Information collected
Mostbet collects data you provide during registration, such as your name, username, email, and phone number.
It also records communications you send through email, messengers, and social channels, mainly to handle requests and support cases.
When you make deposits or withdrawals, transaction details may be processed, including the transaction ID, date, amount, and the payment method. Card details may be omitted for security reasons.
Technical data can be collected too. This may include your IP address, browser type and version, device identifiers, operating system, and related settings.
If verification is needed, identification data may be requested. This can include details used to confirm identity during registration and checks.
In some cases, additional data may come from third parties. This is described as a way to verify identity and help prevent fraud.
How information is used
The policy describes using your data to run your account and provide the service.
It is also used for security controls and monitoring. That includes checks for unusual activity and review of transactions when needed.
For compliance, Mostbet may use data for KYC checks, maintaining transaction records, and meeting legal requirements.
If suspicious activity is detected, the policy describes cooperation with regulators and financial crime departments. This may involve sharing relevant documentation, transaction data, and account activity with authorized investigators.
Security measures
The policy describes protection of data transfers using SSL encryption between clients and servers.
It also describes regular security audits. These audits may be conducted by internal teams and independent third-party specialists to find vulnerabilities and fix them.
Data retention
Mostbet states it retains data only as long as needed for the purposes described and as required by law and regulation.
Information on active accounts may be kept for the duration of the client relationship.
Transaction records may be retained for a period linked to anti-money laundering rules, described as usually 5 to 7 years.
The policy also describes processes for reviewing and removing data after retention periods, and a deletion mechanism that may apply after account closure requests.
Sharing with third parties
The policy describes data sharing with third-party partners under agreements and security standards.
This can include payment processors, identity verification services, and fraud prevention services, where access to specific data is needed to perform their functions.
It also describes sharing with regulators and law enforcement only under legal compliance, such as court orders, regulatory investigations, or other legal requirements.
User rights
The policy describes ways for users to request access to their personal data, including through account tools or by contacting support. Identity checks may be used to prevent unauthorized access.
It also describes requests to correct inaccurate information, with verification steps to reduce fraud.
Users can manage processing preferences and can change or withdraw consent for certain processing through account settings or formal requests.
Policy updates
The policy describes notifying users about updates through multiple channels, including email and in-service notices.
For major changes, it describes notice at least 30 days before changes take effect, plus summaries of what changed.