Privacy Policy

The platform collects personal data to provide regulated gaming services and to comply with Tanzania law.

Personal data collected may include:

• Identification details: full name, date of birth, nationality, identification numbers, and verification document images.
• Contact information: email address, phone number, and residential address.
• Account and usage data: username, preferences, login history, and responsible gaming settings.
• Transaction data: deposits, withdrawals, payment method identifiers (tokenised where possible), amounts, currency, and timestamps.
• Technical data: IP address, device identifiers, browser type, operating system, cookies, and approximate location.
• Communications: records of support chats, emails, calls, feedback, and complaints.
• Risk and compliance data: verification results, sanctions screening outcomes, and fraud prevention indicators.

Why this information is collected:

• Create and service user accounts, and verify age and identity (KYC).
• Process payments and payouts, and resolve billing queries.
• Support responsible gaming, including limits and self-exclusion.
• Maintain security, prevent fraud and misuse, and protect the services.
• Meet legal duties under the Gaming Act, the Anti-Money Laundering framework, tax laws, and court orders.
• Improve the websites and apps, perform analytics, and fix technical issues.

Technical and organisational measures:

• Encryption in transit and at rest for sensitive information.
• Role-based access controls, strong authentication, and logging.
• Network security monitoring and incident response procedures.
• Vendor due diligence and confidentiality obligations for processors.
• Staff training on data protection and secure handling.
• Data minimisation and defined retention schedules.
• Regular security testing and risk assessments.

User rights under Tanzania law:

• Access personal information held by the operator.
• Request correction of inaccurate or incomplete data.
• Request deletion where permitted by law.
• Restrict or object to certain processing, including direct marketing.
• Withdraw consent at any time without affecting prior lawful processing.
• Request a copy of data provided, where applicable.
• Lodge a complaint with the Personal Data Protection Commission of Tanzania and, for gaming matters, the Gaming Board of Tanzania.

Compliance statement:

The operator complies with the Personal Data Protection Act, 2022 (Mainland Tanzania), the Anti-Money Laundering Act, and the Gaming Act, and applies recognised international standards such as purpose limitation and data minimisation.

Personal information is used for lawful and transparent purposes:

• Account setup, verification, and service delivery.
• Processing deposits and withdrawals through licensed payment providers.
• Compliance checks, including identity verification, sanctions and PEP screening, and AML/CFT monitoring.
• Security, fraud prevention, and incident investigation.
• Customer support, service quality, and dispute resolution.
• Personalisation, analytics, and improvement of the websites and apps.
• Marketing communications where consent has been given, including measuring campaign performance. Users can opt out at any time.
• Compliance with legal obligations and to establish, exercise, or defend legal claims.

Parimatch limits access to authorised personnel and processors who are bound by confidentiality and data protection terms.

Users can access and update their personal information in account settings where available. Requests for access, correction, deletion, restriction, objection, or portability can be made through the contact channels listed on the website. The operator may request proof of identity before acting on a request and will respond within a reasonable time, typically within 30 days.

Deletion may be limited by legal retention duties, including AML/CFT, tax, and audit requirements. If a request is refused, a clear reason will be provided where legally permitted.

By using Parimatch, users consent to security checks, identity verification, and processing of payment data by payment service providers and verification partners to prevent fraud and meet regulatory obligations.

The services are intended for adults aged 18 years and above. The operator does not knowingly collect data from minors and cannot reliably confirm age without identity documents. If an account is found to belong to a minor, it will be closed and personal data will be deleted except where retention is required by law.

Parents or legal guardians can request deletion of a minor’s data by contacting the channels listed on the website and providing proof of relationship and identification.

Parimatch may process personal information outside Tanzania in locations where affiliates, cloud services, payment processors, or verification partners operate. Using the websites or apps constitutes consent to these international transfers, subject to safeguards.

Safeguards include standard contractual clauses, intra-group agreements, encryption, access controls, and, where required, authorisation or notification to the Personal Data Protection Commission. All partners are bound by confidentiality and data protection obligations consistent with this policy.

This disclaimer explains how certain provisions may be interpreted, limited, or extended as permitted by law and regulator guidance. If any part of this policy conflicts with mandatory law, the law prevails to the extent of the conflict. References to external standards and regulations are provided for context and may change over time.

The disclaimer applies once the user accepts this policy by signing, selecting acceptance on a form, continuing to use the services, or by any valid act of accession under Tanzania law.

Cookies are small text files stored on a device by websites. They are used for statistics, behaviour analysis, personalisation, and to improve site performance.

Types and purposes:

• Essential cookies: enable core features such as security and basic functionality.
• Analytics cookies: measure usage and help improve pages and navigation.
• Personalisation cookies: remember preferences and settings.
• Advertising cookies: show relevant content where consent is provided.

Retention: cookies are typically stored for up to 1 year. Users can manage or delete cookies in browser settings and through the site’s cookie controls. Disabling non-essential cookies does not affect access to essential services, but some features may function differently.

Using the websites or apps means full acceptance of this Privacy Policy. The current version published on the site prevails over any earlier version. Material updates will be posted on the site and become effective on publication unless stated otherwise. Continued use after the effective date confirms acceptance of the updated policy.

Personal data may be shared with third parties in line with this policy and the law, including payment processors, identity verification services, hosting and cloud providers, analytics vendors, anti-fraud partners, auditors, regulators, law enforcement, courts, and dispute resolution bodies. Sharing may occur to perform a contract, comply with legal duties, protect the platform, or resolve disputes.

A list or categories of processors is available on the website or on request. If a specific party is not listed at the time of collection, users will be informed of the purpose and scope before sharing whenever legally possible. Providing data constitutes consent to such sharing, and each third party remains responsible for its own privacy practices under applicable law.

The site may include links to external websites or services that operate under their own privacy policies. Parimatch is not responsible for how those websites collect, use, or protect information. Users should review the privacy policies and security practices of any external site before providing personal information.