LEGAL REFERENCE

How ug889 Handles Your Account Data

This is the ug889 privacy policy — the page that tells you what we collect when you open an account, why we collect it, and how long we...

Plain-English PolicyIndonesia-FocusedAccount DataKYC NotesLast Reviewed Recently
Account access Read FAQ
ug889 How ug889 Handles Your Account Data

Our Privacy Posture and Your Rights

We collect the minimum we need to run your account: your name, contact details, device fingerprint, and the payment reference you choose. Where local law permits, we retain transaction logs for the periods regulators ask of us, then we delete or anonymise. You can request a copy of your record, ask us to correct a field, or close your account from inside

your profile. We never sell your data to third parties. Marketing messages are opt-in only, and you can switch them off in one tap. For supported regions in Indonesia, e-wallet references are stored encrypted, separated from your login credentials, and accessed only when you initiate a transaction or our compliance team flags a review under applicable rules.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

PLAYER SUPPORT

Privacy Contact Paths

If you have a question about your data, these are the channels that reach our privacy desk directly. Each one is monitored by the team that actually handles the request, not a...

Privacy Inbox Email our data desk for access, correction or deletion requests. We acknowledge within one working day and close most requests inside the statutory window for your supported region.
In-Account Form Open your profile, head to the privacy tab, and submit a structured request. The form pre-fills your account ID so the privacy team can verify and action it without back-and-forth.
Live Chat Escalation Start in chat, ask for the privacy officer, and your ticket gets routed off the general queue. Useful when you need a marketing opt-out or session log clarified quickly.
PLATFORM TRUST SIGNALS

How This Policy Is Reviewed

This document is not static. It gets read, edited, and signed off on a schedule, and we log every change so you can see what moved.

Legal Sign-Off

Every revision passes our retained Indonesian counsel before it goes live. They check wording against current data-protection statutes and flag...

Quarterly Review

We re-read the full policy every quarter. If a payment partner changes its handling, or a regulator updates guidance, we...

Versioned History

Older versions stay archived. If you signed up under last year's wording, you can request that copy and compare it...

Named Owner

A single privacy lead owns this document end-to-end. That means accountability is clear, and your access requests don't bounce between...

Plain Language Pass

Before publishing, an editor strips legalese where it isn't load-bearing. The goal is a policy you can finish reading in...

Audit Trail

Internal access to your profile is logged. If a staff member opens your record, we know who, when and why...

SIDE BY SIDE

Consistency Across Our Policy Pages

Our privacy policy lines up with our cookie notice, terms and KYC pages. Here's how the wording stays consistent so you don't get conflicting answers.

01

Definitions

Words like account, profile and reference mean the same thing on every policy page, so a clause here matches a clause in our terms.

02

Retention Windows

Data retention periods quoted here match the cookie page and KYC notice exactly, down to the month, with no rounding tricks.

03

Contact Channels

The privacy inbox listed here is the same address used on the cookie banner and the account-closure flow, with no aliasing.

04

Revision Dates

When we update one policy page, sibling pages that reference the same clause get re-stamped on the same day to avoid drift.

05

Jurisdiction Notes

The supported-regions language is identical across pages, so what you read here applies cleanly to terms and KYC too.

06

Opt-Out Mechanics

Marketing and analytics opt-outs are described with the same steps everywhere, so toggling once gives you the result you expect.

07

Third-Party List

The processors named here match the list on our cookie page, with the same purpose tags and the same regional storage notes.

What's On This Policy Page

This is the layout of the privacy page itself — the sections you'll see as you scroll, so you can jump straight to what matters.

Data We Collect

A clean list of fields we capture at sign-up and during play, separated into required and optional, with a note on why each one exists in your profile.

Why We Collect It

For each data point, we explain the lawful basis and the operational reason. No vague catch-all clauses — every line connects to a specific account function.

Who Sees It

A short map of internal teams and external processors that touch your record, with the role each one plays and the region they operate from.

How Long We Keep It

Retention windows are stated in months or years per data category. When the clock runs out, the record is deleted or anonymised on the next purge cycle.

Your Controls

The buttons and forms inside your profile that let you export, correct or close. Each control links to a short walkthrough so you know what happens after you click.

Updates Log

A dated list of policy changes sits at the foot of the page. Material changes also trigger an in-app notice so you don't miss anything that affects your account.

Privacy Policy Questions

We store your name, contact details, verification documents, device fingerprint and the e-wallet reference you've linked. Transaction history sits alongside, encrypted at rest, and is accessed only when you or compliance trigger a check.

Yes. Submit a subject access request from the privacy tab in your profile, or email the privacy inbox. We return a structured export within the statutory window for your supported region, usually well inside thirty days.

Open your profile, choose close account, and confirm. We delete or anonymise everything we're not legally required to retain. Records held for tax or anti-fraud reasons stay only for the period regulators specify, then go.

Only with the processors we need to run the account — payment partners for DANA, OVO, GoPay and QRIS, our KYC vendor, and our hosting provider. None of them resell. The full list sits on our cookie page.

Head to communication preferences in your profile and switch off the channels you don't want. Changes apply within minutes. You'll still receive transactional notices about your account, since those aren't marketing under the policy.

Primary storage sits in regional data centres serving Southeast Asia, with encrypted backups in a secondary zone. Cross-border transfers happen only where contractual safeguards are in place and where local law permits the movement.

Material changes trigger an in-app notice and an email to the address on your profile. The updates log at the foot of this page captures every revision with a date, so you can see exactly what moved and when.