LEGAL REFERENCE

Your Data, Your Control

We built pphoki around your account security and privacy. Every deposit through DANA, OVO, GoPay or QRIS, every table session, and every sportsbook bet stays encrypted and protected...

EncryptedQRIS ProtectedAccount-FirstIndonesia-CompliantReal-Time Audit
pphoki Your Data, Your Control

What We Collect and Why

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy Questions? Reach Us

Team online

Email Support

Send privacy concerns to [email protected]. We respond within 24 hours with clarification on how your data is handled and processed.

Account Settings

Manage your data preferences directly in your account dashboard. View, download or request deletion of your personal information anytime.

Live Chat

Our support team is available in-app to answer privacy questions and walk you through data access requests or account controls.

PLATFORM TRUST SIGNALS

How We Earn Your Trust

Third-Party Audit

We commission annual security audits from independent firms to verify encryption standards and data handling practices across our platform.

Transparent Logging

Every access to your account data is logged and timestamped. You can review login history and session activity in your security dashboard.

Local Compliance

pphoki operates under Indonesian data protection frameworks and regional payment regulations. We align with local law in supported regions.

Encryption Standard

All data in transit and at rest uses AES-256 encryption. Payment tokens are isolated from your account profile and rotated quarterly.

No Third-Party Sales

We never sell your personal data to advertisers, brokers or external platforms. Your information stays within pphoki's ecosystem.

Breach Response Plan

If a security incident occurs, we notify affected users within 48 hours and provide guidance on account protection steps.

Consistency Across Our Policies

Terms of Service
Our Terms align with this Privacy Policy on account ownership, dispute resolution and payment security across DANA, OVO, GoPay and QRIS channels.
Cookie Policy
We use session cookies to keep you logged in and analytics cookies to improve lobby performance. No tracking cookies follow you off-site.
Payment Security
Payment data handling is covered in both this policy and our PCI-DSS compliance documentation, available on request.
Account Deletion
Closing your account triggers a 30-day grace period. After that, we purge personal data except where law requires retention.
Data Retention
Transaction records are kept for seven years to meet Indonesian financial reporting rules. Account activity logs are retained for two years.
International Transfers
Your data stays on servers in supported regions. We do not transfer personal information outside Indonesia unless you explicitly consent.
Child Safety
pphoki accounts require age verification at signup. We do not knowingly collect data from users under 18 in any region.

What Defines Our Privacy Approach

Account Verification

We verify your identity once at signup using your phone number and email. No repeated verification requests unless you change account details.

Session Security

Your lobby session is tied to your device and IP. If we detect unusual login activity, we send a notification and ask you to re-verify.

Payment Isolation

DANA, OVO, GoPay and QRIS payment tokens are stored separately from your profile. Your wallet details never appear in account logs.

Preference Center

Control what emails you receive, whether we use your data for analytics, and how your account appears in our internal systems.

Data Portability

Export your account history, transaction records and personal data in standard formats. Use this data with other platforms if you choose.

Incident Response

Our security team monitors for threats 24/7. If your account is compromised, we freeze it immediately and guide you through recovery.

Privacy Policy Questions

Payment tokens are refreshed every 90 days and old tokens are deleted. Transaction records are retained for seven years to comply with Indonesian financial regulations. You can request deletion of non-essential data anytime.

Yes. Log into your account, go to Settings > Privacy, and click 'Download My Data'. We'll email you a complete export within 24 hours. It includes your profile, transactions, session history and any notes our support team added.

We share payment data only with DANA, OVO, GoPay and QRIS processors to complete your transactions. We never sell your personal information to advertisers, analytics firms or third parties outside our payment ecosystem.

Your account enters a 30-day grace period. After 30 days, we delete your personal data except transaction records required by law. You can reactivate within the grace period; after that, your account is permanently closed.

Passwords are hashed using bcrypt and never stored in plain text. We enforce two-factor authentication for high-risk actions like payment method changes. If you forget your password, we verify your identity before sending a reset link.

All data between your device and pphoki is encrypted with TLS 1.3. Public WiFi doesn't expose your account details. However, we recommend using a VPN for extra security on shared networks.

Email [email protected] with details. We investigate all reports within 48 hours and notify you of our findings. If we confirm a vulnerability, we fix it and credit you in our security hall of fame.