• Personal data collected:
  • Identification and contact: name, username, email, phone number, residential address.
  • Age and KYC checks: date of birth, identity document details (e.g., NIN, passport, driver’s licence), selfie/liveness where required by law.
  • Account and usage: login data, preferences, responsible gaming settings, betting and gameplay history, session logs.
  • Transactions: deposits, withdrawals, payment method tokens or references processed by payment providers (the operator does not store full card numbers).
  • Technical data: device identifiers, IP address, browser and OS, app version, cookies, log files, approximate location.
  • Marketing and communications: consents, opt-ins, support tickets, complaints, survey responses.
• Why the data is used:
  • To open and manage accounts, provide services, verify age and identity, process payments, detect fraud, and meet anti–money laundering requirements.
  • To maintain platform security, improve user experience, run analytics, and manage responsible gaming tools.
• Protection measures (technical and organisational):
  • TLS encryption in transit and encryption at rest for key data sets.
  • Role-based access controls, multi-factor authentication, least-privilege policies, and staff training.
  • Network segmentation, monitoring, logging, and incident response procedures.
  • Vendor due diligence and data processing agreements.
  • Alignment to recognised standards (e.g., ISO 27001 principles) where appropriate.
• Legal bases:
  • Consent, performance of a contract, compliance with law (including AML/CFT), and legitimate interests such as fraud prevention and service improvement.
• User rights under Nigeria law (Nigeria Data Protection Act 2023) and, where applicable, GDPR:
  • Access, correction, deletion, restriction, objection, portability, and withdrawal of consent.
  • Users may complain to the Nigeria Data Protection Commission if unresolved.
• Retention:
  • Data is kept only as long as needed for services, disputes, and legal requirements. Certain records are retained for at least five years after account closure to meet anti–money laundering obligations.

• Account and service delivery:
  • Create and administer accounts, verify identity and age, enable gameplay and betting, manage limits and self-exclusion, and process deposits and withdrawals.
• Payments and fraud prevention:
  • Process transactions through payment providers, confirm ownership of methods, prevent unauthorised activity, and investigate chargebacks.
• Customer support and communication:
  • Respond to enquiries, provide service notices, resolve complaints, and send security alerts.
• Analytics and improvement:
  • Measure performance, fix errors, test features, and improve usability using aggregated or pseudonymised data where possible.
• Marketing (subject to consent and preferences):
  • Send service updates and promotions relevant to user interests; users can opt out at any time.
• Legal and regulatory compliance:
  • Meet AML/CFT duties, responsible gaming requirements, tax and reporting obligations, and requests from competent authorities.

Processing is lawful, fair, and transparent. Only data necessary for the stated purposes is collected and used.

• Access and portability:
  • Users may request a copy of their personal information and, where feasible, receive it in a portable format.
• Correction:
  • Inaccurate or incomplete details can be updated in account settings or by contacting support; identity verification may be required.
• Deletion:
  • Users may request deletion of personal data. Certain records must be retained for legal, regulatory, or dispute purposes. Where deletion is not possible, data will be restricted or pseudonymised.
• Procedure and timelines:
  • The operator aims to respond within 30 days, subject to permitted extensions for complex requests.

By using BC Game, users consent to security checks, KYC reviews, and payment data processing by authorised providers to prevent fraud and meet legal duties.

• The services are intended for persons aged 18 and above.
• The operator cannot confirm age without suitable documents. Verification may require identity evidence to comply with law.
• If a minor’s information is identified, the account will be closed and data deleted where permitted by law. A parent or legal guardian may contact support to request removal of the personal information of a minor.

Personal data may be processed and stored outside Nigeria where service partners, payment providers, or support teams operate. Use of the services constitutes consent to such transfers, subject to appropriate safeguards. The operator implements contractual protections, confidentiality obligations, and security standards to protect data in all locations. Transfers follow Nigeria Data Protection Act 2023 requirements and, where relevant, international data transfer rules.

This disclaimer explains that the interpretation of this Policy may affect how rules apply in certain situations, subject to mandatory law. It becomes effective when the user accepts the Policy by creating an account, ticking acceptance, or continuing to use the services. Nothing in this disclaimer limits statutory rights or regulatory obligations. If a clause is invalid under applicable law, the remainder stays in effect.

Cookies are small files stored on a device to remember settings and improve online services. The site uses cookies for:

• Essential functions and security.
• Statistics and analytics to understand behaviour and improve websites.
• Personalisation such as language and preferences.
• Marketing measurement subject to consent.

Cookie data is retained for up to 1 year unless a shorter period is necessary. Users can manage cookie settings in the browser or through available in-site tools.

Some third-party cookies may be used by analytics or payment partners according to their policies.

Using BC Game signifies full acceptance of this Privacy Policy and any updates posted here. The most recent version applies to all processing from its effective date. Continued use after changes means acceptance of the revised document. Users should review the Policy periodically for updates.

• Service providers and processors that support payments, identity verification, fraud prevention, customer support, analytics, cloud hosting, and security.
• Competent authorities and regulators to meet legal duties, resolve disputes, or comply with lawful requests.
• Professional advisers (legal, compliance, audit) under confidentiality.
• Business transfers subject to contractual protections and applicable law.

A list of key processors may be provided on the website or upon request. If specific partners are not listed, users will be informed of the purpose and scope before or at the time of processing where required.

Providing data constitutes consent to such sharing when consent is the lawful basis.

The websites may contain links to third-party sites that have their own privacy practices. The operator is not responsible for how external sites collect or use information. Users should review the privacy notices of any external site visited and proceed with caution.

Additional local compliance notes

• Regulatory context: operations consider Nigeria Data Protection Act 2023, guidance from the Nigeria Data Protection Commission, anti–money laundering laws, and applicable gaming regulations under the National Lottery Regulatory Commission and relevant state authorities.
• Contact for privacy requests: submit through in‑account support or the contact page. Identity verification may be required.
• Responsible gaming: records about limits, self-exclusion, and interactions may be processed to meet regulatory duties and protect users.