microgaming Privacy Policy

This page describes what we collect when you use microgaming and how we keep that data protected. We collect personal information—your name, email, phone, address, and identity documents—to verify your account and comply with anti-money-laundering regulations. We also collect payment data (DANA, e-wallet, mobile banking, local payment, bank account details) to process deposits and withdrawals. We do not sell your data to third parties; we use it only to operate our platform, settle your wagers, and meet legal obligations.

Our servers may sit outside your jurisdiction (Indonesia), but your data is encrypted in transit and at rest using military-grade standards. We implement two-factor authentication, session management, and audit logging to prevent unauthorized access. If you have questions about how we handle your information, this policy explains our practices in detail.

Our services are available only where local law permits. Users are responsible for verifying that access and use comply with their own jurisdiction's regulations.

What we collect and why

When you create an account on microgaming, we collect your email address, password (hashed, never stored in plain text), full name, date of birth, phone number, and residential address. We use this information to verify your identity, prevent fraud, and comply with anti-money-laundering (AML) laws. We also collect your payment method details—your DANA account, e-wallet wallet, mobile banking credentials, local payment identifier, or bank account number (online payment, e-wallet, mobile banking, local payment)—to process your deposits and withdrawals.

We collect behavioral data: your login history, the matches you view (Liga 1, Piala AFF, Champions League), the wagers you place, your balance, and your transaction history. We use this data to detect suspicious activity (fraud, money laundering), to improve our platform, and to comply with regulatory audits. We do not use this data to profile you for marketing or to sell to third parties.

We also collect technical data: your IP address, device type (mobile, desktop), browser type, and session duration. This helps us detect account takeovers, optimize our platform for different devices, and troubleshoot technical issues. We do not track your browsing outside microgaming; we only track your activity within our platform.

We do not collect sensitive data unnecessarily

We ask for your ID and proof of address only when you attempt a withdrawal. We do not store these documents longer than necessary; after verification, we retain a copy for audit purposes and destroy the original.

How we protect your data on microgaming

We encrypt all data in transit using TLS 1.2 or higher. When you log into microgaming or place a wager, the connection between your device and our servers is encrypted; third parties cannot intercept or read your data. We also encrypt sensitive data at rest (in our databases) using AES-256, a military-grade standard. Your password, payment details, and personal information are stored encrypted; only authorized staff can access decrypted data, and only under strict audit logs.

We implement two-factor authentication (2FA) to prevent unauthorized account access. After you enter your password, you must provide a code from an authenticator app or SMS. A stolen password alone cannot grant access without that second factor. We also implement session management: your login session expires after inactivity (typically subject to verification), forcing a re-login. This ensures that if someone gains access to your device, they cannot maintain indefinite control.

We log all login events and allow you to review them in your account settings. If you spot a suspicious login, you can terminate all other sessions remotely and force a full re-authentication. We also implement rate limiting: repeated failed login attempts trigger an account lock, preventing brute-force attacks. Our infrastructure is regularly audited by third-party security firms to identify and fix vulnerabilities.

Third-party processors and data sharing

We share your data with third parties only when necessary to operate microgaming. Payment processors (online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive your payment details to process deposits and withdrawals. These processors are bound by their own privacy policies and security standards. We do not control how they handle your data, but we select processors that meet industry-standard security requirements.

We may share your data with regulatory authorities (government agencies, financial intelligence units) if required by law. We do not voluntarily share your data with law enforcement; we comply only with valid legal requests (court orders, subpoenas). We also share aggregated, anonymized data with analytics providers to understand platform usage patterns. This data cannot identify you individually.

We do not sell your data to third parties. We do not share your wager history, balance, or personal information with game studios, odds providers, or marketing companies. Your data is used solely to operate microgaming, settle your wagers, and meet legal obligations.

Encryption: Converting data into a code that only authorized parties can read. We use TLS 1.2 (in transit) and AES-256 (at rest).
Two-factor authentication (2FA): A second verification step (code from app or SMS) required after password entry to access your account.
Session token: A temporary credential issued after login that expires after inactivity, requiring re-authentication to continue.
Audit log: A record of who accessed your data, when, and for what purpose. Used to detect unauthorized access.

Your rights regarding your data on microgaming

You have the right to access your data. You can view your personal information, payment history, and wager history in your microgaming account settings. You can also request a copy of all data we hold about you by contacting our support team.

You have the right to correct inaccurate data. If your name, address, or phone number is wrong in our system, you can update it in your account settings. If you cannot update it yourself, contact our support team.

You have the right to delete your account and associated data. If you request account deletion, we will close your account and delete your personal information, subject to legal retention requirements. We may retain aggregated, anonymized data for analytics purposes. We cannot delete data that is subject to legal holds (e.g., data required for regulatory audits or ongoing investigations).

You have the right to object to data processing. If you believe we are processing your data unlawfully or for purposes you did not consent to, you can lodge a complaint with our support team or with your local data protection authority.

Cookies and tracking on microgaming

We use cookies to maintain your login session and to remember your preferences (language, theme). These are essential cookies; without them, you cannot use microgaming. We do not use cookies for marketing or third-party tracking. We do not allow third-party advertisers to place cookies on our platform.

We use analytics cookies to understand how users interact with microgaming—which pages are visited, how long users stay, which features are used. This data is aggregated and anonymized; it cannot identify you individually. We use this data to improve our platform, not to track you across the internet.

You can disable cookies in your browser settings, but this may prevent you from using microgaming. We do not offer a way to opt out of essential cookies because they are required for the platform to function. You can opt out of analytics cookies by adjusting your browser privacy settings.

Data retention and deletion on microgaming

We retain your personal information (name, address, phone) for as long as your account is active. If you delete your account, we delete this data within 30 days, subject to legal retention requirements. We may retain data longer if required by law (e.g., anti-money-laundering regulations require 5-year retention of transaction records).

We retain your payment information (online payment, e-wallet, mobile banking, bank account details) only while your account is active. If you delete your account or remove a payment method, we delete the associated payment data. We do not retain payment data after account deletion unless required by law.

We retain your wager history and transaction records for regulatory compliance. These records are encrypted and accessible only to authorized staff. If you request account deletion, we anonymize your wager history (removing your name and personal details) but retain the transaction record for audit purposes.

Our commitments and contact information

We are committed to protecting your data and complying with privacy laws. We conduct regular security audits, implement industry-standard encryption, and train our staff on data protection. We do not sell your data, and we do not use it for purposes beyond operating microgaming and meeting legal obligations.

If you have questions about our privacy practices, or if you believe we have mishandled your data, contact our support team via email or live chat. We will respond to your inquiry within 5 business days. If you are not satisfied with our response, you can lodge a complaint with your local data protection authority.

This privacy policy applies to all users of microgaming, regardless of location. Our services are available only where local law permits. If you access microgaming from Jakarta, Surabaya, Bandung, or Medan, you are subject to this policy and Indonesian data protection laws. If you access from outside Indonesia, you are subject to this policy and your local laws.

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by email or by posting a notice on our platform. Your continued use of microgaming after such changes constitutes your acceptance of the updated policy.