pelangi138Privacy Policy

This page describes what we collect when you use pelangi138 and how we keep that data protected. We at pelangi138 gather personal information during account registration, deposits, withdrawals, and ongoing platform use. Our commitment is to store your data securely, use it only for legitimate platform operations, and respect your rights regarding access, correction, and deletion.

We recognise that your privacy is important. pelangi138 operates across multiple jurisdictions with varying data protection frameworks. Where applicable law requires (such as the General Data Protection Regulation in Europe or equivalent regional standards), we comply with those obligations. This policy outlines our standard practices; if your location has stricter requirements, those take precedence.

If you have questions about how we handle your information, contact our support team. We respond to data access requests within ten business days where legally required.

What Data We Collect on pelangi138

Personal Identification Information

We collect your email address, phone number, and full name during account registration. For account verification (KYC), we require a government-issued ID (passport, national ID card, or driver's licence) and proof of address (utility bill, bank statement, or lease agreement). We store images of these documents in encrypted form for compliance and fraud prevention. We do not share these documents with third parties except where legally mandated (e.g., law enforcement requests with proper warrants).

Email & Phone
Used for account access, password recovery, and transaction notifications. We do not sell your contact details to marketers.
Government ID
Stored securely to verify your age and identity. Retained for audit and compliance purposes for as long as your account exists.
Address Proof
Used to confirm your residential location and comply with anti-money-laundering regulations. Stored in encrypted archives.

Payment and Transaction Data

We collect information about your deposits and withdrawals: amounts, dates, payment methods (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet), and transaction status. We do not store your full banking credentials (account numbers, card numbers) on our servers. Instead, we use third-party payment processors who handle the actual transfer of funds and maintain those sensitive details under their own encryption protocols.

We retain transaction records for seven years to comply with financial reporting and anti-fraud obligations. Your pelangi138 account balance history is accessible in Account Settings, showing all deposits, withdrawals, and wagers.

Note: We never request your banking password or PIN. If anyone claiming to represent pelangi138 asks for these, it is fraudulent. Contact us immediately if you suspect account compromise.

Behavioural and Platform-Use Data

We track your activity on pelangi138: which markets you view, which games you play, bet amounts, login times, device types, and browser information. This data helps us detect fraud, improve platform performance, and provide personalised content recommendations (e.g., highlighting Liga 1 Indonesia fixtures, Piala AFF updates, or Champions League markets based on your viewing patterns). We also use it to identify problem gambling behaviours so we can offer support resources if patterns emerge.

We do not sell your behavioural data to third-party advertisers. It remains within pelangi138's internal systems and is used solely for platform improvement and user safety.

How We Use, Store, and Protect Your Data

Data Storage and Server Locations

Our servers may sit outside your jurisdiction. pelangi138 uses encrypted databases hosted by certified cloud providers. All data in transit (between your device and our servers) is encrypted using TLS 1.2 or higher. Data at rest is encrypted using AES-256. We undertake regular security audits and penetration testing to identify vulnerabilities.

If you access pelangi138 from Indonesia (Jakarta, Surabaya, Bandung, Medan, or elsewhere), your data may be transferred to and stored on servers outside Indonesia. By using pelangi138, you consent to this cross-border transfer. Where local data localisation laws apply, we work with regional partners to comply.

Third-Party Processors and Partners

We share your data only with necessary third parties: payment processors (who handle DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and bank transfers), identity verification services (who confirm your KYC documents), and fraud-detection services. Each processor is contractually obligated to protect your data and use it only for their specified purpose.

We do not sell your personal information to marketers, data brokers, or analytics companies. We do not use your data for purposes outside pelangi138 operations without explicit written consent from you.

What We Protect
  • Your login credentials via hashed passwords (bcrypt or similar).
  • All personal and financial data under encryption at rest and in transit.
  • Regular backups to prevent loss from system failure.
What We Cannot Control
  • Third-party security breaches at payment processors (though we choose reputable partners).
  • Your own credential compromise if you share your password or use weak passwords.
  • Data interception if you access pelangi138 on unsecured public Wi-Fi.

Cookies and Tracking Technologies

We use cookies to maintain your login session, remember your preferences, and track platform performance. These cookies are essential for pelangi138 to function. We also use analytics cookies (Google Analytics or similar) to understand user behaviour patterns, traffic sources, and platform usage trends. You can disable non-essential cookies in your browser settings, though this may affect platform functionality.

We do not use cookies to build advertising profiles or track you across other websites. Our cookies are limited to pelangi138 operations and statistical analysis.

Your Rights and Data Access

You have the right to request access to all personal data we hold about you. Contact our support team and provide proof of identity; we will compile a report within ten business days. You may also request correction of inaccurate data (e.g., a misspelled address) or deletion of data no longer necessary for pelangi138 operations, except where we are legally required to retain it (e.g., transaction records for seven years under financial regulations).

If you wish to close your pelangi138 account and delete all associated data, contact support. We will anonymise or delete your records within thirty days, except for transaction history and compliance documentation, which we retain as required by law. If you believe we have mishandled your data, you retain the right to lodge a complaint with your local data protection authority.