dewamuda Privacy Policy

This page describes what we collect when you use dewamuda and how we keep that data protected. Your personal information — name, email, payment details, and account activity — flows through our systems every time you register, deposit, or withdraw. We treat this data as sensitive and apply industry-standard encryption, access controls, and regular security audits to prevent unauthorized access or theft.

Our privacy commitment is straightforward: we collect only what we need to run our platform and comply with law, we use your data only for the purposes stated in this policy, and we do not sell or share your information with unrelated third parties. We give you rights to access, correct, and delete your data within the limits of applicable law and our operational requirements.

If you have questions about how we handle your personal information or how to exercise your rights, contact our support team. We respond to privacy inquiries in English and Indonesian within a standard review window.

What Data We Collect on dewamuda

We at dewamuda collect personal data in the following categories:

• Registration data: Your full legal name, date of birth, email address, phone number, and residential address. We require this information to verify your identity and create your account.
• Identity verification documents: A copy of your national ID (KTP), passport, or equivalent government-issued photo ID, and a utility bill or bank statement showing your residential address. We use these to comply with know-your-customer (KYC) and anti-money-laundering (AML) regulations.
• Payment information: Your e-wallet identifiers (DANA, e-wallet, mobile banking, local payment, online payment account details), your e-wallet code, and your bank account details (for mobile banking, local payment, online payment, e-wallet transfers). We store this encrypted and use it only to process your deposits and withdrawals.
• Account activity: Records of every game you play, every deposit you make, every withdrawal you request, and every market you participate in (Liga 1, Piala Indonesia, Piala AFF, Champions League, live-dealer tables, slot games, esports). We retain this data to resolve disputes, detect fraud, and comply with tax and regulatory obligations.
• Device and connection data: Your IP address, browser type, device type, and approximate location (based on IP). We use this to detect suspicious access, prevent account compromise, and track fraud patterns.
• Communication logs: Any email, chat message, or support ticket you send us. We retain these to respond to your inquiries and to maintain a record of our communications with you.

How We Use Your Data

We use the personal data we collect for these specific purposes:

• Account verification and compliance: We verify your identity using your government ID and address documents to comply with KYC regulations and to prevent fraud and money laundering. This verification is mandatory before you can deposit or withdraw.
• Payment processing: We share your payment details with our payment processors (your bank or e-wallet provider) only to complete your deposit or withdrawal. We do not store your full payment card or account numbers beyond what is necessary to process transactions.
• Dispute resolution: If a dispute arises — for example, if you claim a game outcome was incorrect or a withdrawal was not processed — we use your account activity records to investigate and resolve the issue fairly.
• Fraud detection and security: We monitor your account activity, payment patterns, and login behavior to detect suspicious activity. If we detect potential fraud (multiple accounts from the same device, unusual payment flows, velocity abuse), we may freeze your account or flag your withdrawal for additional review.
• Legal compliance: We retain your data to comply with tax authorities, financial regulators, law-enforcement requests, and other legal obligations. In some cases, local law may require us to report suspicious transactions or account activity to government agencies.
• Customer support: We use your communication logs and account history to respond to support inquiries, clarify game rules, and help troubleshoot technical issues.

Third-Party Processors and Data Sharing

We work with third-party service providers to run our platform. These include payment processors (your bank or e-wallet provider), cloud hosting providers, data security firms, and customer support systems. We share only the minimum data necessary for each provider to perform their function.

For example, when you deposit via mobile banking, we provide local payment with your online payment account identifier and the deposit amount so they can process the transaction. We do not share your full payment details with unrelated marketing companies or data brokers. Your data remains encrypted in transit and at rest.

We may also be required by law to disclose your data to government agencies, tax authorities, or law-enforcement bodies. We comply with valid legal requests and will notify you of such disclosures where permitted by law.

Your data is encrypted, compartmentalized, and accessed only by authorized teams on a need-to-know basis.

International Data Transfer

Our servers and data processing systems may be located outside your jurisdiction (outside Indonesia). When your data is transferred internationally, we apply the same level of protection as we use domestically — encryption, access controls, and regular audits. We do not transfer your data to countries with weaker data-protection standards without additional safeguards.

By using dewamuda, you consent to the transfer of your personal data outside your home jurisdiction if necessary for platform operation. If you do not consent to this transfer, you should not open an account on dewamuda.

Your Rights on dewamuda

You have the right to access, correct, and delete your personal data, subject to legal and operational constraints. To exercise these rights, contact our support team with a clear request:

• Right of access: You can request a copy of all personal data we hold about you. We will provide this in a readable format within a standard review window (typically 10 business days).
• Right of correction: If your personal data is inaccurate or incomplete, you can request correction. We will update your records promptly.
• Right of deletion: You can request deletion of your personal data, except where we are required to retain it by law (tax obligations, regulatory compliance, dispute resolution). If you request closure of your account, we will delete non-essential data after a standard retention period.
• Right to data portability: You can request a copy of your personal data in a portable, machine-readable format (e.g., CSV) for transfer to another service. We will provide this within a standard review window.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies (web beacons, pixels) on dewamuda to improve your experience. Cookies help us remember your login preference, track your session, and detect fraud. We use both session cookies (cleared when you close your browser) and persistent cookies (retained for longer periods).

We also use analytics tools to understand how users interact with our platform — which games are popular, where members from Jakarta, Surabaya, Bandung, and Medan spend time most. This data is aggregated and anonymized; we do not track individual browsing behavior for advertising purposes.

You can manage cookies through your browser settings. Disabling cookies may affect your ability to use certain features of dewamuda, such as staying logged in or tracking your activity history.

Children and Minors

dewamuda is not intended for anyone under the legal age of majority in their jurisdiction. We do not knowingly collect data from minors. If we discover that a user is underage, we will close their account and forfeit any balance. Parents or guardians who believe a minor has opened a dewamuda account should contact our support team immediately.

Security Measures

We implement industry-standard security practices to protect your data from unauthorized access, alteration, or theft. These include:

• End-to-end encryption of sensitive data (passwords, payment details) in transit and at rest;
• Secure password hashing (salted, bcrypt or equivalent) so we never store plain-text passwords;
• Multi-factor authentication options (email verification, SMS codes) for sensitive account changes;
• Regular security audits and penetration testing by independent third parties;
• Access controls and role-based permissions so staff see only the data necessary for their role;
• Incident response plans in case of data breaches (we will notify affected users and relevant authorities where required by law).

However, no security system is perfect. We cannot guarantee absolute protection against all attacks. If you believe your account has been compromised, contact us immediately so we can investigate and secure it.

Policy Changes and Jurisdiction

We may update this privacy policy at any time to reflect changes in our operations, technology, or legal requirements. Material changes will be announced via email to your registered address. Continued use of dewamuda after an update constitutes your acceptance of the revised policy.

This privacy policy is governed by the jurisdiction where dewamuda operates. If you have privacy concerns that we cannot resolve, you may lodge a complaint with your local data-protection authority or privacy regulator (if one exists in your jurisdiction).

Contact Us for Privacy Questions

If you have questions about this privacy policy, wish to exercise your data rights, or have privacy concerns, contact our support team. Provide your account email and a clear description of your request. We respond to privacy inquiries in English and Indonesian within a standard review window (typically 5–10 business days).

We take your privacy seriously. Your trust in how we handle your personal information is essential to our relationship with you, and we are committed to protecting it.