yj2 Privacy
Policy & Data Use
At yj2 we take your privacy seriously. This Privacy Policy explains exactly what personal data we collect when you use the yj2 platform, why we collect it, how it is processed and stored, who it is shared with, and what rights you have over your own information. We encourage every player to read this document before creating an account.
Information We Collect
yj2 collects personal data through several channels: directly from you when you register and use the platform, automatically through your interactions with the yj2 website and games, and in limited cases from third-party payment and identity verification partners. The categories of data we collect are described below.
Registration & Account Data
When you create a yj2 account, we collect the information you provide during the registration process , including your full legal name, date of birth, mobile phone number (Bangladesh number), and a password of your choosing. This data is necessary to create and maintain your player account and to verify that you meet the minimum age requirement of 18 years.
Identity Verification (KYC) Data
To comply with anti-money laundering standards and to confirm player identity, yj2 may request copies of government-issued identification documents. These may include your National Identity Card (NID), passport, or driving licence. Where required, proof of address documents such as a recent utility bill or bank statement may also be requested. KYC documents are handled with the highest level of confidentiality and are never shared with third parties except where legally required or where necessary to complete a verification check through an authorised identity verification partner.
Financial & Transaction Data
When you make deposits or request withdrawals, yj2 records transaction details including the payment method used (bKash, Nagad, Rocket, Upay, or bank transfer), transaction reference numbers, amounts in Bangladeshi Taka (৳), and timestamps. yj2 does not store full payment account credentials on its own servers. Payment transactions are processed directly via the APIs of the respective payment providers, and only tokenised or reference identifiers are retained by yj2 for record-keeping purposes.
Device & Technical Data
yj2 automatically collects certain technical information when you access the platform. This includes your IP address, device type and operating system, browser type and version, screen resolution, referring URL, and session duration. This data is used for security monitoring, fraud prevention, platform optimisation, and to ensure a consistent experience across devices.
Gameplay & Betting Activity Data
All betting and gaming activity on yj2 is recorded, including game sessions, bet amounts, outcomes, bonus usage, and sports betting selections across cricket, football, and other markets. This data is used for account management, dispute resolution, responsible gaming monitoring, and statistical analysis to improve yj2 services.
Communications Data
If you contact yj2 through live chat, email, or WhatsApp, we retain records of those communications including message content, timestamps, and the nature of your enquiry. This data is used to resolve support requests, maintain quality standards, and improve customer service delivery.
Summary of Data Types Collected
| Data Category | Examples | Collection Method |
|---|---|---|
| Account Data | Name, date of birth, phone number, password (hashed) | Provided by you at registration |
| KYC / ID Data | NID, passport copy, proof of address | Provided by you on request |
| Financial Data | Transaction reference, amount, method, timestamps | Automatically via payment API |
| Technical Data | IP address, device type, browser, session data | Automatically on site access |
| Gameplay Data | Bets placed, game outcomes, bonus usage | Automatically via platform |
| Communications Data | Live chat logs, email content, support tickets | Provided by you via support channels |
How We Use Your Data
yj2 processes your personal data for specific, legitimate purposes. We do not use your data for any purpose incompatible with those stated below, and we do not sell your personal data to third parties for their own marketing purposes.
- Account creation and management: To register your player account, maintain accurate records, and provide you with access to the yj2 platform and all its features.
- Identity and age verification: To confirm that you are aged 18 or above and that you are who you claim to be, in accordance with yj2's zero-tolerance underage gambling policy.
- Payment processing: To facilitate deposits and withdrawals via bKash, Nagad, Rocket, Upay, and partner banks, and to maintain accurate financial records of all transactions in BDT (৳).
- Fraud prevention and security: To detect and prevent fraudulent account activity, multi-accounting, money laundering, and unauthorised access attempts.
- Responsible gaming: To monitor player activity for signs of problem gambling behaviour and to enforce deposit limits, self-exclusion periods, and cooling-off settings as requested by players or mandated by yj2's responsible gaming policy.
- Customer support: To respond to your enquiries, resolve disputes, and provide assistance with account, payment, and technical issues.
- Legal compliance: To comply with applicable laws, respond to lawful requests from regulatory or law enforcement authorities, and to maintain records as required under anti-money laundering obligations.
- Platform improvement: To analyse aggregated, anonymised usage data to improve the yj2 platform, optimise game selection, and enhance the overall player experience.
- Promotional communications: To send you information about yj2 promotions, bonuses, and seasonal offers (such as Eid, Pohela Boishakh, or BPL season specials) where you have not opted out of such communications. You may opt out at any time via your account notification settings or by contacting support.
Cookies & Tracking Technologies
yj2 uses cookies and similar tracking technologies on its website to deliver a functional, secure, and personalised experience. A cookie is a small text file placed on your device by your browser when you visit a website. Cookies do not contain executable code and cannot directly identify you by name, but they can be used to recognise your browser session and preference settings.
Types of Cookies Used by yj2
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential | Maintain login sessions, security tokens, and core platform functionality | Session / up to 30 days |
| Functional | Remember language preference, currency display (৳ BDT), and UI layout settings | Up to 12 months |
| Analytics | Aggregate, anonymised data on page visits, session durations, and feature usage | Up to 24 months |
| Security | Fraud detection signals, device fingerprinting for suspicious login detection | Session / up to 90 days |
Managing Cookies
You may configure your browser to block or delete cookies at any time. Please note that disabling essential cookies may prevent you from logging in or using key features of the yj2 platform. Browser-level cookie controls are available in your browser settings under Privacy or Security options. Consult your browser's documentation for specific instructions.
yj2 does not use cookies to serve third-party advertising or to track your activity across unrelated websites outside of the yj2 platform domain.
Data Sharing & Third Parties
yj2 does not sell, rent, or trade your personal data to third parties for commercial purposes. We share your data only in the limited circumstances described below, and only with parties who are contractually obligated to handle it securely and in accordance with applicable data protection standards.
Payment Partners
To process deposits and withdrawals, yj2 shares transaction-relevant data with payment providers including bKash, Nagad, Rocket, Upay, BRAC Bank, Dutch-Bangla Bank, City Bank, Islami Bank, and Sonali Bank. The data shared is limited to what is strictly necessary to complete the transaction — typically a transaction reference, amount, and your registered mobile number or account identifier. yj2 does not share gameplay history or full KYC documents with payment partners.
Identity Verification Partners
Where enhanced KYC verification is required, yj2 may share identity document data with authorised third-party verification service providers. These providers are engaged under strict data processing agreements and may not use your data for any purpose other than the verification task for which it was shared.
Game Technology Providers
Live dealer and RNG game providers — including Evolution Gaming, Ezugi, Pragmatic Play, NetEnt, Microgaming, and Spribe — may receive your player session identifier and account-level data necessary to deliver their games within the yj2 platform. These providers operate under their own regulatory frameworks and data protection commitments. No financial or KYC data is shared with game providers beyond what is required for session management.
Legal & Regulatory Disclosure
yj2 may disclose your personal data to law enforcement agencies, financial intelligence units, regulatory bodies, or courts where required to do so by applicable law, by a valid legal order, or where yj2 believes in good faith that such disclosure is necessary to protect the rights, safety, or property of yj2, its players, or the public.
Data Retention & Storage
yj2 retains personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable legal and regulatory obligations. The following retention periods apply as general guidelines:
| Data Category | Retention Period | Reason |
|---|---|---|
| Account Data | Duration of account + 5 years post-closure | Legal compliance, dispute resolution |
| KYC / ID Documents | Duration of account + 5 years post-closure | AML regulatory requirements |
| Financial Records | 7 years from transaction date | Financial record-keeping obligations |
| Gameplay & Betting Logs | 3 years from each session date | Dispute resolution, responsible gaming |
| Support Communications | 2 years from last interaction | Quality assurance, dispute evidence |
| Technical / Log Data | 90 days rolling | Security monitoring and fraud detection |
Data Storage Location
yj2 stores player data on servers utilising industry-standard physical and logical security controls. All data in transit between your device and yj2 is encrypted using TLS 1.3. Data at rest is protected using AES-256 encryption. Access to player data within yj2's systems is restricted on a strict need-to-know basis, with all internal access logged and audited.
Where data is processed by third-party partners (such as payment providers or identity verification services), those partners are contractually required to maintain equivalent standards of data protection and to store data only within jurisdictions that provide adequate data protection safeguards.
Data Deletion
Upon expiry of the applicable retention period, personal data is securely deleted or irreversibly anonymised so that it can no longer be associated with any identifiable individual. Players may also submit a data deletion request as described in the Your Rights section below, subject to applicable legal retention obligations that may prevent immediate deletion of certain categories of data.
Your Rights Over Your Data
yj2 respects your rights in relation to your personal data. Subject to applicable laws and certain necessary limitations (such as legal retention obligations or fraud investigation requirements), you have the following rights with respect to the data yj2 holds about you:
- Right of Access: You may request a copy of the personal data yj2 holds about your account. Requests are processed within a reasonable timeframe, typically within 30 days of receipt.
- Right to Rectification: If any of the personal data yj2 holds about you is inaccurate or incomplete, you have the right to request that it be corrected. For account data, many fields can be updated directly via your account settings.
- Right to Erasure: You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to any overriding legal obligation to retain it (such as financial record-keeping requirements). Requests for erasure of data that must be retained by law will be acknowledged but will explain why immediate deletion is not possible.
- Right to Restriction of Processing: In certain circumstances, you may request that yj2 restrict processing of your data — for example, while the accuracy of data is being contested, or where processing is unlawful but you do not wish for the data to be deleted.
- Right to Data Portability: Where processing is based on your consent or on a contractual relationship, you may request that yj2 provide your data in a structured, commonly used, machine-readable format.
- Right to Object: You have the right to object to processing of your personal data for direct marketing purposes at any time. You may opt out of promotional communications via your account notification settings or by contacting yj2 support.
- Right to Withdraw Consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.
How to Exercise Your Rights
To exercise any of the rights described above, contact the yj2 customer support team via live chat on the yj2 website or by email at [email protected] (plain text — not a clickable link). Please provide your registered account details so that your identity can be verified before any data is disclosed or modified. yj2 will not fulfil data access or deletion requests from individuals who cannot be authenticated as the account holder.
Security Measures
yj2 implements a layered approach to data security, combining technical controls, organisational procedures, and contractual safeguards with third-party partners. The key security measures in place are described below.
- Encryption in transit: All communications between your device and yj2 are encrypted using TLS 1.3 with forward secrecy. This prevents interception of data during transmission over public networks.
- Encryption at rest: All stored personal data, including identity documents and financial records, is encrypted at rest using AES-256 encryption.
- Password hashing: Player passwords are never stored in plain text. yj2 uses a one-way cryptographic hashing algorithm with salt to store password credentials, meaning that even if our database were compromised, passwords would not be directly readable.
- Access controls: Internal access to player data within yj2 systems is governed by role-based access controls. Only staff with a legitimate business need may access personal data, and all access events are logged and subject to periodic audit.
- Fraud detection systems: yj2 operates automated monitoring systems that flag unusual account activity, suspicious login patterns, and anomalous transaction behaviour in real time. Flagged events trigger manual review by the yj2 security team.
- Penetration testing: yj2 conducts periodic security assessments of its platform infrastructure to identify and remediate vulnerabilities before they can be exploited.
- Vendor security requirements: All third-party partners who process yj2 player data are contractually required to implement and maintain equivalent security standards and to notify yj2 promptly in the event of any security incident affecting player data.
Reporting a Security Concern
If you believe your yj2 account has been accessed without your authorisation, or if you become aware of any security vulnerability in the yj2 platform, please contact the yj2 support team immediately via live chat. Do not attempt to exploit any discovered vulnerability — responsible disclosure is appreciated and will be handled professionally.
Policy Updates & Contact
Changes to This Privacy Policy
yj2 reserves the right to update or amend this Privacy Policy at any time to reflect changes in legal requirements, platform features, or business practices. When material changes are made, yj2 will notify active players via a notice on the yj2 platform or by direct communication to your registered contact details. The "Last Updated" date displayed at the top of this page and in the document metadata will always reflect the date of the most recent revision.
Your continued use of the yj2 platform following publication of an updated Privacy Policy constitutes your acknowledgement of and agreement to the revised terms. If you do not agree with any material changes, you should discontinue use of the platform and contact support to request account closure.
Minors
The yj2 platform is strictly for adults aged 18 and above. yj2 does not knowingly collect personal data from individuals under the age of 18. If you become aware that a minor has registered a yj2 account or provided their personal data to yj2, please notify our support team immediately so that the account can be closed and the data deleted promptly.
Contact for Privacy Matters
For all privacy-related enquiries, data access requests, objections to processing, or concerns about how yj2 handles your personal data, please contact the yj2 support team using the details below. All contact information is plain text only — not clickable links.
- Live Chat: Available 24/7 on the yj2 website — the fastest way to reach the support team.
- Email: [email protected] (plain text — not a clickable link)
- WhatsApp: +880 1700 000 000 (plain text — not a clickable link)
- Support Hours: 24/7 including all weekends, public holidays, Eid, and Victory Day
yj2 aims to acknowledge all privacy-related correspondence within 2 business days (Bangladesh Standard Time, UTC+6) and to resolve requests within 30 days wherever possible.
Our Privacy Commitments
How yj2 Protects Your Data
Beyond the legal framework above, here are the six core commitments that guide how yj2 handles every piece of information you share with us.
End-to-End Encryption
All data sent between your device and yj2 is protected by TLS 1.3. Stored data is encrypted with AES-256. Your information is unreadable to any party that does not hold the correct decryption keys.
No Data Selling
yj2 has never and will never sell your personal data to advertisers, data brokers, or any commercial third party. Your data is used solely to operate your account and comply with our legal obligations.
Your Data, Your Rights
You have the right to access, correct, restrict, port, or request deletion of your personal data at any time. Contact the yj2 support team via live chat to exercise any of your data rights — we respond within 30 days.
Minimal Data Collection
yj2 collects only the data that is genuinely necessary to provide the service and meet our legal obligations. We do not ask for information we do not need, and we do not retain data beyond the applicable retention period.
Transparent Communications
yj2 will notify you of any material changes to this Privacy Policy before they take effect. Promotional communications are opt-out — you can manage your preferences any time from your account notification settings.
Strict Third-Party Oversight
Every third-party partner that handles yj2 player data — from payment processors to identity verification services — is contractually bound to maintain equivalent security standards and to use your data only for the specified purpose.
Ready to Play at yj2?
Now that you understand how yj2 protects your data, explore our games and sports betting markets — all secured by the privacy standards described in this policy.