🇬🇧
🇬🇧 English
🇻🇳 Vietnamese
Back to Home

Privacy Policy Notice

1. Policy Overview

MOBILE INCORPORATED Limited (the “Company”, “we”, “our”, or “us”) is committed to protecting the privacy and Personal Data of individuals who use our Services.

This Privacy Policy Notice describes how Personal Data is collected, processed, used, stored, shared, and protected when users access or interact with our websites, mobile applications, gaming platform, and related services (collectively, the “Services”).

By accessing or using the Services, you acknowledge that your Personal Data will be processed in accordance with this Notice and applicable legal and regulatory obligations.

The Company processes Personal Data in compliance with:

  • Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR)
  • the Malta Data Protection Act (Chapter 586 of the Laws of Malta)
  • Malta Gaming Authority (“MGA”) regulatory requirements relating to AML, KYC, responsible gaming, and player protection

2. Data Controller Information

MOBILE INCORPORATED Limited is the Data Controller responsible for determining the purposes and means of processing Personal Data.

Registered Office:

Elite Business Centre, Trejqa Ta’ Box Box, Msida MSD1840, Malta

Company Registration Number: C 84149

Data Protection Officer (DPO)

Email: legal@nhatvip.live

Address: Elite Business Centre, Trejqa Ta’ Box Box, Msida MSD1840, Malta

The Data Protection Officer oversees compliance with applicable data protection requirements and serves as the contact point for privacy-related matters.

3. Data Protection Principles

The Company applies the following principles when processing Personal Data:

  • Lawfulness, fairness, transparency: processing is carried out in a lawful and transparent manner
  • Purpose limitation: data is collected for specific and legitimate purposes only
  • Data minimisation: only necessary data is collected and processed
  • Accuracy: data is kept accurate and updated where required
  • Storage limitation: data is retained only for as long as necessary
  • Integrity and confidentiality: appropriate security safeguards are implemented
  • Accountability: compliance can be demonstrated at all times

4. Personal Data Collected

We may collect and process the following categories of Personal Data:

Identity Data

  • full name
  • date of birth
  • nationality
  • gender

Verification Data

  • government-issued identification documents
  • proof of residential address
  • source of funds and/or source of wealth information (where required)

Contact Data

  • email address
  • telephone number
  • residential address

Account and Gaming Data

  • login credentials
  • gaming and betting activity
  • account balances, limits, and preferences
  • transaction history

Financial Data

  • payment method details
  • deposits and withdrawals
  • transaction records

Technical Data

  • IP address
  • device identifiers
  • browser type and operating system
  • usage logs and system activity

Communication Data

  • customer support correspondence
  • responsible gaming interactions
  • compliance-related communications

5. Purposes of Processing

Personal Data is processed for the following purposes:

  • account registration and administration
  • identity and age verification
  • provision of gaming and betting services
  • processing payments and withdrawals
  • compliance with AML, KYC, and regulatory obligations
  • fraud detection and prevention
  • responsible gaming monitoring and enforcement
  • system security and operational integrity
  • customer support and communication
  • legal and regulatory reporting obligations
  • service improvement and analytics

6. Legal Basis for Processing

We process Personal Data under one or more of the following legal bases:

  • Contractual necessity: to provide Services and manage user accounts
  • Legal obligation: to comply with AML, KYC, MGA, and other regulatory requirements
  • Legitimate interests: including fraud prevention, security, and operational improvement
  • Consent: where required (e.g. marketing communications)

Where consent is relied upon, it may be withdrawn at any time.

7. Data Sharing and Disclosure

Personal Data may be shared with selected third parties where necessary, including:

  • payment service providers and financial institutions
  • identity verification and AML/KYC service providers
  • IT infrastructure, hosting, and cloud service providers
  • professional advisers (legal, audit, compliance)
  • regulatory and enforcement authorities, including the Malta Gaming Authority and FIAU where required by law

The Company does not sell or rent Personal Data.

8. International Transfers

Where Personal Data is transferred outside the European Economic Area (EEA), the Company ensures appropriate safeguards are in place, including:

  • European Commission adequacy decisions, or
  • Standard Contractual Clauses (SCCs) or equivalent GDPR-approved safeguards

9. Data Retention

Personal Data is retained only for as long as necessary to fulfil legal, regulatory, and operational requirements.

Retention is based on:

  • AML and gaming regulatory requirements
  • contractual obligations
  • dispute resolution and audit requirements

Once no longer required, data is securely deleted or anonymised.

Certain compliance records, including breach documentation, may be retained for at least five (5) years where required.

10. Security of Personal Data

The Company implements appropriate technical and organisational safeguards, including:

  • encryption of sensitive information
  • access control and authentication systems
  • secure network monitoring and infrastructure protection
  • internal policies and governance controls
  • staff training on data protection and cybersecurity

Security measures are regularly reviewed and enhanced where necessary.

11. Data Subject Rights

Subject to applicable law, individuals have the right to:

  • access their Personal Data
  • correct inaccurate data
  • request deletion where legally permitted
  • restrict or object to processing
  • request data portability
  • withdraw consent where applicable

Requests should be submitted to the Data Protection Officer.

Individuals may also lodge a complaint with the Office of the Information and Data Protection Commissioner (Malta).

12. Data Breach Handling

In the event of a Personal Data breach, the Company will:

  • detect and contain the incident
  • assess potential risks
  • implement corrective actions
  • notify the supervisory authority within 72 hours where required
  • notify affected individuals where there is a high risk
  • maintain internal records of breaches

13. Age Restrictions

The Services are strictly intended for individuals aged 18 years or older.

We do not knowingly collect Personal Data from minors. If such data is identified, it will be deleted and the account will be closed where appropriate.

14. Cookies and Tracking Technologies

Cookies and similar technologies are used to:

  • enable core functionality
  • improve security and fraud prevention
  • analyse usage and performance
  • enhance user experience

Where required, consent is obtained via a cookie management tool.

15. Policy Updates

This Privacy Policy may be updated from time to time to reflect legal, regulatory, or operational changes.

The latest version will always be published on the Company’s official website.

16. Governing Law

This Privacy Policy is governed by the laws of Malta and interpreted in accordance with the GDPR and applicable Maltese data protection legislation.