LUXARA
Sign up

Legal · Privacy Policy

Privacy Policy

What we collect, how we use it, and the controls you have. No tricks, no buried clauses.

Last updated: 14 May 2026

1. Introduction

  • LUXARA ("we", "us") respects your privacy. This Policy explains what data we collect, how we use it, and what controls you have.
  • By using LUXARA you consent to this Policy. If you do not agree, please do not use the service.

2. Data We Collect

  • Account data: email, name (optional), date of birth, country, phone number.
  • Financial data: deposit/withdrawal history, payment method identifiers (last 4 digits only for cards; full wallet address for crypto).
  • Activity data: game rounds, bet amounts, login times, device type, IP address, browser fingerprint.
  • Communications: support chat transcripts, emails to/from us, Telegram messages if you use the support bot.

3. How We Use Your Data

  • Provide the service: process deposits, settle bets, pay withdrawals, deliver bonuses.
  • Prevent fraud, money laundering, and underage gambling.
  • Comply with legal obligations — tax reporting, regulatory requests, court orders.
  • Improve the product: A/B test features, fix bugs, analyse aggregate behaviour.
  • Send transactional emails (deposit confirmations, withdrawal updates) and optional marketing communications (you can opt out).
  • Respond to your support requests — our AI agent and human support both have access to your account state.

4. Who We Share Data With

  • Payment providers (bKash, Nagad, Binance, USDT networks) — only the data they need to process your transaction.
  • Email provider (Resend) — for transactional and optional marketing emails.
  • AI providers (DeepSeek, Anthropic) — anonymised user context for support replies. We do NOT share your government ID or financial account numbers with AI.
  • Regulatory authorities and courts — when legally required.
  • We do NOT sell your personal data to third parties for marketing.

5. Data Retention

  • Account data: kept while your account is active, plus 7 years after closure (regulatory requirement for AML).
  • Transaction history: 7 years.
  • Marketing preferences: until you opt out.
  • Support transcripts: 2 years.

6. Your Rights

  • Access — request a copy of all data we hold about you.
  • Correction — fix any inaccurate information in your profile.
  • Deletion — request account closure and data deletion (subject to 7-year regulatory retention).
  • Portability — receive your data in a machine-readable format.
  • Opt-out — disable marketing emails, push notifications, or SMS at any time.
  • Object — contest specific uses of your data (e.g. profile-based marketing).
  • To exercise any right, email privacy@luxara.example or use the support chat.

7. Security

  • Passwords stored as bcrypt hashes, never plaintext.
  • All traffic over HTTPS (TLS 1.2+). HTTP traffic auto-redirected.
  • JWT-based authentication with short access tokens (15 min) and refresh tokens (30 days).
  • Two-factor authentication available — strongly recommended.
  • We log every login and notify you of new-device sign-ins.

8. Cookies & Tracking

  • Essential: session cookies for login. Cannot be disabled.
  • Functional: locale preference, theme selection.
  • Analytics: aggregate page-view counts (no personal data linked).
  • We do NOT use third-party advertising cookies.

9. Minors

  • LUXARA is strictly 18+. If we discover an underage account, it is closed immediately and any deposits are refunded to the original payment source.
  • If you suspect a minor has registered, please report via support.

10. Changes to This Policy

  • We may update this Policy. Material changes will be announced at least 7 days in advance via email and on the website.
  • Continued use after the change date means you accept the updated Policy.

Have questions about your data?

Email privacy@luxara.example or use the support chat (bottom-right).

Help CenterRead Terms