1. Information We Collect
mospala collects personal information from you in several ways: directly when you register an account or interact with the platform, automatically as you browse and use our services, and from third parties such as payment processors and identity verification providers. The categories of personal data we collect are described in detail below.
1.1 Registration & Account Data
When you create a mospala account, we collect the following information:
- Full legal name
- Date of birth (to verify you are 18 years of age or older)
- Residential address, including city, district, and postal code
- Email address
- Mobile phone number
- Username and encrypted password
- Preferred currency (Bangladeshi Taka, ৳ BDT)
1.2 Identity Verification (KYC) Data
As part of our Know Your Customer (KYC) obligations and responsible gaming commitments, we may request copies of the following documents:
- Government-issued photo identification (National ID card, passport, or driving licence)
- Proof of residential address (utility bill, bank statement, or official correspondence dated within the last three months)
- Proof of payment method ownership (for bKash, Nagad, Rocket, Upay, or bank account)
- Selfie or video verification in certain enhanced due diligence cases
1.3 Financial & Transaction Data
When you make deposits or request withdrawals on mospala, we collect transactional records including deposit amounts, withdrawal amounts, payment method identifiers (such as a masked bKash or Nagad mobile number), transaction timestamps, and the status of each transaction. We do not store full card numbers or mobile banking PINs — payment processing is handled securely by our certified payment partners.
1.4 Gaming & Betting Activity Data
We maintain records of your gaming activity on the mospala platform, including the games you play, bets placed and their outcomes, session duration, wagering history, bonus usage, and responsible gaming tool activations such as deposit limits and self-exclusion requests. This data is used for account management, dispute resolution, responsible gaming monitoring, and regulatory compliance purposes.
1.5 Technical & Device Data
When you access the mospala platform, our systems automatically collect certain technical data, including:
- IP address and approximate geolocation (country and city level)
- Device type, operating system, and browser version
- Session start and end times
- Pages visited and features used within the platform
- Referring URL (the page you visited before arriving at mospala)
- Unique device identifiers
This technical data is used primarily for platform security, fraud detection, and performance optimisation. It is not used to build marketing profiles that are shared with or sold to third parties.
1.6 Communications Data
If you contact mospala customer support via live chat or email, we retain records of those communications, including the content of messages, timestamps, and any resolutions reached. This helps us maintain service quality, resolve disputes, and comply with our legal obligations.
2. How We Use Your Data
mospala uses the personal data we collect for clearly defined, lawful purposes. We do not use your data for any purpose that is incompatible with the reasons for which it was originally collected. The primary purposes for which we process your personal information are as follows:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Account creation and management | Registration data, KYC documents | Contract performance |
| Processing deposits and withdrawals | Financial & transaction data | Contract performance |
| Age and identity verification (18+ compliance) | KYC data, date of birth | Legal obligation |
| Fraud prevention and security monitoring | Technical data, transaction data | Legitimate interest |
| Responsible gaming monitoring | Gaming activity, self-exclusion records | Legal obligation & legitimate interest |
| Customer support and dispute resolution | Communications data, account data | Contract performance |
| Platform analytics and improvement | Technical data, gaming activity | Legitimate interest |
| Promotional communications (where consented) | Email address, gaming preferences | Consent |
mospala will never use your personal data to make fully automated decisions that produce significant legal or similarly significant effects on you without providing you with the opportunity to request human review of that decision.
3. Sharing Your Information
mospala does not sell, rent, or trade your personal data. We may share your information with the categories of recipients described below, and only to the extent necessary for the stated purpose.
3.1 Payment Service Providers
To process your deposits and withdrawals, mospala shares relevant transaction data with our payment processing partners, including bKash, Nagad, Rocket, Upay, Visa, Mastercard, and participating Bangladeshi banks such as Dutch-Bangla Bank, BRAC Bank, City Bank, Islami Bank, and Sonali Bank. These providers receive only the minimum data necessary to complete your transaction and are contractually obligated to handle your data securely and in accordance with applicable law.
3.2 Identity Verification Providers
mospala uses certified third-party identity verification services to assist with KYC processing. These providers may receive copies of identification documents and facial verification data for the sole purpose of confirming your identity. They are not permitted to use this data for any other purpose.
3.3 Game Software Providers
The games available on the mospala platform are supplied by independent game studios including Evolution Gaming, Pragmatic Play, NetEnt, Microgaming, Ezugi, and Spribe. When you play a game, technical session data (such as a pseudonymous player token, bet amounts, and game outcomes) is transmitted to the relevant game provider's servers. These providers do not receive your full name, contact details, or payment information.
3.4 Legal and Regulatory Authorities
mospala may disclose your personal data to law enforcement agencies, regulatory bodies, or other public authorities where we are required to do so by applicable law, court order, or legitimate legal process. We will, where permitted by law, notify you of any such disclosure.
3.5 Business Transfers
In the event of a merger, acquisition, restructuring, or sale of all or part of mospala's business, your personal data may be transferred to the acquiring entity as part of that transaction. You will be notified of any such transfer and of any material changes to the way your data is processed as a result.
4. Cookies & Tracking
The mospala platform uses cookies and similar tracking technologies to operate core platform functionality, analyse usage patterns, enhance security, and where you have consented, to deliver relevant promotional content. A cookie is a small text file stored on your device by your browser when you visit a website.
4.1 Types of Cookies We Use
| Cookie Type | Purpose | Can Be Disabled? |
|---|---|---|
| Essential | Session management, login authentication, security tokens | No — required for platform to function |
| Functional | Remembering language preferences, game settings, and UI preferences | Yes, but may affect experience |
| Analytics | Understanding how pages are used, identifying performance issues | Yes |
| Marketing | Delivering relevant promotional offers based on platform activity (consent required) | Yes |
You can manage your cookie preferences through your browser settings at any time. Please be aware that disabling essential cookies will prevent you from logging in to your mospala account and using core platform features. mospala does not use cookies to track your activity on third-party websites.
5. Data Security
mospala takes the security of your personal data seriously and maintains a comprehensive set of technical and organisational measures designed to protect your information against unauthorised access, disclosure, alteration, and destruction. These measures include:
- SSL/TLS Encryption: All data in transit between your device and mospala's servers is encrypted using Transport Layer Security (TLS) protocols, ensuring that your login credentials, financial details, and personal information cannot be intercepted in transit.
- Encrypted Password Storage: Account passwords are stored using one-way cryptographic hashing algorithms. mospala staff cannot read your password — only you know it.
- Access Controls: Personal data is accessible only to mospala personnel and authorised third-party partners who have a genuine operational need to access it. All such access is logged and audited.
- Fraud Detection Systems: mospala operates automated fraud detection systems that monitor account activity in real time for signs of unauthorised access, unusual transaction patterns, and other indicators of potential security breaches.
- Secure Data Centres: mospala's data infrastructure is hosted in facilities that maintain physical security controls, redundant systems, and regular security audits.
While mospala takes every reasonable precaution to protect your data, no online platform can guarantee absolute security. You play an important role in keeping your account secure: use a strong, unique password for your mospala account, do not share your login credentials with anyone, and contact support immediately if you believe your account has been compromised.
6. Data Retention
mospala retains personal data for as long as is necessary to fulfil the purpose for which it was collected, to comply with applicable legal obligations, and to resolve any disputes or enforce our agreements. The general retention periods we apply are as follows:
- Active account data: Retained for the duration of your account relationship with mospala plus a minimum of five years after account closure, in accordance with anti-money laundering record-keeping requirements.
- KYC and identity documents: Retained for a minimum of five years from the date of the most recent transaction on the account, or such longer period as may be required by applicable law.
- Transaction records: Retained for a minimum of five years from the date of the transaction.
- Customer support communications: Retained for three years from the date of the last communication, unless the communication forms part of an ongoing dispute, in which case it is retained until the dispute is fully resolved.
- Technical and device data (logs): Retained for up to 12 months in active storage and up to 24 months in archived form for security and fraud investigation purposes.
- Marketing consent records: Retained for three years from the date consent was given, or until consent is withdrawn, whichever is earlier.
When personal data is no longer required for any lawful retention purpose, mospala will securely delete or irreversibly anonymise it so that it can no longer be associated with you as an individual.
7. Your Privacy Rights
As a mospala account holder, you have the following rights in relation to your personal data. To exercise any of these rights, please contact our support team via live chat or at [email protected]. We will acknowledge your request within five business days and aim to resolve it within 30 calendar days.
- Right of Access: You may request a copy of the personal data mospala holds about you, along with information about how it is used and with whom it is shared.
- Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or complete it without undue delay.
- Right to Erasure: In certain circumstances, you may request that mospala delete your personal data. This right is subject to limitations where we have a legal obligation to retain the data (for example, for anti-money laundering compliance or to resolve a pending dispute).
- Right to Restriction of Processing: You may ask mospala to restrict the processing of your personal data in certain circumstances, for example while the accuracy of data is being contested or while a deletion request is being evaluated.
- Right to Data Portability: Where technically feasible and where processing is based on your consent or on the performance of a contract, you may request that we provide your personal data in a structured, commonly used, machine-readable format.
- Right to Withdraw Consent: Where mospala processes your data on the basis of your consent (for example, for marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal. To unsubscribe from promotional emails, use the unsubscribe link in any marketing email or contact support directly.
- Right to Object: You may object to the processing of your personal data where mospala relies on legitimate interest as the legal basis, unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.
8. Policy Updates & Contact
8.1 Updates to This Policy
mospala reviews this Privacy Policy periodically and may update it to reflect changes in our data practices, changes in applicable law, or improvements to our platform. When we make material changes to this policy, we will notify registered account holders via the email address on file and display a prominent notice on the mospala platform for a reasonable period following the update. The Effective Date at the top of this page will always reflect the date of the most recent revision.
Your continued use of the mospala platform after an updated Privacy Policy has been published constitutes your acceptance of the revised policy. We encourage you to review this page periodically to stay informed about how your data is being protected.
8.2 Contact Us About Privacy
If you have any questions, concerns, or requests relating to this Privacy Policy or to the way mospala handles your personal data, please do not hesitate to get in touch:
- Live Chat: Available 24/7 inside your mospala account
- Email: [email protected]
- Support Hours: 24/7 — Bangladesh Standard Time (BST, UTC+6)
We are committed to addressing all privacy-related enquiries promptly and transparently. If you are not satisfied with our response, you may have the right to escalate your concern to the relevant data protection or regulatory authority in your jurisdiction.