datukhokiPrivacy Policy

This page describes what we collect when you use datukhoki and how we keep that data protected. We take your privacy seriously; our data handling practices follow Indonesian financial regulations and international standards for online gaming platforms.

When you register an account on datukhoki, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer, or play our slot games, live-dealer tables, sportsbook markets, and esports competitions, we collect certain personal and transactional information. We explain below what we collect, why we collect it, who has access to it, how long we retain it, and what rights you have under Indonesian law.

Our privacy commitments are binding on all datukhoki staff and contractors. We do not sell your data to third-party marketers. We share data only with payment processors, compliance partners, and regulatory authorities where required by law.

What we collect on datukhoki

Account registration data

When you register on datukhoki, we collect your legal name, email address, phone number, and date of birth. These fields are required to create your account and are verified using SMS and email confirmation codes. We store this data indefinitely while your account remains active.

Identity verification documents

To access real-money features on datukhoki (deposits, withdrawals, and live-game play), we ask for a photo of your national identity document (KTP, passport, or equivalent). Some users may be asked to provide a selfie for additional verification. These images are stored in an encrypted, segregated database separate from your main account. We retain identity documents for a minimum of three years after your last transaction to comply with anti-money-laundering (AML) regulations.

Your identity data is encrypted and access-controlled

We store identity documents in an encrypted vault. Only our compliance team accesses these documents for verification and regulatory reporting. datukhoki staff cannot see your identity documents unless explicitly needed for dispute resolution.

Transaction and gameplay data

We log all your activity on datukhoki: every deposit, withdrawal, slot spin, live-table hand, sportsbook wager, and esports entry. This information includes timestamp, amount, game or market name, outcome (win/loss/pending), and your account balance before and after. Transaction logs are retained indefinitely for your account history and regulatory compliance. Gameplay logs older than two years may be archived to secondary storage but remain retrievable upon request.

Payment processor information

When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, we receive confirmation of the transaction (amount, timestamp, payment method type, transaction ID). We do not store your payment account credentials (e.g., your mobile banking PIN, bank password, or card number). Payment processors handle that sensitive data. We retain payment confirmations for your record and for audit purposes; these are accessible via your datukhoki account dashboard.

Device and usage data

We collect information about the device you use to access datukhoki: device type (mobile, tablet, desktop), operating system, browser version, and approximate location (city-level, derived from your IP address). We use this data to optimize platform performance, detect fraud, and improve user experience. We do not track your precise geographic location; city-level data is sufficient for our purposes. This data is retained for one year and then automatically deleted.

Cookies and tracking

datukhoki uses cookies to maintain your login session, remember your preferences (such as language choice), and track how you navigate our platform. We use first-party cookies only; we do not use third-party tracking cookies for advertising. You can disable cookies in your browser settings, but this may prevent datukhoki from functioning properly. Our cookies expire after 30 days of inactivity.

Our datukhoki data policy

How we use your data

We use the data we collect on datukhoki for the following purposes:

  • Account management: We verify your identity, manage your account balance, process deposits and withdrawals, and log your gameplay.
  • Regulatory compliance: We report to Indonesian financial authorities as required by law. This includes Know-Your-Customer (KYC) and anti-money-laundering (AML) reporting.
  • Fraud prevention: We monitor for suspicious activity, detect account takeovers, and prevent unauthorized access.
  • Platform improvement: We analyze usage patterns to optimize datukhoki's performance, identify technical issues, and improve user experience.
  • Dispute resolution: If you contest a transaction or game outcome, we use your data to investigate the claim and resolve it fairly.

Who has access to your data on datukhoki

We limit access to your personal data to the following groups:

  • datukhoki operations team: Account managers and support staff who handle account verification, deposits, withdrawals, and customer service.
  • datukhoki compliance team: Staff responsible for KYC verification, AML reporting, and regulatory compliance. Only this team accesses your identity documents.
  • Payment processors: DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet receive transaction data necessary to process your deposits and withdrawals. These companies have their own privacy policies.
  • Regulatory authorities: We may be required to share data with Indonesian financial authorities, tax agencies, or law enforcement if compelled by law.
  • Contractors: We use third-party software vendors (hosting providers, security auditors, identity verification services) who sign data protection agreements with datukhoki.

Key takeaways

  • We collect account, identity, transaction, and device data when you use datukhoki.
  • Identity documents are encrypted and stored separately from your main account.
  • All deposits via mobile banking, local payment, online payment, e-wallet, and bank transfer are logged for your transparency.
  • We do not sell your data to advertisers or third-party marketers.
  • Only our operations and compliance teams access your personal data; payment processors and regulators receive data as legally required.
  • You have the right to request a copy of your data, correct inaccuracies, and request deletion (subject to legal retention requirements).

Data retention on datukhoki

We retain different types of data for different periods:

  • Account data (name, email, phone): Stored indefinitely while your account is active; deleted one year after account closure.
  • Identity documents: Retained for three years minimum after your last transaction to comply with AML regulations.
  • Transaction logs: Retained indefinitely for your account history; archived after two years but still retrievable.
  • Device and usage data: Retained for one year; automatically deleted thereafter.
  • Support tickets and messages: Retained for two years; deleted thereafter unless required for dispute resolution.

Your rights and data requests

You have the following rights regarding your data on datukhoki:

  • Right to access: You can request a copy of all personal data we hold about you. Submit your request via our support desk; we will provide your data within 30 days.
  • Right to correction: If any of your account data is inaccurate (name, email, phone number), contact our support team to update it.
  • Right to deletion: You can request deletion of your account and associated data. However, we will retain identity documents and transaction logs for the legal minimum period (three years) required by AML regulations.
  • Right to complain: If you believe we have mishandled your data, you may file a complaint with Indonesia's Personal Data Protection Authority.

International data transfer

Our datukhoki servers and backup systems may be located outside Indonesia. When we transfer your data internationally (for example, to a hosting provider in Singapore or Europe), we ensure it is encrypted in transit and protected by contractual data protection agreements. You acknowledge that data transferred outside Indonesia may be subject to the laws of that country. However, we maintain the same privacy standards regardless of server location.

Security measures on datukhoki

We protect your data using industry-standard security practices: SSL/TLS encryption for data in transit, AES-256 encryption for data at rest, firewalls, intrusion detection systems, and regular security audits. We limit access to sensitive data (identity documents, account credentials) using role-based permissions and multi-factor authentication for staff. We do not claim absolute security; no system is immune to attack. However, we undertake reasonable measures to protect your data from unauthorized access, modification, or disclosure.

Policy changes

We may update this privacy policy from time to time. We will notify you of significant changes via email if they affect how we use your data. Your continued use of datukhoki after a policy update constitutes acceptance of the revised policy. Check this page regularly for updates.

Contact us about privacy on datukhoki

If you have questions about our privacy practices, wish to exercise your rights, or have a privacy concern, contact our datukhoki support team via email or live chat during business hours. We respond to privacy requests within 30 days. You can also reach us for data requests, complaint escalation, or clarification on how we handle specific types of information. Our support team speaks English and local languages and can assist you in Jakarta, Surabaya, Bandung, Medan, Semarang, and other supported regions.