jempolhoki Platform Privacy Notice
This page describes what we collect when you use jempolhoki and how we keep that data protected. We recognize that privacy is foundational to trust on our platform. When you create an account, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfers (mobile banking, local payment, online payment, e-wallet), or interact with our sportsbook, live-dealer tables, slots, and esports markets, you share personal and financial information with us. We handle that data according to strict principles: minimal collection, secure storage, transparent use, and respect for your rights under applicable data-protection law.
Our jempolhoki privacy practices apply globally to all account holders in supported jurisdictions. We do not sell your data to third parties for marketing. We do share payment information with our payment processors and bank partners as necessary to complete your transactions. We retain transaction histories so you can review your account activity anytime. We encrypt all sensitive data in transit and at rest.
This policy explains what data we collect, why we collect it, who has access to it, how long we keep it, and what rights you have. If you have questions after reading this notice, our Help Center is available to answer clarifications.
What Data We Collect on jempolhoki
We collect data in three categories on jempolhoki: account creation data, transaction data, and behavioural data. When you register, we collect your mobile phone number, email address, password (encrypted), and a chosen username. These are required to create your jempolhoki account and allow you to log in securely.
When you make your first withdrawal, we request account-verification data: a government-issued ID (KTP, passport, or driver's licence) and a selfie photo for facial matching. We use this data to confirm your identity and comply with anti-money-laundering regulations across Indonesia. We do not use these photos for any other purpose, and we delete copies after verification is complete.
Transaction Data We Collect
Every time you deposit or withdraw on jempolhoki, we record the transaction: amount, date, time, payment method, and your account balance before and after. If you use DANA, e-wallet, mobile banking, local payment, online payment, or e-wallet, we receive your transaction ID and confirmation from your wallet provider. If you use a bank virtual account (mobile banking, local payment, online payment, or e-wallet), we receive your transfer reference number and bank confirmation.
We retain all transaction data indefinitely so you can review your deposit and withdrawal history on your jempolhoki dashboard. Our payment processors (third-party companies that handle e-wallet and bank integrations) also retain their copies for their own compliance and settlement purposes.
Gameplay and Behavioural Data
We record your gameplay activity on jempolhoki: which sportsbook markets you view (Liga 1, Piala Indonesia, Champions League), which live-dealer tables you join, which slots you play (Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways), and which esports markets interest you (Mobile Legends, Free Fire, PUBG Mobile). We track how long you play, when you place predictions or bets, and how often you withdraw funds.
We use this data internally to improve your experience—personalizing market recommendations, understanding which games are popular, and detecting patterns that might indicate account security issues or fraud. We do not sell this data to advertisers or third-party marketers.
Your Data Crosses Borders
Our jempolhoki servers may be located outside Indonesia. Your personal data may be processed, stored, or transmitted through servers in other jurisdictions where data-protection laws differ from Indonesian law. By using jempolhoki, you consent to this cross-border transfer.
How We Use Your Data
We use jempolhoki account data for five core purposes. First, we use it to operate your account—storing your credentials, tracking your balance, processing your deposits and withdrawals, and maintaining your transaction history. Second, we use it to verify your identity during account verification and comply with know-your-customer (KYC) and anti-money-laundering (AML) regulations.
Third, we use it for fraud prevention. We monitor account-access patterns, unusual withdrawal requests, and suspicious transaction sequences to protect your account and prevent money laundering. Fourth, we use it to improve our service—analyzing gameplay trends, understanding which games are most popular, and identifying technical issues. Fifth, we use it for legal compliance—responding to law-enforcement requests, tax authorities, and regulatory bodies in supported jurisdictions.
We do not use your data to send unsolicited marketing emails or SMS messages. We may send transactional messages (deposit confirmations, withdrawal updates, account-verification requests) to your registered email and phone number. We do not share your data with third-party advertisers, data brokers, or marketing agencies.
Your jempolhoki data exists to serve you—to secure your account, settle your transactions, and comply with law. It does not exist to enrich advertisers or data merchants.
Third-Party Access and Data Processors
Our jempolhoki platform relies on third-party service providers. Our payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment aggregators, and online payment, e-wallet, mobile banking, local payment virtual-account providers) receive your payment information directly when you deposit or withdraw. These companies are bound by their own privacy policies and data-protection agreements with us. We do not control their data practices, but we contractually require them to protect your information and use it only for payment processing.
Our hosting provider stores our server infrastructure, including your account data and transaction records. Our email provider sends transactional messages on our behalf. Our analytics provider tracks how many users access jempolhoki and which features are most popular—but this is aggregated, not individual, data. None of these processors are permitted to use your data for marketing or to sell your information to third parties.
We do not share your data with law enforcement or government agencies unless required by legal process (court order, subpoena, warrant). In such cases, we notify you unless legally prohibited from doing so. We do not voluntarily hand over account information—requests must be legally valid and specific.
Your Rights and Our jempolhoki Data Commitments
You have the right to access your data on jempolhoki anytime—log into your account to view your transaction history, account details, and gameplay activity. You have the right to request a copy of all data we hold about you. You have the right to request corrections if your account information is inaccurate. You have the right to request deletion of your account and associated data (with exceptions for data we are legally required to retain for tax or anti-fraud purposes).
We commit to keeping your jempolhoki data secure. All passwords are encrypted using industry-standard hashing. All sensitive data in transit (logins, payment information) is encrypted using TLS/SSL protocols. Our servers are protected by firewalls and intrusion-detection systems. We perform regular security audits and penetration testing to identify and fix vulnerabilities. We do not guarantee absolute security—no online system is non-specific info risk-free—but we implement standard security practices.
We commit to retaining your data only as long as necessary. Transactional data (deposits, withdrawals) is kept indefinitely so you can review your account history. Account verification photos are deleted after verification is complete. If you close your jempolhoki account, we retain a minimal data set (name, ID number, transaction totals) for tax and regulatory compliance, then delete all other personal information after the legally required retention period (usually 5–7 years).
Our jempolhoki privacy policy may be updated periodically as law changes or as we improve our practices. We will announce material changes on our platform and ask for your consent if required by law. Your continued use of jempolhoki after a policy change constitutes acceptance of the new terms unless you withdraw your consent explicitly.
Contact our Help Center if you have privacy questions or if you wish to exercise your data rights. We respond to data-access requests within 30 days and to deletion requests within 60 days (where legally permitted). Our team in Jakarta, Surabaya, Bandung, Medan, Semarang, and Yogyakarta is trained to handle sensitive data inquiries professionally and confidentially.