erek 12 Platform Privacy Notice

This page describes what we collect when you use erek 12 and how we keep that data protected. We collect information necessary to verify your identity, process your deposits and withdrawals, and maintain your account. We do not sell your data to third parties, and we do not use your information for marketing beyond service notifications. Our data handling follows standard industry practices: encryption in transit, access controls, and retention policies aligned with regulatory requirements.

Our servers may sit outside your jurisdiction. When you use erek 12 from Jakarta, Surabaya, Bandung, Medan, or elsewhere in Indonesia, your data may be processed and stored on infrastructure located in other regions. We apply the same security standards regardless of server location. We comply with data-protection principles: we collect only what we need, we keep it secure, and we delete it when no longer required.

This notice covers what we collect, how we use it, who has access, your rights, and how to contact us. We update this notice periodically; the date of the most recent update appears at the end of this page.

What We Collect and How We Use It

We collect your email address, phone number, and identity details (name, date of birth, ID number) during account creation. We use this information to verify your identity (KYC), comply with regulatory requirements, and maintain your account. We also collect transaction data: deposit amounts, withdrawal requests, payment methods used (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet), and settlement outcomes. This data helps us process your requests, detect fraud, and maintain accurate account records.

We collect behavioral data: which markets you view (Liga 1, Piala Indonesia, Piala AFF, Champions League), which games you engage with (Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways), and session timestamps. We use this data to improve our platform, understand user preferences, and optimize our service. We do not use this data to profile you or make automated decisions about your account. We do not sell this data to advertisers or data brokers.

Our Data Retention Policy

We retain your account data for as long as your account is active. Once you close your account, we retain transaction records for a minimum of five years to comply with financial regulations and tax requirements. We delete personal identifiers (name, ID number, phone) after this retention window unless we are required by law to keep them longer. We retain session logs and behavioral data for up to two years; after that, we aggregate or delete this data.

If you request account deletion, we will close your account and begin the deletion process. However, we cannot delete transaction records that are required by law to be retained. We will delete personal identifiers and behavioral data according to our retention schedule. Deletion requests are processed within thirty days.

Third-Party Processors and Data Sharing

We use third-party processors to handle payments, identity verification, and customer support. These processors have access to the data necessary to perform their functions. We require all processors to sign data-processing agreements that commit them to the same security and confidentiality standards we maintain. We do not share your data with processors unless necessary for service delivery.

Payment processors: We share deposit and withdrawal data with payment partners (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) to process your transactions. These partners have their own privacy policies; we recommend reviewing them.
Identity verification: We share your identity details with third-party KYC providers to verify your information. These providers use your data only for verification and do not retain it longer than necessary.
Customer support: We may share account information with our support team and third-party support contractors to resolve your queries. Support staff access only the information necessary to help you.
Legal compliance: We may disclose your data to law enforcement or regulatory authorities if required by law or court order. We will notify you of such disclosures unless legally prohibited from doing so.

We at erek 12 do not sell your data. We do not use your information to build marketing profiles or sell access to advertisers. Your data is used only to operate our platform and comply with legal requirements.

Cookies and Tracking

We use cookies to maintain your session, remember your preferences, and track your activity on erek 12. Session cookies expire when you close your browser. Preference cookies persist for up to one year and store settings like language and display preferences. Analytics cookies track page views, click patterns, and session duration to help us understand how users interact with our platform. We do not use cookies to track you across other websites.

You can disable cookies in your browser settings, but this may limit your ability to use erek 12. We do not use third-party tracking pixels or cross-site tracking. We do not share cookie data with advertisers or data brokers. Our analytics data is aggregated and anonymized—we do not link it to individual user identities.

Your Rights on erek 12

You have the right to access your data. You can request a copy of all personal information we hold about you by contacting our support team. We will provide this information within thirty days. You have the right to correct inaccurate data—if your account information is wrong, you can update it directly in your account settings or request our help.

You have the right to request deletion of your data, subject to legal retention requirements. You have the right to object to certain uses of your data, such as marketing communications. We do not send unsolicited marketing emails, but if you receive any, you can opt out by clicking the unsubscribe link or contacting our support team. You have the right to data portability—we can provide your data in a structured, machine-readable format if you request it.

Account data: Email, phone, identity details. Retained for account lifetime plus five years for regulatory compliance.
Transaction data: Deposits, withdrawals, payment methods. Retained for five years for financial and tax compliance.
Behavioral data: Markets viewed, games played, session timestamps. Retained for two years; then aggregated or deleted.
Cookies: Session cookies expire at browser close. Preference cookies persist up to one year. Analytics cookies are anonymized.

Our Security and Contact Information

We protect your data using industry-standard encryption (TLS/SSL) for data in transit and AES-256 encryption for data at rest. We use access controls to limit who can view your information—only authorized staff can access your account data, and they do so only when necessary. We conduct regular security audits and penetration testing to identify and fix vulnerabilities. We do not guarantee absolute security, but we maintain reasonable safeguards aligned with industry practice.

If we discover a data breach that affects your information, we will notify you within thirty days. We will inform you of what data was compromised, what steps we are taking to secure it, and what you can do to protect yourself. We will also notify relevant regulatory authorities as required by law.

If you have questions about our privacy practices, want to exercise your rights, or believe your data has been misused, contact our support team through your account dashboard. You can also reach us via email at the address listed in your account settings. We will respond to privacy inquiries within thirty days. If you are not satisfied with our response, you may file a complaint with your local data-protection authority.

Our services are available only where local law permits. We do not knowingly collect data from users in jurisdictions where online gaming is prohibited. Users are responsible for verifying that their access and use comply with their jurisdiction's law. For more information about our policies, visit our Terms About usor FAQ page.