555tr Privacy Policy
At 555tr, protecting the personal data of every player across Bangladesh is a core responsibility, not an afterthought. This Privacy Policy sets out exactly what information we collect, why we collect it, how it is stored and secured, and what rights you have over your own data when using the 555tr platform.
Privacy at a Glance
How 555tr Protects Your Privacy
The following cards summarise the six core principles that underpin our approach to data privacy. For the full legally binding text, please read each section below. In any conflict between a summary card and the full clause, the full clause governs.
Minimal Data Collection
555tr collects only the personal information that is strictly necessary for account operation, identity verification, payment processing, and compliance. We do not harvest data for its own sake or sell player profiles to advertisers.
SSL Encryption in Transit
All data transmitted between your device and the 555tr platform is encrypted using industry-standard TLS/SSL protocols. This ensures that your personal details, login credentials, and payment information cannot be intercepted during transmission.
No Sale of Personal Data
555tr does not sell, rent, or trade your personal data to third-party marketing companies. Data shared with partners is limited to what is operationally necessary — for example, sharing your mobile number with bKash solely to process a transaction.
Player Control Over Data
You have the right to access, correct, or request deletion of your personal data at any time. Requests can be submitted to our support team and will be processed within 30 days in line with applicable data protection standards.
Cookie Transparency
555tr uses cookies and similar tracking technologies strictly to operate the platform, remember your session preferences, and measure performance. We do not deploy third-party advertising cookies or behavioural tracking pixels without your knowledge.
Responsible Retention
Personal data is retained only for as long as is necessary for the purposes for which it was collected, or as required by applicable legal and financial compliance obligations. Data no longer required is securely deleted or anonymised.
Section 1
Information We Collect
555tr collects personal information in order to provide a secure, compliant, and enjoyable gaming experience to players across Bangladesh. The categories of data we collect fall into three broad groups: information you provide directly, information generated automatically by your use of the platform, and information received from third-party payment providers.
Information You Provide Directly: During registration and subsequent account management, you provide us with your full legal name, date of birth, Bangladesh mobile phone number, email address, and any identity documents submitted during KYC verification (such as your National ID Card, passport, or birth registration certificate). You also provide your preferred payment method details and, where applicable, your MFS account numbers (bKash, Nagad, Rocket, Upay).
Automatically Generated Information: When you use the 555tr platform, we automatically collect certain technical and behavioural data. This includes your IP address, device type, operating system, browser version, session start and end times, pages visited, games played, bet amounts, and in-game actions. This data is used for security monitoring, fraud prevention, platform performance optimisation, and responsible gaming compliance.
Payment Provider Data: When you make a deposit or withdrawal via bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, or BRAC Bank, the relevant payment provider may share with us transaction identifiers, timestamps, and confirmation status. We do not receive or store your full MFS PIN, card number, or bank password. We receive only the reference data necessary to confirm a transaction was completed.
Communications Data: If you contact our support team via email or live chat, we retain the content of your communication, including any documents you attach, for the purpose of resolving your query and maintaining a record of interactions.
| Data Category | Examples |
|---|---|
| Identity | Full name, date of birth, NID / passport number |
| Contact | Mobile number, email address |
| Financial | MFS account reference, transaction ID, deposit / withdrawal amounts in ৳ |
| Technical | IP address, device type, browser, OS version |
| Behavioural | Games played, bet history, session duration, login frequency |
| Communications | Support chat transcripts, email correspondence |
| Cookies | Session tokens, preference cookies, analytics identifiers |
Section 2
How We Use Your Data
555tr processes your personal data only for the lawful purposes set out below. We do not use your data for purposes that are incompatible with those stated here without first obtaining your explicit consent.
Account Operation: Your identity and contact data is used to create and manage your 555tr account, authenticate your login sessions, deliver account notifications, and provide access to games, betting markets, and payment features.
Payment Processing: Financial data is used exclusively to process deposits and withdrawals via your chosen MFS provider or bank. We use transaction references to reconcile payments and resolve any discrepancies between our records and those of your payment provider.
Identity Verification (KYC): Identity documents are used to verify that you are aged 18 or above, that you are who you claim to be, and that you are the legitimate owner of the payment method linked to your account. KYC verification is a mandatory fraud-prevention and responsible gaming requirement.
Security & Fraud Prevention: Technical and behavioural data is used to detect unusual account activity, identify potential fraud patterns, prevent multi-account abuse, and protect the integrity of the platform for all players.
Responsible Gaming: Behavioural data — including session length, bet frequency, and deposit patterns — is monitored to identify indicators of problem gambling. Where such indicators are detected, 555tr may proactively reach out to offer responsible gaming tools or information.
Customer Support: Communications data is used to respond to your queries, process complaints, and maintain an interaction history that allows our team to assist you effectively across multiple contacts.
Service Improvement: Aggregated, anonymised analytics data is used to understand how players navigate the platform, which games are most popular, and where technical performance can be improved. This data does not identify individual players.
Legal Basis for Processing
- Contractual necessity — processing required to deliver the service you registered for (account creation, payments, game access)
- Legal obligation — KYC / age verification required to comply with responsible gaming and anti-fraud standards
- Legitimate interest — security monitoring, fraud detection, platform performance analytics where these do not override your privacy rights
- Consent — marketing communications (where opted in) and non-essential analytics cookies
Marketing Communications
If you have opted in to receive promotional emails or SMS messages from 555tr, your contact data will be used to send you information about bonuses, seasonal promotions (such as BPL cricket offers or Eid campaigns), and platform updates. You may withdraw this consent at any time by contacting support at [email protected] or by using the unsubscribe mechanism in any marketing email.
Section 3
Cookies & Tracking Technologies
555tr uses cookies and similar technologies — including local storage tokens and session identifiers — to operate the platform, preserve your preferences, and measure how the site is used. This section explains the types of cookies we deploy and the purpose each serves.
Strictly Necessary Cookies: These cookies are essential to operate the 555tr platform and cannot be disabled without breaking core functionality. They include the session authentication token that keeps you logged in as you navigate between pages, CSRF protection tokens that prevent unauthorised form submissions, and load-balancing identifiers that route your requests to the correct server. No consent is required for these cookies as they are operationally mandatory.
Functional Cookies: These cookies remember your preferences — such as your preferred language, the last game category you visited, or your lobby display settings. They improve your experience by reducing the need to re-enter preferences on each visit. These cookies do not track you across external websites.
Analytics Cookies: 555tr uses first-party analytics to understand aggregate traffic patterns, page performance, and feature engagement. Analytics data is anonymised before storage and cannot be used to identify individual players. These cookies are non-essential and are deployed only where you have consented via our cookie preference centre.
Cookie Lifespan: Session cookies expire automatically when you close your browser. Persistent functional and analytics cookies are retained for a maximum of 12 months from the date they are set, after which they are renewed only if you continue to use the platform.
Managing Cookies: You can control cookies through your browser settings. Disabling strictly necessary cookies will prevent you from logging in to your 555tr account. Disabling functional cookies will result in loss of saved preferences on each visit. Disabling analytics cookies has no impact on platform functionality.
| Cookie Type | Purpose | Consent Required |
|---|---|---|
| Strictly Necessary | Session auth, CSRF protection, load balancing | No |
| Functional | Preference storage, UI settings | No |
| Analytics | Aggregate traffic and performance measurement | Yes |
| Marketing | Not deployed on 555tr | N/A |
Section 4
Data Sharing & Third Parties
555tr shares your personal data only where necessary to deliver our services, comply with legal obligations, or protect the security and integrity of the platform. We do not share personal data for commercial gain. The following categories of third parties may receive limited personal data as described below.
Payment Service Providers: When you initiate a deposit or withdrawal, we share the minimum data required to process the transaction with the relevant MFS provider (bKash, Nagad, Rocket, Upay) or bank (Dutch-Bangla Bank, City Bank, BRAC Bank). This typically comprises a transaction reference, your registered mobile number or account identifier, and the Taka amount. Your full identity documents are never shared with payment providers.
Identity Verification Services: During KYC verification, identity documents you submit may be processed by a third-party verification technology provider. These providers are contractually bound to process your data only for the purpose of document authenticity checks and are not permitted to retain your data beyond the verification lifecycle.
Technology Infrastructure Providers: The 555tr platform is hosted on secure cloud infrastructure. Our hosting provider may technically process data stored on our servers, but does so only under a strict data processing agreement and has no independent right to access or use your personal data.
Legal and Regulatory Disclosure: In the event that 555tr receives a lawful order, court directive, or formal regulatory request requiring the disclosure of player data, we are legally obligated to comply. We will notify the affected player where legally permissible to do so before any disclosure is made. We will not disclose data in response to informal or unofficial requests.
Business Transfers: In the event that 555tr undergoes a merger, acquisition, or sale of assets, player data may form part of the transferred assets. In such circumstances, the receiving entity will be required to honour the commitments made in this Privacy Policy or obtain your fresh consent before processing your data in any materially different manner.
Data Processing Agreements
Every third party that processes 555tr player data on our behalf is required to enter into a formal Data Processing Agreement (DPA). This agreement specifies the permitted purposes of processing, data security requirements, sub-processing restrictions, and obligations on data return or destruction at the end of the service relationship.
International Data Transfers
Where data is transferred to a service provider whose infrastructure is located outside Bangladesh, 555tr ensures that appropriate safeguards are in place — including contractual protections equivalent to applicable data protection standards — before the transfer takes place.
Section 5
Data Retention & Storage
555tr retains personal data only for as long as is necessary for the purposes described in this Privacy Policy, or as required by applicable legal, financial, and compliance obligations. The following retention periods apply to the principal categories of data we hold.
Active Account Data: All personal data associated with an active 555tr account — including identity records, contact details, and KYC documents — is retained for the duration of the account relationship and for a period of 5 years following permanent account closure. This retention period supports our obligations around fraud investigation, financial record-keeping, and dispute resolution.
Transaction Records: Records of all deposits, withdrawals, and bet settlements are retained for a minimum of 5 years from the date of the transaction. This reflects standard financial record-keeping practice.
Support Communications: Email and live chat transcripts are retained for 2 years from the date of the interaction, after which they are permanently deleted unless they relate to an unresolved dispute or regulatory inquiry.
Analytics Data: Anonymised aggregate analytics data (which does not identify individual players) may be retained indefinitely for platform improvement purposes. No individual player can be re-identified from retained analytics data.
Marketing Consent Records: Records of your marketing consent — whether you opted in or out — are retained for as long as your account is active plus 3 years, to provide evidence of compliance with communications preferences.
| Data Type | Retention Period |
|---|---|
| Account & KYC records | Duration of account + 5 years post-closure |
| Transaction history | Minimum 5 years from transaction date |
| Support transcripts | 2 years from interaction date |
| Session / login logs | 12 months from session date |
| Marketing consent records | Account lifetime + 3 years |
| Anonymised analytics | Indefinite (no personal identifiers) |
Section 6
Security Measures
555tr implements a layered approach to data security that combines technical controls, access management policies, and ongoing monitoring. Our security posture is designed to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure.
Encryption in Transit: All communications between your browser or mobile device and the 555tr platform are encrypted using TLS 1.2 or higher. This ensures that your login credentials, personal details, and payment information cannot be read by any third party during transmission.
Encryption at Rest: Sensitive personal data stored in our databases — including identity documents, KYC records, and payment references — is encrypted at rest using AES-256 encryption. Database credentials and encryption keys are managed separately from the data they protect and are rotated on a regular schedule.
Access Controls: Access to personal data within 555tr's systems is restricted on a strict need-to-know basis. Employees and contractors who do not require access to personal data in the course of their duties are not granted it. All internal access to personal data is logged and subject to periodic audit review.
Account Security Features: 555tr provides players with OTP-based two-factor authentication for account login. We strongly encourage all players to enable this feature. Accounts that show signs of unusual login activity — such as access from a previously unseen IP address or device — may be temporarily locked pending re-verification.
Breach Response: In the event of a data security incident that affects your personal data, 555tr will notify affected players without undue delay once the nature and scope of the incident have been established. Notification will be sent to the email address registered on your account and will include a description of the incident, the categories of data affected, and the steps we are taking to address it.
Security Controls Summary
- TLS 1.2+ encryption for all data in transit
- AES-256 encryption for sensitive data at rest
- Role-based access control with audit logging
- OTP two-factor authentication for player accounts
- Automated anomalous login detection
- Regular security review of third-party processors
- Scheduled encryption key rotation
- Secure backup procedures with encrypted storage
- Documented data breach response procedure
- Staff access limited strictly to operational necessity
Section 7
Your Data Rights
As a player on the 555tr platform, you hold the following rights with respect to your personal data. To exercise any of these rights, submit a written request to [email protected] from the email address registered on your account. 555tr will respond within 30 days of receiving a valid request.
Right of Access
You have the right to request a copy of the personal data that 555tr holds about you. We will provide a structured summary of all data categories held, the purposes for which they are processed, and the recipients with whom they have been shared.
Right of Rectification
If any personal data we hold about you is inaccurate or incomplete, you have the right to request a correction. For certain data fields — such as your registered name — we may require supporting documentation before making a change.
Right of Erasure
You may request the deletion of your personal data where it is no longer necessary for the purpose for which it was collected. Note that we are unable to delete data that we are legally required to retain under financial record-keeping obligations.
Right to Restrict Processing
Where you contest the accuracy of your data or object to our processing of it, you may request that we restrict further processing while the matter is under review. During this period, your data will be stored but not actively used.
Right to Data Portability
You may request a copy of the personal data you provided to 555tr in a structured, commonly used, machine-readable format (such as JSON or CSV), enabling you to transfer it to another service provider if you wish.
Right to Object
Where we process your data on the basis of legitimate interest — such as for analytics or fraud monitoring — you may object to that processing. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests.
Section 8
Contact & Policy Updates
If you have any questions about this Privacy Policy, wish to exercise any of your data rights, or want to report a privacy concern, please contact the 555tr support team using the details below. We are committed to responding to all privacy-related enquiries within 30 days of receipt.
Email: All privacy requests, data access queries, and erasure requests should be submitted in writing to [email protected]. Please include your registered account username and the nature of your request in the subject line so that our team can process it efficiently.
Live Support: Our customer support team is available 24 hours a day, 7 days a week via the live chat feature on the 555tr platform. Live chat agents can assist with general privacy queries and will escalate formal data rights requests to the appropriate internal team on your behalf.
Identity Verification for Rights Requests: To protect your data from unauthorised access or deletion by third parties, 555tr reserves the right to verify your identity before processing a data rights request. This may involve confirming your registered mobile number, email address, or submitting a brief identity check. We will not process a request until we are satisfied that it originates from the legitimate account holder.
Policy Updates: 555tr reviews this Privacy Policy periodically and may update it to reflect changes in our data practices, applicable legal requirements, or the services we offer. When a material change is made, we will notify registered players by email to the address on record at least 14 days before the change takes effect. The updated policy will also be published on this page with a revised effective date. Continued use of the 555tr platform after the effective date of a revised policy constitutes acceptance of the updated terms.
Governing Language: This Privacy Policy is written in English. In the event of any conflict between an English version of this policy and any translation, the English version shall prevail.
Children and Minors: The 555tr platform is strictly for adults aged 18 years and above. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that an account has been registered by a minor, that account will be immediately suspended, any funds held will be returned via the original payment method, and all associated personal data will be securely deleted. If you believe a minor has registered on the platform, please notify us immediately at [email protected].
Privacy Contact Details
Email Support:
[email protected]
Plain text only — do not send sensitive documents via email without requesting a secure upload link first.
Live Chat Availability
Available 24/7 — 00:00 to 24:00 Bangladesh Standard Time (BST, UTC+6). Live chat is the fastest channel for general privacy queries. Formal written requests must still be submitted by email for audit trail purposes.
Response Timeframe
555tr aims to acknowledge all privacy-related requests within 3 business days and to fully resolve them within 30 calendar days. Where a request is complex or involves a high volume of data, we may extend this period by a further 30 days and will notify you of the extension in writing.