LEGAL REFERENCE

How We Handle Your Account Data

This is winwin4d login's privacy policy — the document that explains what we collect when you open an account, why we keep it, and how long it stays...

Plain-English policyIndonesia-alignedAccount data onlyEncrypted storageUpdated quarterly
Account access Read FAQ
winwin4d login How We Handle Your Account Data

Our Data Posture and Jurisdiction

We collect the minimum needed to run your account: your registered name, contact details, device identifiers and the wallet reference you use to fund deposits. Where local law permits, we retain transaction logs for the period required by Indonesian financial regulation, then purge them on schedule. We never sell your contact list, and we don't share your wallet handle with third-party marketers.

Internal access is role-gated, audit-logged, and reviewed each quarter by our compliance desk. If a regulator in supported regions issues a lawful request, we respond through formal channels only — never through informal email threads. You can request a copy of your data, ask us to correct it, or close the account at any time and we'll confirm deletion in writing.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Privacy Contact Paths

Data Request Inbox Email our privacy desk directly when you need a copy of your stored data, a correction, or a full erasure. We acknowledge within one business day and resolve within thirty.
Live Chat Escalation Open the lobby chat widget and ask for the privacy team. The first-line agent routes you to a compliance officer who handles the request on a separate ticket queue.
Account Settings Panel Most consent toggles, marketing opt-outs and session-data exports are self-serve. Head to your account dashboard, open the privacy tab, and adjust the switches without contacting us.
EDITORIAL CLARITY

Editorial Trust Signals For This Policy

Compliance Sign-off

Every revision is reviewed by our internal compliance officer before it goes live. The reviewer's initials and date are recorded in our changelog so you can see who approved which clause.

Quarterly Refresh

We re-read the document each quarter against current Indonesian data rules and adjust wording where the regulation has shifted. Minor edits are flagged at the bottom of the page.

Plain-Language Audit

An external editor checks the policy for jargon every six months. If a clause needs a law degree to parse, we rewrite it until a regular account holder can follow it.

Encryption Standards

Stored personal data sits behind AES-256 at rest and TLS 1.3 in transit. Our key rotation schedule is documented internally and confirmed during the quarterly compliance review.

Access Logging

Any staff query against your account record writes a row to our audit log. Those logs are immutable for ninety days and reviewed for unusual patterns by the security team weekly.

Breach Protocol

If a data incident touches your account, we notify you within seventy-two hours through your registered email and post a summary to the policy changelog the same day.

Consistency With Our Sibling Policy Pages

Cookies Notice
Our cookies page describes the trackers we drop on the lobby; this privacy policy explains what we do with the account data those cookies eventually link to. The two are written to read together.
Terms of Service
The terms govern your account contract; the privacy policy governs your data. Where the documents reference each other, the wording is kept identical to avoid contradictory obligations.
AML Statement
Our anti-money-laundering statement explains why we hold transaction records. This policy clarifies the retention windows and who inside the brand can read those records.
KYC Notice
The KYC notice lists the verification documents we ask for at sign-up. This policy explains where those scans are stored and how long before they're securely destroyed.
Marketing Preferences
The marketing preferences page covers opt-in choices for promotional emails. This policy covers the lawful basis behind those messages and the deletion path if you withdraw consent.
Complaints Procedure
The complaints page is the route for service disputes. Privacy-specific complaints are handled here first, then escalated to the same complaints team only if unresolved within thirty days.
Cookie Settings Tool
The interactive cookie tool sits in the footer and reflects the categories described here. Toggling a category there updates the consent record we describe in this document.

What This Policy Page Looks Like

Section Anchors

Each clause has its own anchor link in the sidebar so you can jump straight to retention, sharing, or deletion without scrolling. The anchors stay stable across revisions for bookmarking.

Changelog Footer

At the bottom of the policy you'll find a dated changelog. Every edit, however small, is summarised in one line so you can confirm what shifted between versions.

Print Layout

Hit print and the page strips navigation, ads and chrome, leaving only the policy text in a clean two-column format suitable for a paper file or PDF export.

Glossary Tooltips

Hover any underlined term — controller, processor, lawful basis — and a short tooltip defines it inline. The full glossary is linked at the end of the document.

Contact Block

A fixed contact block in the right rail shows the privacy desk email and the postal address for written requests. It scrolls with you as you read.

Last-Reviewed Stamp

The header carries a last-reviewed date that updates whenever the compliance officer signs off, even if no clauses changed. That way you know when the document was last checked.

Privacy Policy Questions We Hear

Your registered name, email, phone, date of birth, the device fingerprint of the browser you sign in with, and the wallet handle linked to your deposits. Nothing beyond what the account flow needs.

For active accounts, as long as the account is open. After closure we keep transaction records for the retention period Indonesian financial rules require, then delete the rest within thirty days of confirmation.

Yes. Email our privacy desk from the address on file and we'll prepare a portable export within thirty days. The file lands as an encrypted archive with a separately delivered password.

No. Your contact details and wallet handle are not sold or rented to third-party advertisers. We only share data with payment processors and regulators where the law obliges us to.

Open the privacy tab in your account dashboard and flip the marketing toggles off, or click the unsubscribe link at the foot of any email. The change applies on the next sending cycle.

We notify affected account holders within seventy-two hours through your registered email, summarise the scope, and post a public note in the policy changelog the same day the notification goes out.

Cookies have their own dedicated notice, but the data those cookies eventually attach to your account is governed here. Read the two pages side by side for the full picture.