Cr1 Privacy Policy — How We Protect User Data
This Privacy Policy explains how cr1 collects, uses, stores and protects your personal information as a platform user in Malaysia. We are committed to complying with Malaysia's Personal Data Protection Act 2010 (PDPA) and ensuring your privacy is always safeguarded.
1Types of Information We Collect
When you register or use the cr1 platform, we may collect various categories of information to ensure our services run smoothly and securely. This includes:
- Full name, date of birth, and IC or passport number for identity verification purposes.
- Registered email address and mobile phone number.
- Username and password chosen during registration (passwords are stored in encrypted form).
- Malaysian bank account details used for deposits and withdrawals in MYR.
- Transaction records including amounts, dates, times and payment methods.
- Cr1 does not store full card numbers; sensitive payment data is handled by certified payment processors.
- IP address, device type, operating system and web browser version in use.
- Approximate location data derived from your IP address for regional verification purposes.
- Access logs recording login activity and platform usage.
- Betting records, game types accessed and account activity history.
- Session duration, pages visited, and clicks made while using the platform.
- Feedback, complaints or communications you send to the cr1 support team.
2How We Use Your Personal Information
Cr1 uses the information collected solely for legitimate and necessary purposes in operating the platform, as follows:
- Account management and identity verification — Ensuring each account is held by an eligible individual and protecting your account from unauthorised access.
- MYR payment processing — Facilitating MYR deposits and withdrawals via local payment methods such as DuitNow and Malaysian banks.
- Platform service delivery — Displaying up-to-date odds, processing bets, updating account balances and ensuring all platform functions run smoothly.
- Security & fraud prevention — Detecting suspicious activity, preventing money laundering and maintaining the integrity of the cr1 platform at all times.
- Customer support — Answering enquiries, resolving complaints and providing technical assistance to users who need it.
- Service improvement — Analysing aggregated usage patterns (without identifying individuals) to improve the platform's interface and user experience.
- Legal compliance — Meeting legal obligations under applicable Malaysian regulations, including record-keeping required by law.
3Cookies & Tracking Technologies
The cr1 platform uses cookies and similar technologies to enhance your browsing experience. Cookies are small text files stored on your device when you visit a website. We use several types of cookies for different purposes:
- Session cookies — Keeps you logged in while using the platform without requiring you to re-enter your password each time. These cookies are automatically deleted when you close your browser.
- Preference cookies — Saving your language and display preferences so you don't have to reconfigure them on every visit.
- Analytics cookies — Collecting aggregated usage data to help us understand how users interact with the platform. This data cannot be used to directly identify any individual.
- Security cookies — Helps detect and prevent fraudulent activity and unauthorised access to user accounts.
You can manage or delete cookies through your web browser settings. However, disabling certain cookies may affect the functionality of some parts of the cr1 platform.
4Data Retention & Security Measures
Cr1 implements appropriate technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration or destruction. Key security measures we employ include:
All communications between your device and cr1's servers are secured using SSL/TLS encryption, ensuring your data cannot be intercepted in transit over the internet.
Access to users' personal data is restricted to cr1 staff who require it to perform their duties. All access is logged and reviewed on a regular basis.
Personal data is retained for as long as necessary for the stated purpose, or as required under Malaysian law. Once that period has lapsed, the data will be deleted or anonymised.
While we take reasonable steps to protect your data, no security system can guarantee absolute protection. In the event of a data breach that affects user rights, cr1 will notify affected users and the relevant authorities as required by law within the stipulated timeframe.
5Data Sharing & User Rights
Third-Party Sharing
Cr1 does not sell, rent or share users' personal information with third parties for marketing purposes. We only share data in the following limited circumstances:
- Payment processors — Transaction details that must be shared with Malaysian banks or payment processors to facilitate your MYR transactions.
- Technical service providers — Third parties that help us operate the platform infrastructure, subject to strict confidentiality agreements.
- Statutory authorities — When required by Malaysian law or a valid court order.
Your Rights Over Personal Data
As a cr1 user in Malaysia, you have the following rights regarding your personal information:
- Right of access — You may request a copy of the personal information we hold about you at any time.
- Right to rectification — You may request that we update or correct any information that is inaccurate or out of date.
- Right to erasure — You may request the deletion of your account and personal data, subject to any legal record-keeping obligations still in force.
- Right to withdraw consent — You may withdraw consent for certain data processing at any time, though doing so may affect your ability to use some cr1 services.
To submit any of the above requests, please contact the cr1 support team by email at [email protected] or visit our help page.
6Policy Updates & How to Contact Us
Cr1 reserves the right to update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technological developments. The latest version will always be available on this page with a clear update date. Continued use of the cr1 platform after any policy changes are published will be considered acceptance of the updated version.
Where changes are material and significantly affect your rights, cr1 will endeavour to notify you via your registered email address or through a prominent notice on the platform.
If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data by cr1, please reach out to us via:
- Email: [email protected]
- Help Centre: cr1 FAQ
- Response time: We aim to respond to all privacy-related enquiries within 5 business days.
Have More Questions About Your Data Privacy?
The cr1 support team is on hand to assist with any queries related to data protection, user rights, or account settings. You can also visit our FAQ section for quick answers.