How receh138 Handles Your Account Data
This is the receh138 privacy policy page — the document that spells out what we collect when you open an account, why we hold it, and how long...
Policy Scope and Indonesia Jurisdiction Notes
Our privacy posture is built around Indonesian personal data norms and applies wherever local law permits you to hold a receh138 account. We collect what's needed to verify you, secure your lobby session, process wallet movements through your chosen rail, and respond to support tickets. We don't sell your records to third parties. Where supported regions require disclosure to a regulator or
banking partner, we share the minimum field set — name, document reference, transaction ID — and log every request internally. You may ask us to export or delete your record subject to retention rules tied to financial reporting.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
How This Policy Is Reviewed
Quarterly Review
Our policy text is read line by line every quarter by an internal privacy lead. Changes are dated at the top of this page so you can spot exactly what moved since your last visit.
Legal Sign-Off
Counsel familiar with Indonesian personal data rules signs off on every revision before it goes live. No clause ships to this page without that second pair of eyes checking the wording.
Vendor Audits
Payment and KYC partners that touch your data are audited annually. We confirm their handling matches what we promise you here before renewing any contract that moves DANA, OVO, GoPay or QRIS records.
Breach Protocol
If a data incident affects your account, we notify you through the email tied to the account inside seventy-two hours, plus a banner inside the lobby. No quiet disclosures buried in footers.
Staff Training
Everyone with database access completes privacy training before their first shift and refreshes it twice a year. Access is logged, scoped and revoked the moment a role changes.
Reader Feedback
If a clause reads ambiguously to you, tell us. We've rewritten sections of this page based on questions from Indonesia account holders who wanted clearer language around retention windows.
Consistency With Our Other Legal Pages
| Terms of Service | The account rules on our terms page reference this privacy policy for any clause involving your personal data. The two documents are written to align — no contradictions between them. |
|---|---|
| Cookie Notice | Our cookie page covers browser-side tracking specifically. This privacy page covers the server-side record. Read together they give you the full picture of what receh138 stores about your session. |
| KYC Statement | Identity verification steps detailed in the KYC notice feed into the data categories listed here. Document images, selfies and reference numbers all sit inside the retention rules on this page. |
| AML Disclosure | Anti-money-laundering checks may extend retention beyond the default window. The AML disclosure explains which transaction patterns trigger that, and this policy confirms what fields are held. |
| Marketing Consent | Opt-ins for promotional email sit in your account preferences. This policy confirms you can withdraw that consent any time without affecting your ability to keep an active lobby account. |
| Complaints Path | If you feel a privacy clause has been mishandled, the complaints page lists escalation steps. Both documents point to the same internal reviewer for data-related grievances. |
| Retention Schedule | The retention schedule appendix lists exact windows by data category. This main policy summarises them; the appendix is the authoritative figure if you need a precise number for a request. |
What This Policy Page Includes
Data Categories
A clear list of what we collect — identity, contact, device, transaction and support-ticket data — so you can see at a glance which fields receh138 holds against your account record.
Retention Windows
Each data category has a stated retention window. Financial records sit longer due to reporting rules; marketing data clears faster once you withdraw consent through your account preferences panel.
Your Rights
Access, correction, export and deletion rights are laid out with the request route for each. No hidden forms — every right has a working contact path on the support section above.
Sharing Map
A short map of which partners see which fields. Payment processors see transaction references; KYC vendors see documents; nobody sees the full record except our internal privacy desk.
Change Log
Dated entries at the top of the policy show when wording last shifted and which clause moved. You can scroll the log without re-reading the whole document each visit.
Contact Block
The privacy desk contact details sit in a fixed block so you don't hunt for them. Email, in-app ticket tag and postal address are all listed in one place.