7c770 Privacy Policy
At 7c770, protecting your personal data is a core operational commitment — not a legal formality. This Privacy Policy explains in plain English exactly what data we collect, why we collect it, how we store and protect it, and what rights you hold over it as a player based in Bangladesh.
Our Core Privacy Commitments
Before reading the full legal text, the following six cards summarise the most important ways 7c770 handles your personal data. These summaries are for orientation purposes only — the full policy below governs in all cases.
Minimal Data Collection
7c770 collects only the personal data that is strictly necessary to operate your account, verify your identity, process transactions, and comply with applicable legal obligations. We do not collect data speculatively or sell your personal information to third-party advertisers.
SSL Encryption on All Data
All data transmitted between your device and 7c770's servers is protected by industry-standard TLS/SSL encryption. Sensitive fields such as passwords and payment details are additionally hashed or tokenised at the application layer, ensuring that plain-text sensitive data is never stored on our servers.
KYC Data Handled Securely
Identity documents submitted during Know Your Customer (KYC) verification — including National Identity Cards and passport scans — are processed by our secure verification team and stored in encrypted form. KYC documents are never shared with third parties except where required by law or where the document must be validated by an authorised verification partner.
You Control Your Data
You have the right to access, correct, export, and request deletion of your personal data at any time. Requests can be submitted via the 24/7 BST live chat support team or in writing to [email protected]. Most requests are actioned within five business days.
Transparent Cookie Use
7c770 uses first-party session cookies and limited analytics cookies to maintain your login session, remember your preferences, and measure aggregate platform performance. We do not use third-party advertising cookies or behavioural tracking pixels that follow you across other websites.
No Unsolicited Marketing
7c770 will only send you promotional communications if you have opted in to receive them during registration or via your account preferences. You may withdraw your marketing consent at any time by updating your notification preferences in the account settings panel or by contacting the support team.
Data We Collect
7c770 collects personal data from you in three primary ways: data you provide directly when registering or using the Platform; data collected automatically when you access the Platform via your device or browser; and data received from authorised third-party service providers as part of account verification or payment processing.
1.1 Data You Provide Directly
When you create a 7c770 account, complete the KYC verification process, make a deposit or withdrawal, contact the support team, or participate in a promotion, you may provide the following categories of personal data:
- Identity data: Full legal name, date of birth, gender, and nationality as recorded on your National Identity Card (NID) or passport.
- Contact data: Residential address in Bangladesh (including city, district, and postal code), mobile phone number, and email address.
- Financial data: bKash account number, Nagad account number, Rocket number, Upay number, bank account details, or Visa/Mastercard details used for deposits and withdrawals. Note that full payment card details are processed by our Payment Card Industry (PCI-DSS) compliant payment partners and are not stored on 7c770's own servers.
- Document data: Scans or photographs of your NID, passport, or other identity documents submitted for KYC purposes; utility bills or bank statements submitted as proof of address.
- Account credentials: Your chosen username and a hashed (never plain-text) version of your password.
- Communication data: Records of any messages, live chat transcripts, emails, or other communications you submit to 7c770's support team.
1.2 Data Collected Automatically
When you access the 7c770 Platform — whether via a desktop browser or a mobile-optimised interface — our servers and analytics systems automatically record the following technical data:
- Device and browser data: IP address, device type (desktop, mobile, tablet), operating system, browser type and version, screen resolution, and preferred language settings.
- Usage data: Pages visited, features accessed, games played (including game title, provider, stake value, and outcome), session duration, click paths, and referral source (the URL from which you arrived at 7c770.app).
- Transaction data: A full record of all deposits, withdrawals, wagers, bonus activations, and balance adjustments associated with your account, including timestamps expressed in Bangladesh Standard Time (BST, UTC+6).
- Cookie data: See Section 3 (Cookies & Tracking) for full details.
1.3 Data Received from Third Parties
In limited and specific circumstances, 7c770 may receive personal data about you from authorised third-party sources:
- Identity verification partners: Where 7c770 uses a third-party KYC verification service to cross-reference the identity documents you have submitted, that partner may return a verification status, a confidence score, and any discrepancies identified during the check.
- Payment processors: bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, and card processors may share transaction confirmation data and, where relevant, risk flags with 7c770 as part of the payment processing workflow.
- Fraud and risk intelligence services: 7c770 may receive risk signals or fraud alerts from specialised providers who monitor for suspicious financial patterns, multiple-account abuse, and identity theft across the online gaming industry.
Data Categories Summary
| Category | Source |
|---|---|
| Identity | You (registration / KYC) |
| Contact | You (registration) |
| Financial | You / Payment providers |
| Documents | You (KYC) |
| Device / IP | Automatic |
| Usage / Logs | Automatic |
| Verification | Third-party KYC partner |
| Risk signals | Fraud intelligence service |
How We Use Your Data
7c770 processes personal data only for specific, explicit, and legitimate purposes. Each processing activity has a defined legal basis. We do not use your personal data for any purpose that is incompatible with the purpose for which it was originally collected without first obtaining your explicit consent.
2.1 Account Management and Service Delivery
The primary purpose for which 7c770 processes your personal data is to operate your account and deliver the Platform's services to you. This includes creating and maintaining your account record, authenticating your login sessions, displaying your account balance and transaction history, processing your deposit and withdrawal requests, and providing access to casino games and sports betting markets. The legal basis for this processing is the performance of a contract — specifically, the agreement between you and 7c770 formed when you accepted these Terms & Conditions.
2.2 Identity Verification and KYC Compliance
7c770 processes identity and document data to verify that you are who you say you are, that you meet the minimum age requirement of 18 years, and that your account is not being used to facilitate money laundering, fraud, or other financial crime. This processing is legally required under the anti-money-laundering and know-your-customer obligations that responsible online gaming operators apply as best practice. Without completing KYC, you will not be able to process withdrawals from your 7c770 account.
2.3 Payment Processing and Fraud Prevention
Financial data is processed to execute deposit and withdrawal transactions via your chosen payment method (bKash, Nagad, Rocket, Upay, or bank transfer). Transaction records are also analysed — using both automated systems and manual review — to detect suspicious activity, including signs of money laundering, account takeover, and payment fraud. Where suspicious activity is identified, your account may be suspended pending investigation, and transaction records may be shared with payment providers or law enforcement authorities as required.
2.4 Responsible Gaming Monitoring
7c770 uses your account activity data — including deposit frequency, bet size patterns, session duration, and self-exclusion history — to identify players who may be exhibiting signs of problem gambling. Where our systems flag unusual patterns, the responsible gaming team may reach out proactively via email or live chat to offer support, resources, and access to responsible gaming tools such as deposit limits and self-exclusion. This processing is carried out in the legitimate interests of player welfare and responsible gaming compliance.
2.5 Customer Support
Communication data submitted to the 7c770 support team — including live chat transcripts and emails — is retained for quality assurance purposes, staff training, dispute resolution, and record-keeping. Support records are accessible to authorised 7c770 staff only and are retained for a period of five years from the date of the communication.
2.6 Marketing Communications (Opt-In Only)
Where you have explicitly opted in to receive promotional communications from 7c770, we will use your contact data (email address and/or mobile number) to send you information about new games, bonus offers, seasonal promotions (including BPL, IPL, Eid, and Pohela Boishakh specials), and platform updates. You may withdraw your marketing consent at any time without affecting the lawfulness of any processing carried out prior to withdrawal. To opt out, update your notification preferences in the account settings panel or contact the support team.
2.7 Platform Improvement and Analytics
Aggregated and anonymised usage data is used to improve the 7c770 Platform — for example, to identify pages with high exit rates, optimise the mobile user experience, and prioritise the development of features that are most frequently used by players in Bangladesh. This analytics processing operates on anonymised or pseudonymised data sets and cannot be used to re-identify individual players.
Processing Purposes & Legal Bases
- Account operation — Contract performance
- KYC verification — Legal obligation
- Fraud prevention — Legitimate interest
- Responsible gaming — Legitimate interest
- Customer support — Contract performance
- Marketing — Consent (opt-in only)
- Analytics — Legitimate interest (anonymised)
Data Sharing & Third Parties
7c770 does not sell, rent, or trade your personal data to third parties for commercial purposes. We share personal data with third parties only in the specific, limited circumstances described below, and only to the extent necessary for each defined purpose.
4.1 Payment Processors
To execute deposit and withdrawal transactions, 7c770 must share relevant financial data (account identifiers, transaction amounts, timestamps) with your chosen payment provider — including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank, and Visa/Mastercard processing networks. Each of these providers operates under its own privacy policy and is bound by financial data protection standards applicable in Bangladesh.
4.2 Identity Verification Partners
Where 7c770 uses a third-party KYC service provider to verify the identity documents you submit, your identity data and document images are transmitted to that provider over an encrypted connection solely for the purpose of identity verification. The provider is contractually prohibited from using your data for any purpose other than completing the verification check requested by 7c770.
4.3 Game Providers
Casino games available on the 7c770 Platform are supplied by third-party studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. When you launch a game, your session token and a pseudonymised player identifier are shared with the relevant game provider to load the game and record the session. Game providers do not receive your full name, contact details, or financial data. Game session data — including stake amounts and outcomes — is recorded by the provider's servers for fairness audit and dispute resolution purposes.
4.4 Legal and Regulatory Disclosures
7c770 will disclose personal data to law enforcement authorities, regulatory bodies, or other public agencies where required to do so by applicable law, court order, or other legal process. Where permitted by law, 7c770 will endeavour to notify you of such a disclosure before it is made. 7c770 may also share data proactively where it reasonably believes disclosure is necessary to prevent or investigate suspected fraud, money laundering, or other serious criminal activity.
4.5 Corporate Transactions
In the event that 7c770 undergoes a merger, acquisition, or sale of all or part of its business assets, your personal data may be transferred to the acquiring entity as part of that transaction. In such circumstances, 7c770 will take reasonable steps to ensure that the acquiring entity agrees to process your personal data in a manner consistent with this Privacy Policy, and will notify you via the email address on file prior to any such transfer taking effect.
Who We Share Data With
- Payment providers — transaction data only
- KYC partners — identity documents only
- Game providers — pseudonymised session tokens only
- Law enforcement — when legally required
- NOT advertisers or ad networks
- NOT data brokers
- NOT social media platforms
- NOT sold or rented to anyone
Data Retention
7c770 retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, or as required by applicable legal obligations. The following retention schedule applies to the main categories of personal data processed by 7c770.
| Data Category | Retention Period | Reason |
|---|---|---|
| Account identity data | Duration of account + 5 years after closure | AML / KYC record-keeping obligations |
| KYC documents | Duration of account + 5 years after closure | Legal / regulatory compliance |
| Financial transaction records | Duration of account + 7 years after closure | Financial record-keeping obligations |
| Support communications | 5 years from date of communication | Dispute resolution / quality assurance |
| Game session logs | 3 years from session date | Fairness audit / dispute evidence |
| Marketing consent records | Until consent withdrawn + 2 years | Evidence of lawful marketing basis |
| Anonymised analytics data | Up to 24 months (rolling) | Platform performance analysis |
5.1 Post-Closure Data Handling
When your 7c770 account is closed — whether by your own request, by inactivity, or by the Operator — your personal data is not immediately deleted. Applicable legal obligations (particularly those relating to anti-money-laundering record-keeping and financial transaction records) require us to retain certain categories of data for the periods specified in the table above. During this post-closure retention period, your data is held in a restricted state and is accessible only to authorised compliance staff for the specific purpose of satisfying those legal obligations.
Once the applicable retention period has expired, all personal data associated with your account is securely and permanently deleted from 7c770's systems in accordance with our data destruction procedures. KYC documents are overwritten using industry-standard secure deletion methods. Backup copies are purged on the next scheduled backup rotation cycle.
Retention at a Glance
- Identity data: account life + 5 years
- KYC documents: account life + 5 years
- Transaction records: account life + 7 years
- Support logs: 5 years
- Game logs: 3 years
- Analytics (anonymised): 24 months rolling
Data Security
7c770 applies a layered security model to protect the personal data it holds. The following technical and organisational measures are in place across all systems that process player data.
6.1 Technical Measures
- TLS/SSL encryption: All data in transit between your browser or mobile device and 7c770's servers is encrypted using TLS 1.2 or higher. The 7c770.app domain enforces HTTPS across all pages and subdomains; unencrypted HTTP connections are automatically redirected to HTTPS.
- Password hashing: Passwords are never stored in plain text. Account passwords are hashed using a strong one-way hashing algorithm with per-user salting, making them computationally infeasible to reverse even in the event of a database breach.
- Database encryption at rest: All database volumes containing personal data are encrypted at rest using AES-256 encryption. Encryption keys are managed separately from the data they protect and are rotated on a scheduled basis.
- Access controls: Access to production systems containing personal data is restricted to authorised personnel only, governed by role-based access control (RBAC) policies. All administrative access is authenticated via multi-factor authentication (MFA) and logged for audit purposes.
- Firewall and intrusion detection: 7c770's infrastructure is protected by web application firewalls (WAF), network-level firewalls, and automated intrusion detection and prevention systems (IDS/IPS) that monitor for anomalous traffic patterns and known attack signatures.
- Penetration testing: 7c770 commissions periodic security penetration tests by qualified third-party security professionals to identify and remediate vulnerabilities before they can be exploited.
6.2 Organisational Measures
- Staff training: All 7c770 staff with access to personal data receive mandatory data protection training covering secure data handling, phishing awareness, and incident response procedures.
- Data access logging: All access to records containing personal data by internal staff is logged with a timestamp, staff identifier, and the reason for access. Logs are reviewed periodically by the compliance team.
- Vendor due diligence: Before engaging any third-party processor (including KYC providers, payment partners, and analytics vendors), 7c770 conducts a security and data protection assessment and requires the vendor to sign a Data Processing Agreement that defines their obligations regarding the personal data shared with them.
- Incident response: 7c770 maintains a documented data breach incident response plan. In the event of a confirmed data breach affecting player personal data, affected players will be notified via email within 72 hours of the breach being identified, and the notification will include the nature of the data affected, the likely consequences, and the measures taken to address the breach.
Security Measures Summary
- TLS 1.2+ encryption in transit
- AES-256 encryption at rest
- Salted one-way password hashing
- Role-based access control (RBAC)
- MFA for all admin access
- WAF and IDS/IPS protection
- Periodic penetration testing
- 72-hour breach notification
Your Privacy Rights
As a user of the 7c770 Platform, you hold a number of rights in relation to the personal data we hold about you. 7c770 is committed to honouring these rights promptly and transparently. The following rights apply to all personal data processed by 7c770 in connection with your account.
7.1 Right of Access
You have the right to request a copy of all personal data that 7c770 holds about you. Upon receiving a verified access request, 7c770 will provide you with a structured summary of your personal data in a commonly used electronic format within ten business days. This includes identity data, contact data, transaction history, KYC records, and support communications associated with your account.
7.2 Right to Rectification
If any personal data that 7c770 holds about you is inaccurate or incomplete, you have the right to request that it be corrected. Minor corrections — such as updating a contact phone number or email address — can be made directly via the account settings panel. Changes to identity data (name, date of birth) require re-verification via the KYC process and must be requested through the support team with supporting documentation.
7.3 Right to Erasure
You have the right to request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, or where you withdraw consent and there is no other lawful basis for continued processing. As noted in Section 5, certain categories of data must be retained for the periods required by applicable legal obligations even following an erasure request. 7c770 will delete all data that is not subject to a legal retention requirement and will clearly communicate to you which data must be retained and for how long.
7.4 Right to Restriction of Processing
You have the right to request that 7c770 restricts the processing of your personal data in certain circumstances — for example, while the accuracy of data you have contested is being verified, or while a legitimate interests objection is being assessed. During a period of restricted processing, 7c770 will continue to store your data but will not process it for any purpose other than storage and the specific purpose you have consented to.
7.5 Right to Data Portability
Where 7c770 processes your personal data on the basis of your consent or in performance of a contract, and where the processing is carried out by automated means, you have the right to receive a copy of your personal data in a structured, commonly used, machine-readable format (such as JSON or CSV). You may request a data export by contacting the support team. Exports are provided within ten business days of the verified request.
7.6 Right to Object
You have the right to object to the processing of your personal data where that processing is carried out on the basis of 7c770's legitimate interests. This includes the right to object to processing your data for direct marketing purposes at any time. Upon receipt of a valid objection to marketing, 7c770 will cease all marketing communications to you within two business days. Objections to other legitimate-interest processing will be assessed on a case-by-case basis, balancing your interests against the Operator's legitimate reasons for the processing.
7.7 Exercising Your Rights
To exercise any of the rights described above, you may:
- Contact the 7c770 support team via the 24/7 BST live chat facility on the Platform, or
- Submit a written request to , clearly stating your account username, the right you wish to exercise, and the specific data or processing activity to which the request relates.
All rights requests will be acknowledged within two business days and fully responded to within ten business days. Identity verification may be required before a rights request is actioned, to ensure that personal data is not disclosed to or deleted at the request of an unauthorised party.
Your Rights at a Glance
- Access — Get a copy of your data
- Rectification — Correct inaccurate data
- Erasure — Request deletion of data
- Restriction — Limit processing activity
- Portability — Export your data
- Object — Opt out of legitimate interest processing
Response time: acknowledged within 2 business days, fully resolved within 10 business days. No fees for standard requests.
Policy Updates & Contact
8.1 Changes to This Privacy Policy
7c770 reserves the right to update or revise this Privacy Policy at any time to reflect changes in applicable law, regulatory guidance, or our data processing practices. When a material change is made to the Policy, the following notification process will apply:
- The revised Privacy Policy will be published at 7c770.app/privacy-policy with the updated effective date shown at the top of the page.
- Where the change materially affects your rights or the way in which 7c770 uses your personal data, registered players will receive an in-platform notification and/or an email to the address on file at least seven calendar days before the revised Policy takes effect.
- Continued use of the 7c770 Platform after the revised Policy's effective date constitutes acceptance of the updated terms. If you do not agree with the revised Privacy Policy, you should close your account and cease using the Platform before the effective date.
8.2 Contacting 7c770 About Privacy
If you have any questions, concerns, or complaints about this Privacy Policy, or about the way in which 7c770 handles your personal data, please contact the 7c770 Data Protection team using the details below. All privacy-related enquiries are handled by dedicated staff and are treated with the highest level of confidentiality.
Preferred contact method: Live chat support, available 24/7 Bangladesh Standard Time (BST, UTC+6) via the 7c770 Platform.
Written enquiries:
Operating hours for written responses: 24/7 BST. Written enquiries are acknowledged within two business days and fully resolved within ten business days.
8.3 Children and Minors
The 7c770 Platform is strictly intended for adults aged 18 years and over. 7c770 does not knowingly collect personal data from individuals under the age of 18. The minimum age requirement is enforced through the KYC identity verification process, which cross-references your date of birth against your identity documents. If 7c770 becomes aware that personal data has been collected from a minor, that data will be deleted immediately and the account will be permanently closed. If you believe a minor has registered on the Platform, please contact the support team immediately via live chat or at [email protected] so that the account can be reviewed and actioned without delay.
Privacy Contact Details
- Live chat — 24/7 BST on the Platform
- Email:
- Response: within 2 business days
- Resolution: within 10 business days
18+ Age Requirement
7c770 is strictly for adults aged 18 and above. We do not knowingly collect data from minors. All accounts are age-verified through our KYC process. Report suspected underage accounts to [email protected] immediately.
18+ Only — Play ResponsiblyQuestions About Your Privacy?
Our 24/7 BST support team is ready to help with any questions about your data, your rights, or how 7c770 protects your personal information. You can also explore our FAQ for quick answers or review our Responsible Gaming page for account safety tools.