LEGAL REFERENCE

How We Handle Your Account Data

This is the gatotkaca77 privacy policy — a plain read of what we collect when you open an account, why we hold it, and how long it stays...

Plain-English clausesDated revisionsAccount-scoped dataEncrypted at restIndonesia-aware
Explore Games Read FAQ
gatotkaca77 How We Handle Your Account Data

Our Privacy Posture & Jurisdiction Notes

We collect only the account fields needed to run your lobby: your sign-in identifiers, device fingerprint for fraud checks, and the wallet reference you choose at top-up. Where local law permits, we retain transaction metadata for the period required by Indonesian financial reporting rules, then purge. We do not sell your data to third parties, and marketing consent is opt-in and reversible

from your account settings. Cross-border processing happens only with vendors bound by equivalent confidentiality terms, and your wallet IDs from DANA, OVO, GoPay or QRIS stay tokenised end-to-end so raw numbers never sit on our application servers.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Privacy Contact Paths

Reach our privacy desk through any of the channels below. We answer data requests in the order received and confirm receipt within one business day so you're never left wondering whether your message landed.

Team online

Privacy Inbox

Email our data desk directly for access, correction or deletion requests tied to your gatotkaca77 account. Include your registered handle so we can match the request to the right profile.

In-App Ticket

Open a ticket from your account menu and tag it Privacy. Tickets route to the same desk that handles formal data requests, with a thread you can revisit any time.

Postal Notice

For formal regulator-style notices, our registered correspondence address is published in the footer. Use this path when you need a stamped paper trail rather than a digital reply.

TRUST MARKERS

How We Review This Policy

Six checkpoints shape every revision of this document so the wording stays accurate to what our systems actually do.

Legal Sign-Off

Each clause is reviewed by counsel familiar with Indonesian data protection norms before it goes live, with sign-off logged against the version date you see at the top of the policy.

Engineering Match

Our platform team confirms every data-handling claim mirrors what the codebase actually does. If a system changes, the clause changes in the same release window — never after.

Vendor Audit

Third-party processors are audited yearly for the controls we promise here. Any vendor that drops below our confidentiality bar is replaced before the next policy revision lands.

Wallet Tokenisation

DANA, OVO, GoPay and QRIS references stay tokenised end-to-end, so the engineers who build the lobby never see a raw wallet identifier tied to your account.

Retention Clock

Automated jobs purge expired records on schedule. We document the retention window for each data class so you can map your information to a real deletion date.

User Rights Desk

A dedicated desk handles access, rectification and erasure requests. Response times are tracked internally and reported to management quarterly to keep the queue honest.

Consistency Across Our Policy Pages

Our privacy clauses align with the rest of our legal stack so you don't have to chase contradictions between pages.

Terms of Service
The privacy policy and our terms cite the same account definitions, so a clause about your handle here means the same thing in the contract you accepted at sign-up.
Cookie Notice
Cookie categories listed in our cookie notice map one-to-one to the tracking section here. No category appears in one document and goes missing in the other.
AML Statement
Identity checks referenced here use the exact data fields described in our anti-money-laundering statement, with retention windows that match across both documents.
Refund Policy
Wallet data we hold for refund traceability is scoped here and echoed in the refund policy, so the same record supports both your privacy rights and any chargeback request.
Complaints Charter
Privacy complaints follow the timeline published in our complaints charter — same acknowledgement window, same escalation ladder, same final-response promise.
Security Page
Encryption-at-rest and tokenisation claims here mirror the technical summary on our security page, refreshed in the same release as any infrastructure change.
Account Closure
Closure flow described in the account-closure page uses the deletion windows defined here, so what you read in one page is exactly what the other page enforces.

What Shapes This Policy Page

Six elements define how the privacy page reads on your screen so you can find what you need without scrolling blindly.

Dated Header

The version date sits at the top of every revision. Bookmark the page and you'll always know whether the clauses you agreed to last month still match what's live today.

Clause Anchors

Each section carries a deep link so you can share a specific clause with our desk or with a regulator without forcing the reader to scan the whole document first.

Plain Glossary

Industry terms are unpacked inline rather than buried in a footnote, so a first read gives you the meaning without flipping between the policy and a separate definitions sheet.

Change Log

A short revision log near the foot of the page lists what moved between versions. You see additions, removals and rewordings without diffing two PDFs side by side.

Mobile Layout

Sections collapse on small screens so you can jump straight to retention, contact or rights without thumb-scrolling through the full text on a phone browser.

Contact Block

The privacy contact card sits inside the page itself, not hidden in a footer, so the path from reading a clause to raising a question is one tap away.

Privacy Policy FAQ

We collect your chosen handle, contact email, hashed password, and the device fingerprint used for fraud screening. Wallet identifiers from DANA, OVO, GoPay or QRIS are tokenised before they reach our application servers.

Active account data lives for as long as your account is open. After closure, we retain transaction metadata for the period Indonesian financial rules require, then purge automatically on a scheduled job we monitor monthly.

Yes. Email our privacy inbox or open an in-app ticket tagged Privacy. We confirm receipt within one business day and deliver the export inside the window published at the top of this policy.

We share only with processors bound by equivalent confidentiality terms — payment rails, fraud screening, and infrastructure hosting. We do not sell data to advertisers, and marketing partners receive nothing tied to your identity.

Open your account settings and toggle the marketing preference off. The change applies on the next send cycle, and we log the consent state against your profile so future audits can confirm the toggle worked.

Primary processing happens on infrastructure serving Indonesia where local law permits. Cross-border processing occurs only with vendors covered by equivalent confidentiality and security terms documented in our vendor audit.

The version date at the top updates with every revision, and a short change log near the foot lists what moved. Material changes also trigger an in-app notice the next time you sign in.