Parimatch India – Privacy Policy

Personal data collected may include:

• Identity and contact details: name, date of birth, address, email, phone, nationality.
• Account and KYC information: username, verification documents, photographs or selfies submitted for checks.
• Payment and transaction details: payment instrument identifiers routed through providers, deposit and withdrawal records.
• Technical and usage information: device data, IP address, browser type, app version, log data, interaction and behavioural analytics.
• Preference and communication information: language, consent choices, customer support communications.

Purposes of collection:

• To create and manage the user account and provide online services.
• To perform KYC and risk checks, prevent fraud, and support responsible gaming.
• To process payments and maintain transaction records as required by law.

Protection measures:

• Encryption in transit and at rest, access controls, segregation of duties, and role-based permissions.
• Network monitoring, vulnerability management, and regular security testing.
• Staff training, confidentiality obligations, and audit logging.
• Use of reputable payment gateways and compliance with industry standards such as PCI DSS and ISO 27001-aligned practices.

User rights (subject to law and verification):

• Access a copy of personal information.
• Request correction of inaccurate or incomplete data.
• Request deletion, subject to legal retention obligations.
• Withdraw consent for optional processing, without affecting prior lawful processing.

Compliance framework:

• Applicable Indian laws, including the Digital Personal Data Protection Act, 2023 and the Information Technology Act, 2000 and rules on reasonable security and sensitive personal data.
• International best-practice principles on transparency, purpose limitation, data minimisation, and accountability.

Personal information is used only for lawful, specific purposes and handled transparently:

• Account set-up, authentication, and user support services.
• Payment processing, refunds, and reconciliation through authorised providers.
• Identity verification, KYC, fraud prevention, risk scoring, and responsible gaming controls.
• Operation, maintenance, and improvement of the websites and apps.
• Analytics to understand usage patterns and enhance service performance.
• Personalisation of user experience and content settings.
• Marketing communications based on consent, including the ability to opt out at any time.
• Compliance with legal obligations, responding to lawful requests, tax and audit requirements, and dispute handling.

Personal data is not sold. Profiling is limited to the purposes above and does not involve automated decisions that produce legal effects without human review when required by law.

Users can exercise their rights through account settings or by contacting the support channels listed on the website. The platform may request proof of identity and will respond within a reasonable time as mandated by applicable law.

Requests supported:

• Access: obtain a summary of personal data and processing categories.
• Correction: update inaccurate or incomplete information.
• Deletion: request erasure where retention is not required by law or for dispute resolution.
• Consent management: change preferences for marketing, cookies, and optional processing.

By using Parimatch, the user consents to verification and security checks and agrees that payment information may be processed by authorised payment service providers for transactions, screening, and chargeback handling.

The services are intended for adults aged 18 and above. The operator does not knowingly collect personal data from minors and cannot verify age without appropriate documents. If a parent or guardian believes a minor has provided information, a request can be submitted through the website’s support channels. On verified notice, the account will be closed and the minor’s personal data will be deleted where legally permissible.

Personal data may be stored and processed in India and in other countries where service partners operate, including cloud hosting, payments, analytics, and customer support. Use of the site and apps constitutes consent to such transfers, subject to appropriate safeguards.

All partners are bound by strict confidentiality and data protection obligations, including contractual terms that align with Indian law and internationally recognised protections to maintain equivalent security.

This legal disclaimer clarifies that certain obligations may be limited by applicable law, regulatory directives, fraud prevention needs, or lawful requests from authorities. In case of inconsistency, the governing law and binding orders prevail over this policy to the extent required. The disclaimer applies when the user accepts this policy by clicking acceptance, signing electronically, or otherwise acceding through continued use of the services.

Cookies are small text files placed on the device to store information. This document explains the use of cookies for statistics, behaviour analysis, personalisation, and improvement of the websites and apps. Key points:

• Types used: strictly necessary, performance, functionality, analytics, and advertising cookies.
• Purposes: remember preferences, maintain sessions, measure usage, diagnose issues, and refine features.
• Retention: cookies are typically stored for up to 1 year, or as required for the stated purpose.
• Control: users can manage or delete cookies in browser or device settings. Some functions may not work if certain cookies are disabled.

Where required, consent is obtained through a cookie banner or preference centre.

Use of the websites and apps signifies full acceptance of this Privacy Policy. The most recent version published on the site prevails over earlier versions. Continued use after changes indicates agreement to the updated terms, subject to applicable consent requirements for material changes.

Personal data may be shared with third parties for purposes permitted by law and this policy, including:

• Payment processors, banks, and card schemes for transactions and chargeback management.
• Identity verification, KYC, AML, and fraud-prevention service providers.
• Cloud hosting, customer support platforms, analytics vendors, and professional advisers.
• Authorities, courts, and dispute resolution bodies where required.

Names or categories of service providers are listed on the website or presented at the point of collection. If a new category of sharing is introduced, users will be informed of the purpose and scope. Providing personal information constitutes consent to such sharing, subject to confidentiality and data processing agreements.

The site may contain links to external websites or apps that operate under their own privacy policies. The operator is not responsible for how those parties collect, process, or use personal information. Users should review the privacy notices of any external site and exercise caution before providing personal data.