atp70 Privacy Policy —
How We Collect, Use & Protect Your Data
Your privacy matters to us. This Privacy Policy explains exactly what personal data atp70 collects from players in Bangladesh, how that data is used to deliver and improve our services, who we share it with, and the rights you hold over your own information at all times.
1. Data We Collect
atp70 collects personal data from players through several channels — including account registration forms, identity verification submissions, payment transactions, and your ongoing activity on the platform. We collect only the data that is necessary to deliver, maintain, and improve our services. The categories of personal data we collect are outlined below.
1.1 Registration and Identity Data
When you create an atp70 account, we collect the following information:
- Full legal name (as it appears on your government-issued ID)
- Date of birth (required for mandatory age verification — 18+ only)
- Residential address, including city (e.g., Dhaka, Chittagong, Sylhet, Rajshahi, Khulna)
- Email address and registered mobile number
- Username and encrypted password
- National ID number, passport number, or other government-issued identification reference (collected during KYC verification)
1.2 Financial and Transaction Data
To process deposits and withdrawals, atp70 collects:
- Mobile wallet account numbers (bKash, Nagad, Rocket, Upay) registered in your name
- Bank account details where bank transfer methods are used (Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, Sonali Bank)
- Card details (Visa, Mastercard) — stored in tokenised form only; full card numbers are never retained on atp70 servers
- Transaction history: deposit amounts, withdrawal requests, dates, and payment method references
- Currency denomination (all atp70 transactions are denominated in Bangladeshi Taka, ৳)
1.3 Technical and Usage Data
When you visit or use the atp70 platform, our systems automatically collect certain technical data, including:
- IP address and approximate geographic location (country and city level)
- Device type, operating system, and browser version
- Pages visited, game sessions launched, session duration, and click-path data
- Referring URL (the source that directed you to atp70)
- Error logs and performance diagnostics used for platform stability
1.4 Communications Data
If you contact the atp70 support team via live chat, email, or any other channel, we retain a record of that correspondence, including the content of your messages and the date and time of contact. This data is used to resolve disputes, improve customer service quality, and fulfil our obligations under applicable responsible gaming standards.
2. How We Use Your Data
atp70 processes your personal data on the basis of contractual necessity (to deliver the services you have signed up for), legal obligation (to comply with anti-money laundering, age verification, and responsible gaming requirements), and legitimate interest (to maintain platform security and improve user experience). The specific purposes for which we use your data are as follows:
| Purpose | Data Categories Used | Legal Basis |
|---|---|---|
| Account creation and authentication | Registration and identity data | Contractual necessity |
| Age verification (18+ compliance) | Date of birth, identity documents | Legal obligation |
| Processing deposits and withdrawals | Financial and transaction data | Contractual necessity |
| Fraud detection and AML screening | All categories | Legal obligation / legitimate interest |
| Responsible gaming monitoring | Usage data, transaction data | Legal obligation |
| Personalised promotions and offers | Usage data, transaction history | Consent / legitimate interest |
| Customer support and complaint handling | Communications data, identity data | Contractual necessity |
| Platform performance and analytics | Technical and usage data | Legitimate interest |
atp70 does not use your personal data for any purpose incompatible with those listed above. We do not engage in automated individual decision-making that produces legal or similarly significant effects without human review.
3. Data Sharing and Third Parties
atp70 does not sell, rent, or trade your personal data to any third party for marketing purposes. We share your data only in the limited circumstances described below, and only to the minimum extent necessary for each purpose.
3.1 Payment Processing Partners
To process deposits and withdrawals, we transmit the minimum necessary financial details to our payment processing partners — including bKash, Nagad, Rocket, Upay, and relevant banking institutions. These partners are bound by their own privacy and data security obligations and are not permitted to use your data for any purpose other than completing the transaction.
3.2 Identity Verification Providers
During KYC verification, identity document images and personal details may be shared with a certified third-party identity verification service. This provider processes your documents solely to confirm your identity and age on behalf of atp70 and is contractually prohibited from using your data for any independent purpose.
3.3 Game Content Providers
atp70 sources games from internationally certified providers including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. These providers may receive a unique, anonymised session token to launch your game session. They do not receive your full name, financial details, or contact information.
3.4 Legal and Regulatory Disclosure
atp70 may disclose your personal data to law enforcement agencies, regulatory bodies, or courts of competent jurisdiction where we are required to do so by applicable law, court order, or regulatory instruction. We will notify you of any such disclosure to the extent we are legally permitted to do so.
3.5 Corporate Transactions
In the event of a merger, acquisition, or sale of all or part of atp70's business, your personal data may be transferred to the acquiring entity as part of that transaction. You will be notified via email and/or a prominent notice on the atp70 platform prior to any such transfer, and you will be given the opportunity to request deletion of your data before the transfer takes effect.
4. Cookies and Tracking Technologies
atp70 uses cookies and similar tracking technologies to maintain your session, remember your preferences, detect fraud, and analyse platform usage. A cookie is a small text file stored on your device by your browser when you visit a website. The following categories of cookies are used on atp70:
4.1 Strictly Necessary Cookies
These cookies are essential for the atp70 platform to function correctly. They enable core features such as account login, session security, and payment form processing. You cannot opt out of strictly necessary cookies while using the platform, as disabling them would prevent the site from operating.
4.2 Analytics and Performance Cookies
We use analytics cookies to understand how players interact with atp70 — including which pages are most visited, how long sessions last, and where technical errors occur. This data is collected in aggregated, anonymised form and is used solely to improve platform performance. You may opt out of analytics cookies by adjusting your browser settings.
4.3 Functionality Cookies
Functionality cookies remember choices you make on atp70, such as your preferred language, game view settings, and notification preferences. Disabling these cookies will not prevent you from using the platform but may result in a less personalised experience.
4.4 Managing Cookies
You can manage or delete cookies at any time through your browser settings. Most modern browsers allow you to block all cookies, accept cookies from specific sites, or delete existing cookies. Please note that blocking all cookies may affect the functionality of the atp70 platform and certain features may not work as intended.
5. Data Retention
atp70 retains your personal data for as long as is necessary to fulfil the purposes for which it was collected, subject to the following minimum and maximum retention periods:
- Active account data — retained for the duration of your account's active status plus a minimum of five (5) years after account closure, in compliance with anti-money laundering record-keeping requirements.
- Transaction records — retained for a minimum of five (5) years from the date of each transaction, as required by applicable financial regulations.
- KYC verification documents — retained for a minimum of five (5) years following account closure or the completion of the transaction to which the verification related.
- Customer support correspondence — retained for three (3) years from the date of the last communication, after which records are securely deleted unless subject to an active dispute or regulatory inquiry.
- Technical and usage logs — retained for a maximum of thirteen (13) months in identifiable form, after which they are anonymised or deleted.
When your personal data is no longer required for any legitimate purpose, atp70 will securely delete or anonymise it in accordance with industry-standard data destruction practices.
6. Your Privacy Rights
As a player on atp70, you hold the following rights in respect of your personal data. To exercise any of these rights, please contact our support team at . We will respond to all verified requests within thirty (30) days.
6.1 Right of Access
You have the right to request a copy of all personal data that atp70 holds about you. We will provide this in a structured, commonly used, machine-readable format where technically feasible.
6.2 Right to Rectification
If any personal data held by atp70 about you is inaccurate or incomplete, you have the right to request that it be corrected. Minor corrections (such as a change of registered mobile number) can be made directly from your Account Settings page after login.
6.3 Right to Erasure
You may request that atp70 delete your personal data where it is no longer necessary for the purpose for which it was collected, where you withdraw your consent (and no other legal basis applies), or where the data has been processed unlawfully. Please note that erasure requests may be declined or deferred where retention is required by law — for example, transaction records subject to AML retention obligations cannot be deleted on request during the mandatory retention period.
6.4 Right to Restriction
You have the right to request that atp70 restrict the processing of your personal data in certain circumstances — for example, while the accuracy of data you have contested is being verified, or where you have objected to processing based on legitimate interest.
6.5 Right to Data Portability
Where processing is based on your consent or on a contract with you, and is carried out by automated means, you have the right to receive your data in a portable format and to request that it be transmitted directly to another controller where technically feasible.
6.6 Right to Object
You have the right to object at any time to the processing of your personal data for direct marketing purposes. Upon receipt of such an objection, atp70 will immediately cease processing your data for marketing purposes. You may also object to processing based on legitimate interest, in which case atp70 will cease processing unless we can demonstrate compelling legitimate grounds that override your interests.
7. Data Security
atp70 implements a multi-layered approach to data security to protect your personal information against unauthorised access, disclosure, alteration, or destruction. Our security measures include:
- 256-bit SSL/TLS encryption on all data transmitted between your device and the atp70 platform, ensuring that your login credentials, payment details, and personal information are protected in transit at all times.
- Encrypted data storage — sensitive data including passwords (stored as salted hashes), payment method tokens, and identity document images are encrypted at rest using industry-standard encryption algorithms.
- Access controls — personal data is accessible only to atp70 staff whose roles require it. All staff with data access are subject to strict confidentiality obligations and regular security training.
- Two-factor authentication (2FA) — available to all atp70 account holders and strongly recommended to protect against unauthorised login attempts.
- Regular security audits — atp70's systems are subject to periodic penetration testing and security reviews conducted by independent third-party specialists.
- Incident response — in the event of a data breach that poses a risk to your rights and freedoms, atp70 will notify affected players and relevant authorities within 72 hours of becoming aware of the breach, in line with international best-practice standards.
While atp70 takes all reasonable precautions to protect your data, no internet transmission or electronic storage system is entirely risk-free. You are responsible for keeping your own login credentials and device secure.
8. Policy Updates and How to Contact Us
atp70 reserves the right to update this Privacy Policy at any time to reflect changes in our data practices, legal obligations, or the services we offer. When material changes are made, we will notify registered players via email to their registered address and/or via a prominent notice on the atp70 platform. The "Last updated" date at the top of this page will be revised to reflect the effective date of any update. Your continued use of the atp70 platform following the publication of a revised Privacy Policy constitutes your acceptance of the updated terms.
If you have any questions, concerns, or requests relating to this Privacy Policy or to the personal data that atp70 holds about you, please contact our Data Protection team at:
Email:
Response time: Within 30 days of receipt of a verified request
Support hours: 24/7 — English and Bengali
This Privacy Policy should be read alongside the atp70 Terms & Conditions and Responsible Gaming policy, which together form the complete framework governing your relationship with the atp70 platform.
Our Data Protection Commitments
These six principles define how atp70 handles the personal data of every player on our platform — from first registration through to account closure.
End-to-End Encryption
Every data transmission between your device and atp70 is protected by 256-bit SSL/TLS encryption. Your login credentials, payment details, and personal information are secured at every step — in transit and at rest on our servers.
No Data Sales, Ever
atp70 will never sell, rent, or trade your personal data to any third party for marketing or commercial purposes. Your information is used solely to operate your account, process payments, and comply with legal obligations.
Minimal Data Collection
We collect only the personal data that is strictly necessary to deliver and maintain our services. We do not build unnecessary profiles, collect behavioural data beyond what is needed for platform improvement, or store data longer than legally required.
GDPR-Aligned Standards
Although atp70 serves the Bangladeshi market, we align our data protection practices with internationally recognised GDPR principles — including lawful basis for processing, purpose limitation, data minimisation, and your right to access and erasure.
Regular Security Audits
atp70's infrastructure is subject to independent penetration testing and security reviews on a regular basis. Any identified vulnerabilities are addressed promptly, and our incident response plan ensures affected players are notified within 72 hours of any confirmed breach.
Your Rights, Honoured
You can request access to, correction of, or deletion of your personal data at any time by contacting our support team. All verified privacy rights requests are acknowledged and resolved within 30 days, in line with international best-practice standards.
Ready to Play on atp70?
Now that you understand how atp70 handles your data, explore our full range of BPL cricket betting markets, 4,200+ casino games, and instant bKash and Nagad transactions — all in a secure, SSL-protected environment. 18+ only. Gamble responsibly.
SSL Secured • Fair Play Certified • 18+ Only • Gambling can be addictive — play within your means