Privacy Policy
for jitaace2
At jitaace2, your personal data is handled with the utmost care. This Privacy Policy explains exactly what information we collect when you use our platform, why we collect it, how we use and protect it, and what rights you hold as a registered player in Bangladesh.
This Privacy Policy ("Policy") describes how jitaace2 ("the Platform", "we", "us", "our") collects, uses, stores, discloses, and protects the personal information of registered players and visitors ("you", "your") who access or use the jitaace2 website and related services. By creating a jitaace2 account or continuing to use our platform, you acknowledge that you have read and understood this Policy and consent to the data practices described herein.
jitaace2 is committed to responsible data governance. We handle personal information in accordance with the principles of data minimisation, purpose limitation, storage limitation, integrity, confidentiality, and accountability. This Policy should be read together with our Terms & Conditions and Responsible Gaming Policy.
1 Information We Collect
jitaace2 collects personal information from you in several ways: directly when you register or interact with the platform, automatically when you browse or play, and from third parties such as payment processors and identity verification providers. The categories of information we collect are outlined below.
| Data Category | Examples | Collection Method |
|---|---|---|
| Identity Data | Full legal name, date of birth, National ID (NID), passport number, driving licence | Account registration & KYC verification |
| Contact Data | Email address, Bangladesh mobile number, residential address | Account registration form |
| Financial Data | Deposit and withdrawal amounts, bKash/Nagad/Rocket transaction references, bank account details for verification | Cashier transactions |
| Technical Data | IP address, device type, operating system, browser type, session tokens | Automatic — collected on every visit |
| Usage Data | Pages visited, games played, bet amounts, session duration, click paths | Automatic — platform analytics |
| Communications Data | Live chat transcripts, support emails, feedback submissions | Customer support interactions |
| Marketing Preferences | Promotional opt-in/opt-out status, preferred communication channel | Account settings & consent forms |
We do not collect sensitive personal data such as racial or ethnic origin, political opinions, religious beliefs, or health data unless specifically required by our responsible gaming obligations (for example, if you disclose a gambling-related health concern when requesting self-exclusion). In such cases, the data is used solely to facilitate the responsible gaming measure you have requested and is not used for any other purpose.
2 How We Use Your Data
jitaace2 processes your personal data only where we have a legitimate legal basis for doing so. The lawful bases we rely upon include: your explicit consent (where required), the performance of a contract with you (your account agreement), compliance with a legal obligation, and our legitimate business interests where these do not override your fundamental rights.
- Account administration: We use your identity and contact data to create and manage your jitaace2 account, process your registration, authenticate your login sessions, and communicate essential account information to you.
- Payment processing: Financial data is used to process deposits and withdrawals via bKash, Nagad, Rocket, Upay, and connected Bangladeshi bank accounts. Transaction records are maintained for accounting, fraud prevention, and compliance purposes.
- Identity verification (KYC): We are required to verify the identity and age of all players before processing withdrawals. Your identity documents and personal details are shared with our KYC verification partners for this purpose.
- Fraud prevention and security: Technical data including IP addresses and device identifiers is analysed to detect and prevent fraudulent activity, multi-accounting, money laundering, and unauthorised account access.
- Responsible gaming compliance: Usage data and account behaviour are monitored to identify signs of problem gambling. Where concerns are identified, we may use this data to contact you with responsible gaming resources or to apply protective account restrictions.
- Platform improvement: Aggregated and anonymised usage data is used to analyse platform performance, identify technical issues, improve game recommendations, and enhance the overall jitaace2 user experience.
- Promotional communications: Where you have opted in to marketing communications, we will use your contact data and preferences to send you relevant promotions, including seasonal offers for Eid, Pohela Boishakh, BPL cricket season campaigns, and other jitaace2 events. You may opt out at any time via your account settings.
- Legal and regulatory compliance: We may process and retain your personal data where required to comply with applicable legal obligations, respond to lawful requests from regulatory or law enforcement authorities, or defend legal claims.
3 Data Sharing & Disclosure
jitaace2 does not sell, rent, or trade your personal data to any third party for their own commercial purposes. We share personal information only in the limited circumstances described below, and only to the extent strictly necessary for the stated purpose.
- Payment service providers: We share necessary financial and identity data with bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, Islami Bank, City Bank, Sonali Bank, Visa, and Mastercard solely to process your deposits and withdrawals. These providers are contractually bound to process your data only as instructed by jitaace2 and in accordance with applicable data protection requirements.
- KYC and identity verification partners: To fulfil our age verification and anti-money laundering (AML) obligations, we share identity documents and personal details with accredited third-party verification providers. These partners process your data exclusively for the purpose of identity verification and are prohibited from using it for any other purpose.
- Game content providers: When you play games supplied by third-party studios such as Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, or Ezugi, limited technical data (such as your account identifier and session token) is shared with those providers solely to deliver and log game sessions. Game providers do not receive your full personal profile.
- Legal and regulatory authorities: We may disclose your personal data to relevant government bodies, law enforcement agencies, or regulatory authorities where required to do so by applicable law, court order, or regulatory direction. We will notify you of any such disclosure where we are legally permitted to do so.
- Business transfers: In the event of a merger, acquisition, or sale of all or a portion of jitaace2's business assets, personal data held by jitaace2 may be transferred to the acquiring entity as part of that transaction. You will be notified of any such transfer and any resulting material change to this Privacy Policy via your registered email address.
- Professional advisors: We may share limited personal data with our legal counsel, auditors, and compliance consultants where strictly necessary for them to provide professional advice or services to jitaace2. All such parties are bound by professional confidentiality obligations.
4 Cookies & Tracking Technologies
jitaace2 uses cookies and similar lightweight tracking technologies to operate core platform functionality, maintain secure login sessions, and gather anonymised analytics data that helps us improve our service. We do not use third-party advertising networks or cross-site tracking technologies.
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Maintain your logged-in session, store language preferences, prevent cross-site request forgery (CSRF) | Session / up to 24 hours |
| Functional | Remember your preferred deposit method, game display settings, and responsible gaming limit preferences | Up to 90 days |
| Analytics | Measure page performance, track navigation flows, identify technical errors — data is aggregated and anonymised before analysis | Up to 12 months |
| Security | Detect suspicious login patterns, flag unusual device changes, support fraud detection algorithms | Session / up to 30 days |
Strictly necessary cookies cannot be disabled as they are essential for the platform to function securely. You may control functional and analytics cookies via your browser settings. Please note that disabling certain cookies may affect the functionality of some jitaace2 features, such as remembered preferences or seamless login. Consult your browser's help documentation for guidance on managing cookies on your device.
5 Data Security & Retention
jitaace2 implements a multi-layered technical and organisational security framework to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. Our security measures include, but are not limited to:
- 256-bit SSL/TLS encryption for all data transmitted between your browser or mobile device and jitaace2 servers.
- Encrypted data storage for sensitive personal and financial records held on jitaace2 infrastructure, using AES-256 encryption at rest.
- Two-factor authentication (2FA) available for all player accounts, providing an additional layer of login security beyond username and password.
- Role-based access controls that restrict access to personal data among jitaace2 staff to only those individuals who require it to perform their job functions.
- Regular security audits and penetration testing conducted by independent third-party security specialists to identify and remediate vulnerabilities.
- Intrusion detection and monitoring systems that operate continuously to identify and respond to suspicious activity on the jitaace2 platform in real time.
Data Retention: jitaace2 retains your personal data for the period necessary to fulfil the purposes described in this Policy, unless a longer retention period is required by applicable law. The general principles governing our retention schedules are as follows:
- Active accounts: Personal data is retained for the full duration of your active account relationship with jitaace2.
- Closed accounts: Following account closure, identity data, KYC documents, and financial transaction records are retained for a minimum of five years to comply with anti-money laundering and financial record-keeping obligations.
- Support communications: Live chat transcripts and support emails are retained for a period of two years from the date of the interaction, after which they are securely deleted.
- Analytics data: Anonymised and aggregated usage analytics are retained indefinitely as they contain no personal identifiers. Raw usage logs are purged after 12 months.
- Self-exclusion records: Where you have requested self-exclusion from jitaace2, a record of your exclusion is retained for the duration of the exclusion period plus five years, to prevent you from registering a new account during that period.
6 Your Rights as a Player
jitaace2 respects your rights with regard to your personal data. As a registered player, you may exercise the following rights in relation to the personal information we hold about you. To submit a data rights request, please contact our support team via live chat in your account dashboard or by emailing support@jitaace2. We will respond to all verifiable requests within 30 days.
- Right of access: You have the right to request a copy of all personal data jitaace2 holds about you. We will provide this information in a clear, structured format free of charge. A reasonable administrative charge may apply for manifestly unfounded or excessive repeat requests.
- Right to rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct it. Certain changes to identity data may require documentary evidence as part of our KYC compliance process.
- Right to erasure: You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, where you have withdrawn consent, or where processing was unlawful. Please note that this right is subject to our legal obligations to retain certain data — for example, transaction records required for AML compliance cannot be deleted on request.
- Right to restriction: You may request that we restrict the processing of your personal data in certain circumstances — for example, while the accuracy of data is being contested, or while we are assessing a legitimate interest objection you have raised.
- Right to data portability: Where processing is based on your consent or on a contract with you, and processing is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another service provider of your choice.
- Right to object: You have the right to object to the processing of your personal data where processing is based on our legitimate interests. You also have the right to object at any time to the use of your personal data for direct marketing purposes, including profiling related to direct marketing.
- Right to withdraw consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal. Withdrawal of consent for marketing communications can be done via your account settings or by contacting support.
7 Third-Party Services & Links
The jitaace2 platform integrates with a number of third-party service providers to deliver a complete gaming and payments experience. While jitaace2 carefully selects and contracts with these providers, we wish to be transparent about the third-party ecosystem within which the platform operates.
- Game studios: Casino and sports betting content is provided by internationally recognised studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi. These providers may collect limited technical session data to deliver their games. Their data practices are governed by their own privacy policies, which are separate from this Policy.
- Payment processors: Transaction data is processed by bKash, Nagad, Rocket, Upay, and connected banking partners. These providers are independently regulated financial institutions with their own data protection obligations. jitaace2 is not responsible for the data practices of these providers once data has left our systems.
- Analytics providers: jitaace2 uses privacy-focused, server-side analytics tools to measure platform performance. These tools process only aggregated, anonymised data and do not place third-party cookies in your browser or cross-reference your jitaace2 activity with any external data source.
- Customer support tools: Our live chat and email support infrastructure is powered by third-party support platforms. Communications conducted via these channels are stored on the provider's servers in accordance with their data retention policies and jitaace2's contractual data processing instructions.
jitaace2 does not control the privacy practices of third-party service providers and is not responsible for their independent data collection or use. We encourage you to review the privacy policies of any third-party service with which you interact in connection with your use of jitaace2. jitaace2 does not include links to external websites within this platform beyond those necessary for payment and game delivery, and is not responsible for the content or privacy practices of any external site.
8 Policy Updates & Contact
jitaace2 reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data practices, applicable law, or operational requirements. When a material change is made to this Policy, we will notify registered players via the email address associated with their account and by posting a prominent notice on the jitaace2 platform for a minimum of 14 days following the update.
The effective date at the top of this Policy will be updated whenever a revision is published. Your continued use of jitaace2 following the posting of any updated Privacy Policy constitutes your acceptance of the revised terms. If you do not agree with any change to this Policy, you should cease using the platform and may request account closure in accordance with our Terms & Conditions.
Contact our Privacy Team: If you have any questions, concerns, or requests relating to this Privacy Policy or the personal data jitaace2 holds about you, please contact us using any of the following channels:
- Live Chat: Available 24/7 directly from your jitaace2 account dashboard. Average response time under five minutes during peak Bangladesh evening hours (18:00–24:00 BST, UTC+6).
- Email: Contact our support team by emailing the address displayed in the footer of every jitaace2 page. Our data privacy team monitors this inbox during all standard operating hours.
- WhatsApp Support: Reachable via the contact number displayed in the footer, available daily from 09:00 to 24:00 BST (UTC+6). WhatsApp support handles account-level queries and can direct you to the appropriate data rights team for formal requests.
Governing Language: This Privacy Policy is written in English and is binding in its English form. Any translation provided for convenience does not supersede the English version. In the event of a conflict between a translation and the English text, the English text shall prevail.
Governing Law: This Policy shall be governed by and construed in accordance with applicable law. Disputes arising from this Policy shall be handled in accordance with the dispute resolution provisions set out in the jitaace2 Terms & Conditions.