Privacy Policy — ceo86 Bangladesh
At ceo86, your privacy is a priority. This Privacy Policy explains exactly what personal data we collect when you use the ceo86 platform, why we collect it, how we use and protect it, and what rights you hold over your own information. Please read this document carefully before registering or continuing to use the platform.
Our Commitment
How ceo86 Protects Your Privacy
ceo86 is committed to handling your personal information with transparency and care. The following principles underpin every aspect of our data practices.
SSL Encryption
All data transmitted between your device and the ceo86 platform is protected by industry-standard SSL (Secure Socket Layer) encryption. Your personal and financial information cannot be intercepted in transit.
Minimal Data Collection
ceo86 collects only the personal data that is strictly necessary for account operation, KYC compliance, payment processing, and the delivery of our services. We do not collect data for speculative or undefined future purposes.
No Unauthorised Selling
ceo86 does not sell, rent, or trade your personal information to third-party marketers, advertising networks, or data brokers. Your data is used only for the purposes described in this Privacy Policy.
Your Rights Are Respected
You have the right to access, correct, export, or request deletion of your personal data held by ceo86 at any time, subject to applicable legal and regulatory obligations. Full details are in the Your Privacy Rights section below.
Secure Data Storage
Your personal data is stored on secured servers with restricted access controls. Only authorised ceo86 personnel and systems with a verified operational need can access stored personal data.
Breach Notification
In the unlikely event of a data security breach affecting your personal information, ceo86 will notify affected users promptly and take all reasonable steps to contain and remediate the breach in accordance with responsible data practice.
This Privacy Policy ("Policy") describes how ceo86 ("we", "us", "our", "the Company") collects, processes, stores, and protects the personal information of users ("you", "your") who access or use the ceo86 online casino and sports betting platform at ceo86.app and any associated sub-domains (collectively, the "Platform"). This Policy applies to all registered members, visitors, and any other individuals who interact with the Platform in any capacity.
By registering an account, completing the ceo86 Login process, or continuing to use the Platform after this Policy has been published or updated, you acknowledge that you have read and understood this Policy and consent to the data practices described herein. If you do not agree with this Policy, you must not register or continue to use the Platform.
This Policy is to be read in conjunction with the ceo86 Terms & Conditions and Responsible Gaming Policy, both of which are published on this Platform. The Terms & Conditions govern your overall use of the Platform; this Policy deals specifically with matters of data privacy and information security.
1. Information We Collect
ceo86 collects personal information from you in the following ways: directly when you provide it to us during registration or account management; automatically when you use the Platform; and from third parties involved in payment processing and identity verification. The categories of personal data we collect are set out below.
1.1 Information You Provide Directly
- Registration data: Full legal name, date of birth, residential address in Bangladesh (including division, district, and postal area), and a valid mobile phone number linked to your bKash, Nagad, Rocket, or Upay mobile wallet account.
- Identity verification documents: Copies of your National Identity Card (NID), passport, or other government-issued identification submitted as part of the KYC (Know Your Customer) process required before withdrawal processing.
- Payment information: Mobile wallet account numbers (bKash, Nagad, Rocket, Upay) used for deposits and withdrawals. ceo86 does not store full card numbers or banking credentials. Payment verification data is processed securely via our payment partners.
- Communications: Records of correspondence between you and ceo86 customer support, including support ticket content, chat logs, and email threads. These records are retained for quality assurance and dispute resolution purposes.
- Responsible gaming submissions: Information you provide when setting deposit limits, activating time-out periods, or requesting self-exclusion through the ceo86 Responsible Gaming tools.
1.2 Information Collected Automatically
- Device and technical data: IP address, device type, operating system, browser type and version, screen resolution, and device identifiers.
- Usage data: Pages visited on the Platform, games played, betting history, session duration, click paths, and feature interactions. This data is used to improve the Platform experience and to monitor for prohibited activity.
- Transaction logs: A full record of all deposits, withdrawals, bonus claims, bets placed, and winnings received on your account. These logs are maintained for financial reconciliation, fraud prevention, and regulatory compliance purposes.
- Cookie and tracking data: Information collected via cookies, web beacons, and similar technologies as detailed in Section 4 of this Policy.
1.3 Information from Third Parties
- Payment processors: Transaction status confirmations and fraud-screening results from bKash, Nagad, Rocket, and Upay in connection with deposit and withdrawal processing.
- Identity verification partners: Results from third-party KYC and document verification service providers used to validate the identity documents you submit.
- Fraud prevention services: Risk scores and flagging data from fraud detection partners used to protect the integrity of the Platform and its users.
Note on sensitive data: ceo86 does not intentionally collect sensitive personal data such as racial or ethnic origin, religious beliefs, political opinions, or health information, except where you have voluntarily disclosed such information in the context of a responsible gaming assessment or support interaction. Any such data is handled with the highest level of care and access restrictions.
2. How We Use Your Information
ceo86 uses the personal information we collect for specific, legitimate purposes directly related to the operation of the Platform and the delivery of our services. The table below summarises the primary purposes for which your data is used and the legal basis on which we rely for each activity.
| Purpose of Use | Data Categories Used | Legal Basis |
|---|---|---|
| Account creation and management | Registration data, contact details | Contractual necessity |
| Identity and age verification (KYC) | ID documents, date of birth, NID data | Legal obligation / contractual necessity |
| Processing deposits and withdrawals | Payment method details, transaction logs | Contractual necessity |
| Fraud prevention and security monitoring | Usage data, device data, IP address, transaction logs | Legitimate interests |
| Customer support and dispute resolution | Communication records, account history | Contractual necessity / legitimate interests |
| Responsible gaming monitoring | Betting history, self-exclusion data, session data | Legal obligation / legitimate interests |
| Platform improvement and analytics | Usage data, device data, cookie data | Legitimate interests |
| Promotional communications (where opted in) | Contact details, preference data | Consent |
ceo86 will not use your personal data for any purpose that is materially different from those described above without first obtaining your explicit consent or establishing an alternative lawful basis for the new processing activity. We do not use your personal data for automated decision-making that produces significant legal effects without human oversight.
Where we rely on your consent as the legal basis for processing — for example, to send you promotional offers about new games, BPL cricket betting markets, or seasonal bonuses tied to events such as Eid or Pohela Boishakh — you may withdraw that consent at any time by updating your communication preferences within your account dashboard or by contacting ceo86 support. Withdrawal of consent does not affect the lawfulness of any processing carried out before the withdrawal.
3. Data Sharing & Third Parties
ceo86 does not sell, rent, or trade your personal data to any third party. We share your information only in the limited circumstances described below, and only to the extent strictly necessary for the stated purpose.
- Payment processing partners: We share the minimum necessary payment data with our approved mobile wallet partners (bKash, Nagad, Rocket, Upay) to process your deposit and withdrawal transactions. These partners operate under their own privacy policies and are bound by their respective regulatory obligations under Bangladesh Bank guidelines.
- KYC and identity verification providers: When you submit identity documents as part of the KYC process, those documents are processed by our contracted third-party verification provider. This provider is bound by contractual data processing agreements and is prohibited from using your data for any purpose beyond identity verification for ceo86.
- Fraud detection and security services: Certain technical data (including IP address, device fingerprint, and transaction patterns) may be shared with fraud prevention technology partners to protect the integrity of your account and the broader ceo86 Platform.
- Game and software providers: Game providers such as Pragmatic Play, Evolution Gaming, Spribe, Ezugi, NetEnt, and Microgaming may receive limited session and game-play data necessary for the operation of their games on the Platform. These providers are not permitted to use your data for their own marketing purposes.
- Legal and regulatory authorities: ceo86 may be required to disclose your personal data in response to a valid court order, regulatory directive, law enforcement request, or other legally binding obligation under the applicable laws of Bangladesh. We will make reasonable efforts to notify you of any such disclosure where permitted by law.
- Business transfers: In the event that ceo86 undergoes a merger, acquisition, or sale of assets, your personal data may be transferred as part of that transaction. You will be notified via the Platform or by email prior to your data becoming subject to a materially different privacy policy as a result of such a transfer.
Third-party links: The ceo86 Platform does not contain links to external third-party websites. However, if you navigate away from the Platform independently, please note that ceo86 has no control over and accepts no responsibility for the privacy practices of any external website or service.
4. Cookies & Tracking Technologies
ceo86 uses cookies and similar tracking technologies to operate and improve the Platform, to maintain your session while you are logged in via the ceo86 Login, and to understand how users interact with different features and game categories. This section explains what cookies are, which types we use, and how you can manage them.
A cookie is a small text file placed on your device by a web server when you visit a website. Cookies allow the Platform to recognise your device on return visits and to store certain preferences or session states. Cookies do not contain executable code and cannot carry viruses or access other files on your device.
4.1 Types of Cookies Used by ceo86
- Strictly necessary cookies: These cookies are essential for the Platform to function. They enable core features such as session management, ceo86 Login authentication, account security tokens, and your shopping basket (game lobby selections). The Platform cannot operate correctly without these cookies. They do not require your consent.
- Performance and analytics cookies: These cookies collect anonymised data about how users navigate the Platform — for example, which game categories are visited most frequently, how long sessions last, and where users exit the Platform. This data helps us improve the user experience. We use first-party analytics tools for this purpose.
- Functionality cookies: These cookies remember your preferences, such as your preferred language setting (English), display preferences, and whether you have previously acknowledged Platform notices, so you do not have to reconfigure them on each visit.
- Security cookies: These cookies assist in fraud prevention and security monitoring by helping to identify unusual patterns of access or activity that may indicate an account compromise or bot activity.
4.2 Managing Cookies
You can control and manage cookies through your browser settings. Most modern browsers allow you to refuse some or all cookies, or to alert you before a cookie is placed on your device. Please note that disabling strictly necessary cookies will impair the functionality of the ceo86 Platform and may prevent you from accessing certain features, including the ceo86 Login and the game lobby. Instructions for managing cookies in popular browsers can be found in the browser's help documentation.
Session cookies vs. persistent cookies: Session cookies are deleted from your device automatically when you close your browser. Persistent cookies remain on your device for a defined period (typically 30 to 365 days depending on their purpose) or until you manually delete them. ceo86 uses both types as described above.
5. Data Security & Storage
ceo86 takes the security of your personal data seriously. We implement a range of technical and organisational measures designed to protect your information from unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures include:
- SSL/TLS encryption: All data in transit between your browser or mobile device and the ceo86 Platform is encrypted using industry-standard TLS (Transport Layer Security) protocols. This includes all ceo86 Login sessions, account management interactions, and payment-related communications.
- Access controls: Access to personal data stored on ceo86 systems is restricted on a need-to-know basis. Staff members are granted access only to the data necessary for their specific operational role, and all access is logged and audited.
- Data minimisation: ceo86 stores only the personal data that is necessary for the purposes described in this Policy. Data that is no longer required is securely deleted or anonymised in accordance with our data retention schedule.
- Password security: Account passwords stored by ceo86 are hashed using a strong cryptographic algorithm. ceo86 staff are never able to view your plain-text password; if you forget your password, you must reset it via the registered mobile number on your account.
- Infrastructure security: The ceo86 Platform is hosted on secured server infrastructure with firewalls, intrusion detection systems, and regular security patching applied to protect against known vulnerabilities.
Despite these measures, no system connected to the internet can be guaranteed to be completely secure against all possible threats. ceo86 cannot provide an absolute guarantee of the security of your data, and you use the Platform at your own risk in this respect. You are responsible for keeping your ceo86 Login credentials confidential and for ensuring that no unauthorised person has access to your account.
Your personal data is stored on servers located in secure data centres. In the event of a data breach that is likely to result in a risk to your rights or interests, ceo86 will notify affected users as promptly as possible and will cooperate with any relevant authorities as required.
6. Your Privacy Rights
As a user of the ceo86 Platform, you have the following rights in relation to the personal data we hold about you. To exercise any of these rights, please contact ceo86 support using the email address displayed on this Platform.
- Right of access: You have the right to request a copy of the personal data that ceo86 holds about you. We will provide this information within a reasonable timeframe, typically within 30 days of a verified request.
- Right to rectification: If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected. You can update many details directly within your account settings; for changes to core identity data, please contact support.
- Right to erasure: You may request the deletion of your personal data under certain circumstances — for example, where the data is no longer necessary for the purposes for which it was collected. Please note that this right is subject to overriding legal obligations; ceo86 is required to retain certain records (such as KYC documents and transaction logs) for defined periods under applicable financial and anti-money-laundering regulations, and erasure requests cannot override these obligations.
- Right to restrict processing: You may request that ceo86 restrict the processing of your personal data in certain circumstances, such as while a dispute regarding the accuracy of your data is being resolved.
- Right to data portability: Where technically feasible and where processing is based on your consent or on a contractual basis, you may request a copy of your personal data in a structured, commonly used, machine-readable format.
- Right to withdraw consent: Where ceo86 relies on your consent as the legal basis for processing your data (such as for marketing communications), you may withdraw that consent at any time without affecting the lawfulness of prior processing.
- Right to lodge a complaint: If you believe that ceo86 has not handled your personal data in accordance with this Policy or applicable law, you have the right to raise a complaint directly with ceo86 by contacting our support team at the email address listed on the Platform.
Identity verification for data requests: To protect your privacy, ceo86 will verify your identity before processing any data access, rectification, or erasure request. You may be asked to confirm details associated with your registered account or to provide a copy of your identity document before your request is actioned.
7. Data Retention Policy
ceo86 retains your personal data only for as long as is necessary to fulfil the purposes for which it was collected, or as required by applicable law and regulation. The following retention guidelines apply:
- Active account data: Personal data associated with an active ceo86 account is retained for the duration of your account relationship with ceo86, plus a minimum period of five (5) years following permanent account closure. This retention period supports compliance with anti-money-laundering regulations and allows for the resolution of any post-closure disputes.
- KYC and identity documents: Copies of identity documents submitted as part of the KYC process are retained for a minimum of five (5) years following the verification date or account closure, whichever is later, in accordance with applicable financial compliance obligations.
- Transaction records: Full records of all deposits, withdrawals, bets, and payouts are retained for a minimum of seven (7) years for financial audit and regulatory compliance purposes.
- Customer support records: Communication records including support tickets and chat logs are retained for a period of three (3) years following the date of last interaction, for quality assurance and dispute resolution purposes.
- Marketing consent records: Records of consent provided or withdrawn for marketing communications are retained for the duration of the account relationship and for three (3) years thereafter, to demonstrate compliance with consent obligations.
- Analytics and usage data: Anonymised or aggregated analytics data, which cannot be linked back to any individual user, may be retained indefinitely for Platform improvement purposes. This data is subject to anonymisation processes before extended retention.
- Dormant accounts: Where an account has been inactive for 12 or more consecutive months, ceo86 may begin the process of anonymising non-essential personal data associated with that account. Core financial and KYC records will continue to be retained for the periods specified above regardless of account activity status.
When the applicable retention period for a category of data expires, ceo86 will securely delete or irreversibly anonymise that data in accordance with our data disposal procedures. Secure deletion means that the data cannot be recovered or reconstructed after the disposal process is complete.
8. Updates to This Policy
ceo86 reserves the right to update or revise this Privacy Policy at any time to reflect changes in our data practices, Platform features, applicable law, or regulatory guidance. When we make material changes to this Policy, we will update the effective date displayed at the top of this page and, where the changes are significant, we will notify registered users via a notice displayed on the Platform upon their next login.
Your continued use of the ceo86 Platform following publication of any updated Privacy Policy constitutes your acknowledgement of the revised Policy and your agreement to be bound by its terms. We encourage you to review this page periodically to stay informed about how ceo86 protects and uses your personal information.
If you have any questions about this Privacy Policy, wish to exercise any of the rights described in Section 6, or have concerns about how your personal data is being handled, please contact the ceo86 support team at the email address displayed on this Platform. We aim to acknowledge all privacy-related enquiries within 48 hours and to provide a substantive response within 30 days of receiving a verified request.
Privacy Questions? We Are Here to Help.
If anything in this Privacy Policy is unclear, our support team is available around the clock. You can also visit our FAQ for quick answers, review our Terms & Conditions, or head straight to the ceo86 Casino to start playing.