wisma138 Privacy Policy

This page describes what we collect when you use wisma138 and how we keep that data protected. We take your privacy seriously — every piece of information you provide (your email, phone number, identity documents for KYC verification, payment details, gaming history) is encrypted, stored securely on our servers, and used only for the purposes we outline below.

Our wisma138 platform operates on Android (via APK download) and iOS (via mobile browser), as well as desktop browsers. Regardless of device, we apply the same privacy standards: encryption during transmission, restricted access to your data, and no sharing with third parties unless you consent or law requires it.

If you have questions about how we handle your data on wisma138, or if you wish to exercise your rights (such as requesting a copy of your account data or asking us to delete it), our support team is available to assist.

What data we collect on wisma138

When you open a wisma138 account, we collect your email address, phone number, and a secure password that you create. We use these to verify your identity, send you account notifications, and allow you to log in from any device (Android phone, iPhone, desktop browser).

For Know Your Customer (KYC) verification, we ask you to upload a photo of your national ID and a current selfie. We use this information to confirm your identity, verify your age and eligibility under local law, and comply with anti-money-laundering regulations. We store your ID documents separately from your account profile with restricted access — only authorised wisma138 staff can view them for legitimate operational reasons.

We collect your transaction data: every deposit amount, the payment method (e-wallet like DANA, e-wallet, mobile banking, local payment, online payment; bank transfer to your e-wallet, mobile banking, local payment, or online payment virtual account; or e-wallet payment), withdrawal requests, and your gaming activity (bets placed on Liga 1 football, live-dealer tables, slot spins, esports predictions, etc.). This data helps us process your transactions accurately, detect fraud, and respond to support requests.

We record your device information: the type of phone or browser you use, your IP address, and how you interact with wisma138 (which games you browse, how long you play, which payment methods you try). This helps us optimise our mobile app for Android and iOS, fix technical issues, and understand what features our users find valuable.

Account data
Email, phone number, password hash, username.
KYC documents
ID photo, selfie, stored separately with restricted access.
Transaction history
Deposits, withdrawals, payment method used, amounts in IDR.
Gaming activity
Predictions placed, games played, time spent, outcomes.
Device & usage data
Device type, IP address, browser type, login times.

How we use your data

We use your email and phone to verify your account, send you login codes if you request password resets, and notify you of important account changes (successful KYC verification, a withdrawal processed, suspicious login attempts). You can disable non-essential notifications in your account settings, but we will continue to send security-critical messages.

We use your KYC documents to comply with regulations in jurisdictions where we operate. We are required by law to verify customer identities and report suspicious activity to relevant authorities. We retain your ID documents only as long as necessary for compliance — typically for several years after account closure, depending on local law.

We use your transaction and gaming data to settle your bets and payouts accurately, detect fraud or money laundering, comply with gaming regulations, and respond to your support requests. If you contact our team about a disputed payment or game outcome, we review your transaction history and game logs to investigate.

How we protect your data

We encrypt all data transmitted between your phone or browser and our wisma138 servers using TLS encryption (the same standard used by banks). Your password is never stored in plain text — we use industry-standard hashing so even our staff cannot read it. If you forget your password, you can reset it via email verification; we never send your password via email or display it in our systems.

Our servers are located in secure data centres with restricted physical access and continuous monitoring. We maintain firewalls and intrusion-detection systems to prevent unauthorised access. Our staff undergoes security training and only those with a legitimate operational need can access your data.

We do not store your full bank account or e-wallet credentials in our database. When you deposit via mobile banking, local payment, online payment, e-wallet, mobile banking, or a local payment / online payment / e-wallet / mobile banking virtual account, we receive only confirmation that your payment succeeded — we do not retain your login details for these services.

Your data rights on wisma138

  • You can access your full account data anytime in your wisma138 settings
  • You can request a copy of your data in a portable format by contacting our support team
  • You can update or correct your account information (email, phone, address)
  • You can delete your account, which triggers secure deletion of your data subject to legal retention requirements
  • You can disable optional notifications while continuing to receive security alerts

Third parties and data sharing

We do not sell your personal data to marketers or data brokers. We do not share your information with third parties except in these cases:

  • Payment processors: When you deposit via local payment, online payment, e-wallet, mobile banking, local payment, online payment, or a bank virtual account, we share the minimum information needed (your name, amount, transaction ID) with the payment provider to confirm the transfer.
  • Legal obligations: We may disclose your information if required by law enforcement, court order, or regulatory authorities. We will notify you of such requests unless legally prohibited from doing so.
  • Anti-fraud services: We use third-party fraud-detection services to identify suspicious activity. These services operate under strict confidentiality agreements and see only aggregated or anonymised data.
  • Data processors: We use cloud-storage providers to back up our servers. These providers operate under data-processing agreements requiring them to use your data only to maintain our systems.

Our servers may sit outside your jurisdiction. If you are in Jakarta, Surabaya, Bandung, Medan, or another location in Indonesia, your wisma138 data may be stored or processed on servers in other countries. By using wisma138, you consent to this international data transfer. We apply the same encryption and security standards regardless of server location.

Cookies and tracking

We use cookies (small files stored on your device) to keep you logged in during your wisma138 session, remember your language preference, and track which games you view or play. These help us personalise your experience and understand how our platform is used.

You can disable cookies in your browser settings, but this may limit wisma138 functionality (e.g., you may need to log in each time you visit). We do not use cookies to track you across other websites — we collect data only within wisma138.

How long we keep your data

We retain your account data (email, phone, transaction history, gaming logs) for as long as your account is active and for a reasonable period after you close it (typically two to five years, depending on local law). We may retain KYC documents longer to comply with anti-money-laundering regulations. If you request account deletion, we securely erase your data subject to legal retention requirements.

Contact us about your data

If you have questions about how wisma138 handles your data, or if you wish to request access to your information, ask us to correct it, or request deletion, you can contact our support team through your account settings or via the email address provided on wisma138.app. We aim to respond to all data-related requests within a reasonable timeframe, typically within 30 days.

Changes to this privacy policy

We may update this policy from time to time to reflect changes in our practices or applicable law. If we make material changes, we will notify you via email and in-app notification. Your continued use of wisma138 after any changes constitutes your acceptance of the updated policy.

Jurisdiction and legal basis

This privacy policy is governed by the laws of the jurisdictions in which we operate. We collect and use your data on the legal basis of contract (to provide our service), legal obligation (KYC and anti-money-laundering compliance), and legitimate business interest (fraud prevention, platform improvement). You have the right to object to certain uses of your data — contact our support team to discuss your concerns.

Secure
TLS encryption
Verified
KYC process
Access
Your full data
Control
Delete anytime

This privacy policy is part of our overall commitment to transparent operations on wisma138. Combined with our Terms of Use and other policies, it describes the complete relationship between you and wisma138 regarding your personal data and account.