Goa Games - Privacy Policy

Information We Collect

Personal Information You Provide

When you register on Goa Games at goagameswin.in.net, we collect your full name, email address, mobile number, and date of birth. If you make a deposit or withdrawal using payment instruments such as PhonePe, Google Pay (GPay), BHIM UPI, net banking, or debit cards, we also collect the transaction reference number, UPI VPA, or masked card details required to process and reconcile that payment securely. Minimum deposit and withdrawal thresholds may trigger additional verification steps before funds are credited or released.

KYC and Verification Documents

To comply with Indian anti-money-laundering requirements, we collect government-issued identity documents during KYC verification. Accepted documents include a PAN card, Aadhaar card, Voter ID, or passport. The KYC process follows three steps: document upload, automated format validation, and manual review by our compliance team within 24 to 48 hours. Aadhaar data is handled strictly in accordance with the Aadhaar (Targeted Delivery of Financial and Other Subsidies, Benefits and Services) Act, 2016, and is never stored in raw form beyond the period required for verification. PAN verification is mandatory for cumulative annual winnings above ₹10,000, in line with TDS rules under Section 194B of the Income Tax Act, 1961.

Automatically Collected Technical Data

Each time you visit Goa Games, our servers automatically log your IP address, device type, operating system, browser version, referring URL, pages viewed, and session duration. We use cookies and similar technologies to remember your preferences, keep your session active, and measure how different platform features are used. You can control cookie behaviour through your browser settings, though disabling certain cookies may affect login persistence and game-loading performance.

How We Use Your Information

Account Management and Transaction Processing

Your personal and financial data is used to create and maintain your Goa Games account, authenticate logins, process deposits and withdrawals via supported payment rails, including PhonePe, GPay, BHIM UPI, and net banking, and send transactional confirmations by SMS or email within minutes of each event. Accurate payment data ensures funds reach the correct account and that disputes with payment processors can be resolved efficiently. For failed transactions, we retain the error code and timestamp for up to 90 days to assist with reconciliation.

Legal Compliance and Fraud Prevention

We process KYC documents and transaction histories to meet our obligations under the Prevention of Money Laundering Act, 2002 (PMLA), and guidelines issued by the Financial Intelligence Unit, India (FIU-IND). Financial and identity records are retained for a minimum of five years as mandated by these regulations. We also analyse behavioural signals, such as logins from a new city, unusually large deposits compared to account history, or rapid successive withdrawals, to detect fraud and protect all players on the platform. Accounts flagged by our risk engine are reviewed by our compliance team before any withdrawal above ₹50,000 is released.

Platform Improvement and Marketing

Aggregated, de-identified usage data helps us identify performance bottlenecks, test new game formats, and prioritise feature development. With your explicit consent, we send promotional offers, bonus announcements, and tournament alerts by SMS or email. You may withdraw this consent at any time via the unsubscribe link in any marketing message or through your account notification settings, unsubscription takes effect within 48 hours. We do not sell your personal data to third parties under any circumstances.

Your Rights

Access, Correction, and Deletion

Under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 (DPDPA), you have the right to access the personal data we hold about you, request corrections to inaccurate information, and, subject to our legal retention obligations, request erasure of your data. To exercise any of these rights, email us at the address in the Contact Us section; we will acknowledge your request within 72 hours and respond fully within 30 days.

Consent Withdrawal and Grievance Redressal

You may withdraw consent for marketing communications at any time without affecting the lawfulness of prior processing. If you believe your data has been handled improperly, you may raise a formal grievance with our designated Grievance Officer, who will respond within 15 business days. Under the DPDPA, you are also entitled to nominate another individual to exercise your data rights on your behalf in the event of incapacity. Unresolved complaints may be escalated to the Data Protection Board of India once the Board becomes fully operational.

Contact Us

How to Reach Us

For privacy-related queries, data access requests, or complaints, email us at [email protected]. We respond to all enquiries within 30 days of receipt.