What personal data is collected

• Identity and contact details: name, date of birth, address, email, phone number, account identifiers.
• Verification information: KYC details and documents provided to confirm age and identity.
• Payment and transaction data: deposits, withdrawals, partial payment card details handled by authorised processors.
• Usage and device information: app and website logs, IP address, browser type, language, approximate location, cookies.
• Responsible gaming preferences: limits, self-exclusion selections, communication preferences.
• Support communications: messages, recordings where permitted, and submitted documents.

Why the information is collected

• To register and administer the user account and deliver services.
• To process payments, verify identity and age, and prevent fraud.
• To meet legal obligations, including AML/CFT checks and taxation.
• To provide customer support and handle disputes.
• To improve the website, apps, and user experience through analytics.

Protection measures

• Encryption in transit and at rest, secure network architecture, and access controls.
• Role-based access for staff and training on data protection.
• Regular security testing, logging, and incident response procedures.
• Vendor due diligence and contractual safeguards, including PCI DSS aligned payment processing.
• Data minimisation and retention limits tied to legal and business needs.

User rights

• Access: obtain a copy or summary of personal data and processing information.
• Correction: update inaccurate or incomplete data.
• Deletion: request erasure where permitted by law.
• Restriction and objection: limit or object to certain processing, including direct marketing.
• Consent choices: withdraw consent without affecting prior processing.

Compliance in India

Processing follows the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000 and applicable Rules, and recognised international standards. Where required, comparable protections are applied for residents of other regions, such as GDPR principles.

Processing is lawful, fair, and transparent. Personal information is used to:

• Provide account services and operate games and sportsbook functions.
• Facilitate deposits, withdrawals, and refunds through authorised payment partners.
• Perform security checks, KYC, anti-fraud, and risk monitoring.
• Offer responsible gaming tools, service notices, and policy updates.
• Improve the online platforms, fix issues, and run analytics and statistics.
• Personalise content and communications in line with user preferences.
• Conduct marketing only where consent exists, with an easy opt-out.
• Meet legal requirements, enforce terms, and manage claims.

How users can access, update, or delete data

• Account settings: view and edit profile, contacts, preferences, and certain documents.
• Support request: submit a data request through the help centre or the contact details published on the website. Identity verification may be required.
• Response time: requests are handled within a reasonable time, typically within 30 days, subject to lawful extensions.

Correction and deletion procedures

• Incorrect information is corrected on request or by the user in account settings.
• Deletion is available where no legal basis requires continued retention, for example record-keeping under financial or AML laws.
• When deletion is not possible, processing will be restricted to the minimum needed.

By using Melbet, the user consents to necessary security checks and to payment data processing by authorised providers that support transactions and verification.

The services are intended for adults aged 18 years and above. Accounts for minors are not permitted.

The operator cannot verify age without appropriate documents. If a parent or guardian believes a minor has provided personal data, a request for deletion can be submitted through the support channels on the website. Verified requests will be actioned, and the account will be closed and related information erased where legally allowed.

Personal data may be processed outside India in countries where partners, affiliates, or service providers operate. By using the services, the user consents to such cross-border transfers.

Appropriate safeguards are applied, including contractual obligations, confidentiality requirements, and security controls. Where relevant, standard contractual protections are used for international transfers. All recipients are required to handle information confidentially and only for the documented purposes.

This disclaimer may limit or clarify the scope, interpretation, or effects of certain rules in this document to the extent allowed by law. It applies when the user accepts this Privacy Policy by signature, acceptance online, or accession during account creation or continued use. Nothing in this section reduces mandatory rights under applicable law.

Cookies are small files stored on a device by websites to remember a user, save preferences, and understand usage. Cookies are used for statistics, behaviour analysis, personalisation, and site improvement. Unless a shorter period is stated, cookies are retained for up to 1 year.

Types include:

• Strictly necessary cookies for security and core functions.
• Preference cookies to remember settings.
• Analytics cookies to evaluate performance and improve services.
• Marketing cookies to manage communications where consent applies.

Cookie controls can be managed in browser settings and, where provided, in the site’s cookie tools.

Use of the services means full acceptance of this Privacy Policy and any updates published on the website. The current version on the site prevails over previous versions. If changes materially affect processing, reasonable notice will be provided where required by law, and continued use after the effective date constitutes acceptance.

Personal data may be shared with third parties when required by law, for dispute resolution, to enforce agreements, or to deliver services. Categories include payment processors, KYC and fraud prevention providers, analytics platforms, cloud hosting, customer support vendors, and professional advisers.

A list or the categories of third parties is made available on the website. Where a party is not listed, the purpose and scope of sharing will be communicated when required by law. Providing data for these purposes constitutes consent to such sharing. Third parties are bound by contracts to use information only for the specified purposes and to maintain confidentiality.

The website may include links to external websites or services that have their own privacy policies. Those websites control how they collect and use information. The operator is not responsible for the content, security, or data practices of external sites. Users should review the privacy notices of any site visited from a link and exercise caution.