mawarotoPrivacy Policy

What data we collect on mawaroto

We collect data in two categories: information you provide directly, and information generated by your use of our platform.

Information you provide: When you register for mawaroto, we collect your email address, phone number, full name, date of birth, and a password (hashed and encrypted). You supply this when you create your account or update your profile. We also collect payment information — the payment method you choose (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer details). For KYC verification, we collect a copy of your Indonesian government ID and a selfie photo. All of this data is stored in encrypted form.

Information we generate: As you use mawaroto, we log your activity — which games you play, which sportsbook markets you participate in (Liga 1, Piala AFF, Champions League, Premier League, MotoGP, badminton), your account balance, your deposit and withdrawal history, your login times, and your IP address. We also collect analytics data: how long you spend in the app, which features you use, which devices you use (Android or iOS), and crash reports if the app encounters an error.

Account data

Email, phone, name, date of birth, password hash, KYC documents. Used for account administration and regulatory compliance.

Payment data

Deposit and withdrawal records, payment method chosen, transaction amounts and dates. Used to process and reconcile payments.

Activity data

Gameplay history, bets placed, cash-outs, login times, device type, IP address. Used to detect fraud and improve service.

How we use your data on mawaroto

We, mawaroto, use your data for these purposes:

• Account management: We verify your identity (KYC), manage your balance, process deposits and withdrawals, send you account notifications, and allow you to recover a forgotten password.
• Gameplay and settlement: We log your game activity so we can settle outcomes fairly, calculate your balance, and provide a transaction history you can review.
• Fraud prevention: We analyze your activity for signs of abuse (e.g., account takeover, bonus manipulation, collusion). If we detect suspicious patterns, we may freeze your account pending investigation.
• Regulatory compliance: We store KYC documents and activity logs to comply with Indonesian financial regulations and anti-money-laundering (AML) laws.
• Customer support: We use your account data to assist when you contact us with questions or disputes — we pull your transaction history to investigate issues.
• Platform improvement: We analyze anonymized usage patterns to improve our app's performance, identify popular games, and fix bugs.

We do not use your data for marketing (e.g., selling your email to advertisers) or for purposes unrelated to mawaroto. We do not rent or sell your email, phone, or personal information to third parties.

Third-party processors and data location

Our platform uses services from third-party providers. We work with payment processors (to handle mobile banking, local payment, online payment, e-wallet, mobile banking, local payment transfers), hosting providers (whose servers may be located outside Indonesia), and analytics platforms (to monitor app performance and usage). These processors are contractually bound to keep your data confidential and use it only to provide their service to us.

Our servers and databases may sit outside your jurisdiction — this is necessary for platform reliability and performance. However, all data is encrypted in transit and at rest, so even if a server is compromised, the data itself remains unreadable without the encryption keys (which we control).

We may disclose your data if required by law — for example, if a court order or government agency requests information as part of a legal investigation. We will notify you of such requests unless prohibited by law.

Your rights regarding your data

We, mawaroto, recognize your rights to your own data. You have the right to:

• Access: Request a copy of all data we hold about you. We provide this upon request in a readable format.
• Correction: Ask us to correct inaccurate information (e.g., your email or phone number). Submit updates via your account settings or contact support.
• Deletion: Request that we delete your account and associated data (subject to legal retention obligations). We close your account and erase data after any required retention period.
• Portability: Request a copy of your data in a standard format so you can move it to another service.
• Objection: Object to our processing of your data for analytics or fraud detection. We will respect your objection and adjust our processing accordingly.

To exercise any of these rights, contact our support team via email or in-app chat. Include your request clearly and your account email. We respond within 10 business days.

Cookies and tracking on mawaroto

Our website and app use cookies and similar tracking technologies. Cookies are small files stored on your device that identify you when you return to mawaroto. We use cookies for:

• Session management: To keep you logged in as you navigate between pages or games.
• Preferences: To remember your language choice, notification settings, and other preferences.
• Analytics: To understand how you use our platform so we can improve it.

You can disable cookies in your device settings, but this may limit your ability to use mawaroto fully (e.g., you may be logged out more frequently). We do not use cookies for behavioral advertising or to track you across other websites.

Security practices on mawaroto

We protect your data using 256-bit SSL encryption for all communication between your device and our servers. Your password is hashed (one-way encrypted) so that even our staff cannot read it. Your KYC documents and payment information are stored in encrypted databases with restricted access.

We conduct regular security audits and penetration testing to identify and fix vulnerabilities. If we discover a data breach, we notify affected users promptly and take steps to prevent recurrence. Account holders in Jakarta, Surabaya, Bandung, Medan, and elsewhere can trust that their data is treated with the same care regardless of location.

Your privacy responsibilities and jurisdiction notice

While we, mawaroto, are responsible for protecting your data, you also have responsibilities. Never share your password, KYC documents, or payment details with anyone — including our support team. We never ask for your password via email or chat. If someone claims to be from mawaroto and asks for sensitive information, notify us immediately.

Our services are available only where local law permits. Your jurisdiction's privacy laws may differ from ours. By using mawaroto, you acknowledge that our data practices comply with Indonesian law and the regulations governing our service area. If your jurisdiction has stricter privacy requirements, contact us to discuss how we can accommodate them.

Contact us about privacy

If you have questions about this privacy policy, how we use your data, or how to exercise your rights, contact our support team via email or the in-app chat feature. Include your account email and your privacy concern. We respond in English within 10 business days. For urgent data-protection issues, mark your message "Privacy Urgent" so it reaches our compliance team first.

This privacy policy is effective as of the date of publication and applies to all mawaroto accounts. We may update this policy as our practices evolve or as regulations change. We notify you of significant changes via email to your registered address. Continued use of mawaroto following a policy update constitutes your acceptance of the updated policy.