nogood Privacy Policy
At nogood, the security and privacy of your personal information is a core responsibility — not an afterthought. This Privacy Policy explains precisely what data we collect, why we collect it, how it is stored and used, and what rights you hold over your own information as a registered user on our platform.
How We Approach Your Privacy
nogood collects only the personal data that is strictly necessary for operating our platform, complying with legal obligations, and delivering a secure, personalised gaming experience. We do not collect data speculatively or for purposes unrelated to our services.
Your personal data is never sold, rented, or traded to third-party marketers or data brokers. We share information only with trusted service partners who require it to deliver specific platform functions, and only under strict contractual obligations to protect your data.
All data transmitted between your device and the nogood platform is protected by industry-standard SSL/TLS encryption. Sensitive data at rest — including payment details and identity documents — is stored using AES-256 encryption within access-controlled server environments.
Registered users have the right to access, correct, and request deletion of their personal data at any time. nogood provides a straightforward process for exercising these rights via the support team, with responses delivered within a reasonable and prompt timeframe.
We do not retain personal data for longer than is necessary. Each category of data we hold is subject to a defined retention schedule based on its purpose — account data, transaction records, and KYC documents each follow distinct timelines aligned with our operational and legal requirements.
You are always in control of whether you receive promotional communications from nogood. Marketing emails and SMS messages can be opted out of at any time through your account settings or by contacting our support team. We will honour opt-out requests promptly without affecting your access to the platform.
1. Information We Collect
When you register for and use the nogood platform, we collect personal information across several categories. The type and volume of data collected depends on the actions you take on the platform and the features you choose to use. Below is a comprehensive breakdown of the categories of information we collect and the contexts in which they arise.
1.1 Registration & Identity Data
When you create a nogood account, you are required to provide: your full legal name, date of birth, email address, and a chosen username and password. This data is collected to establish your identity, enforce our 18+ age policy, and enable you to log in to the platform. We may also request your mobile phone number for two-factor authentication and account recovery purposes.
1.2 Know Your Customer (KYC) Documents
As part of our commitment to responsible gaming and fraud prevention, nogood may request identity verification documents at various stages of your account lifecycle — most commonly before processing a first withdrawal or when account activity triggers a compliance review. Documents we may request include:
- Government-issued photo ID (National Identity Card, passport, or driver's licence)
- Proof of address (utility bill, bank statement, or official correspondence dated within the past three months)
- Proof of ownership of the payment method used for deposits (screenshot of mobile banking app or card statement)
KYC documents are handled by the nogood compliance team and stored securely in accordance with the data security standards described in Section 8 of this policy. They are not shared with any third party except where required by applicable law.
1.3 Financial & Transaction Data
Every deposit, withdrawal, and gaming transaction on your nogood account generates a transaction record. This includes the amount, date, time, payment method used (e.g., bKash, Nagad, Rocket, Upay, Visa, Mastercard), and the outcome of any associated game or bet. Transaction data is retained for the periods described in Section 6 and is used for account management, fraud detection, and compliance reporting purposes.
1.4 Technical & Device Data
When you access the nogood platform, our servers automatically record certain technical information about your device and connection. This includes your IP address, browser type and version, operating system, device type (desktop, mobile, tablet), screen resolution, language settings, time zone (noted as Bangladesh Standard Time / UTC+6 for users accessing from Bangladesh), and the pages or features you interact with during your session.
1.5 Behavioural & Usage Data
We track how you interact with the nogood platform — including which games you play, how long your sessions last, which sports markets you browse, which bonuses you activate, and the sequence of actions you take within your account. This behavioural data is used to personalise your experience, detect patterns consistent with problem gambling, and improve the overall quality and performance of the platform.
1.6 Communications Data
When you contact the nogood support team via email or live chat, we retain a record of the communication, including the content of messages, timestamps, and any attachments or screenshots provided. This data is used to resolve your enquiry, maintain a support history, and improve the quality of our customer service.
| Data Category | Examples | Primary Purpose |
|---|---|---|
| Identity Data | Name, date of birth, email, username | Account creation, age verification |
| KYC Documents | NID, passport, proof of address | Compliance, fraud prevention |
| Financial Data | bKash number, transaction amounts, payment history | Payment processing, audit trail |
| Technical Data | IP address, browser, device type | Security, platform optimisation |
| Behavioural Data | Games played, session duration, bet history | Personalisation, responsible gaming |
| Communications Data | Support chat transcripts, email content | Customer service, dispute resolution |
2. How We Use Your Data
nogood uses the personal data we collect for the following specific purposes. We do not use your data for any purpose that is incompatible with those listed below without first obtaining your explicit consent or establishing a separate lawful basis for processing.
- Account management: Creating, maintaining, and securing your nogood account, including enabling login, processing password resets, and managing account settings.
- Service delivery: Enabling you to access and participate in all platform features, including casino games, sports betting markets, live dealer tables, and bonus offers.
- Payment processing: Facilitating deposits and withdrawals via supported payment methods including bKash, Nagad, Rocket, Upay, Visa, and Mastercard. We share the minimum necessary financial data with our payment processing partners to complete transactions.
- Identity and age verification: Confirming that you meet the minimum age requirement of 18 years and that your account details match the identity documents you provide during KYC review.
- Fraud detection and prevention: Analysing account activity patterns to identify suspicious behaviour, duplicate accounts, bonus abuse, money laundering patterns, or other activities that violate our Terms & Conditions.
- Responsible gaming monitoring: Reviewing your gameplay frequency, session length, deposit patterns, and self-exclusion status to identify indicators of problem gambling and to trigger appropriate interventions where necessary.
- Personalisation: Tailoring the games, promotions, and content displayed to you based on your usage history and stated preferences.
- Marketing communications: Sending you promotional offers, bonus notifications, and platform updates via email or SMS, subject to your communication preferences and opt-out choices.
- Platform improvement: Using aggregated, anonymised usage data to improve game performance, fix bugs, optimise navigation, and develop new features.
- Legal compliance: Meeting our obligations under applicable laws and responding to lawful requests from competent authorities.
3. Legal Basis for Processing
nogood processes your personal data on the following legal bases, each applied to the relevant category of processing activity:
- Contractual necessity: Processing required to fulfil our obligations to you under the Terms & Conditions — including account creation, payment processing, and service delivery — is carried out on the basis that it is necessary to perform the contract between you and nogood.
- Legal obligation: Certain processing activities — particularly KYC verification, anti-money laundering checks, and the retention of transaction records — are required by applicable law. We process data in these contexts because we are legally required to do so.
- Legitimate interests: Where we have a genuine, proportionate business interest in processing your data — such as fraud detection, platform security, responsible gaming monitoring, and platform analytics — we do so on the basis of legitimate interests, provided that those interests are not overridden by your rights and freedoms.
- Consent: Where we send you marketing communications or use non-essential cookies, we do so on the basis of your freely given, informed consent. You may withdraw consent for marketing communications or adjust cookie preferences at any time without any detriment to your account access.
4. Data Sharing & Third Parties
nogood does not sell, rent, or trade your personal data to any third party. We share your data only in the limited circumstances described below, and only to the extent strictly necessary for the relevant purpose:
4.1 Payment Service Providers
To process deposits and withdrawals, we share the minimum necessary financial and identity data with our payment processing partners, which include the providers of bKash, Nagad, Rocket, Upay, Visa, and Mastercard integrations. These partners are contractually required to use your data solely for the purpose of completing the payment transaction and are prohibited from using it for any other purpose.
4.2 Game Technology Providers
The casino games available on the nogood platform are supplied under licence from third-party game studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. Your gameplay data may be shared with these studios to the extent necessary to operate the game, record outcomes, and resolve disputes. These providers operate under their own data protection policies and are vetted by nogood for compliance standards.
4.3 Fraud Prevention & Security Services
We may share account and technical data (such as IP address, device fingerprint, and transaction patterns) with specialist fraud detection and cybersecurity service providers. This sharing is carried out on the basis of legitimate interests and is strictly limited to what is necessary to protect the platform and its users from fraudulent activity.
4.4 Legal and Regulatory Disclosures
Where required by applicable law or pursuant to a valid order from a competent court, regulatory body, or law enforcement authority, nogood may be required to disclose personal data. We will notify you of any such disclosure where we are legally permitted to do so.
nogood will never share your personal data with advertising networks, data brokers, social media platforms, or any entity for commercial profiling purposes. Your data is used only in connection with your use of the nogood platform.
5. Cookies & Tracking Technologies
The nogood platform uses cookies and similar tracking technologies to operate core platform features, remember your preferences, analyse usage patterns, and where applicable, deliver relevant promotional content. A cookie is a small text file stored on your device by your browser at the request of the nogood server.
5.1 Types of Cookies We Use
| Cookie Type | Purpose | Basis |
|---|---|---|
| Strictly Necessary | Session management, login authentication, security tokens | Essential — no consent required |
| Functional | Language preferences, game settings, last-visited lobby | Legitimate interests |
| Analytical | Page view tracking, session duration, feature usage statistics | Consent |
| Marketing | Promotional offer targeting, bonus personalisation | Consent |
5.2 Managing Cookies
You can control and manage cookies through your browser settings. Most modern browsers allow you to block all cookies, block third-party cookies only, or delete existing cookies from your device. Please note that blocking strictly necessary cookies will impair the core functionality of the nogood platform, including your ability to log in and maintain a session. Blocking analytical or marketing cookies will not affect your ability to use the platform but will reduce the degree to which your experience is personalised.
6. Data Retention
nogood retains personal data for as long as is necessary to fulfil the purpose for which it was collected, subject to any longer retention periods required by applicable law. The following table sets out our standard data retention schedule:
| Data Category | Standard Retention Period | Basis |
|---|---|---|
| Account registration data | Duration of account + 5 years post-closure | Legal obligation / legitimate interests |
| KYC / identity documents | 5 years from date of verification | Legal obligation |
| Financial transaction records | 7 years from transaction date | Legal obligation |
| Support communications | 3 years from last interaction | Legitimate interests |
| Technical / device logs | 12 months from creation | Legitimate interests |
| Marketing consent records | Until consent is withdrawn + 12 months | Consent |
When the applicable retention period expires, personal data is securely deleted or anonymised in a manner that prevents re-identification. Anonymised and aggregated data (which can no longer be linked to any identifiable individual) may be retained indefinitely for analytical and platform improvement purposes.
7. Your Privacy Rights
As a registered user of the nogood platform, you hold the following rights in relation to your personal data. To exercise any of these rights, contact the nogood support team at [email protected]. We aim to respond to all data rights requests within a reasonable timeframe and in no case will we take longer than 30 days to acknowledge and act upon a valid request.
- Right of Access: You have the right to request a copy of the personal data we hold about you. We will provide this in a structured, readable format.
- Right to Rectification: If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected. You may also update certain details (such as your email address or mobile number) directly through your account settings.
- Right to Erasure: You may request that we delete your personal data where it is no longer necessary for the purpose for which it was collected, where you have withdrawn consent, or where processing was unlawful. Please note that certain data must be retained for legal or regulatory compliance reasons and cannot be deleted upon request.
- Right to Restrict Processing: You may request that we restrict the processing of your personal data in circumstances where you contest the accuracy of the data, where processing is unlawful, or where you have objected to processing and a determination is pending.
- Right to Object: You have the right to object to processing carried out on the basis of legitimate interests, including direct marketing. Where you object to direct marketing, we will cease processing your data for that purpose immediately.
- Right to Data Portability: Where processing is based on consent or contractual necessity and is carried out by automated means, you have the right to receive your personal data in a structured, machine-readable format and to request that it be transferred to another service provider where technically feasible.
- Right to Withdraw Consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal. Withdrawing consent for marketing will not affect your access to the platform.
Identity Verification for Data Requests: To protect your privacy and prevent unauthorised access to your data, we may ask you to verify your identity before processing a data rights request. We will not share personal data with any person who cannot satisfactorily prove they are the registered account holder.
8. Data Security Measures
nogood applies a multi-layered approach to data security, designed to protect your personal information against unauthorised access, accidental loss, alteration, or disclosure. Our key technical and organisational security measures include:
- SSL/TLS encryption: All data in transit between your device and the nogood platform is encrypted using TLS 1.2 or higher, preventing interception during transmission.
- AES-256 encryption at rest: Sensitive personal data stored on nogood servers — including identity documents and payment details — is encrypted using AES-256 encryption, the same standard used by global financial institutions.
- Access controls: Access to personal data within the nogood organisation is restricted on a strict need-to-know basis. Staff members are granted the minimum level of system access required to perform their role, and all access is logged and audited.
- Two-factor authentication (2FA): nogood's internal administrative systems require two-factor authentication for all staff with access to personal data. We also offer 2FA to registered users for account login protection.
- Vulnerability monitoring: The nogood platform is subject to continuous automated security monitoring for known vulnerabilities, unusual access patterns, and potential intrusion attempts. Regular penetration testing is conducted by specialist security teams.
- Incident response: In the event of a data breach that is likely to result in a risk to your rights and freedoms, nogood will notify affected users without undue delay and will take all reasonable steps to contain and remediate the breach.
While nogood employs robust technical safeguards, no digital platform can guarantee absolute security. You are encouraged to maintain the security of your own account by using a strong, unique password and enabling two-factor authentication where available.
9. Updates to This Policy
nogood reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data practices, service features, or applicable legal requirements. When material changes are made — that is, changes that substantively affect how we collect, use, or share your personal data — we will notify registered users by email to the address associated with their account, and we will update the effective date shown at the top of this page.
Your continued use of the nogood platform after an updated Privacy Policy has been published constitutes your acceptance of the revised terms. We recommend reviewing this page periodically to stay informed about how we protect your data. The most current version of this Privacy Policy is always available at nogood.vip/privacy-policy.
If you have any questions, concerns, or complaints regarding this Privacy Policy or our data handling practices, you are encouraged to contact the nogood support team in the first instance. We take all privacy-related concerns seriously and will respond within a reasonable timeframe.
For all privacy-related enquiries, data access requests, or complaints, contact the nogood data team at [email protected]. Our English-speaking support team is available 24/7 on Bangladesh Standard Time (UTC+6).
Version: v2026.1
Effective: 01 Jan 2026
Language: English
Jurisdiction: Bangladesh
Access, correct, or delete your data at any time. Write to our team and we will respond promptly.
Our support team can clarify any aspect of this Privacy Policy. Available around the clock.
24/7 — BST (UTC+6)
Continue Exploring nogood
Your privacy is protected. Browse our full game library, read our responsible gaming guidelines, or log in to your account.