Privacy policy
Yono Rummy: Comprehensive Privacy Policy & Data Security Framework
1. Introduction: Our Commitment to Your Privacy
At Yono Rummy, we recognize that your privacy is not just a digital requirement—it is a fundamental right. As India’s premier destination for skill-based gaming, we handle sensitive information ranging from identity documents to financial transaction data. This Privacy Policy outlines how we collect, store, process, and protect your personal data in accordance with the Information Technology Act, 2000 and the Digital Personal Data Protection (DPDP) Act, 2023.
By registering an account with Yono Rummy, you consent to the practices described in this policy. We ensure that your data is used exclusively to enhance your gaming experience, ensure fair play, and comply with the stringent financial regulations of the Union of India.
2. Information We Collect
To provide a secure and legally compliant environment, Yono Rummy collects two types of information: Personal Identifiable Information (PII) and Non-Personal Information (NPI).
2.1 Personal Identifiable Information (PII)
This includes data that can be used to uniquely identify you as an individual. In the context of Indian gaming laws, this is mandatory for KYC (Know Your Customer) purposes.
- Identity Data: Full name, date of birth, and gender.
- Contact Data: Mobile number, email address, and residential address.
- Government Identifiers: Permanent Account Number (PAN) and Aadhaar details (processed via masked/UIDAI-compliant methods).
- Financial Data: Bank account details, UPI IDs, and transaction history.
2.2 Non-Personal Information (NPI)
This is technical data that helps us optimize the app performance and detect fraud.
- Device Data: IP address, device model, operating system, and unique device identifiers.
- Usage Data: Game session duration, preferred Rummy variants, and interaction patterns.
- Geolocation Data: Crucial for ensuring that users are not playing from «Restricted States» like Telangana or Assam.
3. Data Processing and Legal Compliance
The following table summarizes why we collect specific data and the Indian regulatory authorities that govern these requirements.
| Data Category | Primary Purpose | Retention Period | Legal Authority |
|---|---|---|---|
| KYC Documents | Identity Verification & Anti-Fraud | 5 Years Post-Account Closure | FIU-IND Guidelines |
| Transaction Logs | TDS Calculation & Payouts | 8 Financial Years | Income Tax Dept. |
| Geolocation | Jurisdictional Compliance | Duration of Active Session | MeitY India |
4. Data Security and Encryption Standards
Yono Rummy employs military-grade security protocols. Every byte of data transmitted between your device and our servers is protected using TLS 1.3 and 256-bit AES encryption.
4.1 Internal Access Control
We follow the principle of «Least Privilege.» Access to PII is restricted to a small team of verified compliance officers. Every access event is logged and audited by our internal Security Operations Center (SOC).
4.2 Financial Integrity
We do not store your full card numbers or CVVs. All payments are processed through PCI-DSS compliant gateways like Razorpay or Cashfree, ensuring that your financial footprint remains invisible even to us.
5. User Rights and Data Portability
Under the DPDP Act 2023, Indian citizens have the right to:
- Right to Access: Request a summary of the personal data being processed.
- Right to Correction: Update inaccurate or outdated information.
- Right to Erasure: Request the deletion of data (subject to legal retention mandates).
- Right to Withdraw Consent: Opt-out of non-essential data processing (e.g., marketing).
Interactive Security & Trust Trends
This chart illustrates the increase in data security investments at Yono Rummy alongside the rise of digital trust in the Indian iGaming sector.
Yono Rummy: Data Protection Investment Index (2022-2026)
*Investment includes AI-based fraud detection, blockchain-ledgers for data integrity, and DPDPA compliance auditing.
Cookies, Third-Party Disclosures, and Specialized Protections
6. Cookie Policy and Automated Tracking
To enhance the user experience and ensure platform stability, Yono Rummy utilizes cookies and similar tracking technologies (such as beacons and pixels). These small text files allow us to recognize your device upon return, maintain your login session, and personalize the interface according to your preferred Rummy variants.
6.1 Types of Cookies Used
- Essential Cookies: Required for the application to function. These manage secure logins and financial transactions.
- Performance Cookies: These help us understand how users interact with the app, identifying lag or crashes in real-time.
- Functional Cookies: Used to remember your language settings (e.g., Hindi, Tamil, Telugu) and UI preferences.
You can manage or disable cookies through your browser or device settings. However, please note that certain core features of the Yono Rummy casino may become inaccessible if essential cookies are blocked.
7. Disclosure to Third Parties and International Transfers
We do not sell, trade, or rent your personal data to third parties for marketing purposes. However, to provide a seamless gaming experience, we share data with a limited group of «Data Processors» under strict confidentiality agreements.
7.1 Authorized Data Processors
- Payment Gateways: To process UPI, IMPS, and NetBanking transactions via PCI-DSS compliant partners.
- KYC Verification Services: To validate PAN and Aadhaar details against government databases (UIDAI/IT Dept).
- Cloud Infrastructure: Data is hosted on secure, localized servers within India (AWS/Google Cloud India regions) to comply with data residency mandates.
The following table details the categories of third parties we interact with and the regulatory bodies ensuring their compliance.
| Partner Category | Data Shared | Security Standard | Compliance Body |
|---|---|---|---|
| FinTech Partners | UPI ID, Bank Acc No. | PCI-DSS Level 1 | RBI Guidelines |
| Cloud Hosting | Encrypted User Logs | ISO 27001 | CERT-In India |
| Auditors | Anonymized RNG Logs | SOC2 Type II | EGF Fairplay |
Retention, Breaches, and Grievance Redressal
8. Data Retention and Erasure Policy
In accordance with the DPDP Act 2023, Yono Rummy only retains your data for as long as necessary to fulfill the purposes for which it was collected.
- Active Accounts: Data is retained for the duration of the account’s existence.
- Closed Accounts: For legal compliance, identity and financial records are archived for 5 to 8 years (as per FIU-IND and Income Tax requirements) and then permanently purged.
- Marketing Data: If you opt-out of marketing, your contact details are removed from the promotion list within 48 hours.
9. Data Breach Notification Protocol
While our encryption makes a breach highly unlikely, we have a rigorous response plan in place. In the event of a significant data security incident, Yono Rummy will:
- Notify CERT-In: Report the incident to the Indian Computer Emergency Response Team within the mandatory 6-hour window.
- User Communication: Notify affected users via registered email/SMS regarding the nature of the breach and steps they should take (e.g., password resets).
- Remediation: Deploy our incident response team to isolate the breach and prevent further data loss.
10. Protection of Minors
Yono Rummy is strictly for individuals aged 18 and older. We do not knowingly collect data from minors. If we discover that an account has been created by a minor, the account will be immediately terminated and all data deleted. We encourage parents to use internet filtering software to prevent access to gaming sites.
11. Grievance Redressal Officer
In compliance with the Information Technology (Intermediary Guidelines) Rules, we have appointed a dedicated Grievance Officer to address any privacy concerns or complaints.
- Designation: Grievance Officer, Yono Rummy
- Email:
[email protected] - Response Time: We acknowledge all complaints within 24 hours and resolve them within 15 working days.
12. Updates to this Policy
As the Indian digital laws (like the DPDPA) continue to evolve, we will update this policy accordingly. Significant changes will be announced via an in-app popup. Your continued play after such updates indicates your consent to the new terms.
13. Conclusion
Your trust is the engine of Yono Rummy. By blending high-speed Rummy action with world-class data protection, we ensure that your only focus is the strategy on the table. We remain committed to being the most transparent and secure gaming platform in India.
14. Reaching the Data Protection Office
If you have any specific inquiries regarding the processing of your personal data, wish to exercise your rights under the Digital Personal Data Protection (DPDP) Act 2023, or have concerns about your account security, our dedicated privacy team is available to assist you. We maintain a transparent communication line to ensure that every Indian player feels secure and heard.
For all data-related matters, including requests for data erasure or correction of KYC details, please use the following official channels:
- Primary Support Email: [email protected]
- Data Protection Helpline: +91 120 4841100
- Operating Hours: 10:00 AM to 7:00 PM (IST), Monday through Saturday.
- Response Guarantee: We aim to acknowledge all email queries within 24 hours and provide a detailed resolution or status update within 3 to 5 business days.
🛡️ Final Privacy Affirmation
By continuing to use the Yono Rummy platform, you acknowledge that you have read and understood this 14-section Privacy Policy. You agree to the collection, storage, and processing of your data as described, specifically for the purposes of fair play, legal compliance, and the secure execution of financial transactions within the Indian gaming ecosystem.
Your privacy is our priority. Play smart, play secure.
Comments