Melbet Privacy Policy

• Personal information collected
  • Account and contact details: full name, date of birth, address, email, mobile number.
  • Identity and verification (KYC): government-issued ID, proof of address, selfie or video checks, age confirmation.
  • Payment and transaction information: UPI ID, bank account details, masked card data, wallet identifiers, transaction history, payout details.
  • Service usage: bet slips, game sessions, deposits and withdrawals, responsible gaming settings, limits, and self-exclusion status.
  • Technical information: IP address, device identifiers, operating system, browser, app version, language, time zone, log files, approximate location.
  • Communications: chats, emails, and call recordings for support, quality, and compliance.
  • Cookies and similar technologies for analytics and preferences.
• Why this information is collected
  • To create and manage the user account and provide services.
  • To meet KYC, anti-money laundering, counter-terrorist financing, and sanctions screening requirements.
  • To process payments and resolve billing queries.
  • To detect and prevent fraud, abuse, bonus misuse, and security threats.
  • To offer support and respond to complaints or disputes.
  • To improve websites, apps, and user experience through analytics and testing.
  • To personalise content and settings, subject to consent where required.
• Protection measures
  • Encryption in transit and at rest, strong access controls, and multi-factor authentication for staff access.
  • Network segmentation, continuous monitoring, logging, and regular vulnerability testing.
  • Secure development practices, change management, and incident response playbooks.
  • Vendor due diligence, confidentiality obligations, and data processing agreements.
  • Data minimisation and role-based access to personal data.
• User rights (subject to verification and legal limits)
  • Access to personal information and details of processing.
  • Correction of inaccurate or incomplete information.
  • Deletion of personal information when no longer needed or when consent is withdrawn.
  • Withdrawal of consent for optional processing, such as marketing.
  • Grievance redressal and the ability to nominate another person to exercise rights in case of death or incapacity.
• Compliance
  • Processing follows the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000 and applicable Rules, including SPDI Rules, CERT-In directions on incident reporting, and other India regulations.
  • For users in jurisdictions such as the EEA or UK, processing aligns with applicable data protection laws in those regions.

• Account and service delivery
  • Set up and manage profiles, verify age and identity, operate responsible gaming tools, and provide customer support.
• Transactions
  • Process deposits and withdrawals, detect irregular activity, and manage chargebacks or disputes.
• Service improvement and analytics
  • Run diagnostics, measure performance, conduct A/B testing, and enhance stability and usability.
• Personalisation and communications
  • Tailor content and settings and send service messages. Marketing messages are sent only where consent exists, and users can opt out anytime.
• Anti-fraud and security
  • Prevent unauthorised access, abuse, collusion, money laundering, and other violations.
• Legal and regulatory compliance
  • Meet obligations under AML, taxation, sanctions, gambling-related rules where applicable, and law enforcement requests.

Processing is lawful, necessary for providing services, transparent, and limited to the purposes described in this document or as otherwise communicated at the time of collection.

• How to access or update
  • Users can review or edit account and profile information in Account settings. For additional details, a request can be submitted through the Help Centre under Privacy Request.
• Corrections
  • Where legal name, address, or other core identifiers change, supporting documents may be required to update records.
• Deletion
  • Users may request deletion of personal information that is no longer required for the purposes stated. Certain records must be retained for legal, tax, anti-fraud, and AML reasons, after which they are deleted or anonymised.
• Timelines
  • Verified requests are usually completed within 30 days. Complex requests may take longer as permitted by law, and users will be informed of any extension.
• Consent to checks
  • By using Melbet, users consent to security reviews, identity checks, fraud screening, sanctions screening, and the processing of payment information by authorised payment providers for the purpose of completing transactions.

Verification of identity may be required before processing an access, correction, or deletion request to protect user privacy and security.

• The services are intended for persons aged 18 and above. Accounts for minors are not permitted.
• The operator cannot confirm a person’s age without appropriate documents and verification checks.
• If a parent or legal guardian believes a minor has provided personal information, a request for deletion can be made through the Help Centre. Reasonable proof of parental authority may be required.
• Any identified minor account is closed and related personal information is deleted or anonymised, subject to legal retention duties.

• Personal information may be stored or processed in countries outside India where technology, payment, risk, or support partners operate.
• Use of the website and apps indicates consent to such transfers, subject to applicable law.
• Safeguards include contracts, vendor due diligence, access controls, encryption, and confidentiality obligations. Where relevant, standard contractual clauses and similar mechanisms are used to protect the information.
• Partners and processors are required to keep information confidential and to process it only for documented purposes.

• This Privacy Policy works alongside the Terms and Conditions and other service policies. In case of specific disclaimers on a page or feature, those may modify how certain rules apply.
• The disclaimer applies when the user accepts this policy by signing up, clicking accept, joining by accession, or continuing to use the services.
• Nothing in this document limits rights granted by law. If any part of the policy is held invalid, the remaining parts continue to apply to the extent permitted by law.

• Cookies are small files stored on a device to remember preferences and to recognise returning users.
• They are used for statistics, behaviour analysis, personalisation, fraud prevention, and site improvement.
• Types used: essential cookies for core functions, analytics cookies for usage insights, preference cookies for settings, and advertising cookies where consent is provided.
• Retention: cookies and similar identifiers are generally stored for up to 1 year, after which they expire or are refreshed on new consent.
• Users can manage cookie preferences through the cookie banner and browser settings. Blocking some cookies may affect website functions.

• Use of the services indicates full acceptance of this Privacy Policy and any updates posted on the website.
• The current version of the document prevails over any prior versions.
• Material changes will be highlighted in the document revision history. Continued use after changes indicates acceptance of the updated policy.
• Effective date: 30 October 2025.

• Personal information may be shared where necessary with:
  • Payment providers and banks for processing transactions.
  • Identity verification, KYC, AML, sanctions screening, and fraud prevention partners.
  • Customer support, IT infrastructure, hosting, storage, and cybersecurity vendors.
  • Analytics and measurement providers for service improvement.
  • Auditors, legal advisors, dispute resolution bodies, regulators, and law enforcement when required by law.
• A current list of typical processors and categories is maintained on the Help Centre page titled Third-Party Processors. If a new significant vendor is engaged and not listed, users will be informed of the purpose and scope as required by law.
• Providing personal information for a transaction or feature constitutes consent to share it with relevant third parties for that specific purpose. Third parties have their own privacy practices and users are encouraged to review their policies.

• The website may include links to third-party websites or services that follow their own privacy policies and security practices.
• The operator is not responsible for how such external websites collect, use, or disclose personal data.
• Exercise caution and review the privacy policy of any external website before providing personal information.