poolsPrivacy Policy

This page describes what we collect when you use pools and how we keep that data protected. We operate live-dealer studios, sportsbook markets, and slot games across Indonesia, and your account information is central to how we serve you. Our commitment to transparency means we explain our data practices upfront so you can understand what happens to your personal information.

We collect data only where necessary to deliver our service, comply with law, and prevent fraud. When you open an account on pools, we ask for your email, phone, name, date of birth, and address. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, payment processors hold your banking details—not pools directly. We store only a reference to your transaction.

This policy sets out in detail what data we collect, how we use it, who we share it with, how long we keep it, and what rights you have. If you have questions after reading, our support team is available to help.

What data we collect on pools

We collect information in three main ways: directly from you when you register, indirectly through your use of pools, and from payment processors and verification services.

Direct collection: When you create a pools account, we ask for your email address, phone number, full name, date of birth, and residential address. These details are required to verify your identity and comply with anti-money-laundering regulations. We also collect your payment method details—but only as references, not the card or bank credentials themselves. Payment processors (the firms behind DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) hold your actual banking information.

Indirect collection: When you use pools—playing live blackjack, wagering on Liga 1 or Piala AFF, joining a Teen Patti table—we log your activity. This includes game results, bet amounts, session duration, and timestamps. We also track which pages you visit, how long you stay, and which features you use. This helps us understand user behaviour and improve our platform.

From third parties: We work with verification services to confirm your identity. These services may check your government ID against public records. We also receive data from payment processors to reconcile deposits and withdrawals. Additionally, if you contact our support team, we store your message and any attachments you send.

How we use your data on pools

We use your data for specific purposes aligned with operating pools and protecting our users.

  • Account management: We use your email and phone to send login confirmations, password resets, and account notifications.
  • Payment processing: We verify your identity before allowing deposits and withdrawals. This protects against fraud and complies with financial regulations.
  • Service delivery: Your game history, balance, and preferences are stored to let you access pools seamlessly across devices. If you deposit in Jakarta and later join a table in Surabaya or Bandung, your balance and game history travel with you.
  • Compliance: We retain transaction records and identity documents to comply with Indonesian law and anti-money-laundering requirements. Authorities may request this data during investigations.
  • Fraud prevention: We analyse your activity patterns to detect suspicious behaviour. Unusual login locations, rapid withdrawals, or betting patterns that suggest account compromise trigger our security systems.
  • Platform improvement: We study anonymised data (data stripped of your name and contact details) to understand which games are popular, when peak hours occur, and where our technology needs improvement.
Note: We do not sell your personal data to third parties. We may share anonymised, aggregated data with analytics partners to understand market trends, but this data cannot identify you personally.

Third-party processors and data sharing

We work with several external services to run pools. Each processor has a specific role and limited access to your data.

Payment processors: When you deposit via mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, or your bank (online payment, e-wallet, mobile banking, local payment), those organisations process your transaction. We receive only a confirmation of success or failure—not your card number or bank details. These processors are bound by their own privacy policies and financial regulations.

Identity verification services: We use third-party firms to confirm your government ID is genuine. They may hold your document images and cross-reference them against public records. They are contractually obligated to delete this data within a set period after verification completes.

Cloud hosting and analytics: Our servers and databases are hosted by a major cloud provider. Your game activity, balance history, and chat messages are stored on their infrastructure. Our cloud provider has robust security practices and is bound by data protection contracts. Our servers may sit outside Indonesia, but our agreements require that any data be handled according to Indonesian privacy principles.

Support and communications: Our customer support team uses a ticketing system to track your requests. When you contact us regarding Idul Fitri promotions, Idul Adha events, or general help, your message and any personal details in it are stored temporarily so our team can respond. These records are kept for audit purposes and later deleted.

Your rights and how to access your data

We respect your rights over your own data. Indonesian law and international principles give you the right to access, correct, and delete your information.

Access: You can request a copy of all personal data we hold about you. Contact our support team with "Data access request" in the subject line. We will compile your information within 30 days and provide it in a readable format.

Correction: If your address, phone, or name on file is incorrect, you can update it directly in your pools account settings. For changes that require verification (like your date of birth or identity document details), contact support.

Deletion: You can request that we delete your account and all associated data. We will remove your personal details immediately. However, we retain transaction records for seven years to comply with anti-money-laundering law. This is a legal requirement, not a pools choice.

Portability: If you request, we can export your data in a standard format (for instance, your game history as a CSV file) so you can move it elsewhere or archive it yourself.

Contact us for data requests

Email our support team at any time to exercise your data rights. Include your pools email and account ID, and specify what you need (access, correction, deletion, or portability). We respond within the timeframes set by law.

Cookies and tracking on pools

We use cookies—small files stored on your device—to remember you when you return to pools. Cookies let us keep you logged in, remember your table preferences, and track which games you play.

Our cookies serve two purposes: essential cookies keep you logged in and are necessary for pools to function; analytics cookies let us track how many visitors we get, which pages are most popular, and whether players from Jakarta, Surabaya, Semarang, Medan, or Bandung behave differently. Analytics cookies help us improve our service but are not strictly necessary.

When you first visit pools, we ask for your consent to non-essential cookies. You can decline analytics cookies and still use pools normally. You can also delete cookies from your browser settings at any time. Deleting cookies means you will need to log in again on your next visit.

We do not use cookies to track you across other websites. Our tracking is limited to the pools domain itself.

How long we keep your data

We keep different types of data for different lengths of time. Personal information like your email and address is stored as long as your account exists. If you close your account, we anonymise (remove your name and contact details from) your gaming history, but we retain transaction records for seven years as required by Indonesian anti-money-laundering law.

Chat messages and support tickets are kept for one year. Session logs (which tables you joined, when you logged in) are kept for 90 days. This approach balances your privacy with our need to respond to fraud investigations and legal requests.

How we protect your data on pools

We use industry-standard encryption (HTTPS) for all communication between your device and our servers. Your password is hashed (transformed into a one-way code) so even our staff cannot see it. We perform regular security audits and penetration testing to identify vulnerabilities. Our servers are protected by firewalls and intrusion detection systems.

We limit access to your data: only staff members who need it to serve you can view it. Support team members, for example, can see your account details and transaction history, but payment processors cannot see your address, and developers cannot see your chat messages.

Despite our efforts, no system is perfectly secure. If we discover a breach affecting your data, we will notify you within 72 hours and explain what happened and what steps you should take.

Changes to this policy

We may update this privacy policy as our service evolves or as law changes. If we make material changes—for instance, if we start sharing data with a new partner—we will notify you by email before the change takes effect. We encourage you to review this page periodically.

Your continued use of pools after we publish changes means you accept the updated policy. If you do not agree with new terms, you can close your account and request deletion of your data (subject to our legal retention requirements).