This Privacy Policy describes how Laser247 collects, uses, stores, shares, and protects information about users of the platform. It applies to all interactions with Laser247 — through the website, the Android app, WhatsApp support, and any other channel through which we may engage with you.
By creating an account, depositing funds, or otherwise using the platform, you confirm that you have read this Privacy Policy and agree to the data practices it describes. If you do not agree with any part of this policy, do not use the platform.
1. Information We Collect
We collect information in three categories: information you provide directly, information generated by your use of the platform, and information collected from third parties for verification purposes.
Information you provide directly. When you create an account, we collect a username of your choosing, the WhatsApp number you signed up with, and the password you set. When you deposit or withdraw funds, we collect payment method details — UPI IDs, bank account numbers, IFSC codes, or AstroPay identifiers — sufficient to route the transaction to or from your account. When KYC verification is triggered by withdrawal size, we collect identity documents (PAN card, Aadhaar, voter ID, passport, or driving licence), an address proof if required, and in some cases a brief video verification call.
Information generated by your use of the platform. This includes account activity (bets placed, markets viewed, deposits and withdrawals processed), session data (IP addresses, device identifiers, browser type, app version, login timestamps, location data inferred from IP), and communications between you and our customer support team through WhatsApp.
Information collected from third parties. Payment processors share transaction confirmations, dispute records, and risk-related flags relating to your account. KYC verification partners may cross-reference identity documents against public databases to confirm authenticity. None of these third parties are given more information than they need to perform their specific function.
2. How We Use Your Information
We use your information for the following purposes only.
Operating your account. Processing deposits and withdrawals, settling bets, paying winnings, applying commission, sending account notifications, and answering support queries.
Verifying identity and preventing fraud. Confirming you are the account holder during signup, KYC verification, and high-value withdrawals. Detecting and preventing account takeover, payment fraud, duplicate accounts, underage gambling, and other prohibited activity.
Complying with legal and regulatory obligations. Maintaining records required by applicable tax, anti-money-laundering, and gaming regulations. Responding to lawful requests from regulators, courts, or law enforcement authorities.
Improving the platform. Analysing aggregated usage patterns to identify product improvements, bug fixes, performance issues, and feature requests. Where analysis is performed on individual-level data, the results are used to improve the experience for that user specifically (for instance, identifying patterns associated with problem gambling so support can intervene).
Communicating with you. Sending transaction confirmations, security alerts, account changes, and platform notifications. Sending promotional offers only when you have not opted out of them. Operational communications cannot be opted out of because they are required for the platform to function.
We do not use your information for any other purpose. We do not sell your personal information to third parties under any circumstances.
3. Sharing Your Information
We share your information only when one of the following applies.
Service providers. Payment processors, KYC verification partners, customer support platforms, and cloud hosting providers all have access to specific subsets of your information as required for them to provide their service to us. Each provider is bound by contractual confidentiality obligations and is permitted to use the information only for the purpose for which it was shared.
Legal and regulatory requirements. When required by law, court order, or regulator request, we will disclose the information specified by that request. We will limit the disclosure to what is legally required and will, where possible and legally permitted, notify you of the disclosure.
Fraud and security. Information about confirmed fraudulent activity may be shared with payment processors, other operators, and fraud-prevention networks to prevent the same activity recurring elsewhere. This sharing is limited to confirmed fraud cases, not suspicions or unverified allegations.
Business transfers. If the platform’s ownership changes through sale, merger, or other reorganisation, your information will form part of the assets transferred. The receiving entity will be bound by the same Privacy Policy unless and until you are notified of changes.
We do not share your personal information with advertisers, marketers, or other commercial parties who are not directly involved in providing the platform.
4. Data Retention
We retain your information for as long as your account is active and for a period afterwards as required to meet our legal, regulatory, and operational obligations.
Active accounts. All information is retained for the duration of the account.
Closed accounts. Account data is retained for seven years after closure, the standard retention period required by Indian tax and anti-money-laundering rules. KYC documents are retained for the same period.
Self-excluded accounts. Data is retained for the duration of the self-exclusion period plus the seven-year regulatory retention afterwards. Self-exclusion records themselves are retained indefinitely to enforce the exclusion against future account creation attempts.
Communications. WhatsApp support conversations are retained for two years after the last interaction, except where specific transactions in the conversation extend the retention under other categories.
After the applicable retention period expires, your information is permanently deleted or anonymised so that it can no longer be associated with you as an individual.
5. Data Security
We protect your information with technical and organisational measures appropriate to the sensitivity of the data.
Personal information is encrypted in transit using TLS and at rest using AES-256 or equivalent. Payment information and KYC documents are stored in segregated systems with restricted access, separate from general account data. Access to personal information is limited to the staff and service providers who need it for a specific operational purpose, and access is logged and reviewed.
Authentication systems use industry-standard cryptographic primitives. Passwords are hashed with bcrypt or equivalent. Biometric data from device-level authentication is matched on-device by Android’s secure enclave and never transmitted to or stored on our servers. Two-step verification is available and recommended for all accounts.
Despite these measures, no system is completely secure. We cannot guarantee absolute security of your information against all possible threats, and we encourage you to use the platform’s security tools (strong passwords, two-step verification, regular session reviews) to add your own layer of protection.
6. Cookies and Tracking
The platform uses cookies and similar technologies for session management, security, and analytics.
Essential cookies. Required for the platform to function — maintaining your login session, preventing cross-site request forgery, and remembering basic preferences such as language. These cookies cannot be disabled without breaking platform functionality.
Analytics cookies. Used to understand how the platform is used in aggregate. Data is processed in summary form and is not used to identify individual users for any purpose outside their own account.
Preference cookies. Used to remember interface settings such as preferred odds format and default deposit amount. These can be disabled in your browser without affecting platform functionality.
We do not use third-party advertising cookies. We do not allow third parties to track you across other websites through cookies set on our platform.
7. Your Rights Under the DPDP Act
The Digital Personal Data Protection Act, 2023 (DPDP Act) gives Indian users specific rights regarding personal data held by Laser247. The platform complies with the DPDP Act and provides the following rights to all users, regardless of location, where they would apply under Indian law.
Right to access. You may request a copy of the personal information we hold about you. Requests are responded to within thirty days, in machine-readable format where practicable.
Right to correction. You may request that incorrect or outdated personal information be corrected. Corrections are applied within seven days of verification.
Right to erasure. You may request deletion of your personal information, subject to our regulatory retention obligations. Information that we are legally required to retain cannot be deleted before the retention period expires, but will be deleted automatically when it does.
Right to grievance redress. You may file a grievance regarding the handling of your personal information with our Data Protection Officer (contact details below) and, if unsatisfied with our response, with the Data Protection Board of India.
Right to nominate. You may nominate another individual to exercise these rights on your behalf in the event of death or incapacity.
To exercise any of these rights, contact the Data Protection Officer through the WhatsApp support thread or by email at the address listed on the Contact page.
8. International Data Transfers
The platform’s primary servers are located outside India in jurisdictions with data protection frameworks comparable to or stronger than India’s. International data transfers are conducted in compliance with the DPDP Act and applicable Indian regulations governing cross-border transfers of personal information.
By using the platform, you consent to the international transfer of your information as described in this policy.
9. Children’s Privacy
The platform is restricted to users aged 18 and over. We do not knowingly collect information from anyone under 18. If we discover that we have collected information from a person under 18, we will delete that information promptly and close any associated account, returning any deposited funds to the original payment source.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, in technology, or in applicable law. Material changes will be notified to you through the WhatsApp thread tied to your account, with at least thirty days’ notice before the changes take effect, except where shorter notice is required by law.
Your continued use of the platform after the effective date of an updated policy constitutes acceptance of the changes. If you do not agree with the updated policy, you should close your account before the effective date.
11. Contact Us
Questions about this Privacy Policy or requests to exercise the rights described in it can be sent through the WhatsApp support thread tied to your account, or to the email address listed on the Contact page. Our Data Protection Officer responds to privacy-specific queries within seven business days.
