Last updated: [01 11, 2025]
Applies to: https://rajaluck.rajawager.net and the Raja Luck mobile apps (collectively, “Raja Luck”, “we”, “us”, “our”).
Raja Luck provides skill-based entertainment. We respect your privacy and protect your personal data under Indian law (including the Digital Personal Data Protection Act, 2023 (DPDP Act)), the Information Technology Act, 2000, and applicable rules. This Policy explains what data we collect, why we collect it, how we use/share it, and your choices.
18+ only. Our services are not intended for minors. Do not use Raja Luck if you are under 18 or restricted by state rules.
1) Who we are (Data Fiduciary)
Raja Luck
Contact: admin@rajawager.net | Support via in-app/web live chat
We act as the data fiduciary/controller for personal data processed via our website/app.
2) What data we collect
a) Account & Identity
- Name, username, date of birth (18+ check)
- Email, phone number (OTP/2FA)
- KYC/AML information (e.g., PAN, government ID, selfie, address) where required
b) Usage & Device
- App/Web activity (pages viewed, clicks, session time)
- Device info (model, OS, browser type, app version), IP address, language, time zone
- Crash logs and diagnostics (for service reliability)
c) Transactions & Wallet
- Deposit/withdrawal records, payment method metadata (masked), bonus credits, referral history
- Invoice/receipt IDs, timestamps
d) Communications
- Emails, chat messages, support tickets, feedback, survey responses
- Marketing preferences (opt-in/opt-out flags)
e) Cookies/SDKs
- Cookies, local storage, pixels, mobile SDK identifiers for authentication, security, analytics, performance, and fraud prevention
We do not store full card numbers or UPI PINs. Payments are handled by compliant gateways.
3) Why we collect & how we use data (Purposes)
- Account setup & access: registration, OTP login, 2FA
- Skill-based gameplay: run features, leaderboards, rewards
- Payments & wallet: deposits, withdrawals, invoicing, refunds
- KYC/AML & legal compliance: identity checks, fraud prevention, state-wise access restrictions
- Security: detect abuse, bots, multiple accounts, VPN/proxy evasion
- Support: respond to chats/tickets, resolve issues
- Promotions/Referrals: apply welcome bonus, daily rewards, invite tracking
- Service improvement: analytics, A/B testing, crash diagnostics
- Communications: transactional alerts (OTP, receipts), service notices, marketing (only if opt-in)
Legal bases under Indian law: consent (where required), performance of contract, compliance with law, and legitimate uses permitted by the DPDP Act (e.g., security, fraud prevention).
4) Cookies & similar technologies
We use:
- Essential cookies (login, session security, CSRF)
- Analytics/performance (e.g., privacy-friendly analytics)
- Functionality (remember preferences)
- Fraud/security (abuse detection)
You can control cookies via your browser/app settings. Blocking essentials may break login or gameplay.
5) Sharing & disclosures
We share data only as needed with:
- Payment processors/gateways (deposits/withdrawals)
- KYC/AML vendors (identity verification)
- Cloud/hosting & CDNs (secure infrastructure)
- Analytics/monitoring (service performance)
- Customer support tools (ticketing/chat)
- Anti-fraud/abuse prevention partners
- Law enforcement/regulators if required by law
We do not sell your personal data. All processors operate under contracts with confidentiality and security obligations.
6) International transfers
Your data may be processed on servers outside your state or outside India (e.g., secure cloud regions). Where applicable, we implement contractual safeguards and vendor due diligence.
7) Data retention
We keep personal data only as long as necessary for:
- Account operation and legal obligations
- KYC/AML, tax, and financial record-keeping
- Dispute resolution and fraud prevention
Retention periods vary by category (e.g., KYC/payment records may be retained for 5–8 years depending on legal needs). When no longer required, we delete or anonymise data.
8) Your rights (DPDP Act)
Subject to law, you may request:
- Access to your personal data
- Correction/Update of inaccurate or incomplete data
- Deletion (where processing is no longer necessary or consent is withdrawn)
- Consent Withdrawal (for marketing or optional features)
- Grievance redressal via our Grievance Officer
We may need to verify your identity before acting on a request. Certain data (e.g., financial/KYC records) may be retained as required by law.
How to exercise rights: email [Email] or use in-app Support.
9) Security measures
We apply administrative, technical, and physical safeguards, including:
- HTTPS/TLS, encryption at rest (where applicable)
- OTP/2FA, device checks, rate limiting
- Access controls, audits, and monitoring
- Secure coding and vulnerability management
No method is 100% secure; we strive to protect your data using industry standards.
10) Children & restricted users
Raja Luck is for adults (18+) only. We do not knowingly collect data from minors. If you believe a minor has registered, contact us for prompt removal.
11) Marketing communications
- Transactional messages (OTP, receipts, service notices) are required.
- Promotional emails/SMS/push are opt-in and include unsubscribe options.
- You can manage preferences via Profile → Notifications or by contacting Support.
12) Third-party links & apps
Our site/app may contain links to third-party sites, app stores, or services. Their privacy practices are independent. Review their policies before use.
13) Changes to this Policy
We may update this Policy to reflect changes in law or services. We’ll revise the “Last updated” date and, where appropriate, notify you in-app or by email. Continued use means you accept the updated Policy.
We aim to acknowledge grievances within 48 hours and resolve them within 30 days.
14) Contact us
For privacy questions or rights requests:
Email: admin@rajawager.net
use the in-app/web Support chat.