mbi33 Privacy Policy

This Privacy Policy ("Policy") is published by mbi33 ("mbi33", "we", "us", "our"), the operator of the online gaming platform accessible at mbi33.asia. This Policy applies to all personal data collected from registered players, prospective players, and visitors to the mbi33.asia website, regardless of the device or method used to access the platform.

By registering an account, accessing the platform, or submitting any personal information to mbi33, you acknowledge that you have read and understood this Policy and consent to the processing of your personal data as described herein.

1. Data Controller

1.1 mbi33 is the data controller responsible for the personal data processed under this Policy. mbi33 operates the platform at mbi33.asia under international online gaming licensing and is responsible for ensuring that personal data is handled in accordance with applicable data protection legislation.

1.2 For all data protection enquiries, including requests to exercise your rights, please contact the mbi33 support team via live chat or the email address listed in the footer of this page.

2. Data We Collect

2.1 Registration Data. When you open an mbi33 account, we collect the following information: full legal name, date of birth, email address, Malaysian mobile number, and the username and password you create. This information is mandatory for account creation.

2.2 Identity Verification (KYC) Data. Before processing your first withdrawal, mbi33 requires you to complete Know Your Customer (KYC) verification. This involves submitting a copy of a government-issued photo identification document — such as a Malaysian identity card (MyKad) or passport — and, where required, proof of your payment method.

2.3 Financial and Transaction Data. We record all deposits, withdrawals, bet placements, and account balance changes. This includes payment method details (such as masked e-wallet account identifiers or bank reference numbers), transaction amounts in Malaysian Ringgit (MYR), timestamps, and transaction status.

2.4 Usage and Behavioural Data. We collect information about how you interact with the mbi33 platform, including pages visited, games played, session durations, betting patterns, and device and browser information. This data is collected automatically via server logs and platform analytics tools.

2.5 Communications Data. When you contact mbi33 support — whether via live chat, email, or any other channel — we retain records of those communications including the content of messages, timestamps, and the support agent involved.

2.6 Technical Data. We collect IP addresses, device identifiers, operating system information, and browser type to support security monitoring, fraud prevention, and platform optimisation.

3. How We Use Your Data

3.1 mbi33 uses your personal data for the following purposes:

• Account administration: Creating and maintaining your player account, processing deposits and withdrawals, and providing access to mbi33 gaming products.
• Identity verification: Complying with KYC requirements under our licensing obligations, including verifying your age (21+), identity, and source of funds where required.
• Fraud and security: Detecting, preventing, and investigating fraudulent activity, money laundering, account takeovers, and other security threats.
• Regulatory compliance: Fulfilling obligations under our international gaming licence, including record-keeping, audit trails, and cooperation with licensing authorities.
• Responsible gaming: Monitoring player behaviour to identify potential problem gambling and administering responsible gaming tools including self-exclusion and deposit limits.
• Customer support: Responding to your enquiries, resolving disputes, and improving the support experience.
• Platform improvement: Analysing aggregated usage data to develop new features, fix issues, and optimise the mbi33 platform.
• Marketing communications: Sending promotional offers, bonus notifications, and platform updates to players who have opted in to receive such communications. You may withdraw consent at any time from your account settings.

4. Legal Basis for Processing

4.1 mbi33 processes your personal data on the following legal bases:

• Contractual necessity: Processing required to fulfil the Terms and Conditions of your mbi33 account, including operating your account and processing transactions.
• Legal obligation: Processing required to comply with applicable laws and our licensing obligations, including KYC verification and anti-money laundering checks.
• Legitimate interests: Processing for fraud prevention, security monitoring, and platform improvement, where our interests do not override your data protection rights.
• Consent: Processing for marketing communications and non-essential cookies, where you have given explicit consent. Consent may be withdrawn at any time without affecting the lawfulness of prior processing.

5. Data Sharing

5.1 mbi33 does not sell your personal data to third parties. We may share your data with the following categories of recipients, strictly as necessary for the purposes described in this Policy:

• Payment processors and e-wallet providers: Including Touch 'n Go, GrabPay, Boost, DuitNow, and FPX operators, for the purpose of processing deposits and withdrawals.
• KYC and identity verification providers: Third-party services used to verify identity documents and screen against sanctions and watchlists.
• Game software providers: Certified gaming studios whose software is integrated into the mbi33 platform. These providers may receive session data necessary to operate their games.
• IT and infrastructure providers: Cloud hosting, content delivery, and cybersecurity services that support the operation of mbi33.asia.
• Regulatory and licensing authorities: Disclosure may be required to our gaming licensing authority or, in certain circumstances, to law enforcement or financial intelligence authorities.

5.2 All third-party data processors engaged by mbi33 are required to handle personal data in accordance with data protection standards consistent with applicable law and are prohibited from using the data for any purpose other than the contracted service.

6. Cookies & Tracking Technologies

6.1 mbi33.asia uses cookies and similar tracking technologies to operate the platform and understand how users interact with it. The types of cookies we use include:

• Essential cookies: Required for the platform to function, including maintaining your login session, storing your preferences, and enabling the cashier. These cannot be disabled.
• Analytics cookies: Used to collect aggregated data on platform usage — page views, session duration, and navigation paths — to help us improve the mbi33 experience. These are only set with your consent.
• Security cookies: Used to detect and prevent fraudulent activity, including identifying unusual login patterns and bot traffic.

6.2 You can manage non-essential cookie preferences at any time via your browser settings. Disabling essential cookies may affect the functionality of the mbi33 platform.

7. Data Retention

7.1 mbi33 retains personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by our licensing and legal obligations.

7.2 Account data and transaction records are retained for a minimum of five years following account closure to comply with anti-money laundering and gaming licensing requirements. KYC documents are retained for at least five years after the end of the business relationship.

7.3 Where data is no longer required for any legitimate purpose, it is securely deleted or anonymised.

8. Data Security

8.1 mbi33 implements appropriate technical and organisational security measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These measures include:

• 256-bit SSL encryption on all data transmitted between your device and mbi33 servers.
• Encrypted storage of sensitive data including identity documents and financial records.
• Access controls limiting data access to authorised personnel on a need-to-know basis.
• Continuous monitoring for suspicious login activity and automated alerting for potential account breaches.
• Regular security audits and penetration testing of the mbi33 platform infrastructure.

8.2 Notwithstanding the above, no internet-based transmission or storage system is completely secure. mbi33 cannot guarantee absolute security and encourages players to use strong, unique passwords and to enable two-factor authentication on their accounts.

9. Your Rights

9.1 Subject to applicable law, you have the following rights with respect to your personal data held by mbi33:

• Right of access: To request a copy of the personal data mbi33 holds about you.
• Right to rectification: To request correction of inaccurate or incomplete personal data.
• Right to erasure: To request deletion of your personal data, subject to legal retention obligations.
• Right to restriction: To request that mbi33 limit processing of your data in certain circumstances.
• Right to data portability: To receive your data in a structured, machine-readable format where processing is based on consent or contract.
• Right to object: To object to processing based on legitimate interests, including direct marketing.
• Right to withdraw consent: To withdraw consent to marketing communications or non-essential cookies at any time.

9.2 To exercise any of these rights, please contact the mbi33 support team. We will respond to verified requests within 30 days. Identity verification may be required before processing certain requests to protect your data from unauthorised disclosure.

10. Children's Privacy

10.1 mbi33 is strictly an adult platform. The minimum age to hold an mbi33 account is 21 years. We do not knowingly collect personal data from individuals under the age of 21.

10.2 If mbi33 discovers or is notified that an account has been opened by a person under 21 years of age, the account will be immediately suspended, all associated data reviewed, and the account closed in accordance with our licensing obligations and responsible gaming commitments.

11. Third-Party Links

11.1 The mbi33 platform does not include links to third-party websites as a matter of policy. If third-party content is integrated into the platform (such as game studio interfaces), those third parties operate under their own privacy frameworks, and mbi33 is not responsible for their data practices beyond the contractual obligations described in Section 5.

12. Changes to This Policy

12.1 mbi33 may update this Privacy Policy from time to time to reflect changes in legal requirements, our data practices, or the services we offer. Material changes will be communicated to registered players via email or a platform notification at least 14 days before taking effect.

12.2 The current version of this Policy is always available at mbi33.asia/privacy-policy. Continued use of the platform after the effective date of any revision constitutes acceptance of the updated Policy.

13. Contact Us

13.1 For any questions, concerns, or requests relating to this Privacy Policy or the handling of your personal data, please contact the mbi33 Data Protection team via live chat (available 24/7) or the support email address displayed in the footer of this page. We are committed to addressing your enquiries promptly and transparently.