burger icon
Crickex United Kingdom
Log In

Privacy Policy

This Privacy Policy explains how your personal data is collected, used, stored, and protected when you access or use the Crickex version of the Crickex online betting and casino services provided via criccex.com. It applies to visitors to the website, registered players, and users who interact with us through support channels or marketing communications. By using our services, you acknowledge that your personal data will be processed as described in this Privacy Policy. This Privacy Policy is effective from 1 January 2026 and may be updated from time to time as set out below.

Who We Are

The Crickex version of our services is operated under the brand name Crickex and made available through the website criccex.com.

Data Controller

  • Operator: VB Digital N.V., a company incorporated under the laws of Curaçao.
  • Registered office: Curaçao (full registered office details are recorded with the relevant Curaçao authorities and can be provided to you upon written request or as shown in our licence documentation).
  • Gaming licence: VB Digital N.V. operates under Curaçao gaming licence number GLH-OCCHKTW0712302019, issued under Master Licence 365/JAZ and regulated by the Curaçao Gaming Control Board.
  • Important note for UK users: Crickex is not licensed by the UK Gambling Commission and operates as an offshore service provider for UK residents.

Contact Details

  • Primary website: https://criccex.com
  • Email (support and privacy enquiries): support@criccex.com (please include "Data Protection" in the subject line for privacy-related requests).
  • Support channels: 24/7 live chat via the website interface and Telegram support (handles or direct links may be provided within your account area).
  • Telephone: We do not provide telephone support.

Data Protection Responsibility

  • Data Protection Officer / Privacy Contact: We have designated internal personnel responsible for data protection compliance. You can reach them via support@criccex.com with "For the attention of the Data Protection Officer" in the subject line.
  • Jurisdictions: Although VB Digital N.V. is established in Curaçao, we process personal data of users located in the United Kingdom and other countries in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and, where applicable, the EU GDPR and other local privacy laws.

What Personal Data We Collect

We collect only the personal data that is necessary for us to provide and improve our services, comply with legal obligations, and protect our legitimate interests and those of our users.

Identification and Contact Data

  • Account data: Full name, username, password, date of birth, and verification documents (such as copies of identity documents, proof of address) provided during registration and KYC checks.
  • Contact details: Email address (for example, the address you use to contact us or to receive notifications), and any other contact data you voluntarily provide through support channels or web forms. Phone numbers may be collected where required for verification or support, although we do not provide telephone support.

Technical and Usage Data

  • Technical identifiers: IP address, device identifiers, browser type and version, operating system, language settings, and approximate location derived from your IP address.
  • Log data: Login and logout times, access timestamps, pages and features used, error logs, and other diagnostic information generated when you interact with the website or apps.

Payment and Financial Data

  • Transaction data: Deposit and withdrawal history, selected payment methods (for example, cryptocurrency such as USDT TRC20 and supported e-wallets like Skrill or Neteller), amounts and currencies used (such as INR, BDT, PKR, USDT) and related timestamps.
  • Payment processing data: Limited details related to payment instruments (for example, masked card details or wallet identifiers) as provided by you or by our payment partners, as necessary to process payments and comply with anti-money laundering (AML) requirements.

Behavioural and Gaming Data

  • Betting and gaming history: Wagers placed, markets and games played (including cricket-focused markets), stakes, wins and losses, bonuses claimed, wagering progress, and use of specific features such as betting exchange functions.
  • Behavioural information: Clickstream data, navigation patterns, time spent on pages, interaction with marketing messages, and responsible gaming behaviour (including self-exclusion requests and manual exclusion requests via our responsible gaming tools).

Cookies and Similar Technologies

  • Cookies: Small text files stored on your device to support core site functions, remember your preferences, and analyse site performance.
  • Similar technologies: Pixel tags, tracking URLs, and local storage that help us understand how users interact with our services, prevent fraud, and deliver relevant content.

Special Notes

  • Children's data: Our services are strictly for users aged 18 or over. We do not knowingly collect or process personal data relating to minors. If we become aware that a minor has provided personal data, we will delete it and may close the associated account.
  • Third-party sources: We may receive limited personal data from payment processors, verification providers, or affiliates (for example, confirmation that KYC checks were successful or that a payment has been authorised).

Legal Basis for Processing

We process your personal data only where a valid legal basis exists under UK GDPR and, where applicable, the EU GDPR or other local laws.

Performance of a Contract

  • Account set-up and operation: Processing is necessary to register your account, provide access to the Crickex version of our services at criccex.com, process deposits and withdrawals, settle bets, apply bonuses, and provide customer support.
  • Compliance with platform rules: We process data to enforce our Terms & Conditions, including turnover requirements, dormant account rules, and application of the "closed loop" withdrawal rule.

Compliance with Legal Obligations

  • KYC/AML and responsible gambling: We process identification, transactional, and behavioural data to meet anti-money laundering, counter-terrorist financing, fraud prevention, and responsible gambling obligations applicable to VB Digital N.V. as a licensed operator in Curaçao and as a provider of services to users in other jurisdictions.
  • Regulatory and tax obligations: We may retain and disclose data to competent authorities, regulators (such as the Curaçao Gaming Control Board), and other public bodies where required by law.

Legitimate Interests

  • Service security and integrity: We have a legitimate interest in protecting our platform and users from fraud, bonus abuse, multiple-account activity, hacking attempts, and other misuse. This includes profiling and automated checks.
  • Service improvement and analytics: We analyse usage data (e.g., clickstream, game performance, latency) to improve the stability, functionality, and user experience of criccex.com.
  • Dispute handling: We use relevant data to investigate and resolve complaints or disputes, including those related to account blocking, withdrawals, or bonus application.

Consent

  • Marketing communications: We rely on your consent (or soft opt-in, where permitted) to send you marketing emails, notifications, and offers. You can withdraw consent at any time via the unsubscribe link or your account settings.
  • Cookies and tracking: Where required by law (for example, for non-essential cookies used for analytics or advertising), we rely on your consent obtained through our cookie banner or settings.

Note: Where our processing is based on consent, withdrawing your consent will not affect the lawfulness of processing carried out before the withdrawal but may affect our ability to provide certain services.

Purpose of Processing

We use your personal data for the following purposes, aligned with the legal bases described above.

Providing and Managing Our Services

  • Account creation and maintenance: To register you as a player, verify your age and identity, maintain your account, and provide access to games, betting exchanges, and related features.
  • Payments: To process deposits and withdrawals (including cryptocurrency and e-wallet transactions), apply the "closed loop" rule, enforce minimum turnover requirements, and handle any fees or adjustments.

Improving and Personalising the Service

  • Analytics and performance: To monitor site performance, fix issues, and improve functionality, including optimising markets popular with UK-based and South Asian users.
  • Personalisation: To show content, markets, and promotions that may be more relevant to you based on your preferences and gaming history, where permitted by law.

Marketing and Communications

  • Promotional messages: To send you emails or on-site messages about bonuses, features, or tournaments, subject to your marketing preferences.
  • Service notifications: To inform you about important updates, changes to this Privacy Policy or the Terms & Conditions, security alerts, and regulatory notices.

Fraud Prevention, Security, and Compliance

  • Risk management: To detect and investigate suspicious activity such as multiple-account use, bonus abuse, chargebacks, or attempted security breaches.
  • Regulatory cooperation: To assist law enforcement, regulators, or courts where required by law or reasonably necessary to protect our legal rights.

Responsible Gambling

  • Player protection: To provide and manage responsible gambling tools, such as manual exclusion processes described in our Responsible Gaming information, and to monitor behaviour for potential problem gambling indicators.

Disclosure & Sharing

We do not sell your personal data. We share personal data only with trusted recipients and only to the extent necessary for the purposes set out in this Privacy Policy.

Service Providers and Technical Partners

  • Payment processors and banks: To facilitate deposits and withdrawals and comply with AML and fraud prevention obligations. This may include partners based in Cyprus or other jurisdictions commonly used for payment processing.
  • IT and infrastructure providers: Providers that host our systems, maintain databases, monitor performance, and supply security services (such as DDoS protection, log management, or email delivery).

Verification, Anti-Fraud, and Analytics

  • KYC/AML and verification partners: Third parties that assist with identity verification, document validation, and risk assessments.
  • Anti-fraud tools: Providers of tools used to detect multiple accounts, suspicious betting patterns, or other fraudulent activity.
  • Analytics providers: Third-party services that help us analyse aggregated usage data, subject to appropriate privacy safeguards.

Regulators and Public Authorities

  • Regulatory bodies: The Curaçao Gaming Control Board and other regulators or authorities that may lawfully request information for compliance, enforcement, or regulatory oversight.
  • Law enforcement and courts: Where we are legally required to do so, or where disclosure is necessary to establish, exercise, or defend legal claims.

Affiliates and Marketing Partners

  • Affiliates and advertising networks: Limited data may be shared with affiliates or marketing partners to track the performance of campaigns, subject to your consent where required for the use of tracking technologies and profiling for advertising.

Corporate Transactions

  • Business transfers: In the event of a reorganisation, merger, acquisition, or sale of assets, your data may be shared with the relevant counterparties, subject to confidentiality obligations and continued protection of your rights.

Third-party responsibility: Where we share personal data with third parties acting as independent controllers, their own privacy policies will govern their use of your data. We encourage you to review those policies carefully.

International Transfers

Because VB Digital N.V. is established in Curaçao and uses global service providers, your personal data may be transferred to and processed in countries outside the United Kingdom and the European Economic Area (EEA).

Locations of Processing

  • Curaçao: Primary registration and licensing jurisdiction where core operational and compliance functions are managed.
  • Cyprus and similar jurisdictions: Locations where payment processing subsidiaries or partners may be based.
  • Other countries: Providers may be located in the EEA, the UK, South Asia (such as India, Bangladesh, Pakistan), or other jurisdictions where our infrastructure or support operations are hosted.

Protection Measures

  • Contractual safeguards: Where personal data is transferred from the UK or EEA to a country not recognised as providing an adequate level of protection, we will use appropriate safeguards such as the UK International Data Transfer Agreement (IDTA), the UK Addendum to the EU Standard Contractual Clauses, or the EU Standard Contractual Clauses, as applicable.
  • Technical and organisational measures: We apply robust security measures (encryption, access controls, logging) to reduce the risk associated with cross-border transfers.

Important note: By using the Crickex services at criccex.com, you acknowledge that your personal data may be processed in countries with different data protection standards from those in your country of residence. In all cases, we endeavour to ensure an adequate level of protection consistent with UK GDPR requirements.

Data Retention

We keep your personal data only for as long as necessary for the purposes for which it was collected, including to satisfy legal, regulatory, accounting, or reporting requirements.

Retention Periods

  • Account and identification data (KYC): Typically retained for up to five (5) years after your account is closed, or longer where required by anti-money laundering or other applicable laws.
  • Transaction data: Retained for at least five (5) years after the relevant transaction, to comply with financial and regulatory obligations and for dispute handling.
  • Gaming and behavioural data: Retained for the duration of your account and for a period after closure that aligns with our legal obligations and legitimate interests in dispute resolution and risk management (generally up to 5 years unless a longer period is required or justified).
  • Marketing data: Retained until you withdraw your consent or object to processing, after which we will add your details to a suppression list to respect your preferences.
  • Cookies and technical logs: Retention varies from session-based storage to several months, depending on the cookie type and its purpose, as explained in our cookie settings or notices.

Deletion and Anonymisation

  • Deletion: When data is no longer required, we will securely delete it or render it permanently anonymised.
  • Anonymised statistics: We may retain anonymised or aggregated data (which no longer identifies individuals) indefinitely for statistical, analytical, or reporting purposes.

User requests: You may request deletion of your personal data. We will honour such requests where we are not required or permitted by law to retain the data for a longer period.

Your Rights

If you are located in the United Kingdom or another jurisdiction where data protection laws apply (such as the EU or Mexico), you may have certain rights regarding your personal data.

Rights Under UK GDPR / EU GDPR

  • Right of access: To obtain confirmation as to whether we process your personal data and to receive a copy of that data, along with information about our processing.
  • Right to rectification: To request correction of inaccurate or incomplete personal data we hold about you.
  • Right to erasure: To request deletion of your personal data where there is no good reason for us to continue processing it (for example, where you have successfully objected to processing or where we have processed it unlawfully), subject to our legal obligations to retain certain data.
  • Right to restriction: To request that we restrict the processing of your personal data in certain circumstances (for example, while we verify its accuracy or consider an objection).
  • Right to object: To object to processing of your personal data where we rely on legitimate interests (including profiling on that basis). You also have an absolute right to object to processing for direct marketing.
  • Right to data portability: To receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller, where technically feasible and where the legal basis is consent or contract.
  • Right to withdraw consent: Where processing is based on your consent (e.g., for marketing or certain cookies), you can withdraw that consent at any time without affecting the lawfulness of prior processing.

Additional Notes for Mexican Data Protection Law

  • Scope: Crickex does not specifically target users in Mexico. However, where Mexican privacy law (including the Federal Law on Protection of Personal Data Held by Private Parties) applies, individuals may have additional ARCO rights (Access, Rectification, Cancellation, Opposition).
  • Alignment: Our processes for access, rectification, deletion, and objection are designed to be broadly consistent with both GDPR-style rights and ARCO rights, subject to our legal obligations and operational constraints.

Exercising Your Rights

  • How to submit a request: You can exercise your rights by contacting us at support@criccex.com or via live chat, clearly stating that your request relates to data protection and specifying the right you wish to exercise.
  • Verification: We may need additional information to verify your identity before responding to your request, especially regarding sensitive data such as financial and KYC information.
  • Timeframe: We aim to respond within one (1) month of receiving a valid request. In complex cases, this period may be extended by up to two additional months, in which case we will inform you of the extension and reasons.
  • Cost: Requests are generally handled free of charge. We may charge a reasonable fee or refuse to act where a request is manifestly unfounded or excessive, for example due to repetition.

Cookies & Tracking Technologies

We use cookies and similar technologies on criccex.com to ensure the site functions correctly, to enhance your experience, and to support analytics and marketing.

Types of Cookies We Use

  • Strictly necessary (session) cookies: Essential for operating the website and enabling core features such as logging in, maintaining sessions, and processing transactions. These cookies are typically deleted when you close your browser.
  • Functional (persistent) cookies: Used to remember your preferences (such as language settings, odds format, and previously selected markets) and to provide a more personalised experience over multiple sessions.
  • Analytics cookies: Help us understand how visitors use the site, which pages are most popular, and how users navigate through the platform. This information is aggregated and used to improve the site's performance and usability.
  • Advertising and affiliate cookies: Used, where applicable, to track the performance of marketing campaigns and affiliate referrals, and to deliver or measure personalised offers, subject to your consent where required by law.

Managing Cookies

  • Browser settings: Most browsers allow you to block or delete cookies. However, disabling essential cookies may prevent the site from functioning correctly and may restrict your ability to use certain features.
  • On-site controls: Where available, our cookie banner or settings tool allows you to accept or reject non-essential cookies (such as analytics or advertising cookies).
  • Third-party cookies: Third-party providers may use their own cookies and tracking technologies, which are subject to their privacy policies. You may need to manage such cookies directly with the relevant third party.

Data Security

We implement technical and organisational measures designed to protect your personal data against unauthorised access, accidental loss, misuse, or destruction.

Technical Measures

  • Encryption in transit: Data transmitted between your device and our systems is protected using up-to-date encryption protocols (such as TLS 1.2 or higher).
  • Encryption at rest: Sensitive data, including certain financial and authentication information, is stored using industry-standard encryption and hashing techniques.
  • Access controls: Access to systems containing personal data is restricted to authorised personnel based on role and necessity, supported by strong authentication measures and logging.

Organisational Measures

  • Staff training: Employees and contractors with access to personal data receive training on data protection, information security, and confidentiality obligations.
  • Security governance: We maintain policies and procedures for incident response, data retention, and access management, and we periodically review our security posture.
  • Audits and assessments: We conduct internal reviews and may engage external experts to assess and improve our security controls, taking into account recognised standards such as ISO 27001 and SOC 2 where appropriate.

Incident Response

  • Breach handling: In the unlikely event of a personal data breach, we will investigate the incident, mitigate the impact, and take appropriate remedial steps.
  • Notifications: Where required by law, we will notify the relevant supervisory authority (such as the UK Information Commissioner's Office) and affected users without undue delay.

No guarantee: While we take security seriously and aim to protect your data, no system can be completely secure. You are also responsible for keeping your login credentials confidential and for using unique, strong passwords.

Complaints & Contacts

If you have questions or concerns about how we handle your personal data, or if you wish to make a complaint, you have several options.

Contacting Us First

  • Email: support@criccex.com (include "Privacy Complaint" in the subject line).
  • Live chat: Available 24/7 via the website interface at criccex.com.
  • Telegram: 24/7 support via our official Telegram channel as indicated on our website or in your account.

Complaint Procedure

  • Step 1 - Submission: Provide as much detail as possible about your concern (including relevant dates, account information, and any supporting documentation).
  • Step 2 - Acknowledgement: We will acknowledge receipt of your complaint and assign it to the appropriate team, which may include our data protection personnel.
  • Step 3 - Investigation: We will review logs, transactions, and relevant communications to assess the issue and determine the appropriate response.
  • Step 4 - Response: We aim to provide a substantive response within one (1) month for privacy-related complaints, and within a reasonable timeframe for other complaints, depending on complexity.

Supervisory Authorities

  • United Kingdom (UK ICO): If you are located in the UK and are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office:
    Website: https://www.ico.org.uk
    Helpline: +44 303 123 1113
  • European Union: If you are in the EU/EEA, you may contact your local data protection authority. Details can typically be found on the website of the European Data Protection Board (EDPB).
  • Mexico: Where Mexican law applies, you may have the right to lodge a complaint with the competent data protection authority (for example, the National Institute for Transparency, Access to Information and Personal Data Protection, INAI).

Gambling-related disputes: As VB Digital N.V. is not licensed by the UK Gambling Commission, UK players do not have access to UKGC-approved dispute resolution schemes such as IBAS for gambling outcome disputes. However, this does not affect your data protection rights under UK GDPR.

Updates

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data processing practices.

How We Will Notify You

  • Website publication: The latest version of this Privacy Policy will always be available at https://criccex.com/privacy-policy.
  • Account notifications: For material changes, we may notify you via email, on-site messages, or account dashboard alerts.
  • Banners and pop-ups: We may display banners or pop-ups on the site to draw your attention to important updates.

Effective Date and Version Control

  • Last updated: January 2026.
  • Material changes: Where changes significantly affect your rights or how we process your data (for example, new categories of data, new purposes, or new recipients), we will provide advance notice wherever reasonably practicable, typically at least 30 days before the changes take effect.

Your options: If you do not agree with the updated Privacy Policy, you should stop using the Crickex services at criccex.com and may request account closure and, where applicable, deletion of your personal data, subject to our legal retention obligations. Continued use of the services after the effective date of an updated policy will constitute your acknowledgement of the changes, to the extent permitted by law.