Privacy Policy – jeslot Malaysia Online Casino

Your Privacy Matters at jeslot. This Privacy Policy explains in plain terms what personal data jeslot collects, why we collect it, how we use it, who we share it with, and what rights you have over your own data. We encourage you to read this document in full. If you have questions, contact us at [email protected].

1. Introduction

1.1 This Privacy Policy ("Policy") describes how jeslot ("jeslot," "we," "us," or "our"), operator of the online gaming platform available at jeslot.asia, collects, processes, uses, stores, and protects personal data relating to individuals who access or use the jeslot Platform ("Members," "you," or "your").

1.2 jeslot is committed to protecting the privacy and security of all personal data we handle. We process personal data in accordance with applicable data protection legislation, including the Personal Data Protection Act 2010 of Malaysia ("PDPA") and other relevant statutory requirements.

1.3 By registering an account on the jeslot Platform, accessing the Platform, or otherwise engaging with our services, you acknowledge that you have read and understood this Policy and consent to the collection and processing of your personal data as described herein. If you do not agree to this Policy, you must not use the jeslot Platform.

1.4 This Policy is incorporated by reference into jeslot's Terms & Conditions, which govern your use of the Platform. Terms defined in the Terms & Conditions have the same meaning when used in this Policy unless otherwise stated.

2. Data Controller

2.1 For the purposes of applicable data protection law, jeslot is the data controller in respect of personal data collected directly through the jeslot Platform. As data controller, jeslot determines the purposes and means of processing personal data collected from Members and Platform visitors.

2.2 Where jeslot engages third-party service providers to process personal data on its behalf (for example, KYC verification providers, payment processors, and customer support platforms), those providers act as data processors under written agreements that require them to process data only in accordance with jeslot's instructions and to maintain appropriate security standards.

2.3 Contact details for data protection enquiries are set out in Section 15 of this Policy.

3. Data We Collect

3.1 jeslot collects personal data through several channels: directly from you when you register or use the Platform; automatically through technical systems when you access the Platform; and from authorised third parties such as KYC verification providers and payment processors. The categories of data collected are set out in the table below.

Category	Data Elements	Collection Method
Identity Data	Full legal name, date of birth, nationality, gender, government ID number (MyKad / passport)	Registration form; KYC document submission
Contact Data	Email address, Malaysian mobile phone number, residential address	Registration form; account settings updates
Financial Data	Payment method type, e-wallet identifiers (TNG/Boost), bank account reference, transaction history, deposit and withdrawal amounts in MYR	Payment processor integration; transaction records
Gaming Activity Data	Game participation history, bet amounts, win/loss records, session duration, game preferences, bonus usage	Platform activity logging
Technical Data	IP address, device type, operating system, browser type, screen resolution, session tokens, login timestamps	Automatic collection via server logs and cookies
Communications Data	Live chat transcripts, email correspondence, support ticket content	Customer support interactions
Responsible Gaming Data	Self-exclusion status, deposit limits set, session limit preferences, cooling-off periods	Member account settings; support team records

3.2 jeslot does not collect sensitive personal data beyond what is strictly necessary for identity verification, age verification, and compliance with anti-money laundering requirements. We do not collect biometric data, health data, or data relating to criminal convictions unless required by specific regulatory obligations.

4. How We Use Your Data

4.1 jeslot processes your personal data for the following purposes:

Account Management: To create, maintain, and manage your jeslot Member account, including authentication, account security, and customer support;
Service Delivery: To provide access to live casino games, slot titles, the sportsbook, and all other Platform features in accordance with our Terms & Conditions;
Payment Processing: To process deposits and withdrawals via Touch 'n Go eWallet, Boost, FPX, Maybank2u, CIMB, and Public Bank, and to maintain complete MYR transaction records;
Identity & Age Verification: To verify that all Members are aged 21 or above and that account information is accurate, in compliance with our responsible gaming obligations;
Anti-Money Laundering (AML) Compliance: To monitor transactions for suspicious activity, conduct enhanced due diligence where required, and fulfil statutory reporting obligations;
Responsible Gaming: To identify patterns of play that may indicate problem gambling behaviour, to apply self-imposed limits and exclusions, and to communicate responsible gaming resources to Members;
Security & Fraud Prevention: To detect and prevent unauthorised account access, cheating, collusion, bonus abuse, and other fraudulent or prohibited conduct;
Platform Improvement: To analyse aggregated, anonymised usage data to improve the Platform's performance, features, and user experience;
Marketing Communications: To send promotional offers, bonus notifications, and Platform updates to Members who have opted in to receive such communications. Marketing opt-out is available at any time via account settings or by contacting support.

5. Legal Basis for Processing

5.1 jeslot processes personal data on one or more of the following legal bases:

Contractual Necessity: Processing required to perform our obligations under the jeslot Terms & Conditions, including account management, game provision, and payment processing;
Legal Obligation: Processing required to comply with applicable laws, including anti-money laundering legislation, age verification requirements, and data retention mandates;
Consent: Processing based on your explicit consent, particularly for marketing communications and optional data collection. Consent may be withdrawn at any time without affecting the lawfulness of prior processing;
Legitimate Interests: Processing necessary for jeslot's legitimate interests where those interests are not overridden by your privacy rights, including fraud prevention, platform security, and service improvement through anonymised analytics.

6. Cookies & Tracking Technologies

6.1 The jeslot Platform uses cookies and similar tracking technologies (including session tokens, local storage, and web beacons) to provide and improve Platform functionality. Cookies are small text files stored on your device by your browser when you visit a website.

6.2 jeslot uses the following categories of cookies:

Strictly Necessary Cookies: Essential for Platform operation, including authentication session management, security tokens, and load balancing. These cannot be disabled without impairing Platform functionality;
Performance Cookies: Collect anonymised data about how Members interact with the Platform to help us identify and resolve technical issues and improve page performance;
Functional Cookies: Remember your preferences such as language settings, game lobby layout preferences, and responsible gaming tool configurations;
Analytics Cookies: Used to understand aggregate usage patterns. Data collected through analytics cookies is anonymised and not used to identify individual Members.

6.3 You may manage cookie preferences through your browser settings. Disabling strictly necessary cookies will affect your ability to log in and use the jeslot Platform. Disabling other cookie categories will not affect your access to core Platform features.

7. Data Sharing & Disclosure

7.1 jeslot does not sell, rent, or trade your personal data to third parties for their own commercial purposes. Personal data is shared only in the following circumstances:

Authorised Service Providers: Payment processors (including Touch 'n Go, Boost, and FPX network participants), KYC and identity verification providers, live dealer game studios, slot game suppliers, customer support platform providers, and cloud infrastructure providers — all operating under data processing agreements that restrict their use of your data to the specified service purpose;
Regulatory & Legal Disclosure: Where required by applicable law, court order, regulatory authority, or governmental request. jeslot will notify affected Members of any such disclosure to the extent permitted by law;
Fraud Prevention & AML: With authorised fraud prevention agencies and financial intelligence units where jeslot is required or permitted by law to make such disclosures;
Business Transfers: In the event of a merger, acquisition, or sale of all or substantially all of jeslot's business assets, Member personal data may be transferred as part of that transaction. Affected Members will be notified prior to any such transfer.

8. International Data Transfers

8.1 Some of jeslot's authorised service providers may process personal data outside of Malaysia. Where personal data is transferred internationally, jeslot ensures that appropriate safeguards are in place to provide an equivalent level of data protection to that afforded under Malaysian law, including through the use of standard contractual clauses or equivalent contractual protections.

8.2 By using the jeslot Platform, you consent to the transfer of your personal data to service providers located outside Malaysia where necessary to provide the Platform services, subject to the safeguards described in this section.

9. Data Retention

9.1 jeslot retains personal data for as long as necessary to fulfil the purposes for which it was collected and to comply with applicable legal, regulatory, and contractual obligations. The following indicative retention periods apply:

Active Member account data: Retained for the duration of the account relationship and for a period of seven (7) years following account closure, in compliance with anti-money laundering record-keeping requirements;
Transaction records: Retained for a minimum of seven (7) years from the date of transaction;
KYC documentation: Retained for a minimum of seven (7) years from account closure or last transaction, whichever is later;
Customer support communications: Retained for a minimum of three (3) years from the date of the last interaction;
Technical and log data: Retained for a maximum of twelve (12) months in identifiable form, then anonymised or deleted;
Marketing data (where consent-based): Retained until consent is withdrawn or the data is no longer needed for marketing purposes.

9.2 Upon expiry of applicable retention periods, personal data is securely deleted or anonymised in accordance with jeslot's data disposal procedures.

10. Your Data Rights

Under the Personal Data Protection Act 2010 (Malaysia) and applicable data protection principles, jeslot Members have the following rights in relation to their personal data.

10.1 Subject to applicable legal limitations, you have the right to:

Access: Request a copy of the personal data jeslot holds about you;
Correction: Request that inaccurate or incomplete personal data be corrected or updated;
Withdrawal of Consent: Withdraw consent for processing activities based on consent (such as marketing communications) at any time, without affecting the lawfulness of processing carried out prior to withdrawal;
Restriction of Processing: Request that jeslot restricts the processing of your personal data in certain circumstances, for example where you contest the accuracy of the data or object to its use;
Objection: Object to processing carried out on the basis of legitimate interests where you believe your privacy rights override those interests.

10.2 To exercise any of the above rights, please submit a written request to [email protected] with the subject line "DATA RIGHTS REQUEST — [Your Account Reference]." jeslot will acknowledge your request within 48 hours and respond substantively within 21 business days. We may require identity verification before processing your request.

10.3 Certain rights may be limited where exercising them would conflict with jeslot's legal obligations — for example, jeslot is required to retain KYC and transaction records for prescribed statutory periods regardless of a Member's deletion request.

11. Security Measures

11.1 jeslot implements and maintains a comprehensive suite of technical and organisational security measures to protect personal data against unauthorised access, disclosure, alteration, loss, or destruction. These measures include:

256-bit SSL/TLS encryption for all data transmitted between Member devices and jeslot servers;
Bcrypt hashing of all Member passwords — jeslot staff cannot access plain-text passwords;
Role-based access controls limiting employee access to personal data on a strict need-to-know basis;
Regular security audits, penetration testing, and vulnerability assessments of the Platform infrastructure;
Multi-factor authentication requirements for internal administrative system access;
Automated anomaly detection systems monitoring for unusual account activity, login patterns, and transaction behaviour;
Encrypted storage of KYC documentation with access logging.

11.2 In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, jeslot will notify affected Members and relevant regulatory authorities without undue delay and in accordance with applicable notification requirements.

12. Children's Privacy

21+ Only. The jeslot Platform is strictly for adults aged 21 years and above. jeslot does not knowingly collect personal data from persons under 21 years of age.

12.1 jeslot employs identity verification and age verification procedures to prevent persons under 21 years of age from accessing the Platform. If jeslot discovers that personal data has been collected from a person under the age of 21, such data will be promptly deleted and the associated account closed.

12.2 If you are a parent or guardian and believe that a minor in your care has accessed the jeslot Platform or provided personal data to jeslot, please contact us immediately at [email protected] so that we can take appropriate action.

13. Third-Party Links

13.1 The jeslot Platform does not include outbound links to third-party websites or services in its main content areas. To the extent that any third-party services are accessed in connection with payment processing or game delivery, those services operate under their own privacy policies. jeslot is not responsible for the privacy practices of third-party services.

13.2 jeslot's responsibility for personal data ends at the point of transmission to an authorised third-party processor under a written data processing agreement. Beyond that boundary, the third party's own privacy policy and data protection obligations apply.

14. Changes to This Policy

14.1 jeslot may update this Privacy Policy from time to time to reflect changes in our data processing practices, applicable law, or Platform features. Material changes will be communicated to registered Members via email to the address on file and/or via a prominent notice on the Platform at least fourteen (14) days before the changes take effect.

14.2 Your continued use of the jeslot Platform following the effective date of any updated Policy constitutes your acknowledgement of and agreement to the revised terms. If you do not agree to any changes, you must cease using the Platform.

14.3 The current version of this Policy, including its effective date, is always accessible at jeslot.asia/privacy-policy.

15. Contact Us

15.1 For all privacy-related enquiries, data rights requests, or concerns regarding how jeslot handles your personal data, please contact us through one of the following channels:

Privacy & Data Enquiries Email [email protected] — Subject: "PRIVACY ENQUIRY — [Your Account Reference]"

Live Chat Support Available 24/7 via the jeslot Platform — average response 3–5 minutes

15.2 jeslot aims to acknowledge all privacy enquiries within 48 hours and to resolve data rights requests within 21 business days of receipt.

Your Privacy Commitments from jeslot

SSL Encrypted Platform

All data transmitted between your device and jeslot is encrypted with 256-bit SSL/TLS. Your credentials and financial data are never transmitted in plain text.

No Data Selling

jeslot does not sell, rent, or trade your personal data to any third party for commercial purposes. Your data is used only to operate and improve the jeslot Platform.

Your Rights, Respected

Access, correct, or restrict processing of your personal data at any time. Data rights requests are acknowledged within 48 hours and resolved within 21 business days.

Password Hashing

jeslot passwords are stored using one-way bcrypt hashing. No jeslot staff member can view your plain-text password — ever. Password resets require email verification.

KYC Document Security

Identity documents submitted for KYC verification are stored in encrypted form with access logging. Documents are processed by vetted, contracted verification providers only.

Defined Retention Periods

jeslot does not hold your data indefinitely. Defined retention schedules govern how long each data category is kept, with secure deletion upon expiry of the retention period.

Privacy Policy — jeslot Data Protection Statement