Download Mega888

Telegram

Whatsapp

mega888 slot character penguin

Privacy Policy

Effective: 28 May 2026

This Privacy Policy explains how Mega888 ("we", "the platform") collects, uses, discloses, and protects your personal data when you register, deposit, play, or otherwise interact with the site. Please read it carefully — by using our services you confirm that you understand and agree to the practices described below.

We operate under an offshore licence and respect the principles of the Malaysian Personal Data Protection Act 2010 (PDPA) for users in Malaysia. For specific questions, reach our support team via WhatsApp or Telegram (links in the footer).

1. Who we are

Mega888 is an online slot and casino gaming platform for adult players in Malaysia. For PDPA purposes, we act as the data controller — we determine the purposes and means by which your personal data is processed. Our service providers (game providers, payment gateways, KYC vendors) act as data processors or joint controllers depending on context.

2. What we collect

We collect data you provide directly, plus data we receive automatically when you use the site. The main categories are listed below.

  • Registration data: phone number, password (stored as a hash), date of birth.
  • KYC verification data: IC photo and selfie used to verify identity before the first withdrawal.
  • Banking data: account holder name, bank, account number for deposit and withdrawal processing.
  • Game activity data: bet history, spin count, win/loss totals, account balance.
  • Technical data: IP address, device type, operating system, browser identifiers, session cookies.
  • Communication data: your messages to customer support, Live Chat logs, WhatsApp/Telegram transcripts.

3. How we use your data

We use your personal data for the specific purposes listed below. Moreover, we do not sell your data to any third party for their marketing purposes.

  • Operating your account — registration, login, OTP verification, password recovery.
  • Processing transactions — deposits, withdrawals, balance adjustments.
  • Meeting KYC and anti-money-laundering (AML) requirements — identity verification, suspicious transaction monitoring.
  • Providing customer support — answering enquiries, resolving disputes.
  • Preventing fraud — duplicate account detection, collusion checks, bot use detection.
  • Improving our service — aggregate analytics, A/B testing, bug fixes.
  • Marketing communications — only if you have opted in.

4. Legal basis for processing

For users in Malaysia, our legal basis includes contract performance (delivering the gaming service you signed up for), legal obligation (KYC and AML), legitimate interest (fraud prevention, security), and your explicit consent for marketing communications.

You may withdraw consent for marketing at any time without affecting your ability to use the core service.

5. Sharing with third parties

We share your personal data with the following categories of recipient, and only to the extent necessary for the stated purpose:

  • Game providers (for example PG Soft, Pragmatic Play, JILI) — bet history needed to settle spin outcomes.
  • Payment gateways (FPX, Touch n Go eWallet, Boost, USDT networks) — transaction details only.
  • KYC verification vendors — IC photo and selfie for identity confirmation.
  • Analytics providers (for example Google Analytics in anonymised mode) — aggregate data without direct identifiers.
  • Legal authorities — when required by a valid court order or applicable law.

6. International data transfers

Our servers may be located outside Malaysia. When your data is transferred abroad, we ensure equivalent safeguards are in place — encryption in transit (TLS 1.2 or higher), encryption at rest, and tiered access controls. We do not transfer your data to countries without adequate data protection without your consent.

7. Data security

However, no online system is 100% secure. We apply industry-standard practices to protect your data, including HTTPS on every page, password hashing with bcrypt, optional two-factor authentication (2FA) for sensitive accounts, role-based staff access, and detailed audit logs. If you suspect your account has been compromised, contact support immediately.

8. Data retention period

We retain your personal data only for as long as needed for the purposes collected. For example: active account data is kept for the duration the account is open; transaction data is kept for 7 years after account closure to meet AML and tax requirements; marketing data is deleted within 30 days after you withdraw consent.

9. Your rights

Under the Malaysian PDPA 2010, you have the following rights over your personal data. To exercise any of these rights, contact our support team with the specifics of your request — we will respond within 21 calendar days.

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to fix data that is inaccurate or out of date.
  • Deletion — request removal of your data (subject to legal retention requirements).
  • Restriction of processing — ask us to stop processing data in specific scenarios.
  • Withdraw consent — opt out of marketing at any time.
  • Data portability — receive your data in a machine-readable format.

10. Cookies and tracking technologies

We use cookies and similar tracking technologies for three main purposes: (1) essential cookies that enable core functionality such as login and bet basket; (2) analytics cookies that help us understand usage patterns; and (3) marketing cookies activated only with your explicit consent. You can manage cookie preferences through your browser settings.

11. Age restrictions

Mega888 is for adults aged 21 and over only. We do not knowingly collect data from minors. If you suspect a minor has registered, contact support with the account phone number and we will investigate and close the account within 48 hours if confirmed. For more, see our Responsible Gambling page.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in law or our practices. For material changes, we will give at least 14 days notice via an on-site banner, email, or WhatsApp. The effective date at the top of this page always shows the current version.

13. Complaints

If you feel your privacy rights have not been respected, please contact our support team first — we are committed to resolving disputes internally. If you are not satisfied with our response, you can file a complaint with the Malaysian Personal Data Protection Department (JPDP) at pdp.gov.my.

14. Contact us

For any questions about this Privacy Policy, or to exercise your rights, contact the Mega888 support team via WhatsApp or Telegram (links in the footer of every page). Include the specifics of your request so we can respond quickly.

Reference: Malaysian Personal Data Protection Act 2010 — pdp.gov.my.