Data & Privacy
Privacy Policy
for jitaaic
At jitaaic, we take your privacy seriously. This Privacy Policy explains exactly what personal data we collect when you use our platform, how we use and store that data, who we share it with, and what rights you have over your own information. Transparency is central to how we operate for our players across Bangladesh.
Privacy at a Glance
Our Core Privacy Commitments
These six principles summarise how jitaaic handles your personal data. The full detail for each is set out in the sections below.
We Collect Only What We Need
jitaaic collects only the personal data necessary to deliver our services, verify your identity, process transactions in Bangladeshi Taka (৳), and comply with our legal obligations. We do not collect data speculatively or for purposes we cannot justify.
We Never Sell Your Data
Your personal information is never sold, rented, or traded to any third party for marketing purposes. Any data shared with third-party service providers is governed by strict data processing agreements and limited to what is required for the specific service.
Your Data Is Secured
jitaaic uses industry-standard SSL encryption across all pages and transactions. Account data is stored on secured servers with access controls, audit logging, and regular security reviews to protect against unauthorised access or data breaches.
You Control Your Data
Registered users on jitaaic have the right to access, correct, and request deletion of their personal data. You may also withdraw consent for specific processing activities at any time by contacting our support team at support@jitaaic.
Transparent Cookie Use
We use cookies and similar tracking technologies to keep you logged in, remember your preferences, and understand how players use our platform. We explain each category of cookie clearly so you know exactly what is running when you visit jitaaic.
Defined Retention Periods
We do not retain your personal data indefinitely. jitaaic applies defined retention schedules based on the type of data and the legal basis for holding it. Account data is retained for the period your account is active plus applicable post-closure retention requirements.
Section 1
Information We Collect
jitaaic collects personal data through several channels — directly from you when you register or transact, automatically as you interact with the platform, and occasionally from third parties for verification purposes.
1.1 Registration and Account Data
When you create an account on jitaaic, we collect the personal information you provide during the registration process. This includes your full legal name, date of birth, gender, residential address (including city and district — whether you are based in Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, or elsewhere in Bangladesh), mobile phone number, and the email address you choose to associate with your account. A username and password are also created at registration.
1.2 Identity Verification (KYC) Data
To comply with our obligations regarding age verification and anti-money laundering (AML) requirements, jitaaic may request documentary evidence from you at certain points — typically before your first withdrawal or if unusual activity is flagged on your account. Documents we may request include a copy of your Bangladesh National Identity Card (NID), passport, or birth certificate, and in some cases a recent utility bill or bank statement confirming your registered address. These documents are processed securely and retained only for as long as necessary under our data retention policy.
1.3 Financial and Transaction Data
When you make a deposit or request a withdrawal, jitaaic collects the data required to process that transaction. Depending on the payment method used — whether bKash, Nagad, Rocket, Upay, Visa, Mastercard, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, or Sonali Bank — this may include your mobile wallet number, bank account number, card details (where applicable), or other payment identifiers. We retain a record of all transactions, including amounts in Bangladeshi Taka (৳), timestamps, and payment method references, for accounting, fraud prevention, and AML compliance purposes.
jitaaic does not store full payment card numbers on its own servers. Card payment processing is handled via our payment gateway partners, who maintain their own PCI-DSS compliant data security infrastructure.
1.4 Usage and Behavioural Data
As you use jitaaic, we automatically collect data about how you interact with the platform. This includes pages and games visited, betting and wagering history, game session durations, search queries entered, features clicked, and the sequence of actions taken during a session. This behavioural data helps us improve the platform, personalise your experience, detect problem gambling patterns, and identify potential fraud.
1.5 Device and Technical Data
We collect technical information about the device and software you use to access jitaaic. This includes your IP address, device type and model, operating system and version, browser type and version, screen resolution, language settings, time zone (we note that the majority of our users operate in Bangladesh Standard Time, UTC+6), and connection type. This data is used for security monitoring, platform compatibility, and fraud detection.
1.6 Communications Data
If you contact jitaaic customer support — whether via live chat, email to support@jitaaic, or any other communication channel we make available — we retain a record of that communication and any personal data you include within it. This enables us to follow up on support requests, maintain quality standards, and resolve disputes.
1.7 Data Collected from Third Parties
In some circumstances, jitaaic may receive personal data about you from third-party sources. These include identity verification service providers (who help us confirm your NID or passport data against national records), fraud detection services, and payment processors who flag disputed or potentially fraudulent transactions. Data received from these sources is handled with the same level of care as data you provide directly.
Section 2
How We Use Your Data
jitaaic uses personal data collected from users for the following purposes. We rely on a combination of legal bases for processing — primarily the performance of a contract (your account agreement with us), compliance with legal obligations, and our legitimate interests in operating a secure and fair gaming platform.
| Purpose of Processing | Legal Basis | Data Categories Involved |
|---|---|---|
| Creating and managing your jitaaic account | Contract performance | Registration data, identity data |
| Processing deposits and withdrawals in ৳ | Contract performance | Financial data, transaction data |
| Age and identity verification (KYC) | Legal obligation | Identity documents, date of birth |
| Fraud detection and prevention | Legitimate interests | Device data, behavioural data, financial data |
| Anti-money laundering (AML) compliance | Legal obligation | Financial data, identity data, transaction history |
| Customer support and dispute resolution | Contract performance | Communications data, account data |
| Platform improvement and personalisation | Legitimate interests | Usage data, behavioural data |
| Responsible gaming monitoring | Legal obligation / Legitimate interests | Behavioural data, wagering history |
| Sending account-related notifications | Contract performance | Contact data |
| Sending promotional communications (with consent) | Consent | Contact data, preferences |
| Security monitoring and incident response | Legitimate interests | Device data, technical data, IP address |
Marketing Communications
jitaaic will only send you promotional messages — including bonus offers, seasonal promotions tied to events such as Eid, Pohela Boishakh, BPL, IPL, or T20 World Cup, and other marketing content — where you have given explicit consent at registration or have subsequently opted in. You may withdraw your consent to marketing communications at any time by contacting support@jitaaic or using the unsubscribe option included in any marketing message. Withdrawal of marketing consent will not affect our ability to send you essential service communications related to your account.
Automated Decision-Making
jitaaic uses automated processing for certain risk assessment functions, including fraud detection, bonus abuse identification, and responsible gaming alerts. Where an automated process results in a decision that significantly affects you — such as account suspension or withdrawal delay — you have the right to request human review of that decision by contacting our support team.
Section 3
Data Sharing & Disclosure
Third-Party Service Providers
jitaaic works with a number of third-party service providers in order to deliver the platform and its services. These providers may process personal data on our behalf and are bound by data processing agreements that restrict their use of your data to the specific purpose for which it is shared. Categories of third-party providers include:
- Payment processors — including the technical infrastructure supporting bKash, Nagad, Rocket, Upay, Visa, and Mastercard transactions, who receive financial data necessary to execute transactions.
- Identity verification providers — third-party KYC services that cross-reference the documents you submit with national or authoritative data sources to confirm your identity and age.
- Game content providers — studios such as Pragmatic Play, Evolution Gaming, Ezugi, Microgaming, NetEnt, and Spribe whose games are hosted within the jitaaic platform. These providers may receive session identifiers and wagering data as part of the technical integration required to deliver their games.
- Fraud and risk management services — providers who analyse transactional and behavioural data to detect and prevent fraud and money laundering.
- Hosting and infrastructure providers — the cloud and server infrastructure partners on whose systems jitaaic data is stored and processed.
- Analytics providers — services that help us understand aggregate platform usage patterns. Where analytics involve personal data, it is processed under pseudonymisation or aggregation techniques wherever possible.
Legal Disclosures
jitaaic may be required to disclose personal data in response to a lawful request from a government authority, law enforcement body, or court order. We will only make such disclosures where we are satisfied that the request is legally valid and proportionate. Where permitted by law, jitaaic will make reasonable efforts to notify the affected user of any such disclosure.
Business Transfers
In the event that jitaaic undergoes a merger, acquisition, restructuring, or sale of all or part of its assets, user personal data may be transferred as part of that transaction. Where such a transfer occurs, the acquiring entity will be required to honour the commitments made in this Privacy Policy or provide you with advance notice and an opportunity to exercise your data rights before any material change in how your data is processed.
International Data Transfers
Some of jitaaic's third-party service providers operate outside of Bangladesh. Where your personal data is transferred outside of your home jurisdiction, jitaaic ensures that appropriate safeguards are in place — including contractual data protection clauses with service providers — to ensure that your data continues to receive a level of protection equivalent to that provided under this Privacy Policy.
Section 5
Data Retention
jitaaic retains personal data only for as long as is necessary to fulfil the purpose for which it was collected, or as required by applicable legal, regulatory, or contractual obligations. The following table summarises our standard retention periods by data category.
| Data Category | Retention Period | Reason |
|---|---|---|
| Account registration data | Duration of account + 5 years post-closure | AML compliance and dispute resolution |
| Identity verification documents | Duration of account + 5 years post-closure | Legal obligation (AML / KYC) |
| Transaction and financial records | 7 years from transaction date | Financial record-keeping requirements |
| Wagering and gameplay history | Duration of account + 3 years post-closure | Dispute resolution and responsible gaming |
| Customer support communications | 3 years from last communication | Quality assurance and dispute resolution |
| Device and technical / IP logs | 13 months from collection | Security monitoring and fraud detection |
| Marketing consent records | Until consent is withdrawn + 3 years | Evidence of lawful processing basis |
| Analytics data (aggregated) | 26 months (anonymised thereafter) | Platform performance analysis |
When the applicable retention period for a given data category expires, jitaaic will securely delete or irreversibly anonymise that data. Where data cannot be immediately deleted due to technical constraints (for example, where it exists in backup archives), jitaaic will isolate that data from active processing until it can be permanently removed.
If you request deletion of your personal data before the standard retention period has expired, jitaaic will assess your request and delete as much data as our legal obligations permit. Data that must be retained to comply with AML, KYC, or financial record-keeping requirements cannot be deleted prior to the expiry of the relevant statutory period, regardless of a deletion request.
Section 6
Data Security
jitaaic implements a layered approach to data security, combining technical, organisational, and procedural controls designed to protect your personal data against unauthorised access, disclosure, alteration, or destruction.
Our technical security measures include TLS/SSL encryption for all data in transit, encrypted storage of sensitive data fields at rest, strong password hashing using industry-standard algorithms, two-factor authentication (2FA) availability for user accounts, role-based access controls limiting internal system access to authorised personnel only, automated intrusion detection and anomaly monitoring, and regular security patching of all platform components.
Organisational security measures include background screening for personnel with access to personal data, mandatory data privacy training, defined data breach response procedures, and periodic internal audits of data handling practices.
Data Breach Response
In the event that jitaaic becomes aware of a data security incident that poses a risk to your personal data, we will take immediate steps to contain and investigate the incident. Where the breach is likely to result in a significant risk to affected users, jitaaic will notify affected users without undue delay, providing information about the nature of the breach, the categories of data affected, the steps we have taken in response, and any actions you should take to protect yourself.
Your Responsibility
While jitaaic takes all reasonable steps to protect your data on our side, you are responsible for maintaining the security of your account. This means choosing a strong, unique password, enabling 2FA if available, not sharing your login credentials, and logging out of your session when using shared or public devices. If you believe your account has been compromised, contact support@jitaaic immediately.
Section 7
Your Privacy Rights
As a user of jitaaic, you have a number of rights in relation to the personal data we hold about you. These rights are set out below. To exercise any of these rights, please contact our support team at support@jitaaic with the subject line "Privacy Rights Request". We will respond to all valid requests within a reasonable timeframe and in any event within 30 days of receipt.
Right of Access
You have the right to request a copy of the personal data jitaaic holds about you, along with information about how it is being processed.
Right to Rectification
If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or update it without undue delay.
Right to Erasure
You may request deletion of your personal data where it is no longer necessary for the purpose it was collected, or where you withdraw consent. This right is subject to legal retention obligations.
Right to Restrict Processing
In certain circumstances, you may ask jitaaic to restrict the processing of your personal data — for example, while the accuracy of data is being contested or while an objection is being assessed.
Right to Data Portability
Where processing is based on your consent or on contract performance, you may request a copy of the personal data you provided to us in a structured, machine-readable format for transfer to another service.
Right to Object
You have the right to object to processing of your personal data carried out on the basis of legitimate interests, including profiling. You may also object at any time to processing of your data for direct marketing purposes.
jitaaic will not charge a fee for handling a rights request unless it is manifestly unfounded or excessive, in which case we may charge a reasonable administrative fee or decline to respond. We may ask you to verify your identity before processing a request to ensure we are disclosing data only to the account holder.
Where we decline a request, we will provide you with a written explanation. You retain the right to escalate unresolved privacy concerns by contacting our support team, and we are committed to resolving all complaints in good faith.
Section 8
Contact & Complaints
If you have any questions about this Privacy Policy, wish to exercise any of your privacy rights, or have a concern about how jitaaic is handling your personal data, please contact our privacy support team using the details below.
jitaaic Privacy Support
Email: support@jitaaic (plain text — not a clickable link)
Response time: Within 30 days of receipt of a valid request
Language: English
Hours: Available 7 days a week, Bangladesh Standard Time (UTC+6)
Complaint Handling Process
Upon receiving your complaint or request, jitaaic will acknowledge it within 5 business days. We will then investigate the matter and provide a substantive response within 30 calendar days. For complex requests that require additional time, we will notify you of the extended timeline and the reason for the delay.
We take all privacy complaints seriously and are committed to resolving them fairly and transparently. If you are not satisfied with our response, you are entitled to escalate the matter through the appropriate channels available in your jurisdiction.
Updates to This Privacy Policy
jitaaic reviews and updates this Privacy Policy periodically to reflect changes in our data practices, applicable laws, or platform features. When material changes are made, we will notify registered users via email or a prominent notice on the jitaaic platform before the changes take effect. The effective date at the top of this page will always reflect the date of the most recent revision. Continued use of jitaaic after a policy update constitutes your acknowledgement of the revised terms.
We encourage you to review this Privacy Policy regularly to stay informed about how jitaaic protects your personal data and what rights you have as a user of our platform. If you have any concerns about a particular revision, please contact us before the changes take effect.
Explore jitaaic
Ready to Start Playing on jitaaic?
Now that you know how we protect your data, explore everything jitaaic has to offer — from cricket betting and live dealer tables to slots and fishing games, all in Bangladeshi Taka (৳).