fv7 Privacy Policy — Your Data, Protected
At fv7, protecting the personal information of our players across Bangladesh is a fundamental responsibility. This Privacy Policy explains exactly what data we collect when you use fv7, how that data is used, who it may be shared with, and what rights you hold over your own information. We are committed to handling your data with full transparency and appropriate security measures at every stage.
SSL-Encrypted Connections
Every connection to fv7 is protected with industry-standard TLS/SSL encryption. Your login credentials, payment details, and personal information are transmitted over secured channels at all times, preventing interception by unauthorised parties.
No Sale of Personal Data
fv7 does not sell, rent, or trade your personal information to third-party advertisers or data brokers under any circumstances. Data sharing is limited strictly to service partners necessary for platform operation and regulatory compliance.
Player-Controlled Data Access
You have the right to request a copy of all personal data fv7 holds on your account, correct inaccurate records, restrict processing, or request deletion of your data where permitted. Requests are handled within five business days.
Secure Payment Processing
fv7 does not store full card numbers or mobile banking PINs on its servers. Payment transactions via bKash, Nagad, Rocket, and Upay are processed through PCI-DSS-compliant payment gateways that maintain their own independent security standards.
Transparent Cookie Use
fv7 uses cookies and similar technologies only for session management, platform performance, and analytics. We do not deploy third-party advertising trackers or cross-site behavioural profiling cookies on the fv7 platform.
Defined Retention Periods
fv7 retains personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, and compliance obligations. Once the retention period expires, data is securely deleted or anonymised.
Information We Collect
When you register, use, or interact with the fv7 platform, we collect certain categories of personal information. The data we collect depends on how you engage with the platform and which services you access. Below is a comprehensive overview of the information fv7 may collect from you.
Registration and Identity Data
When you create a fv7 player account, you are required to provide your full legal name, date of birth, residential address (including city — Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, or other Bangladeshi cities), mobile phone number, and a valid email address. This information is collected to establish your identity, verify your eligibility to use the platform, and maintain accurate account records.
Identity Verification (KYC) Documents
As part of our Know Your Customer (KYC) compliance process, fv7 may collect copies of government-issued identity documents, including your National Identity Card (NID) or passport. A selfie photograph may also be required for liveness verification. These documents are stored securely and used exclusively for identity verification and fraud prevention purposes.
Financial and Transaction Data
fv7 records details of all deposits, withdrawals, and in-platform transactions associated with your account. This includes transaction amounts in BDT, timestamps, payment method identifiers (such as your bKash or Nagad mobile number), and transaction reference numbers. Full payment credentials — such as card numbers or mobile banking PINs — are never stored on fv7 servers.
Technical and Device Data
When you access fv7 through a web browser or mobile device, we automatically collect technical information including your IP address, browser type and version, operating system, device identifiers, screen resolution, time zone setting (Bangladesh Standard Time, UTC+6), and pages visited within the platform. This data is used for security monitoring, fraud detection, and platform performance optimisation.
Behavioural and Usage Data
fv7 collects data about how you interact with the platform, including which games you play, the duration of gaming sessions, bet amounts, sports markets browsed, promotional offers viewed, and features used. This data is used to personalise your experience, identify responsible gaming patterns, and improve platform content and offerings.
Communications Data
If you contact fv7's customer support team via email or live chat, the content of those communications — including your messages, attachments, and any information you voluntarily provide — is retained for quality assurance, dispute resolution, and regulatory record-keeping purposes.
How We Use Your Data
fv7 processes personal data only for legitimate, specified purposes. We do not use your data for purposes incompatible with the reasons it was originally collected. The following table summarises the primary purposes for which fv7 processes personal data, along with the legal basis for each processing activity.
| Processing Purpose | Data Categories Used | Legal Basis |
|---|---|---|
| Account creation and management | Registration data, identity documents | Contractual necessity |
| Identity verification (KYC) | NID/passport, selfie photograph | Legal obligation / fraud prevention |
| Processing deposits and withdrawals | Financial data, payment method identifiers | Contractual necessity |
| Fraud detection and prevention | Technical data, transaction data, behavioural data | Legitimate interest / legal obligation |
| Responsible gaming monitoring | Behavioural data, session data, self-exclusion requests | Legal obligation / legitimate interest |
| Customer support services | Communications data, account data | Contractual necessity |
| Platform analytics and improvement | Technical data, behavioural data (anonymised where possible) | Legitimate interest |
| Promotional communications (opted-in players) | Contact details, behavioural data | Consent |
| Legal and regulatory compliance | All categories as required by applicable law | Legal obligation |
Marketing Communications
fv7 may send you promotional communications about new games, seasonal offers (such as BPL cricket season promotions, Eid bonuses, or Pohela Boishakh offers), and platform updates if you have provided your explicit consent during registration or through account settings. You may withdraw your consent to receive marketing communications at any time by contacting [email protected] or updating your notification preferences in your account dashboard. Withdrawal of marketing consent does not affect the processing of data necessary to operate your account.
Data Sharing and Third Parties
fv7 does not sell your personal data to any third party. We share personal data only in the limited circumstances described below, and only to the extent strictly necessary for the stated purpose. All third-party service providers engaged by fv7 are contractually obligated to process personal data solely on fv7's instructions and to maintain appropriate security standards.
- Payment service providers: fv7 shares relevant transaction data with licensed payment processors including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, and card networks such as Visa and Mastercard, to facilitate deposits and withdrawals. These providers operate under their own privacy frameworks and PCI-DSS compliance obligations.
- Game software providers: Third-party game studios such as Pragmatic Play, Evolution Gaming, Ezugi, NetEnt, Microgaming, and Spribe may receive pseudonymised player session data (such as player ID, bet amounts, and game results) to the extent required to operate their games and comply with their own regulatory obligations. No directly identifiable information such as your name or NID is shared with game providers.
- Identity verification partners: fv7 may use third-party KYC verification services to authenticate identity documents and perform liveness checks. These partners process document images and selfies solely for verification purposes and are contractually prohibited from retaining or using this data beyond the scope of verification.
- Fraud prevention and security services: fv7 works with specialist fraud detection platforms that analyse technical and behavioural data to identify suspicious activity. These services operate on aggregated or pseudonymised data and do not receive your full identity information unless a fraud investigation specifically requires it.
- Legal and regulatory authorities: fv7 may be required to disclose personal data to law enforcement agencies, regulatory bodies, or courts in response to a lawful request, court order, or legal obligation. fv7 will notify affected players of such disclosures unless legally prohibited from doing so.
- Business transfers: In the event of a merger, acquisition, or sale of all or part of fv7's business, player data may be transferred to the acquiring entity as part of the transaction. Affected players will be notified in advance of any such transfer and given the opportunity to close their accounts prior to the transfer if they choose.
Data Retention and Storage
fv7 retains personal data only for as long as is necessary to fulfil the purposes for which it was collected, or as required by applicable legal, regulatory, accounting, and compliance obligations. The following retention periods apply to the principal categories of personal data held by fv7:
- Active account data (registration information, contact details, account preferences): Retained for the full duration of the account relationship and for a period of five years following permanent account closure.
- KYC identity documents (NID scans, passport copies, selfies): Retained for a minimum of five years following account closure to satisfy anti-money laundering and fraud prevention regulatory obligations.
- Financial and transaction records (deposit and withdrawal history, bet records): Retained for a minimum of seven years following the date of each transaction, in line with standard financial record-keeping requirements.
- Customer support communications: Retained for three years from the date of the final communication in any given support thread, unless the communication relates to an unresolved dispute or regulatory matter, in which case records are retained until resolution.
- Technical and device data (IP logs, session logs): Retained for 12 months from collection date, after which logs are automatically purged or anonymised for aggregate analytics purposes.
- Marketing consent records: Retained for the duration of the account and for three years following account closure, to demonstrate compliance with consent-based marketing obligations.
Data Storage Location
fv7 stores player data on secure servers operated by reputable cloud infrastructure providers. Servers are located in data centres that maintain ISO 27001 certification or equivalent international security standards. Data may be processed in multiple geographic locations as necessary for platform operation; however, all such processing is governed by the same data protection standards described in this Privacy Policy regardless of the server's physical location.
Your Privacy Rights
As a fv7 player, you hold specific rights in relation to the personal data we hold about you. fv7 is committed to honouring these rights and will respond to all valid requests within five business days. To exercise any of the rights listed below, contact the fv7 data team at [email protected] with the subject line "Data Rights Request" and include your registered mobile number or email address for account identification.
- Right of access: You have the right to request a copy of all personal data fv7 holds about your account, including the categories of data, the purposes for which it is processed, and any third parties with whom it has been shared. fv7 will provide this information in a structured, readable format.
- Right to rectification: If any personal data fv7 holds about you is inaccurate or incomplete, you have the right to request that it be corrected. For changes to core identity data (name, date of birth), updated documentation may be required.
- Right to erasure ("right to be forgotten"): You may request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected, where you have withdrawn consent, or where processing is unlawful. This right is subject to overriding legal obligations — for example, transaction records required for anti-money laundering compliance cannot be erased before the mandatory retention period expires.
- Right to restrict processing: You may request that fv7 restrict the processing of your data in certain circumstances, such as while a dispute regarding the accuracy of the data is being resolved. During a restriction period, fv7 will continue to store the data but will not actively process it beyond what is legally required.
- Right to data portability: Where processing is based on your consent or on contractual necessity and is carried out by automated means, you have the right to receive your personal data in a portable, machine-readable format (such as JSON or CSV) for transfer to another service provider.
- Right to withdraw consent: Where fv7 processes your data on the basis of consent (such as marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.
- Right to object: You have the right to object to the processing of your personal data where that processing is based on fv7's legitimate interests. fv7 will cease processing unless there are compelling legitimate grounds that override your interests or the processing is required for legal claims.
Security Measures
fv7 implements a comprehensive set of technical and organisational security measures designed to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. Key security controls maintained by fv7 include the following:
- TLS/SSL encryption: All data transmitted between your browser or device and fv7 servers is encrypted using TLS 1.2 or higher. HTTPS is enforced across the entire fv7.app domain with HTTP Strict Transport Security (HSTS) headers active.
- Encryption at rest: Personal data and KYC documents stored on fv7 servers are encrypted at rest using AES-256 encryption. Database access is restricted to authenticated, authorised personnel only.
- Two-factor authentication: fv7 supports OTP-based two-factor authentication for player accounts. Players are strongly encouraged to enable 2FA to add a second layer of protection beyond the standard password.
- Access control: Internal access to player personal data is governed by role-based access controls. Only staff with a legitimate operational need — such as the compliance, KYC, or fraud teams — can access identifiable player data, and all such access is logged and audited.
- Penetration testing and vulnerability management: fv7 conducts periodic security assessments and penetration tests conducted by independent security professionals. Identified vulnerabilities are remediated according to a risk-prioritised patching schedule.
- Incident response: fv7 maintains a documented data breach response procedure. In the event of a confirmed personal data breach that poses a risk to players, affected players will be notified without undue delay, along with guidance on recommended protective actions.
Despite fv7's security measures, no online platform can guarantee absolute security. Players are reminded to use strong, unique passwords for their fv7 accounts, to enable two-factor authentication, and to notify fv7 immediately at [email protected] if they suspect any unauthorised access to their account.
Changes to This Policy
fv7 reserves the right to update or revise this Privacy Policy at any time to reflect changes in platform operations, applicable laws, or industry best practices. When material changes are made — meaning changes that affect the nature of data collected, the purposes of processing, or your rights as a player — fv7 will notify registered players via the email address on file at least seven days before the changes take effect.
The effective date displayed at the top of this Privacy Policy will be updated each time a new version is published. Players are encouraged to review this page periodically to stay informed of how fv7 manages and protects personal data. Continued use of the platform after the effective date of any revised Privacy Policy constitutes acceptance of the updated terms.
If you have questions about any provision of this Privacy Policy, or if you wish to exercise any of your data rights, please contact the fv7 data protection team at [email protected]. Our support team operates 9 AM to 11 PM Bangladesh Standard Time (BST, UTC+6), seven days a week.
Your Privacy is Protected — Now Enjoy the Platform
You have read how fv7 handles your data with care and transparency. Explore our cricket betting markets, casino games, and slot titles — all in BDT with instant bKash and Nagad payments.
18+ only | Play responsibly | Gambling involves financial risk