mega168 Privacy Policy

This page describes what we collect when you use mega168 and how we keep that data protected. We at mega168 collect information necessary to verify your identity, process your deposits and withdrawals, and operate our platform securely. Your account data is encrypted and retained according to compliance standards; we do not sell your information to third parties outside the scope of payment processing and regulatory obligations.

Our privacy framework covers account registration, payment methods (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet), cookies, third-party processors, and your rights to access or delete your data. We undertake to be transparent about how your information moves between mega168, payment partners, and compliance authorities. This policy applies to all users accessing mega168 from supported jurisdictions, including Jakarta, Surabaya, Bandung, Medan, and Semarang.

Our servers may sit outside your jurisdiction; data may be transferred internationally to process payments and comply with regulatory requests. By using mega168, you consent to this cross-border data flow. If you do not agree with our privacy practices, do not open an account.

Data Collection and Use on mega168

We collect the following information when you create and use your mega168 account:

  • Identity data: Full name, date of birth, national ID number, email address, phone number
  • Address data: Street address, city, postal code, province
  • Payment data: Bank account numbers, e-wallet identifiers (DANA, e-wallet, mobile banking, local payment, online payment), virtual-account details (e-wallet, mobile banking, local payment, online payment), transaction history
  • Account activity: Bets placed, game history, deposits, withdrawals, balance, login dates and IP addresses
  • Device data: Mobile device type, operating system (Android/iOS), app version, browser type
  • Cookies and tracking: Session tokens, preference data, browsing behavior

We use this data to verify your identity (KYC requirements), process payments, comply with anti-money-laundering (AML) regulations, detect fraud, resolve disputes, and provide customer support. We do not use your data for marketing purposes without explicit consent. We do not share your name or account balance with third parties outside payment processing and regulatory compliance.

KYC verification: We require government-issued ID, proof of address, and sometimes bank statements to verify your identity. This data is retained for 5+ years per compliance law, even after account closure.

Third-Party Processors and Data Sharing

We share your payment data with payment processors and banks to settle deposits and withdrawals. e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking gateway operators, and local payment, online payment, e-wallet, mobile banking receive only the information necessary to complete each transaction. We do not control how these payment partners handle your data; their privacy policies govern their practices.

We may share account and transaction data with regulatory authorities, law enforcement, and compliance agencies if required by law or if we suspect fraudulent or illegal activity. We do not require your consent to fulfill legal obligations; data disclosure in response to government requests is mandatory.

We at mega168 keep your data encrypted in transit and at rest. We do not sell your account information. We share it only with payment partners and compliance authorities where legally required.

mega168 privacy team

Cookies and Tracking Technology

We use cookies to maintain your login session, remember your preferences, and track browsing behavior for fraud prevention. Session cookies expire when you log out; preference cookies may persist across visits. We do not set cookies that track your activity outside mega168.

Our mega168 app and website may use analytics tools (such as server-side logging and device identifiers) to monitor platform performance and detect suspicious login patterns. This tracking is used for security and diagnostics, not for marketing.

Your Rights and Data Retention on mega168

You have the right to access your data, request corrections, and ask for deletion of non-essential information. However, we must retain identity documents, payment records, and transaction history for 5–7 years to comply with AML and tax regulations. We cannot delete this data even if you close your account.

To exercise your rights, contact mega168 support via in-app chat or email. Requests for data export or deletion are processed within 10–15 business days. Some requests may be delayed or denied if legal obligations or ongoing disputes require data retention.

Data Security and Breach Notification

We encrypt all data in transit using industry-standard TLS/SSL protocols. Account passwords are hashed and not stored in plain text. Payment information is encrypted at rest on secured servers. We employ firewall protection, intrusion detection, and regular security audits.

If a data breach occurs, we notify affected users via email and in-app notification within 72 hours of discovery, where required by law. We do not guarantee that breaches will never happen; we commit only to detecting and disclosing them promptly.

International Data Transfer

Our servers and payment processors are located in multiple countries. Your data may be transferred, stored, and processed outside Indonesia. We comply with data protection standards, but international transfer laws vary. By using mega168, you consent to this cross-border flow.

Jurisdiction and Policy Changes

This privacy policy applies to all mega168 users worldwide, with additional compliance in Jakarta, Surabaya, Bandung, Medan, Semarang, and other supported jurisdictions. We may update this policy at any time. Changes take effect immediately upon publication; continued use constitutes acceptance. If changes substantially affect your rights, we notify you via email.

mega168 legal team
Data protection and compliance

This privacy policy reflects our current practices. If you have concerns about data handling, contact support before opening an account or at any time during your use of mega168.

Contact and Data Subject Rights

To exercise your data rights, request a copy of your information, or report a privacy concern, contact mega168 support:

  • In-app chat: available during standard support hours
  • Email: use the contact form on the mega168 website
  • Phone: call our support line during business hours

We undertake to respond to data requests within 10–15 business days. For urgent security concerns, escalate your request to our compliance team via email; urgent matters receive priority review.

Summary

We at mega168 collect identity, address, and payment data to operate our platform, verify accounts, and comply with regulations. Your data is encrypted and shared only with payment processors and compliance authorities. We retain transaction records for 5–7 years; identity documents cannot be deleted due to legal requirements. You have the right to access, correct, or request deletion of non-essential data; contact support to exercise these rights.

Our privacy policy covers cookies, international data transfer, and breach notification. Changes to this policy take effect immediately. By using mega168, you consent to our data practices. If you have questions before opening an account, contact our support team.