Your privacy matters to us. This Privacy Policy explains exactly what personal data brummy collects when you use our platform, why we collect it, how it is stored and protected, and the rights you hold over your own information as a valued member.
We have built our data practices around six core principles. These cards summarise what we stand for — the full legal text follows below.
brummy only collects the personal data that is genuinely necessary to operate your account, process your transactions, and comply with our legal obligations. We do not collect data speculatively or for purposes unrelated to your membership.
All data in transit between your device and our servers is protected by 256-bit SSL/TLS encryption. Sensitive data at rest — including payment details and identification documents — is stored in encrypted form with access restricted to authorised personnel only.
brummy does not sell, rent, or trade your personal data to unaffiliated third parties for their own marketing purposes. When data is shared with partners — such as payment processors or KYC verification providers — it is shared only to the extent necessary to deliver the service.
You have the right to access, correct, export, or request deletion of the personal data brummy holds about you. We respond to all valid data subject requests within 30 days and will never penalise you for exercising your privacy rights.
Promotional emails and SMS notifications from brummy are strictly opt-in. You may withdraw your marketing consent at any time by adjusting your account notification preferences or by contacting our support team. Opting out of marketing never affects your ability to use the platform or receive essential account communications.
brummy retains your personal data only for as long as is necessary for the stated purpose or as required by applicable law. Once the retention period expires and no legal obligation requires us to keep the data, it is securely deleted or anonymised in accordance with our internal data lifecycle policy.
brummy ("we", "us", "our") operates the online casino and sports betting platform accessible at brummy.club, serving players across Bangladesh with a portfolio of casino games, live dealer tables, jackpot slots, cricket betting, sports wagering, and lottery products. brummy is the data controller in respect of all personal data collected through the platform.
This Privacy Policy ("Policy") governs the collection, use, storage, sharing, and protection of personal data submitted to or collected by brummy in the course of your use of our website, mobile-optimised interface, and any associated services. This Policy should be read alongside our Terms & Conditions and our Responsible Gaming policy, both of which are incorporated by reference.
This Policy is written in English. In the event of any inconsistency between this English version and any translated version made available for convenience, the English version shall prevail in all material respects.
brummy collects personal data through several channels: directly from you when you register an account or contact our support team, automatically when you interact with our platform, and from trusted third-party service providers (such as payment processors and identity verification partners) as part of our standard operational procedures.
The categories of personal data we collect are set out in the table below:
| Category | Examples | Collection Method |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, nationality, government-issued ID number | Registration form; KYC verification |
| Contact Data | Email address, mobile phone number, city of residence (e.g., Dhaka, Chittagong, Sylhet) | Registration form; account settings |
| Financial Data | bKash/Nagad/Rocket mobile number, bank account reference, transaction history, deposit and withdrawal amounts in BDT | Payment processing; transaction records |
| Identity Verification Documents | National ID card scan, passport image, utility bill or bank statement for proof of address | KYC process (uploaded by user) |
| Technical Data | IP address, device type, operating system, browser type and version, screen resolution, session timestamps | Automatic collection via server logs and cookies |
| Usage Data | Pages visited, games played, bets placed, wager amounts, session duration, feature interactions | Automatic collection via analytics tools |
| Communications Data | Live chat transcripts, email correspondence, support ticket content | Customer support interactions |
| Marketing Preferences | Opt-in/opt-out status for email, SMS, and push notifications | Account settings; subscription forms |
We do not knowingly collect special categories of sensitive personal data (such as racial or ethnic origin, religious beliefs, health data, or biometric data) unless this is strictly required for responsible gaming self-exclusion purposes, in which case such data is handled with the highest degree of care and stored in isolated, access-controlled systems.
brummy uses the personal data we collect for the following specific and documented purposes. We do not use your data for any purpose that is incompatible with the original reason for which it was collected without first obtaining your explicit consent.
brummy processes your personal data only when we have a valid legal basis for doing so. The legal bases we rely upon are as follows:
You have the right to object to processing carried out on the basis of legitimate interests. If you wish to raise such an objection, please contact our support team at [email protected] with a description of the specific processing activity you object to. We will review your objection and respond within 30 days.
brummy does not sell or rent your personal data to third parties. We share your data only in the circumstances described below, and only to the minimum extent necessary for the stated purpose:
All third parties with whom brummy shares personal data are required to treat that data confidentially, to use it only for the specified purpose, and to maintain appropriate technical and organisational security measures.
brummy uses cookies and similar tracking technologies (including local storage and session tokens) on our platform to ensure core functionality, improve your experience, and gather aggregated analytics. The categories of cookies we use are as follows:
You can manage your cookie preferences through your browser settings. Note that blocking strictly necessary cookies will prevent you from logging in or using core platform features. For a full list of specific cookies used on the platform and their individual retention periods, please contact our support team.
brummy retains personal data for no longer than is necessary to fulfil the purpose for which it was collected, or as required by applicable law. Our general retention guidelines are set out below:
When the applicable retention period expires, data is either securely deleted using industry-standard deletion methods or permanently anonymised so that it can no longer be associated with any individual. Data that must be retained to comply with a legal obligation or to defend a legal claim will be preserved for as long as that obligation or claim remains live.
brummy implements a multi-layered security architecture to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. Our technical and organisational security measures include:
While brummy maintains robust security measures, no internet-based platform can guarantee absolute security. You play an important role in protecting your own account by using a strong, unique password, enabling any available two-factor authentication, and logging out from shared devices. If you suspect your account has been compromised, contact our support team immediately via live chat.
As a brummy member, you hold the following rights in respect of the personal data we process about you. These rights may be exercised at any time by contacting our support team at [email protected] with the subject line "Privacy Rights Request":
brummy will acknowledge all Privacy Rights Requests within 5 business days and will provide a substantive response within 30 calendar days of receipt. We will never charge a fee for processing a reasonable request, and we will never restrict your account as a consequence of exercising your privacy rights.
Please note that certain rights — particularly the right to erasure — may be limited where brummy is required by law to retain records (for example, financial transaction records retained for AML compliance). In such cases, we will explain the specific legal basis for the retention and process the deletion of all data that is not subject to that obligation.
brummy is a gambling platform intended exclusively for adults. We do not knowingly collect personal data from individuals under the age of 18. Registration requires confirmation that the user is at least 18 years of age, and all accounts are subject to mandatory age and identity verification as part of our KYC process.
If brummy becomes aware that a registered account belongs to an individual under the age of 18, we will immediately suspend the account, void any bets placed, return any unplayed deposited funds to the originating payment method following verification, and permanently delete all personal data associated with the underage account from our systems as soon as our legal obligations permit.
18+ Only. If you are a parent or guardian and believe your child has registered an account with brummy, please contact our support team at [email protected] immediately. We treat underage access reports as our highest-priority compliance matter and will respond within 24 hours.
brummy reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data practices, applicable law, or the services we offer. When material changes are made to this Policy, we will notify registered members by email to the address on file and by displaying a prominent notice on the brummy.club homepage for a period of at least 14 days prior to the changes taking effect.
The "Last Updated" date displayed at the top of this page and in the table of contents sidebar will be revised each time this Policy is updated. We encourage you to review this Policy periodically to stay informed of how brummy protects your personal data.
Your continued use of the platform following the effective date of an amended Policy constitutes your acknowledgement of the updated terms. If you do not agree with any material change to this Policy, you may close your account by contacting our support team and requesting account closure in accordance with the procedures described in our Terms and Conditions.
If you have any questions, concerns, or requests relating to this Privacy Policy or to the personal data brummy holds about you, please contact our Data Support team through any of the following channels:
brummy's support team operates on Bangladesh Standard Time (BST, UTC+6), 365 days a year. All privacy correspondence is handled in English and Bengali. We are committed to resolving all privacy-related enquiries promptly, fairly, and transparently.
For responsible gaming concerns — including requests to set deposit limits, activate a cooling-off period, or apply for permanent self-exclusion — please visit our Responsible Gaming page or contact the support team directly via live chat. These requests are treated with the utmost sensitivity and are processed without delay.
Now that you understand how we protect your privacy, explore everything brummy has to offer — from live casino tables and jackpot slots to cricket betting and lottery games, all in a secure, SSL-encrypted environment.