area138 Privacy Policy

This page describes what we collect when you use area138 and how we keep that data protected. We collect information necessary to operate our platform, process your deposits and withdrawals, verify your account ownership, and comply with applicable legal requirements across Indonesian jurisdictions including Jakarta, Surabaya, Bandung, Medan, and Semarang.

Our privacy practices centre on transparency and minimal data retention. We do not sell your information to third parties for marketing. We share data only with payment processors, compliance partners, and service providers essential to running area138. Your account data remains encrypted in transit and at rest, and we maintain access controls limiting staff to data necessary for their roles.

Understanding our data practices helps you make informed decisions about using area138. This policy outlines what information we collect, how we use it, who has access, and what rights you have regarding your data.

What Data We Collect at area138

We collect your email address during account registration. This is the sole required field for creating an area138 account. Your email serves as your login credential and the primary channel through which we send account notifications, payment confirmations, and support responses.

When you deposit funds, we collect information linked to your chosen payment method. If you use DANA, e-wallet, mobile banking, or local payment, we receive your mobile wallet account identifier and transaction confirmation from the provider. If you use online payment, e-wallet, mobile banking, local payment, or online payment bank transfers, we collect your bank account number, account holder name, and transaction reference. This information is necessary to credit your account and process future withdrawals to the same destination.

Data we collect

  • Email address (required for account creation and login)
  • Payment method details (wallet or bank account information for deposits and withdrawals)
  • Transaction history (deposits, withdrawals, game activity, stakes)
  • Identity information (collected on request for withdrawal verification or compliance)
  • Device and access logs (IP address, browser type, login timestamps)

We also collect transaction records showing your deposits, withdrawals, and account balance history. This data is necessary to process your financial requests, verify account activity, and comply with anti-money-laundering and fraud-prevention regulations. We retain transaction records for a period determined by applicable law and our own compliance obligations—typically several years.

When you request a withdrawal, particularly for larger amounts, we may ask for identity verification. We collect this information to confirm that you are the account holder and that the withdrawal destination matches your registered payment method. This verification protects both you and area138 from fraud and ensures that funds reach the correct recipient.

How We Use Your Data at area138

We use your email to send account notifications, payment confirmations, and support responses. You receive deposit confirmations within moments of successful transfer, and withdrawal notifications once funds are processed. If suspicious activity is detected—such as unusual login patterns or withdrawal attempts to a new destination—we contact you via email to verify authorization.

We use your payment information to process transactions. When you deposit via e-wallet or mobile banking, our payment processor receives your transaction details and confirms the deposit to area138's system. When you request a withdrawal to your local payment or online payment account, we initiate a bank transfer to that account using the details you provided during deposit.

We use your transaction history to manage your account balance, track game activity, and detect potential fraud or abuse. If we identify suspicious patterns—such as rapid account creation and large withdrawals—we may place a temporary hold on your withdrawal pending verification. This protection is standard across online financial services and protects all users.

We use device and access logs to maintain platform security. We track login times, IP addresses, and browser information to identify unauthorized access attempts and help you recover your account if it is compromised. If you notice a login from an unexpected location or device, you can report it to our support team and we can help secure your account.

We keep your data protected through encryption, access controls, and regular security audits.

area138 privacy team

Our area138 Privacy Commitments and Your Rights

Third-Party Processors and Data Storage

We share your payment information with payment processors essential to operating area138. DANA, e-wallet, mobile banking, and local payment receive transaction details to process your mobile wallet deposits. online payment, e-wallet, mobile banking, and local payment receive bank transfer information to credit your account and process withdrawals. These processors maintain their own privacy policies and security standards. We select providers based on their compliance with data-protection requirements applicable in Indonesia.

Our servers may sit outside your jurisdiction. Your data may be stored, processed, or accessed from data centres in other countries. By using area138, you consent to this international data transfer. We require any data processors we work with to maintain security standards equivalent to those we apply directly.

Cookies and Tracking Technologies

We use cookies to remember your login status and maintain your session on area138. These cookies are essential to platform functionality—without them, you would need to re-enter your credentials on every page. We do not use cookies for marketing tracking or behavioral profiling. Your browser settings allow you to clear cookies or disable them entirely, though doing so may limit platform functionality.

Your Rights and Data Access

You have the right to access your data on area138. Your account dashboard displays your transaction history, payment methods, and account activity. You can request a complete export of your data by contacting our support team. We will provide your information in a structured format within a reasonable timeframe.

You have the right to request correction of inaccurate data. If your registered email or payment method information is incorrect, you can update it through your account settings or request that we correct it. You have the right to request deletion of your account and associated data, though we retain transaction records for compliance purposes as required by law.

Data Retention and Security

We retain your email and payment information as long as your area138 account is active. When you request account closure, we deactivate your account and flag your data as inactive, though we retain records for compliance and fraud-prevention purposes. We encrypt your data in transit using standard HTTPS protocols and at rest using industry-standard encryption algorithms. We maintain access controls limiting staff to data necessary for their roles, and we log all data access for security audits.

Policy Updates and Contact

We may update this privacy policy to reflect changes in our practices or applicable law. We will notify you of material changes via email or by posting a notice on area138. Your continued use of the platform after policy changes constitutes acceptance of the updated terms. If you have questions about our privacy practices or wish to exercise your rights, contact our support team through your account dashboard. We respond to privacy inquiries within ten business days.