LEGAL REFERENCE

Your privacy is how we keep you playing

We protect your account, payment details and gaming history with the same care we put into every lobby feature. This policy shows you exactly what data we collect...

Data ProtectionPayment SecurityAccount PrivacyIndonesia Compliance
Tour the Lobby Read FAQ
mandala777 Your privacy is how we keep you playing

What we collect and why

When you open an account with mandala777, we collect your name, contact details, and proof of identity to meet regulatory requirements in supported regions. Your payment information—whether you deposit via DANA, OVO, GoPay or QRIS—is encrypted and stored securely. We also track your gaming activity, session duration, and account balance to deliver the lobby experience, detect fraud, and comply with local gaming

laws where we operate. You can request a copy of your data or ask for deletion where law permits.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Questions about your privacy

Email Support Reach our privacy team at [email protected]. We respond...
Account Settings Review and update your personal data inside your...
Legal Requests Formal data subject requests are handled by our...
PLATFORM TRUST SIGNALS

How we protect your information

End-to-End Encryption

All data transmission between your device and our servers uses SSL/TLS encryption. Your payment details and account access are protected by industry-standard cryptography.

Payment Gateway Security

DANA, OVO, GoPay and QRIS transactions flow through PCI-DSS compliant processors. We never store full card numbers or bank account details on our platform.

Access Controls

Only authorized personnel can view your data, and only for support, fraud prevention or legal compliance. We audit access logs monthly.

Data Retention Limits

Account data is kept as long as your account is active. After closure, we retain payment records for regulatory periods, then securely delete personal identifiers.

Third-Party Audit

Our security practices are reviewed annually by independent auditors. Findings are published in our compliance dashboard.

Incident Response

If we detect unauthorized access or data breach, we notify affected users within 72 hours and file reports with relevant authorities in supported regions.

Policy consistency across mandala777

Account Terms & Privacy
Our account policy and privacy policy align: data collected for account verification is used only for that purpose, then archived or deleted per retention schedule.
Payment & Data Sharing
Payment processors (DANA, OVO, GoPay, QRIS partners) receive only the minimum data needed to complete transactions. We do not sell payment data to third parties.
Cookies & Tracking
We use cookies to remember your login and track session behavior. You can disable non-essential cookies in settings; gaming lobby access may be limited.
Marketing Communications
We send promotional emails and SMS only if you opted in at signup. Unsubscribe links are in every message; opt-out is immediate.
Dispute & Chargebacks
If you dispute a transaction, we share account activity and session logs with payment processors to resolve claims. Your data is released only per legal process.
Regulatory Compliance
We comply with data protection laws in supported Indonesian regions. Your privacy rights—access, correction, deletion—are enforced where applicable by law.
Policy Updates
Changes to this privacy policy are posted here with an effective date. Continued use after the date means you accept the updated terms.

What defines our privacy approach

Transparent Data Use

We tell you upfront what data we collect, why we need it, and who can see it. No hidden clauses or surprise sharing with marketing partners.

Player-Controlled Settings

You manage your privacy preferences in account settings. Enable or disable data analytics, marketing contact, and session tracking without leaving the lobby.

Payment Info Never Stored Long-Term

DANA, OVO, GoPay and QRIS details are tokenized after each transaction. We don't hold card numbers or bank credentials once the deposit clears.

No Data Brokerage

We never sell, rent or trade your account data to advertisers, brokers or data firms. Your profile stays yours; revenue comes from the games you play.

Fraud Detection Only

We analyze your account behavior to spot unusual activity and block unauthorized access. This detection is automatic; no human review unless fraud is flagged.

Easy Account Deletion

Request permanent account closure anytime from settings. We purge personal identifiers within 30 days; regulatory records are archived separately per law.

Privacy questions answered

We delete personal identifiers (name, contact, ID copy) within 30 days of closure. Payment and gaming records are archived for regulatory periods mandated by local law, then purged. You can request accelerated deletion where permitted.

Yes. Email [email protected] with your account number. We'll send a complete data dump (account info, transaction history, session logs) within 14 days. It's free and no reason required.

Only transaction details needed to process deposits: amount, timestamp, your registered phone number. We don't share gaming history, session data or account balance with payment partners. Each handles their portion of data per their own privacy policy.

We notify all affected users within 72 hours via email and in-app alert. We'll describe what data was accessed, what we're doing to fix it, and free monitoring if passwords or payment info was exposed. We file reports with local authorities.

Not fully—some data (name, ID, payment method) is required by law to run your account. You can disable marketing emails, analytics tracking, and session behavior analysis in account settings without affecting gameplay.

We use it to personalize your lobby (show relevant games), detect fraud, improve server performance, and comply with gaming regulations in supported regions. We don't sell this data; it stays internal unless required by court order.

Primary account and payment data is stored on servers in supported Indonesia regions. Backups may be held in regional data centers for disaster recovery. Sensitive details are encrypted in transit and at rest.