hotowin Privacy Policy

This page describes what we collect when you use hotowin and how we keep that data protected. We collect your email, phone number, government ID, and address proof during account registration. We also collect transaction history, game activity, device information, and IP address. We use this data to verify your identity, process deposits and withdrawals, detect fraud, and comply with Indonesian financial regulations.

We do not sell your personal information to third parties. Our servers may sit outside your jurisdiction, but we encrypt all data in transit and at rest using industry-standard protocols. You have the right to request a full data export, correct inaccurate information, or request deletion of your account and associated data. We respond to all data requests within 14 days.

Our privacy practices apply to all users of hotowin, regardless of location. We are transparent about how we handle your information and what third parties may access it. If you have questions about your data or our privacy practices, our multilingual support team in Jakarta, Surabaya, Bandung, Medan, and Semarang is available to assist.

What Data We Collect on hotowin

We collect personal information at registration: email address, phone number, full name, date of birth, and government-issued ID (KTP, passport, or international license). We also collect address proof (utility bill or bank statement). During gameplay, we collect your account activity, game selections, bet amounts, win/loss records, and session duration. We collect device information including browser type, operating system, device model, and unique device identifier. We also log your IP address and approximate geographic location based on IP geolocation.

When you make a deposit or withdrawal, we collect payment method details (wallet account, bank account number, or virtual account code). We do not store full credit card numbers—payment processors handle card data separately under PCI-DSS compliance. We collect transaction timestamps, amounts, and status (pending, approved, or declined). If you contact our support team, we record your inquiry, our response, and any attachments you provide.

How We Use Your Data on hotowin

We use your personal information to verify your identity and comply with KYC regulations. We use transaction data to process deposits and withdrawals, reconcile accounts, and detect fraud or unusual patterns. We use game activity logs to calculate winnings, track bonus eligibility, and investigate disputes. We use device and IP information to detect account takeover attempts, prevent multi-accounting, and enforce our terms.

We use your contact information to send account notifications (login alerts, withdrawal confirmations, bonus offers). We may contact you via email or phone if we detect suspicious activity or need to verify a transaction. We use aggregated, anonymized data to improve our platform—analyzing game popularity, payment method usage, and support ticket trends. We do not use your data for marketing to third parties or to build profiles for sale.

Third-Party Processors and Data Sharing

We share your data with payment processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) to process deposits and withdrawals. These processors are bound by confidentiality agreements and use your data only to complete transactions. We share your data with our KYC verification provider to confirm your identity. We may share data with law enforcement or financial regulators if required by Indonesian law or court order.

We do not share your data with advertising networks, data brokers, or marketing firms. Our servers are hosted by a third-party cloud provider; your data is encrypted before transmission to their servers. We conduct annual security audits of our infrastructure and require all processors to maintain equivalent data-protection standards. If we change processors or share data in a new way, we notify you via email and update this policy.

We at hotowin treat your data as a trust. Encryption, access controls, and regular audits ensure your information remains private and secure.

Cookies and Tracking Technologies

We use cookies to maintain your login session, remember your preferences, and track your activity on hotowin. Session cookies expire when you close your browser; persistent cookies remain for up to 12 months. We use cookies to detect fraud, prevent multi-accounting, and analyze how users navigate our platform. We do not use cookies to track you across other websites.

We use web analytics tools to measure page views, session duration, and user flow. These tools do not identify you personally—they track aggregate behavior. You can disable cookies in your browser settings, but this may limit your ability to use hotowin. We do not use third-party tracking pixels or retargeting ads.

Your Rights and Data Protection on hotowin

You have the right to access all personal data we hold about you. Submit a data-access request via our support team, and we provide a complete export within 14 days. You have the right to correct inaccurate information—update your profile directly in account settings or contact support. You have the right to request deletion of your account and all associated data. We delete your account within 30 days; however, we retain transaction records for 7 years to comply with Indonesian financial regulations.

You have the right to object to certain data uses. If you do not wish to receive promotional emails, unsubscribe via the link in any email or update your notification preferences in account settings. You have the right to lodge a complaint with Indonesian data-protection authorities if you believe we have violated your privacy rights. We cooperate fully with regulatory investigations.

Data Retention and Security

We retain your personal information for as long as your account is active. After account deletion, we retain transaction records for 7 years (required by Indonesian law), but we delete all other personal data within 30 days. We retain support tickets and correspondence for 2 years. We retain fraud-detection logs for 1 year. All retained data is encrypted and access-restricted to authorized personnel only.

We protect your data using AES-256 encryption for data at rest and TLS 1.2+ for data in transit. We enforce two-factor authentication on all admin accounts. We conduct quarterly security audits and annual penetration testing. We maintain an incident-response plan and notify affected users within 24 hours if a data breach occurs. Our data centers are physically secured with biometric access controls and 24/7 monitoring.

• 1
  Request your dataStep 1

  Contact support to request a full data export. We respond within 14 days.

• 2
  Review and correctStep 2

  Update inaccurate information in account settings or request corrections via support.

• 3
  Request deletionStep 3

  Submit a deletion request. We delete your account and personal data within 30 days.

• 4
  Manage preferencesStep 4

  Unsubscribe from emails or adjust notification settings anytime in account preferences.

Policy Updates and Contact

We may update this privacy policy at any time. Changes are effective immediately upon posting. We notify you of material changes via email. Continued use of hotowin after changes are posted constitutes acceptance of the updated policy. We encourage you to review this page regularly.

If you have questions about our privacy practices, data handling, or your rights, contact our multilingual support team. We maintain offices in Jakarta, Surabaya, Bandung, Medan, and Semarang. You can reach us via email, phone, or live chat. We respond to all privacy inquiries within 24 hours. If you believe we have violated your privacy rights, you may lodge a complaint with Indonesian data-protection authorities or contact us directly for resolution.