ae67 Privacy Policy
This Privacy Policy explains precisely what personal data ae67 collects from players in Bangladesh, how that data is stored and used, who it may be shared with, and what rights you hold over your information. ae67 is committed to handling your data with full transparency and professional care.
Our Commitment
Privacy Principles at ae67
ae67 treats the privacy of every player as a core operational responsibility, not an afterthought. The six principles below guide every data decision we make.
ae67 collects only the personal data strictly necessary to provide a functional, secure, and compliant gaming platform. We do not collect data beyond what is required for account operation, identity verification, and legal compliance.
All player data stored on ae67 systems is protected using industry-standard AES-256 encryption at rest and TLS 1.3 in transit. No personal data is stored in plain text at any point in the ae67 infrastructure.
ae67 does not sell, rent, or trade your personal information to third-party advertisers, data brokers, or commercial partners under any circumstances. Your data exists solely to serve your ae67 account.
This Privacy Policy discloses every category of data ae67 collects, every purpose for which it is processed, and every type of third party that may receive it. There are no hidden data practices beyond what is documented here.
ae67 players have the right to access, correct, and request deletion of their personal data. These rights can be exercised at any time by contacting ae67 support, and ae67 commits to responding within 10 business days.
ae67 retains personal data only for as long as required to fulfil the purpose for which it was collected, or as required by applicable legal and compliance obligations. Data no longer needed is securely deleted or anonymised.
1. Information We Collect
ae67 collects personal data from players through several channels: directly via account registration and KYC verification forms, automatically via platform usage and device interactions, and in limited circumstances from trusted third-party verification services. The categories of data ae67 collects are described in full below.
1.1 Registration Data
When you create an ae67 account, you are required to provide the following information, which ae67 stores as part of your player profile:
- Full legal name as it appears on your government-issued identity document.
- Date of birth, used to verify that you meet the 18+ age requirement.
- Email address, used for account communications, security alerts, and promotional messages (where opted in).
- Bangladesh mobile phone number, used for SMS two-factor authentication and account recovery.
- Chosen username and encrypted password hash — ae67 never stores passwords in plain text.
- City of residence within Bangladesh (optional at registration, may be required for certain promotions).
1.2 KYC Verification Data
As part of the Know Your Customer (KYC) process required before processing withdrawals above ৳10,000, ae67 may collect:
- Scanned or photographed copy of your National Identity Card (NID), Passport, or Birth Registration Certificate.
- Proof of address document (utility bill, bank statement, or official correspondence dated within 90 days).
- Proof of payment method ownership — for example, a screenshot of your bKash, Nagad, Rocket, or Upay account confirming the registered mobile number matches your ae67 account.
- A selfie or live photo for identity confirmation, where required during enhanced verification reviews.
1.3 Financial Transaction Data
ae67 records all financial transactions associated with your account, including deposit amounts, timestamps, payment method references (mobile wallet numbers, bank account last-four digits), withdrawal requests, and bonus credits and debits. This data is retained for financial compliance and dispute resolution purposes.
1.4 Platform Usage Data
When you use the ae67 platform, ae67's systems automatically record certain technical and behavioural data, including:
- IP address and approximate geographic location (country and city level).
- Device type, operating system version, and browser type and version.
- Session start and end times, page navigation paths, and feature interactions.
- Games played, wager amounts, game outcomes, and session duration per game.
- Responsible gaming interactions — deposit limit settings, self-exclusion requests, and time-out activations.
Why We Collect Usage Data: Platform usage data is used exclusively to improve the ae67 user experience, detect suspicious or fraudulent activity, identify potential problem gambling patterns, and fulfil our responsible gaming obligations. ae67 does not use behavioural data for third-party advertising profiling.
1.5 Customer Support Communications
When you contact ae67 support via live chat or email, ae67 retains records of the conversation, including your account identifier, the date and time of contact, the nature of your enquiry, and the resolution provided. These records are used for quality assurance and dispute resolution.
| Data Category | Examples | Primary Purpose |
|---|---|---|
| Registration Data | Name, email, phone, date of birth | Account creation, age verification, communications |
| KYC Documents | NID scan, address proof, payment proof | Identity verification, withdrawal processing |
| Financial Data | Deposit/withdrawal records, payment references | Transaction processing, compliance, fraud prevention |
| Usage Data | IP address, device, session logs, game history | Security, responsible gaming, platform improvement |
| Support Records | Chat logs, email threads | Quality assurance, dispute resolution |
| Cookie Data | Session tokens, preference flags | Authentication, performance, analytics |
2. How We Use Your Data
ae67 processes your personal data only for specific, documented purposes. Each processing activity is grounded in one of three legal bases: contractual necessity (processing required to fulfil the player agreement), legal obligation (processing required to comply with applicable law), or legitimate interest (processing that ae67 has a genuine operational reason to perform and that does not override player privacy rights).
2.1 Account Operation and Service Delivery
The primary use of your personal data is to create and maintain your ae67 account, process your deposits and withdrawals, verify your identity, credit bonuses, record your game history, and deliver responsive customer support. Without this processing, the ae67 service cannot function.
2.2 Security and Fraud Prevention
ae67 uses login data, device fingerprints, IP addresses, and transaction patterns to detect and prevent fraud, money laundering, account takeover attempts, and multiple-account violations. Automated systems flag anomalous activity for human review. Players whose accounts trigger fraud alerts may experience temporary holds on withdrawals while the matter is investigated.
2.3 Responsible Gaming Monitoring
ae67 analyses session duration, wager frequency, deposit escalation patterns, and self-exclusion history to identify players who may be developing problem gambling behaviours. Where ae67's responsible gaming systems flag a concern, a trained support agent may proactively contact the player to offer guidance on deposit limits, time-out features, or self-exclusion. This processing is conducted in the player's genuine interest and is a core part of ae67's commitment to safe gaming.
2.4 Marketing Communications
With your explicit consent at registration (or later via account preferences), ae67 may send you promotional emails regarding new games, seasonal bonus offers, BPL cricket promotions, Eid specials, and other ae67 platform updates. You may withdraw consent for marketing communications at any time by updating your notification preferences in account settings or by contacting ae67 support. Withdrawal of marketing consent does not affect your ability to use the ae67 platform.
2.5 Legal and Regulatory Compliance
ae67 is required to retain certain data categories for defined periods to comply with financial record-keeping obligations and anti-money-laundering (AML) frameworks. This retention is mandatory and cannot be waived by individual player data deletion requests where a legal obligation to retain the data exists.
Marketing Opt-Out: If you receive a ae67 marketing email and no longer wish to receive such communications, click the unsubscribe link at the bottom of the email or contact [email protected] with the subject line "Unsubscribe". ae67 will process your opt-out within 5 business days.
3. Data Sharing & Third Parties
ae67 does not sell or commercially transfer your personal data to any third party. However, in limited and specific circumstances ae67 shares data with carefully selected service providers and partners who assist in operating the platform. Every third party that receives ae67 player data is bound by contractual data processing obligations and must handle the data in accordance with these Privacy Policy standards.
3.1 Payment Processing Partners
To process deposits and withdrawals via bKash, Nagad, Rocket, Upay, Dutch-Bangla Bank, BRAC Bank, and other accepted payment providers, ae67 shares the minimum transaction data required by the payment provider's API — typically your registered mobile number or masked account reference, the transaction amount in ৳, and a transaction reference identifier. ae67 does not share your full NID details or KYC documents with payment providers.
3.2 Game Technology Providers
ae67 partners with certified third-party game studios including Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi to deliver its game library. When you launch a game from one of these providers, a session token (containing your anonymised player ID and currency denomination) is passed to the provider's game server. No personally identifiable information such as your name, email address, or phone number is shared with game providers.
3.3 Identity Verification Services
For enhanced KYC verification, ae67 may use automated identity verification technology to cross-reference your submitted documents against public identity databases. These verification service providers receive your submitted KYC documents temporarily for the purpose of the verification check and are contractually prohibited from retaining or re-using the documents for any other purpose.
3.4 Analytics and Platform Performance
ae67 uses anonymised and aggregated usage analytics to understand platform performance, identify navigation issues, and improve the player experience. Analytics data is anonymised before processing and cannot be used to identify individual players. ae67 does not use third-party advertising analytics platforms that profile individual users for targeted advertising.
3.5 Legal Disclosure
ae67 may disclose personal data to law enforcement authorities, regulatory bodies, or other government agencies where required by applicable law, court order, or binding legal process. ae67 will disclose only the data specifically required by the legal request and will notify the affected player of such a request where ae67 is legally permitted to do so.
Third-Party Data Contracts: Every third-party service provider that processes ae67 player data operates under a formal data processing agreement. These agreements require the provider to apply security standards equivalent to ae67's own, prohibit sub-processing without ae67's consent, and require the provider to notify ae67 immediately in the event of a data breach affecting ae67 player information.
4. Cookies & Tracking Technologies
ae67 uses cookies and similar lightweight tracking technologies to enable core platform functions and to understand how players interact with the site. The ae67 platform does not function correctly without essential cookies enabled in your browser. Non-essential cookies may be declined without affecting your ability to access ae67.
4.1 Essential Cookies
Essential cookies are strictly necessary for the ae67 platform to operate. They include your authenticated session token (which keeps you logged in across page navigations), security tokens that protect against cross-site request forgery attacks, and your locale preference (English, Bangladesh Taka). These cookies are set by ae67's own domain and expire at the end of your browser session or after 30 days for remembered login sessions.
4.2 Performance and Analytics Cookies
ae67 uses first-party performance cookies to measure page load times, error rates, and navigation flows. This data is used internally by ae67's engineering team to identify and resolve technical issues. Performance cookies record anonymised session identifiers only — they do not record your name, email, or any personally identifiable information.
4.3 Responsible Gaming Cookies
If you have activated a deposit limit, time-out feature, or self-exclusion on your ae67 account, a responsible gaming preference cookie is stored in your browser to ensure these protections are applied consistently across sessions, even if you access ae67 from a different device that has not yet authenticated to your account. This cookie contains only a hashed reference to your account's responsible gaming status — no other personal data.
4.4 Managing Cookies
You can manage or delete cookies at any time through your browser's settings. The steps vary by browser — consult your browser's help documentation for instructions on clearing cookies, blocking future cookies, or viewing the cookies currently stored on your device. Note that deleting your ae67 session cookie will log you out of your account and you will need to log in again on your next visit.
No Third-Party Ad Cookies: ae67 does not use third-party advertising cookies, retargeting pixels, or social media tracking tags. Your ae67 browsing activity is not shared with advertising networks, social media platforms, or data aggregators for the purpose of targeted advertising outside the ae67 platform.
5. Data Security Measures
ae67 employs a multi-layered technical and organisational security framework to protect player data from unauthorised access, accidental loss, destruction, or disclosure. The key security measures in place are described below.
5.1 Encryption
All data transmitted between your browser and the ae67 platform is encrypted using TLS 1.3, the current industry standard for secure web communications. All sensitive data stored in ae67 databases — including passwords (stored as salted bcrypt hashes), KYC documents, and financial records — is encrypted at rest using AES-256 encryption. Encryption keys are managed through a dedicated key management system with strict access controls and regular key rotation.
5.2 Access Controls
Access to ae67's production data systems is restricted to a limited number of authorised ae67 personnel on a strict need-to-know basis. All internal access to player data requires multi-factor authentication and is logged in a tamper-evident audit trail. Privileged access is reviewed and re-certified quarterly. Former employees' access is revoked on their last day of employment without exception.
5.3 Vulnerability Management
ae67 conducts regular automated vulnerability scans of its platform and infrastructure. Critical vulnerabilities identified in scans are assessed within 24 hours and remediated within 72 hours of confirmed severity. ae67 operates a responsible disclosure programme — security researchers who identify vulnerabilities in the ae67 platform are encouraged to report them to [email protected].
5.4 Data Breach Response
In the event of a confirmed data breach affecting player personal data, ae67 commits to notifying affected players via their registered email address within 72 hours of ae67 becoming aware of the breach, or as promptly as technically feasible. The notification will describe the nature of the breach, the categories of data affected, the steps ae67 is taking to contain and remediate the breach, and the steps affected players should take to protect themselves.
Your Role in Account Security: ae67's security measures protect data on our systems, but you also play a critical role. Use a unique, strong password for your ae67 account, enable SMS two-factor authentication in your account security settings, and never share your login credentials with anyone. ae67 staff will never ask you for your password.
6. Data Retention Policy
ae67 retains personal data for the minimum period necessary to fulfil the purpose for which it was collected, subject to any mandatory legal retention requirements. The retention periods ae67 applies to each major data category are set out below.
| Data Category | Retention Period | Basis for Retention |
|---|---|---|
| Account Registration Data | Duration of account + 5 years after closure | Legal compliance, dispute resolution |
| KYC Documents | Duration of account + 5 years after closure | AML and identity verification obligations |
| Financial Transaction Records | 7 years from date of transaction | Financial record-keeping requirements |
| Game History Logs | 3 years from date of session | Dispute resolution, responsible gaming review |
| Customer Support Records | 3 years from date of interaction | Quality assurance, dispute resolution |
| Marketing Preferences | Until withdrawal of consent or account closure | Consent-based processing |
| Session and Usage Logs | 12 months from date of session | Security monitoring, platform improvement |
When a retention period expires, ae67 will either securely delete the data or anonymise it such that it can no longer be associated with any individual player. Anonymised, aggregated data (for example, platform-wide game popularity statistics) may be retained indefinitely as it no longer constitutes personal data.
6.1 Voluntary Account Closure and Data Deletion
If you close your ae67 account voluntarily, ae67 will remove your account from the active player database within 30 days of the closure request. However, data subject to mandatory legal retention periods (as listed in the table above) will be retained in a secure, access-restricted archive for the required duration before permanent deletion. You will receive confirmation of your account closure and the expected data deletion timeline via your registered email address.
7. Your Privacy Rights
ae67 recognises and respects the privacy rights of all players. You may exercise any of the following rights at any time by contacting ae67 support at [email protected] with the subject line "Privacy Rights Request". ae67 will acknowledge your request within 3 business days and provide a substantive response within 10 business days.
7.1 Right of Access
You have the right to request a copy of all personal data ae67 holds about you. ae67 will provide this in a structured, commonly used, machine-readable format (JSON or CSV) within 10 business days of your verified request. This is provided free of charge for the first request per 12-month period. Subsequent requests within the same 12-month period may incur a reasonable administrative fee.
7.2 Right to Rectification
If you believe any personal data ae67 holds about you is inaccurate or incomplete, you have the right to request correction. Simple corrections — such as updating your registered email address, phone number, or city of residence — can be made directly in your ae67 account settings. Corrections to identity data (name, date of birth) require supporting documentation and will be processed by the ae67 KYC team within 5 business days.
7.3 Right to Erasure
You have the right to request deletion of your personal data. ae67 will honour erasure requests for all data categories not subject to mandatory legal retention obligations. Where ae67 is legally required to retain certain data (for example, financial transaction records for 7 years), ae67 will inform you of this requirement and delete all other non-mandatory data categories within 30 days of your request.
7.4 Right to Restrict Processing
You may request that ae67 restrict processing of your personal data in certain circumstances — for example, while a dispute about data accuracy is being resolved, or where you have objected to processing pending verification of ae67's legitimate interest grounds. During a restriction, ae67 will store your data but not actively process it beyond what is strictly necessary to maintain your account status.
7.5 Right to Withdraw Consent
Where ae67 processes your data on the basis of your consent (principally, marketing communications), you have the right to withdraw that consent at any time without penalty. Withdrawal of consent does not affect the lawfulness of processing that occurred before withdrawal. To withdraw marketing consent, update your notification preferences in account settings or contact ae67 support.
Identity Verification for Rights Requests: To protect player privacy, ae67 will verify your identity before processing any privacy rights request. Verification is completed by confirming your registered email address, mobile number, and one additional piece of account information. This step ensures that no third party can make a privacy rights request on your behalf without your knowledge.
8. Policy Updates & Contact
ae67 reviews this Privacy Policy at least annually and updates it whenever material changes are made to data collection practices, processing purposes, third-party relationships, or retention periods. When a material update is published, ae67 will notify all registered players via email to their registered address and will update the "Last Updated" date at the top of this page. Minor editorial clarifications that do not affect the substance of any privacy practice will be made without individual notification.
8.1 How to Contact ae67 About Privacy
If you have any questions about this Privacy Policy, wish to exercise a privacy right, or wish to raise a concern about how ae67 handles your personal data, please contact ae67's data support team using the details below. ae67 is committed to resolving all privacy enquiries promptly and professionally.
- Email: [email protected] (subject line: "Privacy Enquiry")
- Live Chat: Available 24/7 on the ae67 platform (Bangladesh Standard Time, UTC+6)
- Response Time: Acknowledgement within 3 business days; full response within 10 business days
8.2 Minors and Privacy
ae67 does not knowingly collect or process personal data from any person under the age of 18. If ae67 discovers that personal data has been collected from a minor, that data will be deleted immediately and the associated account closed. If you are a parent or guardian and believe your child has registered an ae67 account, please contact ae67 support immediately at [email protected] with the subject line "Minor Account Report".
Policy Version History: Version 1.0 was published on 1 January 2024. Version 2.0 was published on 1 July 2025 with updated KYC data categories and third-party provider disclosures. The current Version 2.1, effective 1 January 2026, adds clarified cookie descriptions and an updated data retention table. Prior versions are available on request from ae67 support.
Your Privacy Is Protected at ae67
Now that you understand how ae67 handles your data, you can play with confidence. Explore the full ae67 platform — cricket betting, live casino, slots, and more — knowing your personal information is in safe hands.