Privacy vs Terms
Terms govern your conduct in the lobby; this page governs your data. Where they touch — for example, account suspension — both pages use identical wording so there's no daylight between them.
This is our privacy posture in plain language. We tell you what account details we collect when you open a lobby session with us, how we store them...
We collect the account fields you give us at sign-up — your name, contact handle, date of birth and the wallet or bank reference you choose for top-ups. We hold this on our side to keep your sessions working and to confirm it's really you logging in. Where local law permits in supported regions across Indonesia, we may also keep transaction timestamps
so payment partners can reconcile a top-up if something stalls. We don't sell your details on, and we don't pass them to advertising networks. If a regulator with proper jurisdiction asks, we cooperate within the limits set by Indonesian data protection rules.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
This page isn't drafted once and forgotten. Here's how we keep it honest.
Our compliance lead re-reads this policy every quarter and flags any wording that no longer matches what the lobby actually does. Changes are dated at the foot of the page so you can see movement.
A named member of our Indonesia operations team owns this document. It isn't auto-generated boilerplate copied from another brand — it reflects how pandapetir88 actually handles your account data.
Before any wording change goes live, our outside counsel reviews it against current Indonesian data protection expectations. We hold the sign-off notes internally in case a regulator wants to see them.
We list every cookie and tag this site sets in the cookie section of your account panel. Nothing tracks you silently — if it's running, it's named there with its purpose.
Each revision of this policy is stored with a date stamp. If you want to compare what we said six months ago versus today, ask our privacy desk and we'll share the prior version.
When you flag a clause as unclear, we log it and rewrite at the next review window. Several lines in this current version came from questions visitors sent us last cycle.
This privacy policy sits alongside our terms, cookie notice and account-closure page. Here's how they line up so nothing contradicts.
Terms govern your conduct in the lobby; this page governs your data. Where they touch — for example, account suspension — both pages use identical wording so there's no daylight between them.
Cookies are a subset of privacy. The cookie notice lists each tag; this page tells you why we set them and how long we hold the data they produce.
Our KYC page explains identity checks at top-up time. This policy explains storage and retention of the documents you upload during that check.
The payments page covers DANA, OVO, GoPay and QRIS flows. This policy covers what we keep from those transactions and for how long after the top-up clears.
When you close your account, the closure page explains the process. This policy explains which fields are wiped immediately and which we must keep for audit windows.
Marketing preferences live in your account panel. This policy tells you that opting out is honoured site-wide within twenty-four hours of you flipping the switch.
Security pages describe technical controls. This policy describes the human-side rules — who on our team can look at your record and under what circumstances.
Here are the building blocks that make up our privacy posture, laid out so you can scan before reading the full clauses.