LEGAL REFERENCE

Your Data. Your Control. Our Commitment.

We built badaihoki around your account security and privacy. Every deposit through DANA, OVO, GoPay or QRIS, every table you join, every bet you place — we keep...

Encrypted Account FlowPayment Data IsolatedNo Third-Party SharingIndonesia-CompliantTransparent Logging
View Game Library Read FAQ
badaihoki Your Data. Your Control. Our Commitment.

Privacy Policy — Full Details

badaihoki operates under Indonesian data protection frameworks and regional compliance standards. We collect account credentials, payment method details (DANA, OVO, GoPay, QRIS references), gaming history and device identifiers solely to deliver your lobby access, process withdrawals and detect fraud. Your data is stored on secure servers and never sold to advertisers or data brokers. We retain records for the duration of your

account plus seven years for regulatory audit, then delete them. You may request a data export or account deletion at any time through our support team.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Privacy Questions? We're Here.

Team online

Email Support

Send privacy concerns to our data team at [email protected]. We respond within 48 hours with clarification, data exports or account adjustments.

In-App Help

Open the Help menu inside your account lobby. Select 'Privacy & Data' to see your stored information, download records or request deletion instantly.

Legal Inquiry

For formal data subject requests or regulatory questions, contact our legal team at [email protected] with your account ID and request type.

PLATFORM TRUST SIGNALS

Why Your Privacy Matters Here

Encryption Standard

All account logins and payment flows use TLS 1.3 encryption. Your DANA, OVO, GoPay and QRIS details never touch our servers unencrypted.

Annual Audit

We commission third-party security audits every 12 months to verify data isolation, access controls and compliance with Indonesian privacy law.

No Ad Networks

We don't share your gaming history, payment method or device ID with ad platforms, analytics vendors or social networks without explicit consent.

Fraud Detection Only

We process your data to detect account takeovers, duplicate registrations and payment fraud. No profiling for marketing or third-party targeting.

Retention Limits

Account data is deleted 90 days after closure. Transaction logs kept seven years for tax and regulatory compliance, then purged automatically.

Indonesia-First Compliance

We follow OJK banking guidelines, Bank Indonesia payment standards and regional data residency rules. Your data stays in supported Indonesian regions.

How We Stack Up on Privacy

Data EncryptionTLS 1.3 on all account and payment flows; AES-256 for stored credentials.
Third-Party SharingNone without consent. Payment processors see only transaction totals, never your full card or e-wallet details.
Retention PolicyAccount data deleted 90 days post-closure; transaction logs kept seven years for regulatory compliance.
User RightsExport your data, request deletion, or update privacy settings anytime through the Help menu or [email protected].
Fraud MonitoringWe scan for duplicate accounts, payment anomalies and takeover attempts. No behavioral profiling or predictive targeting.
Audit TrailAnnual third-party security audits verify encryption, access controls and compliance with Indonesian data protection frameworks.
Regional ComplianceWe follow OJK banking rules, Bank Indonesia payment standards and data residency requirements for supported Indonesian regions.
AT A GLANCE

What Defines Our Privacy Approach

01
Account Isolation Each login session is sandboxed. Your lobby, table history and balance are visible only to you and our fraud-detection systems.
02
Payment Separation DANA, OVO, GoPay and QRIS transactions are processed through encrypted channels. We never store full payment credentials on our servers.
03
Consent-First Cookies We use session cookies to keep you logged in and functional cookies to remember your lobby preferences. No tracking cookies without your approval.
04
Transparent Logging We log login times, deposit amounts and withdrawal requests for your security and regulatory compliance. You can review your activity log anytime.
05
No Data Broker Sales Your account information is never sold to data brokers, ad networks or third-party marketers. We keep it internal and compliance-focused.
06
Deletion on Request Close your account and we delete your personal data within 90 days. Transaction records kept seven years for tax purposes only.

Privacy Policy — Frequently Asked

We collect your name, email, phone number, date of birth and address for account verification. We also store your DANA, OVO, GoPay or QRIS payment method reference (not full credentials), device ID and IP address for fraud detection and login security.

No. Your gaming history, table activity and betting records stay on our servers. We never share them with advertisers, data brokers or analytics platforms. Payment processors see only transaction totals for settlement purposes.

Personal account data (name, email, phone) is deleted 90 days after closure. Transaction logs and payment records are kept seven years for tax compliance and regulatory audit, then automatically purged from our systems.

Yes. Open the Help menu in your account lobby, select 'Privacy & Data' and choose 'Export My Data' or 'Request Deletion'. You can also email [email protected] with your account ID and request type for manual processing.

Absolutely. All payment flows use TLS 1.3 encryption. Your payment method details are tokenized and never stored in plain text on our servers. Only transaction references are logged for your withdrawal history.

We use session cookies to keep you logged in and functional cookies to remember your lobby preferences. We do not use tracking cookies or pixels for behavioral profiling without your explicit consent in our cookie banner.

Any acquisition or merger would require the new owner to honor this privacy policy and your data rights. We would notify you of material changes and give you 30 days to request data deletion before any transfer occurs.