Privacy Policy Overview

Parimatch collects and processes personal information to operate accounts, complete transactions, meet compliance duties, and protect users and the platform.

Personal information that may be collected

• Identity and profile data: full name, date of birth, gender (if shared), nationality, address, email address, mobile number
• Account data: username, password (stored in protected form), security questions, account settings, responsible gaming preferences
• Verification data for KYC checks: PAN details, Aadhaar details where permitted and required for verification, passport, driving licence, voter ID, selfies, proof of address, source of funds or source of wealth information where required by compliance rules
• Payment and transaction data: payment method, masked card details, UPI or wallet identifiers, bank details for withdrawals, deposit and withdrawal history, chargeback or dispute information
• Device and usage data: IP address, device identifiers, browser type, operating system, approximate location derived from IP, log files, session data
• Communication data: emails, chat transcripts, call records, complaints, dispute communications

Why this information is collected

• Account creation, login security, and user support
• Deposits, withdrawals, and transaction reconciliation
• Identity verification and anti fraud controls
• Legal and regulatory compliance, including KYC and anti money laundering checks
• Responsible gaming controls and risk management
• Service performance, analytics, and product improvement

Security and organisational measures

Parimatch applies reasonable technical and organisational safeguards designed to protect personal data against accidental loss, misuse, unauthorised access, alteration, and disclosure, such as:

• Encryption in transit and other appropriate cryptographic protections
• Access controls with least privilege principles
• Monitoring, logging, and security alerting
• Segregation of environments and secure configuration practices
• Staff confidentiality obligations and training
• Vendor due diligence and contractual confidentiality requirements

User rights

Subject to applicable law, users can request:

• Access to personal data held about the user
• Correction of inaccurate or incomplete information
• Deletion of personal data, where legally permitted
• Restriction or objection to certain processing in limited cases
• Withdrawal of consent for processing that relies on consent

India legal compliance

Parimatch aims to follow applicable India privacy and IT security requirements, including the Information Technology Act, 2000 and relevant rules, and aligns with recognised global privacy principles such as GDPR where applicable to the processing context. If local law requires retention or disclosure, Parimatch may retain or share information as required.

Parimatch uses collected data in a lawful and transparent manner, limited to purposes relevant to the services.

Core service operations

• Create and manage user accounts
• Authenticate logins and maintain account security
• Process deposits, withdrawals, refunds, and chargeback handling
• Provide customer support and respond to user requests

Compliance and integrity

• KYC verification and ongoing due diligence
• Anti fraud controls, risk scoring, and transaction monitoring
• Prevention of prohibited activity, account misuse, or policy breaches
• Compliance with lawful requests from competent authorities

Service improvement and analytics

• Measure website performance and diagnose technical problems
• Analyse usage patterns to improve navigation, features, and stability
• Maintain audit trails and platform integrity

Communications

• Send service messages related to accounts, security, and transaction status
• Send compliance or verification updates

Marketing preferences

Marketing messages are sent only where permitted by law and subject to user consent or applicable opt out options within account settings or message controls. Service related messages may still be sent when necessary for account and transaction management.

Parimatch supports user access and control over personal information, subject to verification and legal limits.

How users can access or update data

• Users can review and update certain profile details through the account area.
• If the account area does not allow a change, users can contact support to request an update.

Correction process

• Parimatch may request supporting documents to confirm identity and validate the correction.
• Requests are handled within a reasonable timeframe based on complexity and compliance checks.

Deletion process

• Users can request deletion or account closure through support.
• Parimatch may retain specific information where retention is required by law, for dispute resolution, fraud prevention, tax, audit, or compliance purposes.
• If deletion is not permitted for some records, Parimatch restricts access and retains the data only for the required period.

Security checks and payment processing consent

Use of the services indicates consent to reasonable security checks needed to protect accounts and prevent fraud. Use of deposits and withdrawals indicates consent to processing of payment data by payment service providers, banks, and processing partners for transaction execution, screening, and dispute handling.

Parimatch services are intended for users aged 18 years and above.

• The operator cannot confirm age without reliable documents.
• Parimatch may request proof of age and identity at registration, before withdrawals, or during compliance reviews.
• If Parimatch learns that personal data belongs to a minor, the account may be suspended and the data removed or de identified, subject to legal retention duties.

Parental or guardian request

A parent or legal guardian can contact support to report a minor account. Parimatch may request information to verify the request and will take appropriate steps to delete the minor’s data where legally permitted.

Parimatch may process personal data in countries outside India where group entities, technology providers, payment processors, analytics providers, or customer support partners operate.

• Use of the services indicates consent to such cross border processing where permitted by law.
• Parimatch applies safeguards to protect confidentiality and security during international transfers, such as contractual obligations, access restrictions, and security controls aligned with recognised standards.
• Partners are required to use personal information only for agreed purposes and to protect it against unauthorised access or disclosure.

This document explains how Parimatch manages personal data for its online services. In limited situations, a legal notice, regulatory direction, or a binding decision by a competent authority may alter how certain rules apply, or may require additional processing or disclosure.

Acceptance of this Privacy Policy occurs when the user accepts it during registration, through a click acceptance, through electronic signature where used, or through continued use of the services under an accession approach supported by applicable contract principles.

Cookies are small text files stored on a user’s device when visiting websites. Parimatch uses cookies and similar technologies for:

• Site functionality and security
• Statistics and aggregated reporting
• Behaviour analysis to understand website usage
• Personalisation of settings and preferences
• Service improvement and troubleshooting

Cookie retention

Cookie data is retained for up to 1 year unless deleted earlier by the user through browser settings.

Cookie controls

Users can manage cookies in browser settings. If cookies are disabled, certain website features may not function as intended.

Use of Parimatch websites and services indicates full acceptance of this Privacy Policy. The version published on the website at the time of use applies. If updates occur, the revised document applies after publication, and continued use indicates acceptance of the updated terms.

Parimatch may share personal information with third parties only for legitimate purposes and with appropriate safeguards.

Categories of third parties

• Payment processors, banks, and payout partners
• Identity verification, fraud prevention, and risk management providers
• Technology vendors that support hosting, data storage, analytics, communications, and customer support tools
• Professional advisers, auditors, and insurers
• Competent authorities, regulators, or law enforcement where required by law

When sharing may occur

• Legal obligations, lawful requests, and regulatory reporting
• Dispute handling, chargeback management, and enforcement of agreements
• Operational needs to deliver services, process transactions, and maintain platform security

Notice of purpose and scope

Where third parties are listed on the website or in relevant service notices, users can review the type of recipient. If a recipient is not listed, Parimatch informs users of the purpose and scope of sharing as required by applicable law. Submission of personal data for service use indicates consent to sharing needed to deliver the services and meet compliance obligations.

Parimatch websites may include links to third party websites, plug ins, or services that have their own privacy practices.

• Parimatch is not responsible for the collection, use, or disclosure of data by external websites.
• Users are advised to review the privacy policy and security practices of any external site before sharing personal information.
• Any access to third party websites occurs at the user’s own discretion and subject to the third party’s terms.