Privacy Policy — aac365
At aac365, the privacy and security of every player's personal data is a fundamental commitment, not an afterthought. This Privacy Policy explains in plain terms exactly what personal information we collect from players across Bangladesh, why we collect it, how we use and protect it, and the rights available to you regarding your data. Please read this document carefully before using the aac365 platform.
Your Data Stays Yours
aac365 does not sell, rent, or trade your personal information to third parties for their own marketing purposes. Your data is used exclusively to operate the platform, process payments, verify your identity, and improve your experience.
256-Bit SSL Encryption
All data transmitted between your device and the aac365 platform is protected by industry-standard 256-bit SSL encryption. This applies to all registration data, payment information, and in-session communications.
Identity Verification (KYC)
We collect identification documents as part of our Know Your Customer process to confirm your age (18+), verify your identity, and prevent fraud. KYC documents are stored securely and never shared beyond what is required for compliance purposes.
Transparent Cookie Use
aac365 uses cookies and similar tracking technologies solely to maintain your session, personalise content, analyse site performance, and support responsible gaming monitoring. You can manage cookie preferences through your browser settings.
You Control Your Data
Registered players may request access to, correction of, or deletion of their personal data held by aac365 at any time by contacting our support team. Requests are processed within 30 days in accordance with this Privacy Policy.
Secure Payment Data
Payment details processed via bKash, Nagad, Rocket, and bank transfer are handled through secure, encrypted payment gateways. aac365 does not store full payment credentials on its servers — only the minimum reference data required for account reconciliation.
Information We Collect
aac365 collects personal information from you in several ways — directly when you register an account or make a transaction, automatically when you browse and use the platform, and occasionally from verified third-party sources as part of our identity verification process. The categories of personal data we may collect are described below.
Registration and Account Data
When you create an aac365 account, we collect the following information:
- Full legal name as it appears on your national identity documents.
- Date of birth (to verify you are 18 years of age or older).
- Residential address within Bangladesh (city, district, and postal code).
- Mobile number registered in Bangladesh (used for account verification and OTP authentication).
- Email address (unique per account; used for account communications and security alerts).
- Username and encrypted password.
Identity Verification (KYC) Documents
To comply with our age verification and anti-fraud obligations, aac365 may request one or more of the following documents:
- National Identity Card (NID) issued by the Bangladesh Election Commission.
- Valid passport issued by the Government of Bangladesh.
- Birth certificate (where NID or passport is unavailable).
- Proof of address (e.g., utility bill or bank statement dated within 90 days).
- Screenshot or confirmation of your mobile wallet registration (bKash, Nagad, Rocket) linked to your account.
Financial and Transaction Data
When you make a deposit or withdrawal, aac365 records transaction details including the amount (in BDT), payment method used, transaction timestamp, and a payment provider reference number. We do not store complete mobile wallet PINs or bank account login credentials.
Usage and Technical Data
When you browse and interact with the aac365 platform, our servers automatically record certain technical information, including:
- IP address and approximate geographic location (city-level, derived from IP).
- Device type, operating system, and browser version.
- Pages visited, features used, games played, and time spent on each section.
- Referring URL (the page you visited immediately before arriving at aac365).
- Session duration, login timestamps, and logout timestamps.
- Betting and gameplay history, including wager amounts, game titles, and outcomes.
This technical and behavioural data is used to maintain platform security, detect fraudulent or suspicious activity, support responsible gaming monitoring, and improve the overall player experience. It is not used to build advertising profiles for external parties.
Communications Data
If you contact our support team via live chat or email, we retain a record of your correspondence, including your name, contact details, the content of your enquiry, and any resolution steps taken. This data is used solely to resolve your support request and to improve our customer service quality.
How We Use Your Information
aac365 processes your personal data for the specific, lawful purposes described below. We do not use your data for any purpose that is incompatible with the reason for which it was originally collected.
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Account registration and authentication | Name, email, mobile number, password | Contract performance |
| Age verification and KYC compliance | Date of birth, NID, passport, address proof | Legal obligation; contract performance |
| Processing deposits and withdrawals | Transaction data, payment method reference | Contract performance |
| Fraud detection and platform security | IP address, device data, betting history, login logs | Legitimate interest; legal obligation |
| Responsible gaming monitoring | Gameplay frequency, session duration, deposit patterns | Legal obligation; legitimate interest |
| Customer support communications | Name, email, support correspondence | Contract performance; legitimate interest |
| Platform analytics and improvement | Usage data, device data, aggregated gameplay stats | Legitimate interest |
| Promotional communications (opt-in only) | Email, mobile number, gameplay preferences | Consent |
Marketing Communications
aac365 will only send you promotional emails or SMS messages about bonuses, new games, and seasonal offers if you have explicitly opted in to receive such communications during registration or via your account settings. You may withdraw your consent and unsubscribe from marketing communications at any time by adjusting your notification preferences within your aac365 account, or by contacting support at [email protected]. Opting out of marketing does not affect the delivery of transactional communications (such as deposit confirmations, withdrawal notifications, and security alerts), which are sent as a necessary part of your account service.
Automated Decision-Making
aac365 uses automated systems to detect patterns consistent with fraud, money laundering, bonus abuse, and underage gambling. Where an automated review flags an account, a human member of the aac365 compliance team reviews the case before any material action — such as account suspension or withdrawal restriction — is taken. You have the right to request a manual review of any decision that affects your account by contacting our support team.
Sharing of Personal Data
aac365 does not sell, rent, or trade your personal data to any third party for commercial purposes. We share your data only with trusted parties where it is strictly necessary to deliver the services you have requested, meet our legal obligations, or protect the security and integrity of the platform.
Third-Party Service Providers
We work with a limited number of third-party service providers who process data on our behalf under binding data processing agreements. These include:
- Payment processors: bKash, Nagad, Rocket (Dutch-Bangla Bank), and affiliated banking partners receive only the transaction data necessary to process your deposits and withdrawals.
- Game providers: Pragmatic Play, Evolution Gaming, Ezugi, NetEnt, Spribe, and Microgaming receive your account session token (not your full personal profile) to deliver licensed game content.
- Identity verification services: Where automated KYC tools are used to cross-reference your submitted documents, your name and document reference may be passed to the verification provider. This data is not retained by the provider beyond the verification transaction.
- Cloud infrastructure and hosting providers: aac365's platform operates on secure cloud infrastructure. Server-side data is stored in encrypted form. Our hosting providers do not have access to your data in an unencrypted state.
- Analytics platforms: We use privacy-safe, aggregated analytics to understand platform usage patterns. Individual player data is anonymised before being processed for analytical purposes.
Legal and Regulatory Disclosures
aac365 may be required to disclose personal data to government bodies, law enforcement agencies, or financial intelligence units where required by applicable law or in response to a valid legal order. Such disclosures are made only to the extent strictly required by the relevant legal obligation, and we will notify you of any such disclosure where we are legally permitted to do so.
Business Transfers
In the event that aac365 undergoes a merger, acquisition, restructuring, or sale of assets, your personal data may be transferred to the acquiring entity as part of that transaction. You will be notified in advance of any such transfer, and the acquiring entity will be required to honour the commitments made in this Privacy Policy with respect to your personal data.
Cookies & Tracking Technologies
aac365 uses cookies and similar client-side technologies (such as local storage and session tokens) to operate key platform functions, personalise your experience, and collect anonymised analytics data. This section explains what cookies we use and how you can control them.
What Are Cookies?
Cookies are small text files that a website stores on your browser or device when you visit. They allow the website to recognise your device on subsequent visits, remember your preferences, and maintain your logged-in session. Cookies do not contain executable code and cannot be used to access other data on your device.
Types of Cookies Used by aac365
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Maintains your logged-in session, processes bets and transactions, prevents cross-site request forgery (CSRF) | Session |
| Functional | Remembers your language preference, display settings, and last-visited game category | Up to 12 months |
| Analytics | Collects anonymised data on page views, session duration, and feature usage to improve the platform | Up to 12 months |
| Responsible Gaming | Tracks session duration and gameplay frequency to support self-imposed limits and automated responsible gaming alerts | Session / persistent |
Managing Your Cookie Preferences
You can control and manage cookies through your browser settings. Most modern browsers allow you to view, block, or delete cookies stored by specific websites. Please note that disabling strictly necessary cookies will prevent you from logging into your aac365 account and using real-money game features. Disabling functional or analytics cookies will not affect your ability to use the core platform but may result in a less personalised experience.
For guidance on managing cookies in your specific browser, refer to the help documentation for Chrome, Firefox, Safari, Opera, or your mobile browser of choice. These are third-party resources outside of aac365's control.
Data Security Measures
aac365 implements a comprehensive set of technical and organisational security measures to protect your personal data from unauthorised access, loss, misuse, alteration, and disclosure. While no system can guarantee absolute security, we continuously review and update our security practices to address emerging threats.
Technical Safeguards
- Transport Layer Security (TLS/SSL): All data transmitted between your device and the aac365 platform is encrypted using TLS 1.2 or higher with 256-bit encryption. This protects your login credentials, payment information, and personal data during transit.
- Password hashing: Account passwords are never stored in plain text. We use industry-standard one-way cryptographic hashing with salting to store password credentials.
- Two-factor authentication (2FA): Players are encouraged to enable OTP-based two-factor authentication on their accounts. 2FA adds a second layer of identity verification, significantly reducing the risk of unauthorised account access.
- Intrusion detection and monitoring: Our platform is monitored continuously for unusual activity patterns, brute-force login attempts, and other indicators of compromise. Alerts trigger immediate investigation by our security team.
- Access controls: Access to player data within aac365's internal systems is restricted on a strict need-to-know basis. Staff access is role-based, logged, and reviewed regularly.
Organisational Safeguards
- All staff members with access to player data are required to complete data protection training and are bound by confidentiality obligations.
- Third-party service providers who process player data on behalf of aac365 are subject to contractual data security requirements and periodic review.
- aac365 maintains an incident response plan. In the event of a confirmed data breach that poses a risk to player rights, affected players will be notified without undue delay.
Data Retention & Deletion
aac365 retains your personal data only for as long as is necessary to fulfil the purposes for which it was collected, or as required by applicable legal and regulatory obligations. The retention periods below reflect our standard practice.
| Data Category | Retention Period | Reason |
|---|---|---|
| Account registration data | Duration of account + 5 years after closure | Legal obligation; audit trail |
| KYC / identity documents | Duration of account + 5 years after closure | Anti-money laundering compliance |
| Transaction records | 7 years from transaction date | Financial record-keeping requirements |
| Gameplay and betting history | Duration of account + 3 years after closure | Dispute resolution; responsible gaming audit |
| Support correspondence | 3 years from last interaction | Quality assurance; dispute resolution |
| Marketing preferences and consent records | Until consent is withdrawn + 1 year | Consent management |
| Technical / server logs | 90 days rolling | Security monitoring; fraud detection |
Account Deletion Requests
If you close your aac365 account and wish to request deletion of your personal data, you may submit a data deletion request to [email protected]. Please note that certain categories of data — particularly financial transaction records and KYC documents — may be retained beyond account closure to satisfy our legal and regulatory obligations, as described in the retention schedule above. We will confirm the scope of any deletion and clearly explain which data must be retained and for how long.
Your Privacy Rights
As a registered player on aac365, you have the following rights with respect to your personal data. To exercise any of these rights, please contact our support team at [email protected]. We will respond to all valid requests within 30 days.
- Right of Access: You have the right to request a copy of the personal data aac365 holds about you, together with an explanation of how it is being used. We will provide this in a clear, readable format.
- Right to Rectification: If any of your personal data held by aac365 is inaccurate or incomplete, you have the right to request that it be corrected. You may update certain account details directly within your account settings without contacting support.
- Right to Erasure: Subject to our legal retention obligations (see Section 6), you may request deletion of your personal data. We will confirm what can be deleted and what must be retained, with reasons.
- Right to Restrict Processing: You may request that we restrict the processing of your personal data in certain circumstances — for example, while the accuracy of data you have contested is being verified.
- Right to Data Portability: Where technically feasible, you may request that we provide your personal data in a structured, machine-readable format so that it can be transferred to another service provider.
- Right to Withdraw Consent: Where processing is based on your consent (e.g., marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.
- Right to Object: You have the right to object to processing of your personal data that is based on aac365's legitimate interests, where you believe your individual circumstances override those interests.
Updates to This Policy
aac365 reserves the right to update or amend this Privacy Policy at any time. Changes may be made to reflect updates in applicable law, changes to the services we offer, or improvements to our data handling practices. The effective date at the top of this page will always reflect the date of the most recent revision.
Where changes to this Privacy Policy are material — meaning they significantly alter your rights or our obligations — aac365 will provide advance notice to registered players via email or a prominent notice displayed upon login. Your continued use of the aac365 platform following the effective date of any revised Privacy Policy constitutes your acceptance of those changes.
If you have questions about this Privacy Policy, wish to exercise any of your data rights, or wish to report a potential data protection concern, please contact our dedicated support team. We are available 24 hours a day, 7 days a week, via live chat and at [email protected].
Children's Privacy
The aac365 platform is strictly intended for adults aged 18 and above. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that personal data has been submitted by or on behalf of a person under 18, we will delete that data promptly and close the associated account. If you believe a minor has registered on aac365 using your device or contact details, please notify us immediately at [email protected].
Links to Third-Party Content
The aac365 platform may reference third-party game providers, payment processors, and sporting organisations. This Privacy Policy applies solely to data processed by aac365. Third-party services — including bKash, Nagad, Rocket, and game provider platforms — are governed by their own privacy policies, which aac365 does not control. We encourage you to review the privacy policies of any third-party service you use in connection with your aac365 account.
Your Privacy is Protected. Now Enjoy the Platform.
With your data secured by 256-bit SSL encryption and our strict no-selling policy in place, you can focus on what matters — exploring hundreds of games, live sports betting, and exclusive promotions on aac365.