LEGAL REFERENCE

How puncak138 Handles Your Account Data

This is the puncak138 privacy policy — a plain read of what we collect when you open an account, why we hold it, and how long it stays...

Account dataCookiesRetentionYour rightsIndonesia
Explore Games Read FAQ
puncak138 How puncak138 Handles Your Account Data

Policy Posture and Jurisdiction Notes

We process your account details — name, contact, device fingerprint and wallet reference — only where local law permits and only within supported regions. Sign-up data sits behind encrypted storage; verification artefacts are kept for the period our licensing requires, then purged. Payment metadata from DANA, OVO, GoPay and QRIS is tokenised at the rail, so we don't store raw wallet credentials

on our servers. You can request access, correction or deletion of your record by writing to our privacy desk, and we'll action it inside the statutory window that applies to your region.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy Contact Paths

If anything in this policy needs a second look, reach our privacy team directly. We answer in Bahasa Indonesia and English, and...

Privacy Inbox Email our data desk for access, correction or...
Live Chat Desk Open the chat bubble in the lobby and...
Postal Channel For formal notices or regulator-style correspondence, our registered...
PLATFORM TRUST SIGNALS

How We Review This Policy

This policy isn't a one-and-done document. We review it on a fixed cadence and after any material change to how puncak138 handles your data.

Quarterly Review

Our compliance lead re-reads every clause each quarter, checks it against current Indonesia data rules, and signs off the version...

Legal Sign-Off

External counsel licensed in the region reviews drafted changes before they go live. Nothing on this privacy page reaches you...

Security Audit

Our infrastructure team runs penetration tests against the systems holding account records. Findings tied to personal data feed straight back...

Vendor Vetting

Every processor that touches puncak138 data — KYC, payments, analytics — goes through a documented vetting pass. We list the...

Change Log

Material edits are dated and summarised at the bottom of this page. You can see exactly what shifted between versions...

Staff Training

Our support and verification staff complete data-handling refreshers each cycle. The training covers what they can see on your record...

Consistency Across Our Policy Pages

Our privacy text lines up with the other legal pages on puncak138 so you don't get conflicting answers depending on which footer link you click.

Terms of Service
Account obligations referenced in our terms map back to the data points described here, so the legal stack reads as one coherent document set.
Cookie Notice
The cookie categories listed on our cookie page mirror the tracking section below, with the same processor names and the same retention windows shown.
KYC Policy
Verification fields collected at sign-up are described identically here and on the KYC page, including how long we keep ID images after a successful check.
AML Policy
Where anti-money-laundering rules force longer retention, that override is flagged in both this privacy text and the AML page so the conflict is visible.
Complaints Path
The escalation route published on our complaints page is the same one this policy points to for privacy disputes, keeping a single channel for formal notices.
Payments Page
The wallet processors named on our payments page match the third-party list in this policy, so you can trace any data flow end to end.
About Us
The legal entity named here is the same one declared on our About page, with matching registration details and the same contact address for service.
AT A GLANCE

What Shapes This Privacy Page

A few structural choices define how this policy reads. We flag them up front so you know what to look for as you scroll.

01
Plain Wording Clauses are written in everyday English with Indonesia context, not statute-speak. If a term is unavoidable we define it inline so you don't have to flip to a glossary.
02
Scoped Sections Each block covers one topic only — collection, retention, sharing, rights — so you can jump to the part you care about without re-reading the whole document.
03
Dated Versions The footer carries an effective date and a previous-version link. Nothing on this page is undated, and superseded text remains accessible if you want to compare.
04
Region Markers Where a clause depends on where you live, the regional caveat sits in the same sentence rather than buried in a schedule, keeping the meaning immediate.
05
Contact On Page The privacy contact sits inside this document, not three clicks away. You can read a clause and act on it in the same scroll without hunting through menus.
06
Mirrored Rights Your access, correction and deletion rights appear in a single list, mirrored between this page and our request form, so the action and the right line up exactly.

Privacy Questions We Get Asked

We collect your name, contact details, date of birth, a device fingerprint and the wallet reference you choose at deposit. That set is the minimum needed to open and operate your account under Indonesia rules.

Active account data stays for the life of the account. After closure we retain the minimum set required by Indonesia financial and gaming rules, then purge. Exact windows are listed in the retention clause above.

Only with vetted processors handling verification, payments and platform infrastructure, and only the fields each one needs. We never sell your record, and marketing partners do not receive identifying account data from puncak138.

Yes. Write to our privacy inbox from the email on file. Where statutory retention applies we'll explain what must remain and for how long, and confirm in writing once the purge completes.

No raw wallet credentials sit on puncak138. The rails tokenise the link, so we hold a reference for reconciliation only. Your underlying wallet stays with the provider you authenticated against at deposit.

Send a subject access request to our privacy inbox and verify your identity through the account on file. We return a structured copy of your record inside the window Indonesia rules require for such requests.

Material changes are flagged on the page, dated in the change log, and announced to the email on your account before they take effect. Minor edits for clarity are dated but not separately notified.