daduwin Platform Privacy Notice

This page describes what we collect when you use daduwin and how we keep that data protected. We collect personal information to verify your identity, process your deposits and withdrawals, comply with anti-money-laundering regulations, and detect fraud. Our data handling practices apply across all daduwin services—sportsbook (Liga 1, Piala AFF, Champions League, Premier League, MotoGP, badminton), live-dealer tables (blackjack, roulette, baccarat, Dragon Tiger), slots (Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways), and esports markets (Mobile Legends, Free Fire, PUBG Mobile).

We encrypt sensitive data, store it on secure servers, and do not sell your information to third parties. You have rights over your data: you can request access, correction, or deletion. This privacy notice explains those rights and how to exercise them. Our data practices comply with applicable privacy laws in the jurisdictions where daduwin operates.

If you have questions about how we handle your data, contact daduwin support via in-app chat or email. We respond to privacy inquiries within 14 days.

What Data We Collect on daduwin

Registration and Account Information

When you register with daduwin, we collect your email address or phone number, full name, date of birth, and residential address. We use this information to create your account, verify your identity, and comply with regulatory requirements. We also collect your password (stored encrypted, never in plain text) and any security questions you set up for account recovery.

Know-Your-Customer (KYC) Documents

To unlock deposit and withdrawal functionality on daduwin, we require identity verification. You upload a government-issued ID (national card, passport, or driver's license), proof of address (utility bill or bank statement not older than 90 days), and a live selfie holding your ID. We store these documents encrypted on secure servers. Our compliance team reviews them within one business day. If verification fails, we explain why and allow resubmission. Once verified, we retain these documents for the duration of your daduwin account plus 5–7 years after closure (for regulatory compliance).

Payment Information

When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts (mobile banking, local payment, online payment, e-wallet), we collect transaction details: the payment method, amount, date, and confirmation code. We do not store your full payment credentials (e.g., we do not store your complete bank account number or e-wallet password). Payment processors (your bank or e-wallet provider) handle sensitive payment data; we receive only confirmation that the transaction succeeded.

We encrypt all sensitive data on daduwin

Passwords, KYC documents, and payment confirmations are encrypted using TLS 1.3 during transmission and AES-256 at rest. We do not store plaintext passwords or full payment card numbers.

Gaming Activity and Betting History

We collect data on every action you take on daduwin: bets placed, games played, amounts wagered, results, and timestamps. This data helps us detect fraud, resolve disputes, and comply with regulations. We also track your login history (IP address, device type, browser, login time) to identify unauthorized access attempts. If you access daduwin from Jakarta, Surabaya, Bandung, or Medan, we log your approximate location based on IP address (not GPS).

Device and Browser Information

When you use daduwin on Android (via APK) or iOS (via mobile browser), we collect device information: operating system version, device model, app version, and unique device identifier. On desktop, we collect browser type and version. This data helps us optimize daduwin's performance, troubleshoot technical issues, and detect suspicious activity (e.g., multiple logins from different devices in seconds).

Cookies and Tracking

daduwin uses cookies to maintain your login session, remember your preferences (language, theme), and track your activity on our site. Session cookies expire when you close your browser or log out. Persistent cookies remain for up to 12 months. We use these cookies to improve daduwin's user experience and detect fraud. You can disable cookies in your browser settings, but this may limit daduwin's functionality (e.g., you may be logged out frequently).

How We Use Your Data and Your Rights on daduwin

Our Use of Your Data

We use your data for the following purposes:

  • Account management: Creating and maintaining your daduwin account, processing logins, and handling password resets.
  • Payment processing: Confirming deposits, processing withdrawals, and reconciling transactions with payment providers.
  • Regulatory compliance: Verifying your identity (KYC), detecting money laundering, and reporting to authorities where required by law.
  • Fraud detection: Identifying suspicious patterns (e.g., multiple accounts from the same device, rapid withdrawals after large wins) and preventing unauthorized access.
  • Customer support: Responding to your inquiries, resolving disputes, and improving daduwin's service based on feedback.
  • Marketing (optional): Sending promotional emails or push notifications about new games or offers—only if you opt in. You can unsubscribe anytime.

Third-Party Data Processors

We share your data with third parties only when necessary:

  • Payment processors: Your bank or e-wallet provider receives transaction details to process deposits and withdrawals.
  • Compliance and KYC providers: Third-party verification services may receive your ID and address proof to confirm identity.
  • Hosting providers: Our servers may be hosted by cloud providers (e.g., AWS, Google Cloud) in data centres outside your jurisdiction. These providers sign data-processing agreements committing to the same security standards we maintain.
  • Law enforcement: We disclose data to authorities (police, tax agencies, financial regulators) when required by law or court order.

We do not sell your data to advertisers, data brokers, or other commercial entities. We do not share your gaming history or betting patterns with third parties for marketing purposes.

Your Rights Over Your Data

You have the following rights regarding your data on daduwin:

  • Access: You can request a copy of all data we hold about you. We provide this within 30 days.
  • Correction: If your data is inaccurate, you can request correction. Update your profile directly in daduwin's account settings, or contact support.
  • Deletion: You can request deletion of your account and associated data. We delete most data immediately; KYC documents and transaction history are retained for 5–7 years for regulatory compliance.
  • Portability: You can request your data in a portable format (e.g., CSV) to transfer to another service.
  • Opt-out of marketing: You can unsubscribe from promotional emails and push notifications anytime via account settings or by clicking "unsubscribe" in any email.
Encryption
Converting data into a code that only authorized parties can read. daduwin uses TLS 1.3 for data in transit and AES-256 for data at rest.
KYC (Know Your Customer)
Identity verification process. We collect government ID, address proof, and a live selfie to confirm you are who you claim to be.
Data Processor
A third party (e.g., payment provider, hosting company) that processes your data on daduwin's behalf under a data-processing agreement.
Session Cookie
A temporary file stored on your device that keeps you logged into daduwin. It expires when you close your browser or log out.

Data Retention and Deletion

We retain your data for as long as your daduwin account is active. If you close your account, we delete most personal data (name, email, address, device info) within 30 days. However, we retain KYC documents and transaction history for 5–7 years to comply with anti-money-laundering and tax regulations. After this period, we delete all remaining records. If you request account deletion before this retention period ends, we still retain the minimum data required by law.

Data Breach Notification

If we discover that your data has been compromised (e.g., unauthorized access to our servers), we notify you via email within 72 hours. We also notify relevant authorities where required by law. We take immediate steps to secure the breach, reset affected passwords, and prevent further unauthorized access. If you suspect your daduwin account has been compromised, change your password immediately and contact support.

International Data Transfers

Our servers may be located outside your jurisdiction. When you use daduwin from Jakarta, Surabaya, Bandung, or Medan, your data may be transferred to and stored in data centres in other countries. We ensure these transfers comply with applicable privacy laws. All data centres we use maintain security standards equivalent to or exceeding daduwin's own standards.

Contact Us About Privacy

If you have questions about how daduwin handles your data, or if you wish to exercise any of your rights (access, correction, deletion, portability), contact our privacy team:

  • In-app chat: Available during business hours (09:00–18:00 Jakarta time, weekdays)
  • Email: [email protected]
  • Mailing address: Available in daduwin's legal notice

We respond to privacy requests within 14 days. If you are not satisfied with our response, you may lodge a complaint with your local data-protection authority.