hibje Privacy Policy
At hibje, your privacy matters as much as your gaming experience. This Privacy Policy explains exactly what personal data hibje collects, why we collect it, how it is stored and protected, who it may be shared with, and what rights you hold as a hibje account holder in Bangladesh. We are committed to transparency — this document is written in plain, clear English so that every player understands how their information is handled.
Our Privacy Commitments to You
hibje is built on trust. These six principles underpin every data decision we make — from the moment you register your account to the last transaction you process.
hibje collects only the personal data that is strictly necessary to operate your account, process payments, verify your identity, and comply with applicable legal obligations. We do not collect data speculatively or for purposes unrelated to your hibje account.
All data transmitted between your device and hibje's servers is protected by 256-bit SSL/TLS encryption. Payment data including bKash, Nagad, and card details is processed through encrypted channels and is never stored in plain text on hibje's systems.
hibje does not sell, rent, or trade your personal information to third-party marketing companies, data brokers, or advertisers. Your data is used exclusively to operate and improve your hibje experience and to meet our legal obligations.
As a hibje account holder, you have the right to access, correct, export, and request deletion of your personal data at any time. hibje will respond to all verified data requests within 30 days of receipt and without charge for standard requests.
hibje retains personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by law. Transaction records are retained for a minimum of five years for financial compliance purposes; marketing preferences are held only while your account is active.
In the unlikely event of a data breach that poses a risk to your personal information, hibje commits to notifying affected account holders promptly and transparently. We maintain an internal incident response protocol aligned with international data protection best practices.
1. Data We Collect
When you register for and use your hibje account, hibje collects personal data across several categories. The table below summarises the main categories of personal data hibje processes, the specific data points within each category, and the lawful basis on which that processing rests.
| Category | Data Points | Lawful Basis |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, National ID number, passport number (if provided for KYC) | Contract performance; Legal obligation (KYC/AML) |
| Contact Data | Email address, phone number, residential address (city, district, Bangladesh) | Contract performance; Legitimate interests |
| Financial Data | bKash/Nagad/Rocket account numbers, bank account details, transaction history, deposit and withdrawal records | Contract performance; Legal obligation |
| Technical Data | IP address, device type, browser fingerprint, operating system, session timestamps, geolocation (city-level) | Legitimate interests (fraud prevention, security) |
| Usage Data | Games played, bet amounts, win/loss records, session duration, bonus participation history | Contract performance; Legitimate interests |
| Communications Data | Support chat transcripts, emails to [email protected], complaint records | Legitimate interests; Legal obligation |
| Marketing Preferences | Email/SMS opt-in status, promotional communication history | Consent |
hibje does not collect special category data (such as racial or ethnic origin, political opinions, religious beliefs, biometric data, or health data) except where expressly required to fulfil a responsible gaming obligation — for example, where a player voluntarily discloses a health condition in the context of a self-exclusion request. Such disclosures are processed with heightened care under explicit consent.
2. How We Use Your Data
hibje uses the personal data it collects for clearly defined and lawful purposes only. We do not use your data in ways that are incompatible with the purpose for which it was originally collected. The primary purposes for which hibje processes personal data are:
- Account Creation and Management: To register your hibje account, maintain your profile, authenticate your identity on login, and manage account preferences including responsible gaming settings.
- Payment Processing: To process deposits and withdrawals via bKash, Nagad, Rocket, Upay, bank transfer, Visa, and Mastercard. All payment processing is conducted through encrypted channels and in compliance with applicable financial regulations.
- Identity Verification (KYC): To verify your identity and age as required by hibje's internal policies and anti-money laundering (AML) obligations. KYC verification ensures that the hibje platform is used by verified adults only.
- Game and Service Delivery: To provide access to hibje's full range of products including cricket betting markets, live casino games, slots, and promotional offers. Your usage data helps hibje ensure game integrity and fair play.
- Fraud Prevention and Security: To detect, investigate, and prevent fraudulent transactions, account abuse, collusion, money laundering, and other unlawful activity. Technical data such as IP addresses and device fingerprints is used for this purpose.
- Responsible Gaming: To monitor gaming behaviour for indicators of problem gambling, enforce self-imposed limits (deposit limits, session alerts, self-exclusion), and proactively contact players who may need responsible gaming support.
- Customer Support: To respond to your queries, resolve complaints, process account closure requests, and maintain a record of support interactions for quality assurance purposes.
- Marketing Communications: Where you have opted in, to send you promotional offers, bonus notifications, seasonal promotions (such as Eid, Pohela Boishakh, IPL, and BPL season offers), and hibje product updates via email or SMS. You may withdraw your consent to marketing communications at any time by contacting [email protected].
- Legal Compliance: To comply with applicable laws, respond to lawful requests from regulatory authorities, and enforce hibje's Terms & Conditions.
3. Cookies & Tracking
hibje uses cookies and similar tracking technologies (including local storage and session tokens) to operate the platform, improve your experience, and maintain the security of your session. A cookie is a small text file placed on your device by the hibje website. Cookies do not contain executable code and cannot access other data stored on your device.
hibje uses the following categories of cookies:
- Strictly Necessary Cookies: These cookies are essential for the hibje platform to function. They manage your login session, maintain your account state between page loads, and protect against cross-site request forgery (CSRF). These cookies cannot be disabled without breaking core platform functionality.
- Performance & Analytics Cookies: These cookies collect anonymised data about how players navigate the hibje platform — which pages are visited most frequently, how long sessions last, and where users encounter errors. This data helps hibje improve the platform experience for all Bangladesh players. No personally identifiable information is transmitted via analytics cookies.
- Functional Cookies: These cookies remember your preferences — such as your preferred language setting (English), display options, and last-used payment method — so that you do not need to re-enter them on each visit.
- Security Cookies: These cookies help hibje detect and prevent fraudulent login attempts, account sharing, and bot activity. They contribute to our device fingerprinting and anomaly detection systems.
hibje does not use third-party advertising or retargeting cookies. We do not share cookie data with advertising networks or social media platforms. The tracking technologies hibje uses are limited to those necessary for platform operation, security, and internal analytics.
4. Data Sharing
hibje does not sell or rent your personal data to any third party. However, hibje does share limited personal data with carefully selected third-party service providers where necessary to deliver the hibje platform. All third-party partners are subject to contractual data protection obligations that require them to process your data only on hibje's instructions and in accordance with this Privacy Policy.
The categories of third parties with whom hibje may share your data are:
- Payment Processors: bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, Visa, and Mastercard processing partners receive the minimum data necessary to execute your deposit or withdrawal transaction. Payment processors operate under their own privacy policies and regulatory frameworks.
- Identity Verification (KYC) Providers: hibje works with specialist KYC and AML compliance service providers to verify account holder identity. These providers receive your identity documents and personal information solely for verification purposes and are contractually prohibited from using this data for any other purpose.
- Game Content Providers: hibje's casino and sports betting content is supplied by certified third-party game studios (including but not limited to Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi). These providers may receive anonymised session data — such as game ID, stake amount, and round outcome — as part of the standard game delivery protocol. No personally identifiable information is transmitted to game studios.
- IT and Hosting Infrastructure: hibje's platform is hosted on secure cloud infrastructure. Hosting and infrastructure providers process technical data (including encrypted database content) as data processors acting on hibje's instructions.
- Fraud Prevention Services: Specialist fraud detection partners receive technical data (IP addresses, device fingerprints, transaction patterns) to support hibje's security and anti-fraud systems.
- Legal and Regulatory Authorities: hibje will disclose personal data to law enforcement agencies, financial intelligence units, or other regulatory bodies where required to do so by applicable law, court order, or lawful regulatory request. hibje will notify you of such disclosure where legally permitted to do so.
5. Data Retention
hibje retains personal data only for as long as necessary to fulfil the purpose for which it was collected, or for as long as required by applicable legal and regulatory obligations. The following retention periods apply to the main categories of data hibje processes:
| Data Category | Retention Period | Reason |
|---|---|---|
| Account & Identity Data | Duration of account + 5 years after closure | AML/KYC legal obligation; dispute resolution |
| Financial Transaction Records | Minimum 5 years from transaction date | Financial regulatory compliance |
| KYC Verification Documents | Duration of account + 5 years after closure | AML legal obligation |
| Betting & Gaming Records | Duration of account + 2 years after closure | Dispute resolution; responsible gaming monitoring |
| Support Communications | 3 years from last interaction | Quality assurance; dispute resolution |
| Marketing Preferences | Until opt-out or account closure | Consent management |
| Technical / Log Data | 13 months from collection | Security monitoring; fraud prevention |
At the end of the applicable retention period, hibje will securely delete or anonymise your personal data so that it can no longer be associated with your identity. Where data is anonymised rather than deleted, the resulting data set contains no personally identifiable information and is used only for aggregated statistical analysis.
6. Data Security
hibje implements a comprehensive set of technical and organisational security measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. Our security framework includes the following controls:
- Encryption in Transit: All data transmitted between your browser or mobile device and hibje's servers is encrypted using TLS 1.2 or higher (256-bit SSL). This applies to all platform activity including login, game play, deposits, withdrawals, and support interactions.
- Encryption at Rest: Sensitive personal data — including identity documents, financial records, and KYC materials — is stored in encrypted form on hibje's servers. Encryption keys are managed under strict access controls and rotated on a scheduled basis.
- Access Controls: Access to personal data within hibje's systems is restricted on a strict need-to-know basis. Staff members who have access to personal data are subject to confidentiality obligations and receive regular data protection training.
- Two-Factor Authentication: hibje strongly recommends enabling SMS-based two-factor authentication (2FA) on your hibje account. This adds a second layer of protection against unauthorised account access even if your password is compromised.
- Fraud Monitoring: hibje operates continuous automated monitoring of account activity, transaction patterns, and login behaviour to detect and respond to security threats in real time.
- Penetration Testing: hibje's platform undergoes regular security testing by independent specialists to identify and remediate vulnerabilities before they can be exploited.
- Incident Response: hibje maintains a documented data breach incident response plan. In the event of a confirmed breach that poses a risk to your personal data, hibje will notify affected account holders without undue delay and will take all reasonable steps to contain and remediate the incident.
7. Your Rights
As a hibje account holder, you have the following rights in relation to your personal data. To exercise any of these rights, please contact hibje at [email protected] with the subject line "Data Rights Request". hibje will respond to all verified requests within 30 calendar days of receipt.
- Right of Access: You have the right to request a copy of the personal data hibje holds about you, together with information about how that data is being used. This is sometimes called a Subject Access Request (SAR).
- Right to Rectification: If any personal data hibje holds about you is inaccurate or incomplete, you have the right to request that it be corrected. You may update some account details (such as your email address or phone number) directly from your hibje account dashboard.
- Right to Erasure: In certain circumstances you have the right to request that hibje delete your personal data. Note that this right is subject to exceptions — for example, hibje is required by law to retain financial transaction records for a minimum of five years, and this obligation overrides an erasure request in relation to those specific records.
- Right to Restriction: You have the right to request that hibje restrict the processing of your personal data in certain circumstances — for example, where you contest the accuracy of the data or where you have objected to processing pending verification of hibje's legitimate interests.
- Right to Data Portability: Where processing is based on your consent or the performance of a contract, you have the right to receive your personal data in a structured, commonly used, machine-readable format and to request that it be transferred to another data controller where technically feasible.
- Right to Object: You have the right to object to processing of your personal data based on hibje's legitimate interests, including profiling for responsible gaming monitoring purposes. hibje will cease such processing unless it can demonstrate compelling legitimate grounds that override your interests.
- Right to Withdraw Consent: Where processing is based on your consent (such as marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal. To unsubscribe from hibje marketing communications, contact [email protected].
- Right Relating to Automated Decisions: You have the right not to be subject to a decision based solely on automated processing — including profiling — that produces a significant legal effect on you. If hibje makes an automated decision that materially affects your account, you may request human review of that decision.
8. Contact & Data Protection
If you have any questions, concerns, or requests relating to this Privacy Policy or hibje's handling of your personal data, please contact the hibje data protection team using the details below. All privacy-related correspondence should be directed to:
Email: [email protected]
Subject Line: Privacy Policy Enquiry
Response Time: Within 30 calendar days of receipt
hibje takes all privacy complaints seriously. If you submit a complaint to the hibje data protection team and are not satisfied with the response you receive, you have the right to escalate your complaint to an appropriate supervisory authority or seek independent legal advice.
hibje reviews and updates this Privacy Policy periodically to reflect changes in our data practices, platform features, and applicable legal requirements. When a material change is made to this Privacy Policy, hibje will notify active account holders by email to the address registered on their hibje account. The updated Privacy Policy will also be published on this page with a revised effective date. Continued use of the hibje platform after the effective date of a revised Privacy Policy constitutes acceptance of the updated terms.
This Privacy Policy was last reviewed and updated on 1 January 2026. If you have questions about any previous version of this policy or wish to understand what has changed between versions, please contact [email protected] and we will be happy to assist.
Ready to Play at hibje?
Your data is protected. Your experience is secure. Join thousands of Bangladesh players already enjoying cricket betting, live casino, and slots — all in BDT with instant bKash and Nagad payments.