Data Protection Policy
jtae9 Privacy Policy — How We Handle Your Personal Data
At jtae9, protecting the personal data of every player across Bangladesh is a responsibility we take seriously. This Privacy Policy explains in plain, formal English what information we collect when you use our platform, why we collect it, how it is stored and secured, who it may be shared with, and what rights you hold over your own data. Please read this document carefully before using the jtae9 platform.
Our Commitments
Five Privacy Principles That Guide jtae9
Before diving into the full legal text, these five principles summarise how jtae9 approaches data privacy for every player on the platform. They reflect our core commitment to transparency, security, and your right to control your own information.
jtae9 collects only the personal data that is strictly necessary for account registration, identity verification, payment processing, and legal compliance. We do not collect data speculatively or build profiles beyond what is required to deliver a safe and functional gaming experience to players across Bangladesh.
All personal data held by jtae9 is stored on encrypted servers protected by 256-bit SSL technology. Access to player data is restricted to authorised personnel only, and all internal data access is logged and audited on a regular basis to detect and prevent unauthorised activity.
jtae9 does not sell, rent, or trade your personal data to third-party advertisers, data brokers, or marketing agencies. Your information is never monetised by jtae9 outside of the specific operational and legal purposes described in this Privacy Policy.
Every jtae9 player retains the right to access, correct, and request deletion of their personal data at any time. We respond to all verified data requests within 30 days of receipt and provide clear documentation of what data we hold on you upon request.
We clearly document every category of data we collect, the legal basis for processing it, and how long we retain it. There are no hidden data practices at jtae9. This Privacy Policy is written in plain English so that every player in Bangladesh can understand exactly what we do with their information.
jtae9 is designed to serve players across Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, and the wider Bangladesh market. Our data practices take into account the payment methods, connectivity patterns, and privacy expectations of Bangladeshi players using bKash, Nagad, Rocket, and Upay.
Section 01
Data We Collect
jtae9 collects personal data from you in several ways: directly from you when you register and use the platform, automatically through your device and browser, and from third-party service providers involved in payment processing and identity verification.
1.1 — Registration Data
When you create a jtae9 account, we collect the following information which you provide directly:
- Full legal name (as it appears on your government-issued identity document);
- Date of birth (used to verify that you are at least 18 years of age);
- Residential address (including city, district, and postal code within Bangladesh);
- Email address (used for account communications and verification);
- Mobile phone number (used for authentication and transaction alerts);
- Username and encrypted password (credentials for accessing your account).
1.2 — Identity Verification (KYC) Data
As part of our Know Your Customer (KYC) obligations, we may collect copies of the following documents when required for account verification or prior to processing a withdrawal:
- Government-issued National Identity Card (NID) or passport;
- Proof of residential address (utility bill or bank statement dated within 90 days);
- Proof of payment method ownership — for example, a screenshot of your bKash, Nagad, or Rocket account showing your registered name and number;
- Source of funds documentation where deposits exceed ৳50,000 within a rolling 30-day period.
1.3 — Financial Transaction Data
Every deposit, withdrawal, and bonus redemption generates a transaction record. We collect and store the following financial data in connection with your jtae9 account activity:
- Payment method used (bKash, Nagad, Rocket, Upay, bank name, card type);
- Transaction amounts in Bangladeshi Taka (BDT);
- Transaction timestamps and reference numbers;
- Deposit and withdrawal history for the lifetime of your account.
We do not store full card numbers or mobile banking PINs. Card and mobile wallet authentication is handled by the respective payment service provider's secure infrastructure.
1.4 — Gaming Activity Data
jtae9 maintains records of your gaming activity on the platform. This data is used for responsible gaming monitoring, dispute resolution, and regulatory compliance purposes:
- Games played, bet amounts, win/loss outcomes, and session durations;
- Sports betting markets accessed, stake amounts, and settlement outcomes;
- Bonus usage, wagering progress, and promotional redemption history;
- Self-exclusion or deposit limit requests and their effective dates.
1.5 — Technical and Device Data
When you access the jtae9 platform via browser or mobile device, our servers and analytics systems automatically collect certain technical data:
- IP address and approximate geolocation (country/city level);
- Device type, operating system, and browser version;
- Pages visited, time spent on each page, and navigation flow;
- Referring URL (the website or link that directed you to jtae9);
- Session duration and login frequency.
- Registration & identity data
- KYC verification documents
- Financial transaction records
- Gaming activity & history
- Device & technical data
- Support correspondence
- Cookies & tracking data
Section 02
How We Use Your Data
jtae9 processes your personal data only for clearly defined, legitimate purposes. The table below documents each processing purpose alongside its legal basis and the categories of data involved.
| Processing Purpose | Legal Basis | Data Categories Used |
|---|---|---|
| Account registration and authentication | Contractual necessity | Registration data, device data |
| Age and identity verification (KYC) | Legal obligation | Registration data, KYC documents |
| Processing deposits and withdrawals | Contractual necessity | Financial transaction data, KYC data |
| Fraud prevention and security monitoring | Legitimate interest | Device data, transaction data, gaming activity |
| Responsible gaming monitoring and tools | Legal obligation / legitimate interest | Gaming activity, deposit history |
| Customer support and dispute resolution | Contractual necessity | Registration data, transaction data, correspondence |
| Personalised promotions and bonus offers | Consent / legitimate interest | Gaming activity, registration data |
| Platform analytics and performance improvement | Legitimate interest | Technical/device data, session data |
| Legal and regulatory compliance reporting | Legal obligation | All categories as required |
2.1 — Marketing Communications
Where you have provided consent during registration or subsequently via your account preferences, jtae9 may contact you by email or SMS with information about promotions, bonuses, new game launches, or special events relevant to the Bangladesh market — such as Eid special offers, BPL cricket betting promotions, or Pohela Boishakh seasonal campaigns. You may withdraw your consent to receive marketing communications at any time by updating your account notification preferences or by contacting [email protected]. Withdrawal of marketing consent does not affect the lawfulness of processing that occurred prior to withdrawal.
2.2 — Automated Decision-Making
jtae9 employs automated systems to assess certain account activities, including fraud detection, unusual betting patterns, and responsible gaming triggers such as rapid deposit escalation or extended session durations. Where an automated process results in a material account action — such as a temporary payment hold or a mandatory responsible gaming prompt — you have the right to request human review of that decision by contacting our support team. jtae9 does not use automated profiling to make decisions with significant legal effects on your account without human oversight.
Section 03
Data Sharing & Disclosure
jtae9 does not sell your personal data. We may share limited categories of your data with carefully selected third parties only where it is necessary to deliver our services or comply with legal obligations.
3.1 — Payment Service Providers
To process your deposits and withdrawals, jtae9 shares necessary transaction data with payment service providers including bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, City Bank, BRAC Bank, Islami Bank, and card networks such as Visa and Mastercard. The data shared is limited to what is strictly required to execute and confirm the transaction. Each payment provider operates under its own privacy policy and applicable Bangladeshi financial regulations.
3.2 — Game Software Providers
jtae9's gaming catalogue is powered by third-party providers including Pragmatic Play, Evolution Gaming, Spribe, Ezugi, NetEnt, and Microgaming. These providers may receive technical session identifiers and anonymised gameplay data to facilitate game delivery, fairness verification, and jackpot calculations. Game providers do not receive your full name, NID, or financial transaction history.
3.3 — Identity Verification Services
Where jtae9 uses a third-party KYC or age-verification service to confirm the identity of account holders, we may share your name, date of birth, and identification document data with that provider. All KYC providers used by jtae9 are contractually bound to process your data solely for the purpose of verification and to maintain appropriate security standards.
3.4 — Legal and Regulatory Disclosure
jtae9 may disclose your personal data to competent legal, regulatory, or law enforcement authorities where we are required to do so by applicable law, court order, or official government request. In such cases, jtae9 will disclose only the minimum data necessary to satisfy the legal requirement and will, where legally permissible, notify you of the disclosure.
3.5 — Business Transfers
In the event that jtae9 or any part of its business is acquired, merged with, or transferred to another entity, your personal data may form part of the transferred assets. In such circumstances, you will be notified by email prior to the transfer, and the successor entity will be required to process your data in accordance with terms no less protective than this Privacy Policy.
3.6 — No Third-Party Advertising
jtae9 does not share your personal data with third-party advertisers, data brokers, social media platforms, or analytics companies for the purpose of targeted advertising outside of the jtae9 platform. Any on-platform recommendations are generated using your jtae9 gaming activity only, and this data is not transmitted to external advertising networks.
- Payment processors (bKash, Nagad, banks)
- Game software providers (Pragmatic, Evolution)
- KYC / identity verification partners
- Legal / regulatory authorities (if required)
- Third-party advertisers
- Data brokers or resellers
- Social media ad networks
- Unauthorised third parties
Section 05
Data Retention
jtae9 retains your personal data only for as long as it is necessary to fulfil the purpose for which it was collected, to comply with applicable legal obligations, or to resolve disputes and enforce our agreements.
5.1 — Active Account Data
While your jtae9 account remains active, we retain all registration data, KYC documents, financial transaction records, and gaming history associated with your account. This data is necessary to deliver our services, comply with anti-money laundering record-keeping requirements, and provide complete transaction histories to you upon request.
5.2 — Closed Account Data
Following the closure of a jtae9 account — whether voluntary or initiated by jtae9 — we retain your personal data for a minimum period of 5 years from the date of account closure. This retention period is required to comply with financial record-keeping obligations, to facilitate the resolution of any disputes that arise after closure, and to ensure that a self-excluded player cannot create a new account during an active exclusion period.
5.3 — KYC Document Retention
Copies of identity and address verification documents submitted as part of the KYC process are retained for the same 5-year post-closure period described in Section 5.2. Documents are stored in encrypted form and access is restricted to authorised compliance personnel only. After the retention period expires, documents are securely and permanently deleted.
5.4 — Technical and Analytics Data
Anonymised technical data — including aggregated page-view statistics, session duration averages, and device-type breakdowns — may be retained beyond the standard retention periods as it does not constitute personal data and is used solely for long-term platform improvement analysis. IP address logs are retained for a maximum of 12 months before being anonymised or deleted.
5.5 — Marketing Data
Where you have consented to receive marketing communications, your marketing preference data (email address and communication preferences) is retained until you withdraw your consent. Upon withdrawal, your contact details are removed from active marketing lists within 5 business days, although they may be retained on a suppression list to ensure we do not inadvertently contact you again in the future.
- Active account data — retained while active
- Post-closure data — minimum 5 years
- KYC documents — 5 years post-closure
- IP address logs — maximum 12 months
- Marketing data — until consent withdrawn
Section 06
Security Measures
jtae9 applies industry-standard technical and organisational security measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure.
6.1 — Encryption
All data transmitted between your device and the jtae9 platform is protected by 256-bit SSL (Secure Sockets Layer) encryption. This is the same encryption standard used by major international banking institutions. Your login credentials, payment details, and personal information are never transmitted in unencrypted form over the internet. Data stored on jtae9 servers is also encrypted at rest using industry-standard encryption protocols.
6.2 — Access Controls
Access to player personal data within the jtae9 organisation is strictly controlled on a need-to-know basis. Only authorised personnel with a legitimate operational requirement — such as compliance officers, support agents handling a specific case, and payment processing teams — are granted access to personal data. All internal data access is logged and subject to regular audit review.
6.3 — Two-Factor Authentication
jtae9 supports two-factor authentication (2FA) for player accounts where available. We strongly encourage all players to enable 2FA to add an additional layer of security to their account beyond their password alone. In the event that jtae9 detects unusual login activity on your account — such as a login from an unrecognised device or IP address — we may require additional verification steps before granting access.
6.4 — Data Breach Response
In the event of a confirmed personal data breach that is likely to result in a risk to the rights and freedoms of affected players, jtae9 will notify affected account holders by email within 72 hours of becoming aware of the breach. The notification will describe the nature of the breach, the categories of data affected, the likely consequences, and the measures jtae9 has taken or proposes to take to address it. jtae9 maintains a formal incident response procedure that is tested and updated on a regular basis.
6.5 — Third-Party Security
All third-party service providers with access to personal data — including payment processors and KYC partners — are required by contract to maintain security standards equivalent to or exceeding those applied by jtae9. We conduct periodic reviews of third-party data handling arrangements to ensure ongoing compliance with our security requirements.
- 256-bit SSL encryption in transit
- Encryption at rest on all servers
- Role-based internal access control
- Two-factor authentication (2FA)
- Continuous security monitoring
- 72-hour breach notification
- Regular third-party security audits
Section 07
Your Privacy Rights
As a jtae9 player, you hold a number of rights with respect to the personal data we hold about you. These rights may be exercised at any time by contacting our support team. We will respond to all verified requests within 30 days of receipt.
7.1 — Right of Access
You have the right to request a copy of all personal data that jtae9 holds about you. Upon receiving a verified access request, we will provide you with a structured summary of your data — including your registration details, transaction history, gaming activity records, and any KYC documents on file — within 30 days. Access requests may be submitted by emailing [email protected] with the subject line "Data Access Request" from your registered email address.
7.2 — Right to Rectification
If any personal data held by jtae9 is inaccurate or incomplete, you have the right to request that it be corrected. Common examples include an outdated residential address, a misspelled name, or an incorrect date of birth. Rectification requests will be processed within 10 business days, subject to identity verification. Note that certain data fields — such as your registered name and date of birth — can only be amended with supporting documentary evidence matching your KYC documents.
7.3 — Right to Erasure
You have the right to request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected, where you withdraw consent (and no other legal basis applies), or where the data has been processed unlawfully. Please note that jtae9 may be unable to fulfil erasure requests in full where legal retention obligations apply — specifically for financial transaction records and KYC documents which must be retained for a minimum of 5 years post account closure. Where full deletion is not possible, we will delete all data that can lawfully be removed and explain clearly why the remainder must be retained.
7.4 — Right to Restrict Processing
You may request that jtae9 restrict the processing of your personal data in certain circumstances — for example, where you contest the accuracy of the data (pending verification), where processing is unlawful but you prefer restriction over deletion, or where you have objected to processing pending determination of whether jtae9's legitimate grounds override yours. During a restriction period, jtae9 will continue to store the relevant data but will not actively process it beyond storage.
7.5 — Right to Data Portability
Where processing is based on your consent or on a contract with you, and is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, machine-readable format (such as CSV or JSON). You may also request that this data be transmitted directly to another data controller where technically feasible. Portability requests will be assessed and fulfilled within 30 days.
7.6 — Right to Object
You have the right to object to the processing of your personal data where jtae9 relies on legitimate interests as its legal basis. This includes the right to object to profiling carried out for direct marketing purposes. Where you object to marketing-related processing, jtae9 will cease such processing immediately upon receipt of your objection. Where you object to processing based on legitimate interests for other purposes, jtae9 will assess whether its grounds for processing override your interests and respond accordingly within 30 days.
7.7 — How to Exercise Your Rights
All privacy rights requests should be submitted by email to [email protected] using your registered email address. To protect your account security, jtae9 may require identity verification before processing a rights request. We will acknowledge all requests within 5 business days and provide a full response within 30 calendar days. Where a request is particularly complex or numerous, we may extend this period by a further 30 days, in which case we will notify you of the extension and the reason for it.
- Access — see all data we hold on you
- Rectification — correct inaccurate data
- Erasure — request deletion of your data
- Restriction — limit how we process your data
- Portability — receive your data in a structured format
- Object — oppose processing based on legitimate interests
Section 08
Policy Updates & Contact Information
jtae9 reviews and updates this Privacy Policy periodically to reflect changes in our data practices, legal obligations, or platform features. The most current version of this policy is always available at jtae9.app/privacy-policy.
8.1 — Policy Updates
jtae9 reserves the right to amend this Privacy Policy at any time. Where changes are material — meaning they significantly affect how we collect, use, or share your personal data — we will notify registered account holders by email at least 14 days before the revised policy takes effect. The updated policy will clearly display the new effective date at the top of the document. Minor clarifications or corrections that do not change the substance of our data practices may be made without advance notice.
Your continued use of the jtae9 platform after the effective date of a revised Privacy Policy constitutes your acceptance of the updated terms. If you do not agree with the revised policy, you must cease using the platform and may request account closure by contacting our support team.
8.2 — Children and Minors
The jtae9 platform is strictly intended for adults aged 18 years and above. jtae9 does not knowingly collect or process personal data from individuals under the age of 18. If we become aware that a minor has registered an account or submitted personal data through our platform, we will immediately close the account, delete all associated data, and reverse any financial transactions where possible. If you believe a minor has accessed the jtae9 platform, please notify us immediately at [email protected].
8.3 — Links to Third-Party Platforms
The jtae9 platform may contain references to third-party payment services (such as the bKash or Nagad apps) used to complete transactions. These third-party services operate independently under their own privacy policies. jtae9 is not responsible for the data practices of third-party platforms and encourages you to review their privacy policies before providing personal information to them directly.
8.4 — Contact Our Privacy Team
If you have any questions, concerns, or requests relating to this Privacy Policy or the way jtae9 processes your personal data, please contact our privacy team using the details below. We are committed to resolving all privacy enquiries in a timely and transparent manner.
- Email: [email protected] (subject line: "Privacy Enquiry")
- Live Chat: Available 24/7 via the jtae9 platform
- Response Time: All privacy enquiries acknowledged within 5 business days
- Service Area: Serving players across Bangladesh — Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, Cox's Bazar, and all districts
Questions About Your jtae9 Privacy?
Our support team is available 24/7 to address any data privacy queries, rights requests, or concerns about how jtae9 handles your personal information. For adults aged 18 and above only.