Data Protection
1xBet takes data protection seriously. Here's how your personal information is safeguarded.
Last updated: January 22, 2026
Protection Overview
What Data Is Collected
| Data Type | Purpose | Required? |
|---|---|---|
| Account info | Name, email, phone for account creation | ✅ Yes |
| Identity documents | KYC verification (ID, proof of address) | For withdrawals |
| Payment info | Process deposits and withdrawals | For transactions |
| Betting history | Track bets, provide history, resolve disputes | Automatic |
| Device info | Security, fraud prevention | Automatic |
| Location | Regulatory compliance, regional content | Optional |
| Usage data | Improve app, analytics | Automatic |
How Data Is Protected
Encryption
- In transit: TLS 1.3 / SSL 256-bit encryption
- At rest: AES-256 encryption for stored data
- Passwords: Hashed with bcrypt (never stored plain)
- Payment data: Tokenized, PCI DSS compliant
Access Control
- Role-based access: Staff only access what they need
- Audit logs: All access is logged
- Two-factor auth: Required for admin access
- Regular reviews: Access permissions audited
Infrastructure
- Secure servers: Enterprise-grade data centers
- Firewalls: Multiple layers of protection
- DDoS protection: Attack mitigation
- Regular backups: Data recovery capability
Data Retention
| Data Type | Retention Period | Reason |
|---|---|---|
| Account data | Duration of account + 5 years | Legal/regulatory requirements |
| Transaction records | 7 years minimum | Financial regulations |
| Betting history | 5 years | Dispute resolution |
| KYC documents | 5 years after account closure | AML compliance |
| Marketing preferences | Until changed/withdrawn | Your consent |
Your Data Rights
You have the following rights regarding your personal data:
- Access: Request a copy of your data
- Correction: Fix inaccurate information
- Deletion: Request data removal (with limitations)
- Portability: Receive data in standard format
- Restriction: Limit how data is processed
- Objection: Object to certain processing
- Withdraw consent: For consent-based processing
To exercise these rights, contact 1xBet customer support or use the in-app settings.
Data Sharing
We DO Share With:
- Payment processors: To complete transactions
- Verification services: For KYC compliance
- Regulators: When legally required
- Service providers: Under strict contracts
We DO NOT:
- ❌ Sell your data to third parties
- ❌ Share for unrelated marketing
- ❌ Give access without legal basis
- ❌ Transfer without protection
Regulatory Compliance
| Regulation | Status |
|---|---|
| GDPR (EU General Data Protection) | ✅ Compliant |
| PCI DSS (Payment Card Industry) | ✅ Compliant |
| AML (Anti-Money Laundering) | ✅ Compliant |
| KYC (Know Your Customer) | ✅ Implemented |
Security Measures for Users
Steps you can take to protect your data:
- Strong password: Use unique, complex passwords
- Enable 2FA: Two-factor authentication
- Secure device: Keep phone/computer secure
- Official app: Only use official 1xBet app
- Log out: On shared devices
- Monitor account: Check for unusual activity
Common Questions
Can I delete my account and data?
Yes, you can request account deletion. Some data must be retained for legal/regulatory reasons (typically 5-7 years for financial records), but your account will be closed.
Is my payment information safe?
Yes. Payment data is processed by PCI DSS compliant providers. Full card numbers are never stored on 1xBet servers — only tokens.
Who can see my betting history?
Only you and authorized 1xBet staff (for support/disputes). It's not shared publicly or with third parties.
What happens to data if 1xBet is breached?
1xBet has incident response procedures. Affected users would be notified as required by law. Encrypted data would be unusable without keys.