Overview of how personal information is handled

Personal data collected depends on how the services are used:

• Identification and contact details: name, date of birth, ID or passport details, phone, email, address.
• Account and gameplay information: username, settings, deposit limits, activity logs, responsible gaming preferences.
• Financial and transaction data: payment method, deposits, withdrawals, MPESA or card references, verification outcomes.
• Technical data: IP address, device identifiers, browser type, operating system, app version, cookies, and similar technologies.
• Compliance records: KYC documents, sanctions screening results, AML monitoring information.

Purposes for collection:

• Provide online services, verify age, prevent fraud, process payments, and meet regulatory obligations.
• Improve websites and apps, support user experience, and maintain security.
• Handle queries, disputes, and responsible gambling measures.

Security measures:

• Encryption in transit and at rest where appropriate.
• Access controls, authentication, and role-based permissions.
• Network monitoring, logging, and incident response.
• Vendor due diligence and contractual data protection clauses.
• Payment processing aligned to industry security standards.

User rights under the Data Protection Act, 2019 (Kenya) and applicable international norms:

• Access: request a copy of personal information held.
• Correction: update inaccurate or incomplete data.
• Deletion: request erasure where the law allows.
• Restriction: ask to limit certain processing.
• Objection: object to profiling or direct marketing.
• Portability: receive data in a usable format where technically feasible.
• Withdraw consent: where processing relies on consent.
• Complaint: lodge a complaint with the Office of the Data Protection Commissioner (ODPC).

Compliance statement:

• The operator processes data in line with the Kenya Data Protection Act, 2019, relevant regulations, the Betting, Lotteries and Gaming Act, AML/CFT laws, and recognised international data protection principles.

Personal data is used for lawful purposes:

• Account services: registration, login, account maintenance, customer support.
• Transactions: deposits, withdrawals, payment verification, chargeback handling.
• Service improvement: troubleshooting, analytics, performance monitoring, product development.
• Safety and integrity: fraud prevention, security checks, risk scoring, responsible gambling tools.
• Marketing: sending service updates and offers where permitted; users can opt out of direct marketing at any time.
• Legal and compliance: identity verification, age checks, AML/CFT monitoring, tax, and regulatory reporting.

Processing is based on legal grounds such as contract performance, legal obligation, legitimate interests, and consent where required. The operator aims for transparent and proportionate use of personal information.

• Access and updates: users can review and edit profile details in account settings and may submit a request through the Help Centre or the Contact Us page for a full data access request.
• Corrections: if information is inaccurate, a correction request can be filed through support, including relevant documents to confirm changes when needed.
• Deletion: erasure can be requested where the law allows. Certain records must be retained to meet legal, tax, AML/CFT, and regulatory obligations.
• Identity checks: before actioning requests, the operator may ask for proof of identity to protect the account.

By using 1xbet, users consent to security checks required for KYC and AML, and to the processing of payment information by licensed payment service providers for transactions and fraud prevention.

• Access is restricted to persons aged 18 years and above in Kenya. Account creation and betting by minors are prohibited.
• The operator cannot confirm age without identity documents and may request proof during verification.
• If a minor’s personal data is discovered, the account will be closed and the information deleted where possible.
• Parents or guardians may contact support to request deletion of a minor’s data and provide evidence of parental authority.

Personal data may be stored or processed in other countries where technology or payment partners operate. Using the services indicates consent to such transfers, subject to safeguards. The operator applies measures such as contractual protections, supplier audits, and technical controls to maintain confidentiality and security. Transfers are performed in line with the Kenya Data Protection Act, 2019 and other applicable laws.

This policy may include disclaimers that define or limit certain obligations or remedies as allowed by law. Such terms apply once the user accepts the policy through use of the services, ticking acceptance during registration, signing any related document, or joining under posted terms. If any part is found invalid under local law, the remaining provisions continue to apply to the extent permitted.

Cookies are small text files stored on a device by websites or apps. They are used for:

• Statistics and analytics to understand usage and improve services.
• Behaviour analysis to prevent fraud and maintain security.
• Personalisation such as remembering preferences and language.
• Site performance and troubleshooting.

Retention: cookies are generally kept for up to 1 year, after which they expire or are refreshed if used again. Users can manage cookies in browser settings and, where available, in site preference tools. Disabling some cookies may affect certain functions.

Use of the platform constitutes full acceptance of this Privacy Policy and any updates. The current version posted on the website or app prevails over previous versions. Continued use after changes are posted indicates agreement to the revised terms.

Personal data may be shared in limited situations:

• Legal and regulatory: law enforcement requests, court orders, tax authorities, and regulators.
• Service providers: identity verification, payments, cloud hosting, analytics, customer support, and security partners under contract.
• Disputes and rights: enforcing terms, investigating fraud, or defending legal claims.

A list or categories of third‑party providers is available in the Help or Legal sections of the site. Where required by law, users will be informed about the purpose and scope of sharing. Providing personal information is taken as consent to share it for the stated purposes and in line with applicable law.

The site may contain links to external websites or apps that have their own privacy policies. The operator does not control how those third parties process information and is not responsible for their practices. Users should review the privacy notices on any external site before providing personal data.