Data & Privacy
Privacy Policy — aac67 Online Casino
aac67 is committed to protecting the privacy and personal data of every player on our platform. This Privacy Policy explains in plain, formal English exactly what data we collect, why we collect it, how we use it, and what rights you have over your information.
1. Introduction & Scope
This Privacy Policy ("Policy") is issued by aac67 ("the Company", "we", "us", "our") and applies to all personal data collected, processed, stored, or transmitted in connection with the operation of the aac67 platform, accessible at aac67.app, including all games, betting services, payment systems, customer support channels, and promotional programmes offered thereunder (collectively, the "Service").
By registering an account on aac67, accessing any part of the Service, or submitting personal data to us through any channel, you acknowledge that you have read, understood, and consented to the practices described in this Policy. If you do not agree with any part of this Policy, you should not use the Service.
aac67 operates its Service for players located in Bangladesh, including users in Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, and Cox's Bazar. The data practices described herein reflect the Company's commitment to handling player information responsibly and in accordance with internationally recognised principles of data protection.
Our Core Privacy Commitment: aac67 collects only the personal data that is strictly necessary to provide and improve the Service, verify player identity, process payments, and comply with applicable legal obligations. We do not sell your personal data to third parties under any circumstances.
1.1 Changes to This Policy
aac67 reserves the right to amend, update, or replace this Policy at any time. Where a material change is made, we will notify registered users via email to their registered address or via a prominent notice on the platform, and we will update the effective date displayed at the top of this document. Your continued use of the Service after any such amendment constitutes your acceptance of the revised Policy. We encourage you to review this page periodically.
1.2 How to Contact Us
If you have any questions, concerns, or requests regarding this Policy or the way your personal data is handled by aac67, please contact our Data Protection team directly. All privacy-related enquiries are handled in strict confidence and we aim to respond within 5 business days. Contact us at: [email protected]
2. Data We Collect
aac67 collects personal data from you through several means: information you provide directly when registering or using the Service, information generated automatically by your use of the platform, and information received from trusted third-party sources such as payment providers and identity verification agencies. The categories of personal data we collect are set out below.
2.1 Data You Provide Directly
When you register an account, make a deposit or withdrawal, contact customer support, or participate in a promotion, you may provide us with the following categories of personal data:
| Data Category | Examples | When Collected |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, nationality | Account registration; KYC verification |
| Contact Data | Email address, mobile phone number, residential address | Account registration; support enquiries |
| Identity Documents | National ID scan, passport copy, utility bill, selfie with ID | KYC verification; withdrawal processing |
| Financial Data | bKash/Nagad mobile wallet number, bank account details, transaction history | Deposits; withdrawals; fraud screening |
| Account Credentials | Username, hashed password | Account registration |
| Communications Data | Live chat transcripts, support email content, feedback forms | Customer support interactions |
2.2 Data Collected Automatically
When you access and use the aac67 Service, certain technical and behavioural data is collected automatically by our systems. This includes:
- Device & Technical Data: IP address, device type, operating system, browser type and version, screen resolution, and time zone setting;
- Usage Data: Pages visited, games played, session duration, bet amounts and outcomes, bonus activity, and feature interactions;
- Log Data: Server-side logs recording access times, error reports, and platform events;
- Location Data: Approximate geographic location inferred from your IP address, used for compliance and fraud detection purposes. We do not collect precise GPS-level location data.
2.3 Data Received From Third Parties
aac67 may receive personal data about you from the following categories of trusted third-party sources:
- Payment Processors: Transaction confirmation data, wallet identifiers, and payment status updates from bKash, Nagad, Rocket, Upay, and banking partners;
- Identity Verification Providers: Verification outcomes and document authenticity signals from our KYC service partners;
- Fraud Detection Services: Risk scores, device fingerprints, and behavioural anomaly flags from fraud prevention partners;
- Marketing Partners: Where you have consented to receive marketing from a partner and that partner shares your contact details with us in accordance with their own privacy policy.
3. How We Use Your Data
aac67 uses your personal data only for specified, explicit, and legitimate purposes. We do not process your data in a manner that is incompatible with the purposes for which it was originally collected. The primary purposes for which we use personal data are as follows:
3.1 Service Delivery
The majority of the personal data we hold is used directly to deliver and maintain the aac67 Service. This includes creating and administering your player account, verifying your identity and age as required by our responsible gaming and anti-fraud policies, processing deposits and withdrawals via your chosen payment method, enabling you to participate in games and betting markets, and providing customer support.
3.2 Legal and Regulatory Compliance
aac67 is required to process certain personal data in order to comply with applicable legal obligations. These include Know Your Customer (KYC) and Anti-Money Laundering (AML) obligations, the detection and reporting of suspicious transactions, the prevention of underage gambling, the maintenance of records required for audit and regulatory review, and the fulfilment of any lawful requests from competent authorities in Bangladesh or internationally.
3.3 Security and Fraud Prevention
We use personal data, device data, and behavioural signals to identify and prevent fraudulent activity, account takeover attempts, bonus abuse, money laundering, collusion, and other forms of misconduct that could harm individual players or the integrity of the platform. Where a security risk is identified, we may restrict account access pending investigation.
3.4 Responsible Gaming
aac67 uses player activity data — including session duration, frequency of play, deposit patterns, and loss rates — to identify players who may be exhibiting signs of problem gambling. This data is used to trigger responsible gaming interventions such as reality check pop-ups, limit review prompts, and welfare-focused outreach from our support team. This processing is carried out in the interests of player welfare and is an integral part of our duty of care.
3.5 Marketing Communications
Where you have given your explicit consent, aac67 may use your contact data (email address and mobile number) to send you promotional communications, including bonus offers, tournament invitations, and platform news. You may withdraw your consent at any time by updating your communication preferences in your account settings or by contacting us at [email protected]. Withdrawal of consent does not affect the lawfulness of any processing carried out prior to the withdrawal.
No Automated Decision-Making: aac67 does not make decisions that produce legal or similarly significant effects on individual players solely through automated means without human review. Where automated systems flag an account for investigation, a human compliance officer reviews the case before any material action is taken.
4. Data Sharing & Disclosure
aac67 does not sell, rent, or trade your personal data to any third party for commercial purposes. We share personal data only in the limited circumstances described below, and only to the extent strictly necessary for the specified purpose.
4.1 Service Providers and Sub-Processors
aac67 engages trusted third-party service providers to assist in the operation of the Service. These providers act as data processors on our behalf and are contractually obligated to process personal data only on our documented instructions and to maintain appropriate technical and organisational security measures. Categories of service provider include:
- Payment processing and mobile wallet platforms (bKash, Nagad, Rocket, Upay, and banking partners);
- KYC and identity verification technology providers;
- Fraud detection and risk management platforms;
- Cloud hosting, database, and infrastructure providers;
- Customer support software and live chat platforms;
- Email delivery and SMS notification services;
- Analytics and platform performance monitoring tools.
4.2 Legal and Regulatory Disclosures
aac67 may disclose personal data to competent governmental, regulatory, law enforcement, or judicial authorities where we are required to do so by applicable law, regulation, court order, or other binding legal process. In such circumstances, we will disclose only the minimum data required to satisfy the legal obligation and will, where legally permissible, notify the affected user of the disclosure.
4.3 Business Transfers
In the event that aac67 undergoes a merger, acquisition, restructuring, or sale of all or part of its assets, personal data held by the Company may be transferred to the acquiring entity as part of that transaction. In such an event, we will notify affected users via email or a prominent platform notice prior to the transfer taking effect, and the acquirer will be bound by this Policy or a policy that offers equivalent or greater protections.
We Never Sell Your Data: aac67 will never sell or otherwise commercially exploit your personal data to third-party advertisers, data brokers, or any other entity. Your data is used solely to operate, improve, and protect the aac67 Service and to comply with our legal obligations.
5. Cookies & Tracking Technologies
aac67 uses cookies and similar tracking technologies on its platform to ensure the correct functioning of the Service, improve the user experience, and gather aggregated analytical data about platform usage. This section explains what these technologies are, what categories of cookies we use, and how you can control them.
5.1 What Are Cookies
A cookie is a small text file placed on your device by a website when you visit it. Cookies allow the website to recognise your device on subsequent visits, maintain session state, store your preferences, and collect usage data. Similar technologies include web beacons, pixel tags, local storage objects, and session tokens.
5.2 Categories of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Authentication tokens, session management, security protections. Cannot be disabled — essential to the Service. | Session |
| Functional | Remembering language preference, game display settings, responsible gaming tool configurations. | Up to 12 months |
| Analytical | Aggregated page-view counts, feature usage statistics, error tracking. Used to improve platform performance. | Up to 24 months |
| Marketing | Tracking of promotional campaign attribution and affiliate referral source. Applied only with explicit consent. | Up to 30 days |
5.3 Managing Your Cookie Preferences
You may control non-essential cookies through your browser settings. Most modern browsers allow you to block, delete, or receive alerts for cookies. Please note that disabling strictly necessary cookies will impair or prevent your ability to use core features of the aac67 Service, including logging in and conducting financial transactions. Detailed instructions for managing cookies are available in the help documentation for your browser of choice.
6. Data Retention
aac67 retains personal data for as long as is necessary to fulfil the purposes for which it was collected, including the purposes of satisfying legal, accounting, audit, or reporting requirements. The retention periods we apply reflect the nature of the data, the purpose of processing, and applicable legal obligations.
6.1 Active Account Data
For as long as your account remains active and in good standing, aac67 will retain your identity data, contact data, financial data, and transaction history in full. This data is necessary to provide the Service, process payments, and fulfil our responsible gaming and AML obligations on an ongoing basis.
6.2 Post-Closure Retention
Following the closure or termination of your aac67 account — whether initiated by you or by the Company — we will retain the following data for a minimum period of five (5) years from the date of closure:
- KYC identity documents and verification records;
- Financial transaction records, including all deposits, withdrawals, and bonus transactions;
- Account registration data and account history;
- Communications related to support, complaints, and compliance matters.
This retention period reflects our obligations under AML regulations and the prudent need to maintain records that may be required in the event of a legal dispute, regulatory audit, or fraud investigation arising after account closure.
6.3 Marketing Data
Where you have consented to receive marketing communications from aac67, we will retain your contact data for marketing purposes until you withdraw your consent. Upon withdrawal of consent, your contact data will be removed from our active marketing lists within 10 business days, though it may be retained in suppression lists to ensure we do not inadvertently contact you again.
7. Your Privacy Rights
aac67 respects your right to understand and control how your personal data is used. The following rights are available to all registered users of the aac67 Service. To exercise any of the rights listed below, please contact us in writing at [email protected]. We will respond to all valid requests within 30 calendar days of receipt. In certain cases, we may request proof of identity before processing a request to protect against unauthorised access.
Request a copy of the personal data aac67 holds about you, along with information about how it is being used.
Request correction of any inaccurate or incomplete personal data held in your account profile.
Request deletion of your personal data where it is no longer necessary for the purpose for which it was collected, subject to legal retention obligations.
Request that we restrict the processing of your data in certain circumstances, for example while a dispute is being investigated.
Request a structured, machine-readable copy of the personal data you provided to us, where technically feasible.
Object to the processing of your data for direct marketing purposes. You may also object to processing based on legitimate interests.
Limitations on Erasure Requests: The right to erasure is not absolute. aac67 may decline an erasure request where retention of the data is required by law — for example, to comply with AML record-keeping obligations or to defend against a legal claim. In such cases, we will explain the basis for retention clearly in our response.
8. Data Security
aac67 implements comprehensive technical and organisational security measures designed to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. While no online platform can guarantee absolute security, we apply industry-standard practices across every layer of our infrastructure.
8.1 Technical Safeguards
Our technical security measures include, among others:
- Transport Encryption: All data transmitted between your device and our servers is protected using 256-bit TLS/SSL encryption. The aac67.app domain enforces HTTPS at all times;
- At-Rest Encryption: Sensitive personal data and financial records stored in our databases are encrypted at rest using AES-256 encryption;
- Password Security: Account passwords are hashed using a strong one-way hashing algorithm; plain-text passwords are never stored or transmitted;
- Access Controls: Internal access to personal data is restricted on a need-to-know basis. Staff with access to player data undergo background screening and are bound by confidentiality obligations;
- Intrusion Detection: aac67 operates continuous monitoring systems that detect and alert on anomalous access patterns, brute-force attempts, and other attack vectors.
8.2 Organisational Safeguards
In addition to technical controls, aac67 maintains a comprehensive data protection governance framework. This includes documented data processing policies and procedures, regular staff training on data protection and information security, periodic internal audits and vulnerability assessments, a formal incident response plan covering containment, investigation, and notification, and clear accountability structures with designated responsibility for data protection compliance.
8.3 Data Breach Notification
In the unlikely event of a personal data breach that is likely to result in a risk to the rights and freedoms of affected individuals, aac67 will notify the affected users without undue delay and in any event within 72 hours of becoming aware of the breach, to the extent that notification is practicable. The notification will describe the nature of the breach, the categories of data affected, the likely consequences, and the steps aac67 has taken or proposes to take to address the breach.
Your Role in Security: aac67's security measures protect the platform end, but the security of your account also depends on you. Use a unique, strong password for your aac67 account, do not share your login credentials with anyone, and contact us immediately at [email protected] if you suspect any unauthorised access.
Why Your Privacy Matters to Us
Our Privacy Commitments at a Glance
aac67 built its privacy framework around six core commitments. Here is a plain-English summary of what each one means for you as a player in Bangladesh.
We Never Sell Your Data
Your personal information — name, contact details, financial data, and gameplay history — will never be sold, rented, or traded to any third-party advertiser, data broker, or commercial entity. Your data stays within the aac67 ecosystem and its essential service providers.
256-Bit SSL Protection
Every interaction between your device and the aac67 platform is encrypted with 256-bit TLS technology. This is the same encryption standard used by leading international banks, ensuring that your personal and financial data cannot be intercepted in transit.
You Control Your Data
aac67 gives you meaningful control over your personal information. You can access, correct, or request deletion of your data at any time. You can also opt out of marketing communications instantly from your account settings or by contacting our support team.
Minimal Data Collection
We collect only the personal data that is genuinely necessary to provide you with a safe, compliant, and enjoyable gaming experience. We do not engage in speculative data collection, and every field requested at registration or verification serves a documented purpose.
Clear Retention Limits
aac67 does not retain your personal data indefinitely. Active account data is held for as long as your account exists. After closure, financial and identity records are kept for five years to meet AML and legal obligations — after which data is securely destroyed.
Transparent Breach Notification
If a data security incident ever affects your personal information, aac67 commits to notifying affected users within 72 hours of becoming aware of the breach. We will clearly explain what happened, what data was involved, and what steps we are taking to protect you.
Your Privacy Is Protected
Experience Safe, Trusted Gaming at aac67
aac67 is built on a foundation of trust, transparency, and security. Now that you understand how we protect your data, explore our full range of casino games, cricket betting, and slot titles — all in a secure environment designed for Bangladesh players.