01 Information We Collect
tl555 collects personal information through several channels: directly from you when you register an account or contact our support team; automatically when you browse and use the Platform; and from third-party sources such as payment service providers and identity verification agencies. The categories of information we collect are set out below.
Account Registration Data
When you create a tl555 account, we collect the following information:
- Identity data: Full legal name, date of birth, gender (where provided).
- Contact data: Email address, Bangladeshi mobile phone number, residential address.
- Credential data: Username and hashed password (we never store your password in plain text).
- Verification data: Copies of government-issued identification documents (National ID Card, passport, or driving licence) and proof of address documents submitted during KYC verification.
Transaction & Financial Data
To process deposits and withdrawals via bKash, Nagad, Rocket, Upay, and Bangladeshi bank transfers, tl555 collects:
- Mobile wallet account numbers (bKash, Nagad, Rocket, Upay) registered in your name.
- Bank account numbers and branch details where bank transfer is the chosen payment method.
- Transaction reference numbers, amounts in BDT (৳), timestamps, and payment method identifiers.
- Deposit and withdrawal history for your tl555 account.
tl555 does not store full card numbers or CVV codes. Card payment data (where applicable) is handled exclusively by PCI-DSS compliant payment processors and is never transmitted to or stored on tl555 servers.
Technical & Usage Data
When you access tl555.ws, our servers and analytics systems automatically collect certain technical information, including:
| Data Category | Examples | Purpose |
|---|---|---|
| Device data | Device type, operating system, browser version, screen resolution | Platform optimisation, fraud detection |
| Network data | IP address, ISP, approximate location (city/region level) | Geo-restriction compliance, security monitoring |
| Session data | Pages visited, time on page, click paths, session duration | UX improvement, responsible gaming monitoring |
| Game activity data | Games played, bet amounts, win/loss records, session frequency | Account management, bonus eligibility, RG intervention |
Communications Data
When you contact tl555 via live chat or email at [email protected], we retain a record of that correspondence — including the content of your messages and any attachments you provide — for a period of up to three years. This data is used for quality assurance, dispute resolution, and training purposes.
02 How We Use Your Data
tl555 processes personal data only for specific, explicit, and legitimate purposes. We do not use your data in ways that are incompatible with the purposes for which it was originally collected. The primary purposes for which we process personal data are:
- Service Delivery: To create and manage your tl555 account, process deposits and withdrawals in BDT, provide access to casino games and sports betting markets, and deliver customer support.
- Identity Verification (KYC): To verify your age, identity, and payment method ownership as required before processing withdrawals and at other points in the account lifecycle, in compliance with applicable anti-money-laundering standards.
- Fraud Prevention & Security: To detect, investigate, and prevent fraudulent activity, unauthorised account access, money laundering, and other illegal conduct that could harm tl555 or other players on the Platform.
- Responsible Gaming: To monitor player activity for indicators of problem gambling behaviour — such as rapidly escalating bet sizes, extended session durations, or frequent self-exclusion requests — and to provide timely support interventions where appropriate.
- Legal & Regulatory Compliance: To fulfil our obligations under applicable laws, including responding to lawful requests from competent authorities and maintaining required transaction records.
- Platform Improvement: To analyse aggregated, anonymised usage patterns in order to improve the performance, layout, and game selection of tl555.ws.
- Marketing Communications: To send promotional communications about tl555 bonuses, seasonal events (Eid, Pohela Boishakh, BPL season), and new game launches to players who have opted in to receive such communications. You may withdraw consent for marketing communications at any time by contacting [email protected].
03 Data Sharing & Disclosure
tl555 does not sell your personal data to third parties. We share personal data only in the limited circumstances described below, and only to the extent necessary for each stated purpose.
Technology & Service Providers
tl555 engages carefully selected third-party providers to support core platform functions. These providers process personal data strictly on our instructions and are contractually prohibited from using that data for their own purposes. Categories of provider include:
- Game studios and content providers: Pragmatic Play, Evolution Gaming, Ezugi, NetEnt, Microgaming, and other certified game suppliers receive your account session token to authenticate your gameplay sessions. These providers do not receive your full identity or financial data.
- Payment processors: bKash, Nagad, Rocket, Upay, and our banking partners receive the minimum payment data necessary to execute your deposit or withdrawal transaction. All payment data sharing is encrypted in transit.
- Identity verification services: Where automated KYC verification is employed, a specialist third-party identity verification provider may receive copies of your identity documents. This provider operates under a strict data processing agreement and does not retain your documents beyond the period needed for verification.
- Hosting and infrastructure providers: Our cloud hosting, content delivery, and database providers store and process Platform data in secure, access-controlled environments.
Legal & Regulatory Disclosure
tl555 may disclose personal data to competent government authorities, law enforcement agencies, or regulatory bodies where required to do so by applicable law, court order, or official regulatory request. In such cases, tl555 will disclose only the minimum data required to satisfy the legal obligation and will, where legally permissible, notify the affected player of the disclosure.
Business Transfers
In the event of a merger, acquisition, or sale of all or a substantial part of tl555's business assets, personal data held by tl555 may form part of the transferred assets. In such circumstances, tl555 will ensure that the acquiring party provides equivalent privacy protections and will notify affected players as required by applicable law.
04 Cookies & Tracking Technologies
tl555.ws uses cookies and similar browser-based tracking technologies to deliver a functional, personalised, and secure gaming experience. A cookie is a small text file placed on your device by our web server when you visit the Platform. Cookies do not contain executable code and cannot access other files on your device.
Categories of Cookies We Use
| Cookie Type | Purpose | Can Be Disabled? |
|---|---|---|
| Strictly Necessary | Session management, login authentication, security tokens, fraud prevention signals | No — required for core functionality |
| Functional | Remembering your language preference, game lobby display settings, and responsible gaming configurations | Yes — disabling may reduce usability |
| Analytics | Aggregated, anonymised data on page visits, navigation paths, and feature usage to inform UX improvements | Yes — opt out via browser settings |
| Performance | Monitoring page load times, error rates, and game stream quality to ensure Platform stability | Yes — opt out via browser settings |
Managing Your Cookie Preferences
Most modern web browsers allow you to control cookie settings through the browser's preferences or settings menu. You can configure your browser to block all cookies, to alert you when a cookie is being set, or to delete existing cookies. Please note that disabling strictly necessary cookies will impair your ability to log in to your tl555 account and use core Platform features. Instructions for managing cookies in common browsers can be found in each browser's help documentation.
tl555 does not currently respond to browser-level "Do Not Track" signals, as there is no universally accepted standard for interpreting such signals. We will review our position on this as industry standards evolve.
05 Data Security Measures
tl555 employs a layered, defence-in-depth approach to data security. The technical and organisational measures we maintain include, but are not limited to, the following:
- Encryption in Transit: All data transmitted between your device and tl555.ws is protected by 256-bit SSL/TLS encryption. Our SSL certificate is maintained and renewed by a trusted certificate authority. You can verify the presence of a valid SSL certificate by checking for the padlock icon in your browser's address bar when visiting tl555.ws.
- Encryption at Rest: Sensitive data stored on tl555 servers — including identity documents, KYC records, and payment references — is encrypted at rest using AES-256 encryption. Database access is governed by role-based access controls that restrict visibility to authorised personnel only.
- Access Controls: Internal access to personal data is restricted on a strict need-to-know basis. All tl555 staff with access to personal data are subject to confidentiality obligations and receive regular data protection training.
- Two-Factor Authentication: tl555 offers two-factor authentication (2FA) for all player accounts. When 2FA is enabled, a one-time verification code is sent to your registered mobile number each time a login is attempted from an unrecognised device.
- Intrusion Detection: Our infrastructure is monitored continuously for signs of unauthorised access, unusual traffic patterns, and potential security threats. Automated alerts are reviewed by our security team on a 24/7 basis.
- Penetration Testing: tl555 commissions periodic independent penetration testing of its Platform infrastructure to identify and remediate security vulnerabilities before they can be exploited.
While tl555 takes every reasonable precaution to protect your personal data, no system connected to the internet can be guaranteed to be completely secure. We strongly encourage all players to use a strong, unique password for their tl555 account, to enable 2FA, and to log out of their account after each session, particularly when using a shared or public device.
06 Data Retention & Deletion
tl555 retains personal data for no longer than is necessary to fulfil the purposes for which it was collected, subject to any legal obligation to retain data for a longer minimum period. The following general retention periods apply:
| Data Category | Retention Period | Basis |
|---|---|---|
| Account registration data | Duration of active account + 5 years after closure | Legal and regulatory obligation |
| KYC / identity documents | Duration of active account + 5 years after closure | Anti-money-laundering compliance |
| Transaction records | 7 years from date of transaction | Financial recordkeeping requirements |
| Support correspondence | 3 years from date of last communication | Dispute resolution, quality assurance |
| Game activity logs | 2 years from date of activity | Responsible gaming monitoring, dispute resolution |
| Analytics / session data | 13 months (rolling) | Platform improvement (aggregated only) |
| Marketing consent records | Duration of consent + 3 years | Demonstrating lawful basis for marketing |
When retention periods expire, personal data is securely deleted or anonymised so that it can no longer be associated with any identifiable individual. Where anonymisation is applied, the resulting anonymised dataset may be retained indefinitely for statistical and analytical purposes.
If you request deletion of your account before the applicable retention period has expired, tl555 will suppress your data from active use and ensure it is not used for any further processing beyond what is legally required. Full deletion will occur at the end of the applicable retention period.
07 Your Privacy Rights
tl555 respects and upholds your rights in relation to your personal data. Depending on your circumstances and applicable law, you may have the following rights:
- Right of Access: You have the right to request a copy of all personal data that tl555 holds about you. We will provide this information in a structured, commonly used, and machine-readable format within 30 days of receiving your verified request.
- Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or complete it without undue delay. You can update many account details directly through your tl555 account settings. For identity document corrections, please contact our support team.
- Right to Erasure: In certain circumstances — such as where data is no longer necessary for the purpose for which it was collected, or where you withdraw your consent and no other lawful basis applies — you may request that tl555 delete your personal data. Please note that this right is subject to our legal obligations to retain certain data for minimum periods (see the Data Retention section above).
- Right to Restriction of Processing: You may request that tl555 restrict the processing of your personal data in certain circumstances, for example while a correction request is being reviewed or where you contest the lawfulness of our processing.
- Right to Data Portability: Where processing is based on your consent or on contract performance, you have the right to receive your personal data in a portable format and to transmit it to another controller without hindrance.
- Right to Object: You have the right to object to processing of your personal data where that processing is based on our legitimate interests. You also have an unconditional right to object to the use of your data for direct marketing purposes at any time.
- Right to Withdraw Consent: Where our processing of your data is based on your consent, you may withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing carried out before withdrawal.
To exercise any of the above rights, please contact our support team via live chat at tl555.ws or email us at [email protected]. We will acknowledge your request within 48 hours. In order to protect your data, we may need to verify your identity before processing your request. We will not charge a fee for handling any data rights request unless it is manifestly unfounded or excessive.
08 Contact & Data Enquiries
tl555 takes its privacy obligations seriously and maintains a dedicated support function for handling all data protection enquiries, subject access requests, and privacy complaints. If you have any questions about this Privacy Policy, about the personal data tl555 holds about you, or about any aspect of our data handling practices, please reach out using the contact details below.
- Email: [email protected] — please use the subject line "Privacy Enquiry" for data-related requests so they are routed to the correct team.
- Live Chat: Available 24 hours a day, 7 days a week at tl555.ws, with an average response time of two to five minutes.
- Response Time: We aim to acknowledge all privacy-related enquiries within 48 hours and to resolve them fully within 30 days. Where a request is complex or voluminous, we may extend this period by a further 30 days and will inform you of the extension and the reasons for it.
Changes to This Privacy Policy
tl555 reserves the right to update this Privacy Policy at any time to reflect changes in our data handling practices, changes in applicable law, or feedback from players and regulators. When material changes are made, we will notify registered players via their registered email address and update the "Effective Date" at the top of this page at least 14 days before the changes take effect. We encourage you to review this Privacy Policy periodically to stay informed of how we protect your information.
Your continued use of the tl555 Platform after any update to this Privacy Policy constitutes your acceptance of the revised terms. If you do not agree with any changes, you should stop using the Platform and may request account closure by contacting our support team.