Is MCW Casino Legal in Bangladesh? Honest Review 2026

Privacy Policy

This Privacy Policy outlines how our online gaming platform collects, processes, stores, and protects personal information from users in Bangladesh and other jurisdictions. We are committed to maintaining the highest standards of data privacy and security in accordance with applicable laws and regulations governing online gaming operations. By accessing and using our services, you acknowledge that you have read, understood, and agreed to the terms outlined in this policy. Your privacy is fundamental to our business operations, and we implement comprehensive measures to safeguard your personal and financial data throughout your gaming experience.

1. Information We Collect and How We Use It

Our platform collects various categories of personal information to facilitate account creation, verify user identity, process transactions, and enhance your gaming experience. The types of information we gather include identification data such as your full name, date of birth, national identification number, and passport details when required for regulatory compliance. We also collect contact information including email addresses, telephone numbers, and residential addresses in Bangladesh or other regions. Financial information is collected when you deposit funds or withdraw winnings, including bank account details, payment card information, digital wallet identifiers, and transaction histories. Additionally, we collect device and behavioral data such as IP addresses, device identifiers, browser types, operating systems, gaming preferences, session duration, and betting patterns to improve our services and detect fraudulent activities.

The primary purposes for collecting this information are account verification and compliance with Know Your Customer regulations mandatory in Bangladesh, fraud prevention and security enhancement, processing of deposits and withdrawals, personalization of your gaming experience, analysis of user behavior for service improvement, communication of promotional offers and game updates, and legal compliance with gaming authority requirements. We may also use aggregated and anonymized data for statistical analysis and platform optimization without identifying individual users.

2. Data Sharing and Third-Party Disclosure

We maintain strict controls over how your personal information is shared with third parties. Your data is disclosed only when necessary and with appropriate safeguards in place. The categories of third parties who may receive your information include payment processors and financial institutions that facilitate deposits and withdrawals on our platform. These partners are bound by confidentiality agreements and process data solely for transaction purposes. Regulatory authorities and law enforcement agencies in Bangladesh and other jurisdictions may receive your information when required by legal obligation, court order, or to prevent fraud and illegal activities. Our technology service providers, including cloud storage operators, data analytics companies, and cybersecurity firms, have access to personal information to maintain platform functionality and security.

We implement the following protections when sharing data with third parties:

  1. Entering into Data Processing Agreements that explicitly require third parties to protect your information with the same standards we employ
  2. Conducting due diligence assessments on all third-party partners to ensure their data security practices meet our requirements
  3. Restricting third-party access to only the minimum information necessary to perform their specific functions
  4. Prohibiting third parties from using your data for purposes other than those outlined in their service agreements with us
  5. Requiring third parties to implement appropriate technical and organizational security measures

We do not sell or rent your personal information to unaffiliated companies for marketing purposes. Any disclosure beyond these categories requires your explicit written consent, which you may withdraw at any time by contacting our data protection team.

3. Data Security and Protection Measures

Protecting your personal and financial information against unauthorized access, alteration, disclosure, and destruction is our highest priority. We implement a comprehensive layered security architecture combining technical, administrative, and physical safeguards. All data transmission between your device and our servers is encrypted using industry-standard Transport Layer Security protocols with minimum 256-bit encryption. This ensures that sensitive information such as login credentials and payment details cannot be intercepted or read during transmission.

Our security infrastructure includes the following protective measures:

  1. End-to-end encryption for all financial transactions and sensitive personal data stored in our databases
  2. Multi-factor authentication requirements for account access, including password-based authentication combined with time-based one-time passwords or SMS verification
  3. Regular security audits conducted by independent third-party cybersecurity firms to identify and remediate vulnerabilities
  4. Penetration testing to simulate potential attack scenarios and ensure our defenses remain robust against evolving threats
  5. Secure password storage using cryptographic hashing with salt algorithms that prevent password recovery even by our own administrators
  6. Firewalls and intrusion detection systems that monitor network traffic for suspicious activities and unauthorized access attempts
  7. Regular data backups stored in geographically distributed secure locations to ensure continuity of service and data recovery capabilities
  8. Employee training programs on data protection, privacy regulations, and security best practices to prevent internal data breaches

Despite these comprehensive measures, no security system is completely impenetrable. We acknowledge this reality and maintain cyber liability insurance and incident response protocols to minimize potential harm in the unlikely event of a security breach. Any significant data breach will be reported to affected users and regulatory authorities as required by Bangladesh law.

4. Your Rights and Data Subject Access Requests

You possess several fundamental rights regarding your personal information processed by our platform. Under applicable privacy regulations in Bangladesh and internationally recognized data protection principles, you have the right to access your personal data and request a complete copy of all information we hold about you in a structured, commonly used, and machine-readable format. You may submit such requests by contacting our Data Protection Officer, and we will provide the information within thirty days of receiving your verifiable request.

Your additional rights include the right to correct inaccurate or incomplete information through your account settings or by submitting a formal correction request. You have the right to request deletion of your personal data, subject to legal retention requirements for anti-money laundering and tax compliance purposes. The right to restrict processing allows you to limit how we use your information in certain circumstances. You may object to direct marketing communications at any time by clicking the unsubscribe link in promotional emails or modifying your notification preferences in your account settings.

You possess data portability rights, enabling you to receive your information in a portable format and transmit it to another service provider. If you withdraw consent for processing activities previously authorized, we will cease processing based on that consent, though processing conducted before withdrawal remains valid. To exercise any of these rights, contact our privacy support team with sufficient detail to identify your account and the specific right you are exercising. We will verify your identity before proceeding with your request to prevent unauthorized access to account information.

5. Data Retention and Deletion Policies

We retain personal information for periods necessary to fulfill the purposes outlined in this policy and comply with legal obligations. Account information, including identification and contact details, is retained for the duration of your active account plus seven years following closure to satisfy anti-money laundering record-keeping requirements mandated by Bangladesh Financial Intelligence Unit regulations. Transaction records including deposits, withdrawals, and gaming activity are retained for minimum periods of five years as required by financial regulation and tax authorities.

Device and behavioral data, including IP addresses and session logs, are retained for twelve months to investigate fraud and security incidents. Marketing communication preferences are retained until you explicitly opt out or your account is deleted. Payment card information is retained only for the minimum time necessary to process transactions and prevent fraud, typically not exceeding thirteen months. Backup copies of deleted information may persist in our backup systems for up to ninety days before being permanently destroyed through cryptographic erasure. You may request earlier deletion of certain data categories subject to legal retention obligations. Upon account deletion, we will remove all information within sixty days except data we are legally required to retain for regulatory or legal proceedings.

6. Policy Updates and Contact Information

We reserve the right to modify this Privacy Policy at any time to reflect changes in our data processing practices, technological capabilities, legal requirements, or other factors affecting data protection. Material changes will be communicated to registered users via email notification sent to the address associated with your account, with reasonable notice periods typically exceeding thirty days before implementation. Your continued use of our platform following notification of changes constitutes your acceptance of the revised policy. We recommend reviewing this policy periodically to remain informed about our data protection practices.

If you have questions, concerns, or complaints regarding this Privacy Policy or our data protection practices, please contact our dedicated Data Protection Officer through the following channels: email our privacy team at [email protected], submit written inquiries to our registered office address in Bangladesh, or utilize our online privacy request form available through your account dashboard. We will acknowledge your inquiry within five business days and provide substantive responses within thirty days. If you are unsatisfied with our response, you retain the right to lodge complaints with the appropriate data protection authority in Bangladesh or your jurisdiction of residence.

Last updated: December 26, 2025