password. gita7 stores passwords in hashed form only — we never store or transmit passwords in plain text.
- KYC documentation: Copies of government-issued identity documents (National ID card, passport, or birth registration certificate) and proof of address submitted for identity verification purposes.
- Payment data: Your bKash, Nagad, Rocket, or Upay mobile wallet number used for deposits and withdrawals. gita7 does not store full payment account credentials beyond what is necessary to process transactions.
- Support communications: Records of any messages, queries, or complaints you submit to the gita7 support team via live chat or email.
Information Collected Automatically
When you access the gita7 Platform, certain technical data is automatically collected by our systems:
- Device and browser data: Device type, operating system, browser type and version, screen resolution, and device identifiers.
- Network data: IP address, approximate geographic location (derived from IP), internet service provider, and connection type.
- Usage data: Pages visited, games played, bets placed, session duration, click paths, and feature interactions within the Platform.
- Transaction data: A full record of all deposits, withdrawals, bets, game results, bonus credits, and account balance movements associated with your account.
- Cookie and tracking data: Session identifiers, preference cookies, and anonymised analytics data collected via cookies and similar technologies (see Section 4 for full details).
2 How We Use Your Data
gita7 uses the personal data we collect for specific, legitimate purposes. The table below summarises each key purpose, the categories of data involved, and the legal basis on which we rely.
| Purpose | Data Categories Used | Legal Basis |
|---|---|---|
| Account registration and management | Identity, contact, credentials | Contract performance |
| KYC identity and age verification | Identity, KYC documents | Legal obligation |
| Processing deposits and withdrawals | Payment data, transaction data | Contract performance |
| Fraud detection and anti-money laundering | All categories | Legal obligation / Legitimate interest |
| Customer support and dispute resolution | Identity, contact, support communications | Contract performance |
| Responsible gaming monitoring | Usage data, transaction data | Legal obligation / Legitimate interest |
| Platform analytics and improvement | Usage data, device data (anonymised) | Legitimate interest |
| Promotional communications (where opted in) | Contact data | Consent |
Responsible Gaming Monitoring
gita7 takes its duty of care towards players seriously. We use automated monitoring tools to analyse player account activity — including deposit frequency, bet sizes, session lengths, and wagering patterns — to identify potential signs of problem gambling behaviour. Where our systems flag a concern, a member of the responsible gaming team may make proactive contact to offer support and information about available tools such as deposit limits and self-exclusion. This monitoring is conducted in the interests of player welfare and does not constitute profiling for commercial purposes.
Promotional Communications
If you have opted in to receive promotional communications from gita7, we may send you information about new games, seasonal promotions (such as Eid offers, BPL season bonuses, or Pohela Boishakh promotions), and platform updates. You may withdraw your consent to receive promotional messages at any time by contacting the support team or updating your notification preferences within your account dashboard. Withdrawing consent does not affect the lawfulness of any communications sent prior to withdrawal.
3 Data Sharing & Disclosure
gita7 does not sell, rent, or trade your personal data to third parties for their own commercial purposes. We share your data only in the limited circumstances described below, and only to the minimum extent necessary for the specified purpose.
Payment Processing Partners
To process deposits and withdrawals, gita7 shares the necessary transaction data with your chosen mobile financial service provider (bKash, Nagad, Rocket, or Upay). The data shared is limited to the information required to authenticate and complete the transaction. Each payment partner operates under its own privacy policy and is independently responsible for the data it processes.
Identity Verification Services
gita7 may use third-party KYC and identity verification service providers to assist with the verification of player identity documents and age confirmation. These providers are contractually bound to process personal data only on gita7's instructions and in accordance with applicable data protection standards.
Technology and Platform Providers
gita7 works with technology partners — including game content providers such as Pragmatic Play, Evolution Gaming, Ezugi, Microgaming, NetEnt, and Spribe — to deliver the games and services available on the Platform. These providers may receive anonymised or pseudonymised session data to facilitate gameplay but do not receive personally identifiable information beyond what is strictly necessary for technical operation.
Legal and Regulatory Obligations
gita7 may disclose personal data to law enforcement agencies, regulatory bodies, financial intelligence units, or other competent authorities where required to do so by applicable law, court order, or regulatory requirement. In particular, gita7 is subject to anti-money laundering obligations that may require the disclosure of transaction and identity data to relevant authorities. gita7 will notify the affected player of any such disclosure unless legally prohibited from doing so.
Business Transfers
In the event that gita7 undergoes a merger, acquisition, restructuring, or sale of assets, player personal data may be transferred to the successor entity as part of the transaction. In such circumstances, gita7 will take reasonable steps to ensure that the successor entity is bound by privacy commitments no less protective than those set out in this Policy, and will notify affected players where required by law.
4 Cookies & Tracking Technologies
gita7 uses cookies and similar browser-based technologies to provide certain essential platform functions, improve user experience, and gather anonymised analytics data. This section explains what types of cookies we use and how you can manage your preferences.
What Are Cookies?
Cookies are small text files placed on your device by a website when you visit it. They allow the website to remember information about your visit — such as your session state, language preferences, and display settings — so that you do not need to re-enter information every time you return. Cookies cannot execute code, install software, or access files stored on your device beyond the cookie file itself.
Types of Cookies We Use
- Strictly necessary cookies: These are essential to the operation of the gita7 Platform. They maintain your login session, preserve your account state during gameplay, and support core security functions such as CSRF protection. You cannot opt out of strictly necessary cookies without affecting your ability to use the Platform.
- Functional cookies: These remember your preferences, such as your display settings and notification preferences, to provide a more personalised experience during your session.
- Analytics cookies: gita7 uses anonymised analytics data to understand how players navigate the Platform, which features are most used, and where technical improvements may be needed. This data is aggregated and does not identify individual users.
- Fraud prevention cookies: These cookies support our security and fraud detection systems by identifying unusual patterns of access or usage that may indicate account compromise or fraudulent activity.
What We Do Not Use
gita7 does not deploy third-party advertising cookies, social media tracking pixels, or behavioural retargeting technologies on its Platform. We do not share cookie data with ad networks or use your browsing history to serve targeted advertisements.
Managing Your Cookie Preferences
You can manage or delete cookies at any time through your web browser's settings. Most browsers allow you to block all cookies, accept only certain types, or delete existing cookies. Please note that blocking strictly necessary cookies will impair your ability to log in to and use the gita7 Platform. Instructions for managing cookies in common browsers are available in each browser's help documentation.
5 Data Security & Retention
gita7 implements a comprehensive set of technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. Our security programme includes the following safeguards:
- Encryption in transit: All data transmitted between your device and gita7's servers is encrypted using TLS 1.2 or higher with 256-bit symmetric encryption.
- Encryption at rest: Sensitive personal data — including identity documents and payment method identifiers — is encrypted in our databases using AES-256 encryption.
- Access controls: Access to personal data is restricted on a strict need-to-know basis. All internal access is authenticated, role-based, and logged. Privileged access requires multi-factor authentication.
- Intrusion detection: gita7's systems are monitored continuously for suspicious activity, and automated intrusion detection systems alert our security team to anomalous events in real time.
- Regular security testing: gita7 conducts regular internal and third-party security assessments, including penetration testing, to identify and remediate vulnerabilities before they can be exploited.
- Staff training: All gita7 personnel who handle personal data receive regular training on data protection obligations, security best practices, and incident response procedures.
Data Breach Response
In the event of a personal data breach that poses a risk to the rights and freedoms of affected players, gita7 will take immediate steps to contain the breach, assess its scope and severity, and notify affected players as promptly as possible. Notifications will be sent to the mobile number or email address registered on your account and will include a description of the breach, the data affected, the likely consequences, and the steps gita7 is taking to address it.
Data Retention
gita7 retains personal data for the following periods, after which data is securely deleted or irreversibly anonymised:
- Account and identity data: Retained for the duration of your account plus 7 years following account closure, to meet anti-money laundering and legal compliance obligations.
- Transaction records: Retained for 7 years from the date of each transaction, in line with financial record-keeping requirements.
- KYC documents: Retained for 7 years from the date of verification or account closure, whichever is later.
- Support communications: Retained for 3 years from the date of the last interaction, unless the communication relates to an ongoing dispute or legal matter.
- Analytics data: Anonymised analytics data may be retained indefinitely as it no longer constitutes personal data once anonymised.
- Marketing preferences: Retained until you withdraw consent or close your account, whichever is earlier.
6 Your Privacy Rights
As a gita7 player, you hold the following rights with respect to your personal data. gita7 is committed to honouring these rights promptly and without undue restriction, subject only to limitations imposed by applicable law or our legal obligations.
Right of Access
You have the right to request a copy of all personal data that gita7 holds about you, together with information about how it is being processed. We will provide this information within 30 days of receiving a verified request. Requests can be submitted via live chat or by emailing [email protected].
Right to Rectification
If any personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected. Minor corrections (such as updating your mobile number) can be made directly within your account dashboard. For corrections to identity data, please contact the support team and provide the relevant documentary evidence.
Right to Erasure
You may request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected, where you have withdrawn consent and no other legal basis applies, or where you object to processing based on legitimate interests and no overriding grounds exist. Please note that erasure requests may be declined in part where gita7 is legally required to retain certain data (for example, transaction records for anti-money laundering purposes).
Right to Restrict Processing
You may request that gita7 restrict the processing of your personal data in certain circumstances — for example, while you contest the accuracy of the data or while an objection to processing is being considered. During a restriction period, gita7 will continue to store your data but will not actively process it beyond storage.
Right to Data Portability
Where processing is based on your consent or on the performance of a contract, and is carried out by automated means, you have the right to receive a copy of your personal data in a structured, commonly used, and machine-readable format (such as CSV or JSON), and to request that we transmit that data directly to another controller where technically feasible.
Right to Object
You have the right to object to the processing of your personal data where gita7 relies on legitimate interests as the legal basis for processing — including profiling for responsible gaming monitoring. If you wish to object, please contact the support team with the specific processing activity you wish to object to. gita7 will cease the processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.
How to Exercise Your Rights
To exercise any of the rights described above, contact the gita7 support team via 24/7 live chat from within your account dashboard or by emailing [email protected]. We may ask you to verify your identity before processing your request to ensure that data is not disclosed to unauthorised parties. We will respond to all verified requests within 30 days. Where a request is complex or involves a large volume of data, we may extend this period by a further 30 days, in which case we will notify you of the extension and the reason for it.
7 Third-Party Services
The gita7 Platform integrates with a number of third-party service providers to deliver the full range of features available to players. This section describes the main categories of third-party services and the privacy implications of each.
Game Content Providers
Games on the gita7 Platform are supplied by independent game studios including Pragmatic Play, Evolution Gaming, Ezugi, Microgaming, NetEnt, and Spribe. When you launch a game supplied by one of these providers, your session data — including your anonymised player identifier and the game actions performed during the session — is processed by the provider's systems in order to run the game and determine outcomes. Game providers do not receive your name, mobile number, or payment information. Each provider operates its own infrastructure and security controls.
Payment Service Providers
Transactions on the gita7 Platform are processed through the infrastructure of Bangladesh's mobile financial service providers: bKash, Nagad, Rocket, and Upay. When you initiate a deposit or withdrawal, the relevant transaction details are shared with your chosen provider to authenticate and complete the transfer. These providers are independent data controllers and process your data under their own privacy policies. gita7 recommends that you review the privacy policy of your chosen payment provider.
Analytics Services
gita7 uses server-side analytics tools to collect aggregated, anonymised data about Platform usage. This data helps us understand how players navigate the site, identify performance bottlenecks, and prioritise product improvements. No individually identifiable information is included in analytics reports. gita7 does not use third-party client-side analytics scripts that track users across other websites.
Links to Other Sites
The gita7 Platform does not contain links to external third-party websites. All navigation within the Platform stays within the gita7 domain. gita7 is not responsible for the privacy practices of any external platform that a player may access independently of gita7.
8 Policy Updates & Contact
gita7 reviews and updates this Privacy Policy periodically to reflect changes in our data processing practices, legal obligations, and the features available on the Platform. The date of the most recent revision is displayed at the top of this page and in the hero section above.
Notification of Changes
Where a material change is made to this Privacy Policy — for example, a change to the categories of data collected, the purposes for which data is used, or the circumstances in which data may be shared — gita7 will notify registered players via the mobile number or email address associated with their account. The notification will summarise the key changes and provide a link to the updated Policy. Continued use of the Platform following notification of a material change constitutes your acceptance of the revised Policy.
Contacting Us About Privacy
If you have any questions, concerns, or complaints about this Privacy Policy or about the way in which gita7 processes your personal data, please contact our support team using the details below. We take all privacy enquiries seriously and aim to respond within 24 hours (Bangladesh Standard Time, UTC+6).
- Live chat: Available 24/7 from within your gita7 account dashboard — the fastest way to reach us.
- Email: [email protected] — responses within 1 hour during business hours (BST).
This Privacy Policy was last reviewed and updated on 1 January 2026. It supersedes all previous versions of the gita7 Privacy Policy.
Ready to Play? Your Data Is Safe With gita7
Explore our games with confidence — your personal data is protected by 256-bit SSL encryption and handled in strict accordance with this Privacy Policy. 18+ only. Please play responsibly.