rtp surgaplay Casino & Sportsbook Data Care
This page describes what we collect when you use rtp surgaplay and how we keep that data protected. We handle personal information across our platform — from account registration through payment processing, live-dealer sessions, and support interactions. Your privacy and data security sit at the centre of how we operate.
We work with account holders across Jakarta, Surabaya, Bandung, Medan, and Semarang, processing deposits via DANA, e-wallet, mobile banking, and other local payment rails. Each interaction generates data: email addresses, verification documents, transaction history, betting records, and device identifiers. This policy explains what we do with that information and the safeguards we maintain.
Our commitment is straightforward: we collect only what we need, keep it secure, and respect your access rights. We do not sell your data to third parties. We do not share your account details with other operators. Our team handles your information according to Indonesian data protection standards and the local law that governs our service.
What We Collect on rtp surgaplay
We collect information in several categories. First is registration data: your email address, password hash, chosen username, phone number if provided, and date of birth. We ask for these details so we can create and secure your account, and verify that you meet the legal threshold our service requires.
Second is verification data. When you request a withdrawal or hit a deposit threshold, we ask for identity documents — a national ID card (KTP), tax number, or passport. We use QRIS-based verification or manual document review to confirm these files. We store scanned copies in encrypted form and retain them only for as long as our compliance and audit period demands.
Third is transactional data. Every deposit, withdrawal, bet, and settlement generates a record: the amount, currency, date, time, payment method (whether e-wallet, mobile banking, local payment, or a bank account), and the outcome. We log these to prevent fraud, detect suspicious patterns, and settle disputes between you and us.
Fourth is device and behavioural data. We record your IP address, browser type, device model, and approximate location (by country or region) each time you log in. We track which games you access, how long you spend in each session, and which features you use. This helps us detect unauthorised access, improve performance on different devices, and customise the interface for usability.
We do not store plaintext passwords
Your password is hashed using industry-standard cryptography. Even our support team cannot see it — we can only reset it if you request account recovery.
Who We Share Data With
We use third-party processors for specific functions. Payment processors (such as online payment, e-wallet, and our acquiring bank partners) receive your name and transaction details to process deposits and withdrawals. Our hosting provider stores backup copies of our database. Our email service provider sends you login confirmations and support responses. Our anti-fraud vendor screens transactions for suspicious patterns.
We do not share your betting history or account balance with these processors — only the minimum information needed for each function. We sign contracts with all processors requiring them to keep data confidential and use it only for the agreed purpose.
Your Rights on rtp surgaplay
You can request a copy of all personal data we hold about you. You can ask us to correct inaccurate information. You can request deletion of non-essential data (such as behavioural logs) after a period of account inactivity, though we may retain verification documents and transaction records for regulatory and dispute-settlement reasons. To exercise these rights, contact our support team during business hours.
- Data access requests are answered within 14 business days.
- Deletion requests for non-compliance data are processed within 30 days.
- Correction requests are handled within 7 days if the correction is straightforward.
Our Data Retention and Security Practice
We retain account registration and verification data for as long as your account remains active, plus three years after closure. This covers our audit, tax, and dispute-settlement obligations under Indonesian law. Transactional data (deposits, withdrawals, bets) is kept for seven years for compliance purposes. Device and behavioural logs are deleted after two years unless needed for an active investigation.
We encrypt all data in transit using TLS 1.2 or higher and at rest using AES-256. Our databases sit in secure data centres with restricted access. We run regular security audits and penetration tests. We disable inactive accounts after 24 months of no login, and we limit password-reset attempts to prevent brute-force attacks. If you lose access to your account, our support team can verify your identity and recover it within one business day.
Your account security is our responsibility — we invest in it continuously and disclose it transparently.
Cookies and Tracking
We use cookies to keep you logged in and to remember your language preference and theme choice. These are essential cookies and we set them regardless of consent. We also use analytics cookies to measure how many users visit rtp surgaplay and which pages they view. You can disable analytics cookies in your browser settings without losing access to the platform. We do not use cookies to track you across other websites.
Contact rtp surgaplay
If you have questions about this policy, or if you want to exercise your data rights, reach our support team at [email protected]. We respond to data requests within the windows listed above. If you believe we have mishandled your data, you can escalate to the Indonesian data protection authority.