☰ Menu

Privacy Data Protection Policy

Last Updated: January 23, 2026 | Compliant with PDPA 2010 (Act 709)

🔒 OUR NO-SPAM GUARANTEE We understand that as a VIP player, your anonymity is priority #1. We pledge to NEVER sell, trade, or rent your phone number or banking details to 3rd party marketers or SMS spam services.

1. Introduction

do-it.org ("we", "us") values your trust. This Privacy Policy outlines how we manage the Personal Data you provide to us through our website and the Mega888 application, in accordance with the Personal Data Protection Act 2010 (Malaysia).

2. Data We Collect

To provide a secure gaming environment, we collect the following:

  • Identity Data: Name and Age (strictly for 18+ verification).
  • Contact Data: WhatsApp number and Telegram ID (for sending game IDs).
  • Financial Data: Bank account numbers for processing withdrawals (Cuci).
  • Device Data: IP Address and Device ID (to prevent multiple account fraud).

3. How We Use Your Data

Your data is used strictly for operational purposes:

  • Transaction Fulfillment: To credit deposits and transfer winnings to your bank.
  • Fraud Detection: To identify "Bonus Abuse" syndicates and automated bots.
  • Service Communication: To reset forgotten passwords or notify you of system maintenance.

4. Data Retention & Security

We employ 128-bit SSL Encryption for all data transmission.

  • Active Accounts: Data is retained for the lifetime of your account.
  • Financial Logs: Retained for 7 years as required by international auditing standards.
  • Inactive Accounts: Personal identifiers are anonymized after 24 months of dormancy.

5. Cookies & Tracking

We use cookies to improve app performance. You can manage these preferences below:

Essential Cookies

Required for the website to function (e.g., keeping you logged in). These cannot be disabled.

Analytical Cookies

Used by Google Analytics to track page load speeds and visitor counts. No personal ID is attached to this data.

6. Data Breach Protocol

In the unlikely event of a data breach, we have a response plan in place:

  • We will notify all affected users within 24 hours via WhatsApp broadcast.
  • We will trigger an automatic password reset for all game IDs.
  • We will report the incident to the relevant cyber-security authorities in Malaysia.

Data Protection Officer (DPO)

You have the right to request access to, correction of, or deletion of your personal data.

Email: privacy@do-it.org

Subject: PDPA Data Request

2026 © do-it.org All rights reserved

About Us | Responsible Gaming | T&C | Contact
WhatsApp Telegram