Privacy Policy – pk50

1. Introduction

pk50 ("we", "us", "our", "pk50") is the operator of the online casino and sportsbook Platform accessible at pk50.app. We are committed to protecting the privacy and personal data of every player who registers and uses pk50 services. This Privacy Policy ("Policy") sets out in detail what personal data we collect, the purposes for which it is processed, the legal bases for that processing, how long we retain it, and the rights available to you as a data subject.

This Policy applies to all users of the pk50 Platform regardless of their location, including players based in Karachi, Lahore, Islamabad, Rawalpindi, Faisalabad, and throughout Pakistan. It covers data collected via the website, any associated mobile-optimised pages, and all account-related communications.

This Policy should be read alongside the pk50 Terms & Conditions and Responsible Gaming Policy, both of which are incorporated by reference. In the event of any conflict between this Policy and another pk50 document, this Policy shall govern with respect to privacy and data protection matters.

2. Data We Collect

pk50 collects personal data in several ways — directly from you when you register or use the Platform, automatically as you interact with our services, and from third-party sources where permitted by law. The categories of personal data we collect include:

2.1 Registration & Identity Data

• Full legal name
• Date of birth (for age verification purposes)
• Email address and mobile phone number
• Country and city of residence (e.g., Karachi, Lahore, Islamabad)
• Username and encrypted password
• Government-issued identity document details (CNIC, passport, driver's licence) collected during KYC verification

2.2 Financial Data

• Deposit and withdrawal transaction records including amounts, dates, and payment methods used (e.g., JazzCash, Easypaisa, HBL, UBL, Meezan Bank, Bank Alfalah, USDT TRC20, Visa/Mastercard)
• Account balance history
• Source of funds documentation where required under AML procedures

2.3 Gaming & Betting Activity Data

• Individual bet and wager records including stake amounts, game titles, sports markets, and outcomes
• Session data including login times, session duration, and games accessed
• Responsible gaming tool usage (deposit limits set, self-exclusion history, cooling-off periods)
• Bonus claims, wagering progress, and promotion history

2.4 Technical & Device Data

• IP address and approximate geolocation data
• Device type, operating system, and browser version
• Platform access logs and error reports
• Cookie identifiers and session tokens (see Section 7)

2.5 Communications Data

• Records of customer support interactions via live chat, email, or any other channel
• Responses to surveys, feedback requests, and promotional communications where you have opted in

3. How We Use Your Data

pk50 processes personal data for the following purposes:

• Account creation and management: To register your account, verify your identity and age, and maintain your account in a secure and functional state.
• Service delivery: To process deposits and withdrawals, settle bets, credit bonuses, and provide access to all pk50 products including slots, live casino, and cricket sportsbook.
• Legal compliance: To fulfil KYC (Know Your Customer) and AML (Anti-Money Laundering) obligations, respond to regulatory requests, and comply with our international gaming licence conditions.
• Responsible gaming: To monitor gaming patterns for indicators of problem gambling, enforce player-set limits and self-exclusion orders, and pro-actively contact players who may need support.
• Security and fraud prevention: To detect, investigate, and prevent fraudulent activity, account compromise, money laundering, and Terms of Service violations.
• Customer support: To respond to your queries, resolve complaints, and provide account assistance.
• Marketing and communications: To send you promotional offers, bonus notifications, and platform updates where you have provided consent or where we have a legitimate interest based on your existing account relationship. You may opt out of marketing communications at any time via your account settings.
• Platform improvement: To analyse aggregated usage data, identify technical issues, and improve the pk50 user experience.

4. Legal Basis for Processing

pk50 processes personal data only where a lawful basis exists under applicable data protection law. The legal bases we rely upon are:

• Contractual necessity: Processing required to perform the contract between you and pk50 — i.e., to provide the gaming and betting services you have registered for.
• Legal obligation: Processing required to comply with KYC, AML, licensing, and other applicable legal requirements.
• Legitimate interests: Processing necessary for fraud prevention, platform security, responsible gaming monitoring, and service improvement, where such interests are not overridden by your rights.
• Consent: Processing for direct marketing purposes where you have provided explicit consent. Consent may be withdrawn at any time without affecting the lawfulness of prior processing.

5. Data Sharing & Disclosure

pk50 does not sell your personal data to any third party. We share personal data only in the following circumstances and only to the extent necessary:

• Payment processors: Financial data is shared with payment service providers (JazzCash, Easypaisa, banking partners, card networks) to process your deposits and withdrawals. These providers are contractually bound to handle your data securely and solely for payment processing purposes.
• Identity verification providers: KYC documentation may be shared with third-party identity verification services engaged by pk50 to validate the authenticity of submitted documents.
• Game software providers: Your account identifier and session data are shared with licensed game studios whose titles are hosted on pk50, solely for the purpose of delivering the game experience and recording outcomes.
• Regulatory and law enforcement authorities: pk50 may disclose personal data to licensing regulators, financial intelligence units, or law enforcement agencies where required by law or in connection with a lawful investigation.
• Corporate transactions: In the event of a merger, acquisition, or transfer of all or part of pk50's business, your personal data may be transferred to the acquiring entity, subject to equivalent privacy protections being maintained.

6. Payment Data

pk50 does not store complete payment card numbers on its systems. Card payments are processed via PCI-DSS compliant third-party payment gateways. JazzCash and Easypaisa transactions are processed through the respective providers' secure APIs. Bank transfer details (account numbers provided for withdrawal processing) are stored in encrypted form and retained only for the period required to process the transaction and fulfil our legal retention obligations.

7. Cookies & Tracking

pk50 uses cookies and similar tracking technologies to operate the Platform, maintain your session, and improve your experience. The types of cookies we use include:

• Strictly necessary cookies: Required for the Platform to function — session management, authentication tokens, security cookies. These cannot be disabled without breaking core Platform functionality.
• Functional cookies: Remember your preferences such as language settings, display options, and responsible gaming tool configurations.
• Analytics cookies: Collect aggregated, anonymised data about Platform usage to help us understand how players interact with pk50 and identify areas for improvement.

You may manage cookie preferences via your browser settings. Disabling strictly necessary cookies will impair or prevent access to your pk50 account.

8. Data Retention

pk50 retains personal data for as long as your account is active and for the period required by applicable legal and regulatory obligations following account closure. Specifically:

• KYC and AML documentation is retained for a minimum of five (5) years following the end of the customer relationship, in accordance with standard anti-money laundering regulatory requirements.
• Transaction records are retained for a minimum of five (5) years from the date of each transaction.
• Customer support communications are retained for three (3) years.
• Marketing consent records are retained until consent is withdrawn and for a reasonable period thereafter to demonstrate compliance.

Where data is no longer required for the purposes for which it was collected and no legal retention obligation applies, it is securely deleted or anonymised.

9. Your Rights

Subject to applicable law, you have the following rights in respect of your personal data held by pk50:

• Right of access: Request a copy of the personal data pk50 holds about you.
• Right of rectification: Request correction of inaccurate or incomplete personal data.
• Right of erasure: Request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to our legal retention obligations.
• Right to restrict processing: Request that we limit the processing of your data in certain circumstances.
• Right to data portability: Request a machine-readable copy of personal data you have provided to pk50.
• Right to object: Object to processing based on legitimate interests, including direct marketing.
• Right to withdraw consent: Withdraw consent for marketing communications at any time via account settings or by contacting support.

To exercise any of these rights, contact pk50 at [email protected]. We will respond within 30 days. Identity verification may be required before processing a data rights request.

10. Data Security

pk50 implements industry-standard technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These measures include SSL/TLS encryption for all data in transit, AES-256 encryption for sensitive data at rest, access controls limiting staff access to personal data on a need-to-know basis, regular security audits and penetration testing, and incident response procedures for potential data breaches.

In the event of a data breach that poses a risk to your rights and freedoms, pk50 will notify the relevant supervisory authority and, where required, affected individuals within the timeframes stipulated by applicable law. You will be notified via the email address registered on your pk50 account.

11. Children's Privacy

pk50 is strictly for individuals aged 18 and over. We do not knowingly collect personal data from anyone under the age of 18. If we discover that a person under 18 has registered a pk50 account, the account will be immediately suspended, all activity will be reviewed, and any deposited funds will be returned to the originating payment method following verification. If you believe a minor has accessed pk50, please contact us immediately at [email protected].

12. International Data Transfers

pk50 operates internationally and some personal data may be transferred to and processed in countries outside Pakistan in the course of delivering our services — for example, by our payment processing partners or game software providers. Where such transfers occur, pk50 ensures that appropriate safeguards are in place, including contractual clauses requiring the recipient to apply data protection standards equivalent to those required under the laws of pk50's licensing jurisdiction.

13. Policy Updates

pk50 reserves the right to update this Privacy Policy at any time to reflect changes in our data processing practices, applicable law, or regulatory requirements. The revised Policy will be published on this page with an updated effective date. Where changes are material, registered players will be notified by email to the address on file. Your continued use of the Platform following notification of an update constitutes acceptance of the revised Policy.

14. Contact

For any privacy-related queries, data rights requests, or concerns about how pk50 handles your personal data, please contact our Data Protection team: