LEGAL REFERENCE

Your data privacy at win333

We keep your account, payment details and gameplay history secure by design. This privacy policy explains how we collect, use and protect your information across our live casino...

Data ProtectionPayment SecurityAccount PrivacyTransparencyYour Control
Tour the Lobby Read FAQ
win333 Your data privacy at win333

Privacy policy scope and jurisdiction

win333 operates under the laws of supported regions in Indonesia and Southeast Asia. We collect personal data — your name, email, phone number, payment details and gameplay activity — to maintain your account, process transactions, and comply with local gaming regulations. Your data is encrypted in transit and at rest. We never sell your information to third parties. Payment processors for DANA,

OVO, GoPay and QRIS receive only the transaction data they need to complete your deposit or withdrawal. You retain the right to request, amend or delete your personal data, subject to regulatory retention requirements.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

How to contact us about your privacy

Email Support Send privacy queries to our dedicated team. We respond to data requests, correction notices and deletion instructions within five working days.
Live Chat Chat with our support crew during platform hours. Ask about your data, payment history visibility or account privacy settings in real time.
Account Settings Update personal details, review login history and manage notification preferences directly in your account portal. Changes apply immediately.
WHY THIS PLATFORM

Privacy standards we maintain

Data Encryption

All transfers between your device and our servers use TLS 1.2+ encryption. Stored data is protected with AES-256 cryptography to...

Third-Party Audits

Our privacy and security practices undergo annual independent review. Audit reports confirm compliance with data protection standards across all territories.

Payment Tokenization

DANA, OVO, GoPay and QRIS transactions never expose your full payment details on our servers. Tokens replace sensitive data in...

Staff Access Controls

Only authorised personnel with verified need can access your account or payment history. All staff access is logged, timestamped and...

Incident Response

If a data breach occurs, we notify affected users within 72 hours and outline steps to protect your account. We...

Privacy by Design

We build data minimisation and user consent into every new feature. You control which communications you receive and how your...

SIDE BY SIDE

How our privacy stance aligns

01

Consistent Across Regions

Whether you play from Jakarta, Surabaya or another supported area, your privacy protections remain the same. No data tier based on geography.

02

GDPR-Aligned Practices

Although based in Southeast Asia, we follow GDPR principles: consent, erasure rights and data portability extend to all users globally.

03

Payment Processor Alignment

DANA, OVO, GoPay and QRIS operators sign strict data-processing agreements with us. Their privacy policies complement ours, not override it.

04

Advertising Transparency

Retargeting ads use hashed identifiers, never raw email or phone. You can opt out of marketing in one click within your account settings.

05

Cookie Consent First

Non-essential cookies require your explicit approval on first visit. We never set tracking cookies without your prior permission or clear notice.

06

Vendor Due Diligence

Every analytics tool, email provider and hosting vendor we use undergoes privacy assessment. We audit them annually for compliance drift.

07

Policy Update Cadence

When regulations or our practices change, we update this policy and email all users 30 days in advance. You can opt out of the updated terms.

PLATFORM SNAPSHOT

Key privacy features in your account

01
Session Security Your login session expires after 30 minutes of inactivity. Biometric unlock (fingerprint/face) and two-factor authentication add layer to account access.
02
Transaction History Privacy View your full deposit and withdrawal log filtered by date, amount and method. Sensitive payment details are masked; only last four digits show.
03
Marketing Preferences Toggle email, SMS and in-app promotional messages individually. Unsubscribe from all marketing takes effect within two hours of your request.
04
Data Export Download your account profile, gameplay history and all associated data in machine-readable format. Complete export processes within five working days.
05
Device Management See all active login sessions and devices tied to your account. Remotely log out from any device or revoke access from any browser or app instantly.
06
Account Deletion Request permanent account closure from settings. All personal data purges within 90 days, except records we must retain per local gaming regulations.

Privacy questions answered

We never store your full DANA, OVO, GoPay or QRIS credentials. Payment processors issue tokens that replace your actual account numbers. Our servers see only the token, not your underlying payment details. All token transfers use TLS encryption.

Yes. Go to Account Settings, select Data & Privacy, then request export. We compile your profile, gameplay logs, transaction history and support tickets into a downloadable file within five working days at no charge.

Only customer support staff with explicit authorisation access your account — and only to resolve your specific issue. All staff access is logged with timestamps. Compliance and fraud teams see anonymised data trends, not individual details.

No. We never sell personal data. Advertising partners receive only aggregated, anonymised trends — never individual names, emails or payment info. You control marketing communications in your account settings.

Account and payment data remain live while your account is active. After closure, we retain records for seven years to comply with Indonesian gaming and anti-money-laundering regulations, then delete permanently.

We email all users 30 days before a policy change goes live. You can review the new terms and opt out if you disagree. Continued play after the deadline means acceptance of the updated policy.

Yes. Request account deletion in Settings. Personal data purges within 90 days, except regulatory retention records (payment ID, anti-fraud flags) which stay seven years per local law.