MegaPari Privacy Policy

Personal data we collect

• Identity details – full name, date of birth, government-issued identification, selfies for verification, country of residence.
• Contact details – mobile number, email, address.
• Account and usage – username, settings, preferences, support tickets, responsible gaming limits, logs of betting and gaming activity.
• Financial and transaction information – payment method tokens from providers, deposits, withdrawals, wagers, winnings, chargebacks.
• Technical data – device identifiers, IP address, browser type, operating system, language, time zone, cookies and similar technologies.
• Compliance information – results of KYC checks, sanctions and PEP screening, source of funds information where required by law.

Why we collect this information

• To create and manage the user account and provide services.
• To verify identity, assess eligibility, and protect users against fraud and misuse.
• To process payments and meet tax, AML, and betting regulatory obligations.
• To operate, secure, and improve the websites, apps, and user experience.

Technical and organisational safeguards

• Encryption in transit using TLS, and encryption or tokenisation for sensitive records where appropriate.
• Access controls, multi-factor authentication, least-privilege permissions, and logging.
• Segregated environments, regular security testing, and supplier due diligence.
• Staff confidentiality undertakings and data protection training.
• Retention schedules that limit storage to what is necessary for the purposes and the law.

Your rights under Kenya law

• Access – request a copy of your personal data.
• Correction – ask to fix inaccurate or incomplete information.
• Deletion – request erasure where allowed by law.
• Restriction and objection – limit or object to certain processing.
• Portability – receive data in a structured, commonly used format where feasible.
• Consent – withdraw consent at any time for activities based on consent.
• Complaint – lodge a complaint with the Office of the Data Protection Commissioner.

Regulatory compliance

• Kenya Data Protection Act, 2019 and the Data Protection (General) Regulations, 2021.
• Betting, Lotteries and Gaming Act and the requirements of the Betting Control and Licensing Board.
• Proceeds of Crime and Anti-Money Laundering Act and related regulations.
• International best practice, including principles consistent with GDPR such as purpose limitation, data minimisation, and accountability.

We use personal data lawfully, fairly, and in a transparent manner for the following purposes:

• Account services – registration, authentication, account management, responsible gaming tools.
• Transactions – deposits, withdrawals, payment reconciliation, fraud detection, chargeback handling.
• Service improvement – troubleshooting, analytics, performance monitoring, feature development.
• Customer support – responding to enquiries, complaints, and dispute resolution.
• Marketing – personalised messages only where the user has given consent, and always with an option to opt out.
• Compliance – KYC, AML screening, sanctions checks, age verification, reporting to regulators and tax authorities where required.
• Security – monitoring, incident response, and risk management to protect users and the platform.

Legal bases for processing

• Consent provided by the user.
• Contract performance to deliver requested services.
• Legal obligation under Kenyan law and licensing conditions.
• Legitimate interests such as security, fraud prevention, and service improvement, balanced against user rights.

How to exercise your rights

• Access and update: use account settings for basic details, or submit a request through the support channel available on the site.
• Correction: provide evidence where needed and specify the inaccurate information to be rectified.
• Deletion: request closure and erasure; some records may be retained if required by AML, betting, or tax laws.
• Verification: we may ask for proof of identity to protect your account and information.
• Timelines: requests are handled within a reasonable time and within the timelines required by Kenyan law.

Consent to checks and payment processing

• By using MegaPari, the user consents to identity and security checks needed to prevent fraud and to comply with KYC and AML rules.
• Payment information may be processed by licensed payment providers for deposits, withdrawals, and dispute handling according to their own regulatory obligations.

• Services are restricted to persons aged 18 years and above as required under Kenyan law.
• The operator cannot confirm age without reviewing identification documents during verification.
• If personal data of a minor is discovered, the account will be closed and the information will be deleted where legally allowed.
• Parents or guardians may contact support to request deletion of a minor’s information and provide proof of relationship.

• Personal data may be processed in other countries where service partners and processors operate to support account services, customer care, hosting, and payments.
• By using the site, the user consents to such transfers.
• Transfers are protected by safeguards required under Kenyan law and international standards, including data processing agreements, standard contractual clauses, and audit rights.
• All partners are bound by confidentiality, security, and data protection obligations, and are assessed for their ability to protect information.

• This disclaimer explains the limits of the policy and may adjust how certain rules apply where required by law, licence conditions, or regulator instructions.
• If any part of this document conflicts with mandatory law, the law prevails.
• The operator may update this document to reflect legal, technical, or operational changes.
• The disclaimer applies when the user accepts the policy by signature, by clicking to accept, or by accession under applicable law.

What cookies are

• Cookies are small text files placed on a device to store settings and identify the browser during future visits.

How cookies are used

• Strictly necessary cookies – enable core site functions and account login.
• Performance and statistics – measure site usage and improve reliability.
• Functionality – remember preferences and personalise content.
• Advertising and analytics – understand user behaviour and manage marketing subject to consent.

Controls and retention

• Cookie data is retained for up to 1 year unless a shorter or longer period is required by law or technical need.
• Users can manage or delete cookies in browser settings. Some site features may not function if certain cookies are disabled.

• Using MegaPari constitutes full acceptance of this Privacy Policy and all incorporated terms.
• If the policy is updated, the current version published on the site prevails and applies from the date of posting unless another effective date is stated.

• Personal data may be shared with third parties to meet legal obligations, resolve disputes, enforce agreements, process payments, deliver games, provide hosting and security, and support customer services.
• Where the site lists these parties or categories, that list applies. If not listed, the user will be informed of the purpose and scope before sharing where required by law.
• Providing information for these purposes constitutes consent to processing by such providers subject to applicable legal bases and safeguards.

• The site may contain links to external websites that have their own privacy policies and practices.
• The operator is not responsible for how those websites collect, use, or protect personal information.
• Users should review the privacy notices of external sites and exercise care before sharing any data.