Privacy Policy

Find Your Next
Big Win

Comprehensive privacy policy explaining how we collect, use, and protect your personal information on the ACES platform.

6
Privacy Categories
18
Total Sections
100%
Data Protected

Find Privacy Info

Search privacy policies and data practices

Data Categories We Collect

Types of personal information we collect and how we use them

Identity Data

Information that identifies you as an individual

Examples:

Full nameDate of birthID numberPhotographSignature

Retention:

7 years after account closure

Purpose:

Identity verification and legal compliance

Contact Data

Information to communicate with you

Examples:

Phone numberEmail addressPhysical addressPostal code

Retention:

5 years after last activity

Purpose:

Communication and service delivery

Financial Data

Information related to financial transactions

Examples:

Bank detailsTransaction historyPayment methodsSource of funds

Retention:

10 years for compliance purposes

Purpose:

Payment processing and AML compliance

Usage Data

Information about how you use our platform

Examples:

Login timesPages visitedFeatures usedSearch queries

Retention:

2 years for analytics purposes

Purpose:

Service improvement and personalization

Privacy Policy Categories

Comprehensive privacy information organized by category

Data Collection

What information we collect and how we collect it

4 sections

Data Usage

How we use your information

3 sections

Data Sharing

How we share your information with others

3 sections

Data Security

How we protect your information

2 sections

Your Rights

Your rights regarding your personal data

3 sections

Cookies & Tracking

How we use cookies and tracking technologies

3 sections

Detailed Privacy Information

Complete privacy policy details and explanations

Personal Information

ImportantUpdated: 2024-01-15

Personal data we collect from users

Full name and date of birth for age verification
Government-issued ID number for KYC verification
Residential address for proof of residence
Phone number (+265 prefix) for account verification
Email address for communication and notifications
Photographs for identity verification
Signature for legal agreements
Employment information for source of funds verification

Financial Information

ImportantUpdated: 2024-01-15

Financial data for payment processing

Bank account details for withdrawals
Mobile money account information
Transaction history and records
Payment method preferences
Deposit and withdrawal amounts
Source of funds documentation
Tax identification numbers
Credit/debit card information (encrypted)

Usage Data

Updated: 2024-01-10

How you interact with our platform

Pages visited and time spent on each page
Raffle participation history
Search queries and filter preferences
Device information and browser type
IP address and location data
Login timestamps and frequency
Feature usage patterns
Error logs and crash reports

Communication Data

Updated: 2024-01-08

Your interactions with our support team

Support chat transcripts and emails
Phone call recordings (with consent)
Customer service requests and responses
Feedback and survey responses
Complaint records and resolutions
Marketing communication preferences
Newsletter subscription status
Social media interactions

Service Provision

Updated: 2024-01-12

Using your data to provide our services

Account creation and management
Identity verification and KYC processes
Raffle participation and prize distribution
Payment processing and financial transactions
Customer support and service delivery
Platform functionality and features
Personalization of user experience
Communication with users

Legal Compliance

ImportantUpdated: 2024-01-15

Meeting our legal and regulatory obligations

Anti-money laundering (AML) compliance
Counter-terrorism financing (CTF) requirements
Gaming regulation compliance
Tax reporting obligations
Court orders and legal requests
Regulatory reporting to authorities
Audit and inspection requirements
Law enforcement cooperation

Service Improvement

Updated: 2024-01-10

Using data to enhance our platform

Platform performance optimization
User experience improvements
Feature development and testing
Security enhancement and fraud prevention
Customer service improvement
Marketing campaign effectiveness
Business analytics and reporting
Strategic decision making

Third-Party Service Providers

Updated: 2024-01-08

Sharing data with trusted partners

Payment processors for transaction processing
Identity verification services for KYC
Cloud hosting providers for data storage
Email service providers for communications
Analytics providers for platform insights
Security monitoring services
Customer support platform providers
Marketing automation tools

Government Authorities

ImportantUpdated: 2024-01-15

Sharing data with regulatory bodies

Malawi Gaming Board for regulatory compliance
Financial Intelligence Unit for AML/CTF
Malawi Revenue Authority for tax purposes
Law enforcement agencies for investigations
Court orders and legal proceedings
Regulatory audits and inspections
Emergency services for safety concerns
Consumer protection agencies

Business Transfers

Updated: 2024-01-05

Data sharing during business changes

Mergers and acquisitions
Asset sales or transfers
Business restructuring
Bankruptcy proceedings
Succession planning
Investment transactions
Partnership arrangements
Corporate reorganizations

Technical Security Measures

ImportantUpdated: 2024-01-20

Technology protecting your data

End-to-end encryption for sensitive data
SSL/TLS encryption for data transmission
AES-256 encryption for data storage
Multi-factor authentication for access
Regular security audits and penetration testing
Intrusion detection and prevention systems
Secure coding practices and code reviews
Vulnerability scanning and patch management

Organizational Security Measures

Updated: 2024-01-18

People and processes protecting your data

Employee background checks and screening
Regular security training and awareness
Need-to-know access control principles
Security incident response procedures
Data classification and handling policies
Regular security policy reviews
Third-party security assessments
Business continuity and disaster recovery

Right to Access

Updated: 2024-01-15

Your right to access your personal data

Request a copy of your personal data
Know what data we hold about you
Understand how we use your information
Verify the lawfulness of processing
Request data processing transparency
Access data processing purposes
Review data retention periods
Check data accuracy and completeness

Right to Correction

Updated: 2024-01-12

Your right to correct inaccurate data

Correct inaccurate personal information
Update outdated contact details
Modify incomplete data records
Add missing information
Rectify processing errors
Update preference settings
Modify communication preferences
Correct identity verification details

Right to Deletion

ImportantUpdated: 2024-01-15

Your right to request data deletion

Request account closure and data deletion
Delete data no longer needed for purpose
Remove data collected unlawfully
Withdraw consent for data processing
Object to data processing grounds
Delete data after retention period
Remove data from marketing lists
Delete data from backup systems

Essential Cookies

ImportantUpdated: 2024-01-10

Cookies required for platform functionality

Session management and authentication
Security token storage
User preference settings
Shopping cart functionality
Platform feature operation
Load balancing and performance
Fraud prevention mechanisms
Legal requirement compliance

Analytics Cookies

Updated: 2024-01-08

Cookies for understanding platform usage

Website traffic analysis
User behavior tracking
Platform performance monitoring
Feature usage statistics
Conversion rate optimization
User journey mapping
A/B testing and experimentation
Business intelligence insights

Marketing Cookies

Updated: 2024-01-05

Cookies for personalized marketing

Personalized advertising delivery
Campaign effectiveness tracking
Cross-site behavioral targeting
Retargeting and remarketing
Social media integration
Email marketing optimization
Affiliate program tracking
Customer journey personalization

Your Data Rights

Exercise your rights over your personal data

Right to Access

Request a copy of all your personal data

Process:

  1. 1Submit a written request to privacy@aces.mw
  2. 2Provide identity verification
  3. 3Receive data within 30 days
  4. 4Review and confirm receipt

Timeframe:

30 days from request

Right to Correction

Correct inaccurate or incomplete data

Process:

  1. 1Identify specific data to correct
  2. 2Provide accurate replacement information
  3. 3Submit correction request
  4. 4Receive confirmation of changes

Timeframe:

15 days from request

Right to Deletion

Request deletion of your personal data

Process:

  1. 1Submit deletion request with reason
  2. 2Verify identity and authorization
  3. 3Review legal retention requirements
  4. 4Process deletion where permitted

Timeframe:

30 days from request

Right to Portability

Transfer your data to another service

Process:

  1. 1Request data in machine-readable format
  2. 2Specify preferred format and delivery
  3. 3Receive structured data export
  4. 4Transfer to new service provider

Timeframe:

30 days from request

Security Measures

How we protect your personal information

Encryption

Protecting data with advanced encryption

AES-256 encryption for data at rest
TLS 1.3 for data in transit
End-to-end encryption for sensitive communications
Regular encryption key rotation
Hardware security modules (HSMs)

Access Control

Restricting access to authorized personnel

Role-based access control (RBAC)
Multi-factor authentication (MFA)
Least privilege principle
Regular access reviews
Session timeout policies

Security Monitoring

Continuous monitoring for threats

24/7 security operations center
Intrusion detection systems
Security information and event management (SIEM)
Threat intelligence integration
Automated alert systems

Cookies & Tracking Technologies

Understanding how we use cookies on our platform

Essential Cookies

Required for basic platform functionality

Required:Yes

Purpose:

Authentication and session management

Examples:

Session cookiesSecurity tokensLoad balancing cookies

Performance Cookies

Help improve platform performance

Required:No

Purpose:

Analytics and performance monitoring

Examples:

Google AnalyticsHotjarNew Relic

Functional Cookies

Enable enhanced platform features

Required:No

Purpose:

Personalization and feature enhancement

Examples:

Preference cookiesLanguage settingsFeature toggles

Marketing Cookies

Used for personalized marketing

Required:No

Purpose:

Advertising and campaign tracking

Examples:

Facebook PixelGoogle AdsLinkedIn Insight Tag

Privacy Questions?

Our privacy team is here to help with your data concerns

Privacy Email

privacy@aces.mw

Response within 24 hours

Email Privacy

Privacy Hotline

+265 888 123 456

Mon-Fri 9AM-5PM

Call Privacy

Data Request

datarequest@aces.mw

For data access requests

Request Data