Privacy Policy for a11111
At a11111, your privacy is not a formality — it is a foundational commitment. This Privacy Policy explains exactly what personal data we collect from players in Bangladesh, how we use it, who we share it with, and the rights you hold over your own information. We are committed to handling your data transparently and responsibly.
How a11111 Protects Your Privacy
Six core principles guide every data decision we make at a11111. These are not aspirational statements — they are operational standards built into how the platform works.
a11111 does not sell, rent, or trade your personal information to third-party marketers or data brokers under any circumstances. Your data belongs to you. We collect only what is necessary to operate your account, process your transactions, and comply with our legal obligations.
Every connection between your browser or device and a11111 is protected by 256-bit SSL encryption. This applies to account login, registration forms, payment submissions, and all API communication. Data at rest in our systems is stored in encrypted form and access is restricted to authorised personnel only.
We follow a data minimisation principle: a11111 collects only the personal information that is strictly necessary for account registration, identity verification, payment processing, and regulatory compliance. We do not collect sensitive data beyond what KYC and anti-money-laundering obligations require.
Registered players may request access to the personal data a11111 holds about them, request corrections to inaccurate data, or request deletion of their account data subject to our legal retention obligations. All such requests are handled by the support team at [email protected] within 10 business days.
a11111 uses cookies and similar tracking technologies only for session management, fraud detection, and platform performance analytics. We do not use third-party advertising cookies. Our cookie policy is fully disclosed in the Cookies section of this Privacy Policy so you always know what is being tracked and why.
Where a11111 shares data with third-party service providers — such as payment processors (bKash, Nagad, Rocket) and game studios — those partners are bound by strict data processing agreements. They may only use your data for the specific purpose for which it was shared and are prohibited from retaining or repurposing it independently.
01 Data We Collect
a11111 collects personal data from players at different points during the account lifecycle. The categories of data we collect, and the context in which each is gathered, are described in the table below.
| Data Category | Specific Data Points | When Collected |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, nationality | Account registration & KYC verification |
| Contact Data | Email address, mobile number, city/district of residence | Account registration |
| Verification Documents | National ID (NID), passport, or driving licence image | KYC verification before first withdrawal |
| Financial Data | bKash / Nagad / Rocket account numbers, Visa/Mastercard last 4 digits, transaction history | Deposit & withdrawal processing |
| Technical Data | IP address, device type, browser type, operating system, session timestamps | Automatically on platform access |
| Behavioural Data | Games played, bet amounts, session duration, pages visited | Automatically during active sessions |
| Communications Data | Support tickets, live chat transcripts, email correspondence | When you contact support |
Players based in Dhaka, Chittagong, Sylhet, Khulna, Rajshahi, Barisal, Rangpur, Mymensingh, and Cox's Bazar are all subject to the same data collection and protection standards. a11111 does not apply different data practices based on a player's geographic location within Bangladesh.
02 How We Use Your Data
a11111 uses the personal data it collects for specific, legitimate purposes. We do not use your data for any purpose that is incompatible with the reason it was originally collected. The primary purposes for which a11111 processes personal data are as follows:
- Account Management: To create, maintain, and administer your a11111 player account, including processing logins, updating account settings, and managing account security.
- Identity Verification (KYC): To verify your identity and age in compliance with anti-money-laundering and responsible gaming obligations before processing withdrawals or during routine compliance checks.
- Payment Processing: To facilitate deposits via bKash, Nagad, Rocket, Upay, Visa, Mastercard, and bank transfer, and to process withdrawal requests to your nominated payment method.
- Fraud Prevention: To detect, investigate, and prevent fraudulent activity, including the use of multiple accounts, stolen payment credentials, bonus abuse, and suspicious betting patterns.
- Responsible Gaming: To monitor player activity for indicators of problem gambling behaviour and to apply deposit limits, cooling-off periods, or self-exclusion at the player's request or where required for player protection.
- Customer Support: To respond to your support queries, resolve disputes, and communicate important account-related information.
- Platform Improvement: To analyse aggregated, anonymised usage data to improve game performance, website functionality, and the overall player experience.
- Legal Compliance: To comply with applicable legal obligations, including responding to lawful requests from regulatory authorities or law enforcement agencies.
- Marketing Communications: To send you promotional offers, bonus notifications, and platform updates — but only where you have opted in to marketing communications. You may opt out at any time by contacting support.
a11111 does not use automated decision-making or profiling in ways that produce significant legal or similarly significant effects on players, except where automated tools are used as part of fraud detection or responsible gaming monitoring — in those cases, a human review is conducted before any account action is taken.
03 Data Sharing & Third Parties
The categories of third parties with whom a11111 may share your personal data, and the specific reason for each sharing relationship, are as follows:
- Payment Processors: bKash, Nagad, Rocket, Upay, Visa, Mastercard, and banking partners receive the minimum financial data necessary to process your deposit or withdrawal transaction. These entities operate under their own privacy policies and are independently regulated financial service providers in Bangladesh.
- Game Studio Providers: Providers such as Pragmatic Play, Evolution Gaming, NetEnt, Microgaming, Spribe, and Ezugi may receive a pseudonymous player identifier and session data to facilitate game rounds. They do not receive your name, contact details, or payment information.
- Identity Verification Services: Third-party KYC verification partners may receive copies of your identity documents and personal details to confirm your identity and age on a11111's behalf. These partners are contractually bound to process your data only for this purpose.
- Platform Infrastructure Providers: Cloud hosting, database management, and content delivery network (CDN) providers that support a11111's technical operations may process data as part of their service delivery. All such providers are bound by data processing agreements that restrict how they handle a11111 player data.
- Fraud Prevention Services: Specialist fraud detection and anti-money-laundering screening tools may receive technical data (IP address, device fingerprint, transaction metadata) to assess risk. No sensitive personal data beyond what is strictly necessary for the risk assessment is shared.
- Legal and Regulatory Authorities: a11111 may disclose personal data to law enforcement agencies, regulatory bodies, or courts of competent jurisdiction where required to do so by law, or where disclosure is necessary to protect the rights, property, or safety of a11111, its players, or the public.
In the event that a11111 undergoes a corporate restructuring, merger, or acquisition, player data may be transferred to the successor entity as part of that transaction. Players will be notified of any such transfer and the privacy protections applying to their data will remain in force.
05 Data Retention
a11111 retains personal data only for as long as it is necessary for the purpose for which it was collected, or as required by applicable legal and regulatory obligations. The following retention periods apply to different categories of player data:
- Active Account Data (identity, contact, financial history): Retained for the full duration of the account relationship and for a minimum of 5 years following account closure, in line with standard financial record-keeping obligations.
- KYC Verification Documents: Retained for a minimum of 5 years from the date of verification or from the date of account closure, whichever is later.
- Transaction Records: Retained for a minimum of 5 years from the date of each transaction to support anti-money-laundering audit requirements.
- Support Communications: Retained for 2 years from the date of the most recent correspondence in a given support thread.
- Technical / Session Logs: Retained for up to 12 months for fraud investigation and platform security purposes, then deleted or anonymised.
- Marketing Opt-in Records: Retained for as long as you hold an active account and for 12 months following account closure as evidence of consent.
When a retention period expires, data is either securely deleted from a11111's systems or irreversibly anonymised so that it can no longer be linked to an individual player. Anonymised, aggregated data may be retained indefinitely for platform analytics and historical reporting purposes.
Players who request account deletion should be aware that a11111 is legally obligated to retain certain categories of data (particularly KYC documents and transaction records) for the minimum retention periods stated above, even where a deletion request is submitted. All other data that is not subject to a legal retention obligation will be deleted promptly upon a valid deletion request.
06 Your Privacy Rights
As a registered player on a11111, you hold the following rights in relation to your personal data. To exercise any of these rights, contact our support team at [email protected] with the subject line "Privacy Request" and a clear description of your request. We will acknowledge receipt within 2 business days and respond fully within 10 business days.
- Right of Access: You may request a copy of all personal data that a11111 holds about you. We will provide this in a structured, readable format. Note that certain data may be redacted where disclosure would reveal information about other individuals or compromise fraud-prevention systems.
- Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct it. Core identity fields (name, date of birth) may require supporting documentation to verify the correction.
- Right to Erasure: You may request that a11111 delete your personal data. This right applies where the data is no longer necessary for its original purpose, where you withdraw consent (where consent was the legal basis for processing), or where the data has been processed unlawfully. This right is subject to our legal retention obligations described in the Data Retention section above.
- Right to Restrict Processing: You may request that a11111 restrict the processing of your data while a dispute about its accuracy is being resolved, or while an objection to processing is being considered.
- Right to Data Portability: You may request that a11111 provide your personal data in a machine-readable format (such as JSON or CSV) so that you can transfer it to another service provider.
- Right to Object: You may object to a11111 processing your data for direct marketing purposes at any time. Upon receipt of such an objection, a11111 will cease marketing communications immediately. You may also object to other forms of processing where your specific circumstances justify it.
- Right to Withdraw Consent: Where a11111 processes your data on the basis of your consent (for example, marketing communications), you may withdraw that consent at any time without affecting the lawfulness of processing that took place before the withdrawal.
07 Data Security Measures
a11111 implements a layered set of technical and organisational security measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. These measures include but are not limited to the following:
- Transport Layer Security: All data transmitted between your device and a11111 is encrypted using TLS 1.2 or higher with 256-bit SSL certificates.
- Database Encryption: Sensitive data fields — including identity documents, payment account references, and password hashes — are encrypted at rest using industry-standard encryption algorithms.
- Access Controls: Access to personal data within a11111's systems is restricted on a strict need-to-know basis. Staff members are granted only the minimum level of access required to perform their role, and all access is logged and auditable.
- Password Security: Player passwords are stored as salted cryptographic hashes. a11111 staff cannot read or retrieve your password in plain text. If you forget your password, a reset link will be sent to your registered email address.
- Fraud Monitoring: a11111 operates continuous automated monitoring for suspicious login attempts, unusual account activity, and potential data security incidents. Detected anomalies trigger immediate alerts for human review.
- Penetration Testing: a11111's platform undergoes periodic security assessments to identify and remediate vulnerabilities before they can be exploited.
- Staff Training: All personnel with access to player data receive mandatory data protection and security training as part of their onboarding and on an ongoing annual basis.
Despite these measures, no online platform can guarantee absolute security against all possible threats. In the event of a data security incident that poses a risk to your personal data, a11111 will notify affected players without undue delay and will take all reasonable steps to contain the incident and prevent recurrence.
Players also have a role in account security. We strongly recommend using a unique, strong password for your a11111 account, enabling any available two-step verification, and logging out of your account when using a shared or public device. If you suspect that your account has been accessed without your authorisation, contact [email protected] immediately.
08 Policy Updates & Contact
a11111 reviews this Privacy Policy regularly and updates it as necessary to reflect changes in how we operate, changes in applicable law, or improvements to our data handling practices. When material changes are made, we will update the effective date at the top of this page and, where the changes are significant, we will notify active players by email to their registered address.
Your continued use of the a11111 platform after the publication of an updated Privacy Policy constitutes your acknowledgement of the changes. We encourage you to review this page periodically so that you remain informed about how your data is being protected.
This Privacy Policy should be read together with a11111's Terms & Conditions and Responsible Gaming Policy, both of which contain additional provisions relevant to how the platform handles player accounts and player welfare.
If you are not satisfied with a11111's response to a privacy concern, you have the right to escalate the matter through whatever dispute resolution mechanism is available to you under applicable Bangladeshi law.
Have Questions About Your Data?
Our support team is available around the clock to address any privacy concern. You can also explore our FAQ for quick answers or head to the platform and start playing with confidence.