md44 Privacy Policy
Your privacy matters to md44. This Privacy Policy explains exactly what personal data we collect when you use md44.bet, why we collect it, how it is stored and protected, and the rights you hold over your own information. We encourage all players to read this document in full before registering an account.
How md44 Protects Your Data
These summary cards highlight the core principles of md44's privacy approach. The full legal text follows in the sections below — please read the complete policy before using the platform.
1. Data We Collect
md44 collects personal data from players in order to open and manage accounts, process transactions, verify age and identity, prevent fraud, and improve the platform experience. We collect only the data that is genuinely necessary for these purposes. The categories of personal data we collect are described below.
1.1 Registration data — When you create an md44 account via the md44 Login registration flow, we collect:
- Full legal name
- Date of birth (for age verification — you must be 18 or above)
- Residential address (including city, district, and postcode)
- Mobile phone number
- Email address
- Preferred currency (BDT)
- Username and hashed password
1.2 Identity verification (KYC) data — Before withdrawals are permitted, md44 may request documentary proof to comply with its Know Your Customer obligations:
- Copy of National Identity Card (NID), passport, or driving licence
- Proof of address (utility bill or bank statement dated within three months)
- Proof of payment method ownership (screenshot or statement for bKash, Nagad, Rocket, or bank account)
1.3 Transaction data — For every deposit and withdrawal processed on md44, we record the transaction amount (in BDT), the payment method used (bKash, Nagad, Rocket, Upay, or bank transfer), the timestamp (Bangladesh Standard Time, UTC+6), and the transaction reference number issued by the payment provider.
1.4 Gaming activity data — md44 maintains a complete record of all bets placed, games played, outcomes, session durations, and responsible gaming tool usage (deposit limits, self-exclusion periods, cool-off requests) associated with your account. This data is used to investigate disputes, detect problem gambling patterns, and generate regulatory reports.
1.5 Technical and device data — When you access md44.bet, our servers automatically log your IP address, browser type and version, operating system, device type (mobile, tablet, desktop), referring URL, pages visited, and session duration. This data is used for fraud detection, security monitoring, and platform performance analysis.
1.6 Communications data — If you contact md44 via live chat, email, or any other support channel, we retain a record of that communication including its content, timestamp, and any resolution actions taken.
2. How We Use Your Data
md44 processes your personal data only for legitimate, specified purposes. We do not process data in ways that are incompatible with the purposes described at the time of collection. The primary purposes for which we use your data are set out in the table below.
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Account creation and management | Registration data, username/password | Contractual necessity |
| Age and identity verification (KYC) | KYC documents, date of birth | Legal obligation / contractual necessity |
| Processing deposits and withdrawals | Transaction data, payment method details | Contractual necessity |
| Fraud prevention and security monitoring | Technical data, transaction data, gaming activity | Legitimate interest |
| Responsible gaming compliance | Gaming activity, deposit limits, self-exclusion records | Legal obligation / legitimate interest |
| Customer support | Communications data, account data | Contractual necessity |
| Platform analytics and improvement | Technical data, gaming activity (aggregated) | Legitimate interest |
| Marketing communications (opt-in only) | Email address, phone number | Consent |
Marketing opt-out: If you have opted in to receive promotional emails or SMS messages from md44, you may withdraw that consent at any time by contacting support via live chat or by following the unsubscribe link in any marketing email. Withdrawal of marketing consent does not affect the lawfulness of processing carried out before the withdrawal.
Automated decision-making: md44 uses automated systems to flag potentially fraudulent transactions, detect duplicate accounts, and identify at-risk gambling behaviour. Where an automated decision materially affects your account (such as a temporary suspension), you have the right to request human review of that decision by contacting the compliance team via live chat.
3. Data Sharing & Disclosure
md44 does not sell, rent, or trade your personal data to third-party companies for marketing or advertising purposes under any circumstances. We share data only where it is strictly necessary to deliver our services or where we are legally required to do so.
3.1 Payment processors — When you make a deposit or withdrawal, md44 shares the necessary transaction details with the relevant payment provider (bKash, Nagad, Rocket, Upay, or a banking partner). These providers receive only the minimum data required to process the transaction and are contractually bound to handle it securely.
3.2 Game content providers — Games on md44 are supplied by third-party studios including Evolution Gaming, Pragmatic Play, NetEnt, Microgaming, Spribe, and Ezugi. These providers receive a pseudonymous player identifier and session token to initialise and authenticate game sessions. They do not receive your full name, phone number, address, or payment details.
3.3 Fraud prevention and security partners — md44 works with specialist fraud detection services that analyse device fingerprints, IP addresses, and behavioural patterns to identify suspicious activity. Data shared with these services is encrypted and used solely for security purposes.
3.4 Legal and regulatory disclosure — md44 may disclose personal data to law enforcement agencies, regulatory authorities, or courts where required to do so by applicable law, a valid court order, or where disclosure is necessary to protect the rights and safety of md44, its players, or the public. In such cases, md44 will disclose only the minimum data necessary to satisfy the legal requirement.
3.5 Business transfers — In the event of a merger, acquisition, or sale of all or part of md44's business, player data may be transferred to the acquiring entity as part of that transaction. md44 will notify affected players by email or via a prominent notice on md44.bet prior to any such transfer taking effect, and the acquiring entity will be bound by the terms of this Privacy Policy.
4. Cookies & Tracking
md44 uses cookies and similar tracking technologies on md44.bet to maintain session state, prevent fraud, and analyse platform usage. A cookie is a small text file placed on your device by a web server. Cookies do not contain executable code and cannot access other files on your device.
4.1 Types of cookies used by md44:
- Strictly necessary cookies — These cookies are essential for the platform to function. They maintain your login session, store your language preference, and prevent cross-site request forgery attacks. These cookies cannot be disabled without impairing platform functionality.
- Analytics cookies — md44 uses first-party analytics cookies to measure page view counts, session durations, navigation paths, and feature usage rates. This data is aggregated and anonymised; it is used solely to improve the platform experience and is not shared with advertising networks.
- Security cookies — These cookies store a device fingerprint hash that allows md44's fraud detection systems to identify unusual access patterns, such as a login from a new device or location, and trigger additional verification steps.
- Preference cookies — These cookies remember your platform preferences, such as your selected game lobby view or notification settings, so that they persist between sessions.
4.2 Managing cookies: You can control and delete cookies through your browser settings. Most browsers allow you to block all cookies, block third-party cookies only, or receive a notification before a cookie is placed. Please note that disabling strictly necessary cookies will prevent you from logging in to your md44 account. Disabling analytics cookies will not affect your ability to play games or process transactions.
4.3 No advertising cookies: md44 does not use third-party advertising cookies, retargeting pixels, or social media tracking scripts on md44.bet. Your browsing activity on md44 is not shared with advertising networks or social media platforms.
5. Data Retention
md44 retains your personal data only for as long as it is necessary to fulfil the purposes for which it was collected or to comply with applicable legal, regulatory, or contractual obligations. The following retention periods apply:
| Data Category | Retention Period | Reason |
|---|---|---|
| Account registration data | Duration of account + 5 years after closure | Legal obligation, dispute resolution |
| KYC identity documents | Duration of account + 5 years after closure | Anti-money laundering compliance |
| Transaction records | 7 years from transaction date | Financial regulatory requirement |
| Gaming activity logs | Duration of account + 3 years after closure | Dispute resolution, responsible gaming audit |
| Support communications | 3 years from last interaction | Quality assurance, dispute resolution |
| Device and technical logs | 12 months from collection | Security monitoring, fraud detection |
| Marketing consent records | Until consent is withdrawn + 2 years | Proof of consent |
When a retention period expires, the relevant data is either permanently deleted from md44's systems or anonymised so that it can no longer be linked to an identifiable individual. Anonymised and aggregated data may be retained indefinitely for statistical analysis and platform improvement purposes.
6. Data Security
md44 takes the security of your personal data seriously and maintains a comprehensive set of technical and organisational measures designed to protect data against unauthorised access, accidental loss, alteration, disclosure, or destruction.
Technical measures in place at md44 include:
- 256-bit SSL/TLS encryption on all data transmitted between your device and md44's servers.
- AES-256 encryption at rest for all databases storing personal data, KYC documents, and financial records.
- Password hashing using bcrypt with a per-user salt — md44 never stores passwords in plain text.
- Two-factor authentication (2FA) available for all player accounts and mandatory for all staff accounts with data access.
- Role-based access control (RBAC) ensuring that staff members can access only the data necessary for their specific job function.
- Intrusion detection systems (IDS) and continuous log monitoring to identify and respond to unusual access patterns in real time.
- Regular penetration testing carried out by independent security auditors to identify and remediate vulnerabilities before they can be exploited.
Organisational measures include mandatory data privacy training for all md44 staff, a documented incident response plan for data breaches, strict clear-desk and clean-screen policies, and regular internal audits of data access logs.
Data breach notification: In the event of a personal data breach that is likely to result in risk to affected players, md44 will notify impacted individuals without undue delay and no later than 72 hours after becoming aware of the breach. Notification will be sent to the email address registered on the affected account and will describe the nature of the breach, the data affected, and the steps md44 has taken in response.
Your responsibilities: While md44 maintains robust server-side security, you are responsible for keeping your md44 Login credentials confidential, using a strong and unique password, and enabling two-factor authentication. md44 cannot be held liable for unauthorised access that results from your failure to maintain the security of your own login credentials.
7. Your Privacy Rights
As an md44 player, you hold several rights over your personal data. md44 is committed to honouring these rights and will respond to all valid requests within 30 days of receipt. To exercise any of the rights listed below, contact the support team via live chat (available 24/7 in English) or send a written request to [email protected].
- Right of access — You have the right to request a copy of all personal data that md44 holds about you, along with information about how it is being used. We will provide this in a clear, readable format.
- Right to rectification — If any of the personal data md44 holds about you is inaccurate or incomplete, you have the right to request that it be corrected. You may also update certain details (such as your phone number or email address) directly from within your account settings.
- Right to erasure — You may request that md44 delete your personal data. This right is subject to certain limitations: we are legally required to retain transaction records and KYC documents for the periods specified in Section 5, and we cannot delete data that is necessary to fulfil an open contractual obligation (such as a pending withdrawal).
- Right to restrict processing — You may request that md44 suspend processing of your data in certain circumstances, for example while a dispute regarding data accuracy is under investigation.
- Right to data portability — You have the right to receive your personal data in a structured, commonly used, machine-readable format so that it can be transferred to another service provider where technically feasible.
- Right to object — You may object to md44 processing your data on the basis of legitimate interests, including the production of aggregated analytics. You may also object to receiving direct marketing communications at any time.
- Right to withdraw consent — Where md44 relies on your consent as the legal basis for processing (for example, sending marketing emails), you may withdraw that consent at any time without affecting the lawfulness of prior processing.
md44 will not charge a fee for handling data rights requests except in cases where requests are manifestly unfounded or excessive. In such cases, we may charge a reasonable administrative fee or decline to act on the request, providing written reasons for the decision.
8. Policy Updates & Contact
md44 reserves the right to update this Privacy Policy at any time to reflect changes in our data practices, changes to the services we offer, or changes in applicable law. When a material change is made to this policy, md44 will notify registered players by email and by posting a prominent notice on md44.bet for a period of not less than 14 days prior to the change taking effect.
The "Effective" date at the top of this document will be updated each time the policy is revised. We encourage you to review this page periodically to stay informed of how md44 handles your data. Continued use of md44.bet following notification of a policy update constitutes acceptance of the revised terms.
Previous versions: Archived versions of this Privacy Policy are available upon request. Contact the support team via live chat if you need to review a prior version for any reason.
Contact details: For all privacy-related enquiries, data rights requests, or concerns about how md44 handles your personal data, contact the md44 Data Privacy team using the following details:
- Live chat: Available 24/7 in English at md44.bet
- Email (plain text — not a clickable link): [email protected]
- Response time: md44 aims to acknowledge all privacy enquiries within 48 hours and to resolve them fully within 30 days.
md44 takes every privacy complaint seriously. If you are not satisfied with our response to your enquiry, you retain the right to escalate your complaint to the relevant data protection authority in your jurisdiction.
With a clear understanding of how md44 handles your data, explore the platform with confidence. Browse live casino games, place a cricket bet, or check the FAQ for any remaining questions.