caipiaoPrivacy Policy

When you create an account on caipiao to access slot tournaments, live-dealer tables, or sportsbook markets, we collect personal information to verify your identity, process deposits and withdrawals, and communicate with you about your account. This page describes what we collect, how we keep that data protected, who has access to it, and what rights you have under applicable privacy law.

We at caipiao take data protection seriously. Our commitment is to collect only information necessary to operate our service legally and securely, to use that information only for stated purposes, and to delete it when no longer needed. We do not sell your personal data to advertisers or brokers. We do not use your account history to profile you for marketing beyond our own platform communications. We encrypt sensitive data in transit and at rest, and we restrict access to authorized staff only.

If you have questions about how we handle your data, or if you want to request access to, correct, or delete your personal information, contact our support team at any time. We respond to data-subject requests within 30 days or according to applicable local law, whichever is shorter. Services on caipiao are available only where local law permits; your jurisdiction's privacy regulations may grant you additional rights beyond what we describe here.

What Data We Collect

We collect information in several categories. When you register a caipiao account, we request your email address, chosen username, and password. During identity verification (KYC), we collect your full name, date of birth, government-issued ID number, and a photograph of your ID document. We also request proof of residence—a utility bill, bank statement, or official government mail showing your name and address dated within the past three months.

For payment processing, we collect your payment method details. If you deposit via DANA, e-wallet, mobile banking, local payment, or online payment, we record your digital wallet identifier. For bank transfers through e-wallet, mobile banking, local payment, or online payment, we retain your account number and account holder name. We do not store full bank account numbers or card details beyond what is necessary to process your transactions.

We collect transaction data: every deposit, withdrawal, game session, and market wagering is logged with timestamps, amounts, and outcomes. We also collect technical data including your IP address, device type, browser version, and session duration. This helps us detect fraudulent access, troubleshoot technical issues, and understand platform usage patterns. We do not track your activity outside caipiao.

Cookies: We use cookies to maintain your session, remember your preferences, and analyze how you navigate our platform. You can disable cookies in your browser settings; however, some caipiao features may not function without them.

How We Use Your Data

We use your personal information for the following purposes. First, we verify your identity and confirm your jurisdiction eligibility before allowing access to account features, sportsbook markets, and withdrawals. We are legally required to conduct KYC verification to prevent money laundering and fraud. Second, we process your financial transactions—deposits, withdrawals, slot tournament payouts, sportsbook settlements, and live-dealer results. Without your payment method information, we cannot credit funds to your account or transfer winnings.

Third, we communicate with you about your account. We send email notifications when you register, when your verification is approved, when you request a password reset, and when we issue account alerts (suspicious login, pending withdrawal, settlement notification). We do not send marketing emails unless you have explicitly opted in to receive them. Fourth, we use transaction data to detect fraud, prevent account abuse, and investigate disputes. If you claim a settlement error or unauthorized transaction, we review your account logs to determine what happened.

Finally, we analyze aggregated, anonymized data to improve our platform. For example, we may track how many users access slot tournaments versus sportsbook markets, what payment methods are most popular in Jakarta, Surabaya, Bandung, Medan, and Semarang, or what times of day see peak activity. This analysis helps us optimize our infrastructure, add new games, and schedule maintenance. We do not analyze this data in a way that can identify individual users.

Data Retention and Deletion

We retain your personal information for as long as your caipiao account is active. If you request account deletion, we delete most personal data within 30 days, with the following exceptions. We retain transaction records for seven years to comply with financial regulations and to investigate disputes or fraud claims that may arise after account closure. We also retain IP addresses and login logs for one year after account deletion to detect account takeover attempts.

If your account is inactive for two years (no login, no deposits, no withdrawals), we may close it automatically and delete associated personal data, subject to the retention periods above. We will notify you via email before closing an inactive account, giving you 30 days to log back in and confirm you want to keep the account open.

Third-Party Data Processors

We share your data with third-party service providers only as necessary to operate caipiao. Our payment processors (e-wallet, mobile banking, local payment, online payment, e-wallet, and bank networks) receive your payment method information and transaction details to process deposits and withdrawals. Our identity-verification vendor receives your ID photograph and proof of residence to conduct automated identity checks and background screening. Our email provider receives your email address and notification content to send account alerts and communications.

All third-party processors are contractually bound to protect your data and to use it only for the stated purpose. We do not grant processors permission to use your data for marketing, profiling, or any secondary purpose. If a processor experiences a data breach, we conduct an investigation and notify affected users as required by applicable law. Our data-processing agreements comply with GDPR, Indonesia's Law No. 27 of 2022 on Personal Data Protection, and other relevant privacy regulations.

Your Rights on caipiao

You have the right to access your personal information held by caipiao. Submit a request through our support form with "Data Access Request" in the subject line, and we will provide a copy of your data within 30 days. You have the right to correct inaccurate information—if your address or payment method has changed, you can update it directly in your account settings. You have the right to request deletion of your data (subject to our retention obligations noted above). You also have the right to data portability: we can provide your transaction history in a common digital format (CSV or JSON) so you can transfer it to another service.

If you believe we have misused your data or violated your privacy rights, you can file a complaint with us first (contact our support team). If we do not resolve your complaint to your satisfaction, you may escalate to your local data-protection authority. We do not penalize users for exercising their privacy rights; you can request data deletion or correction without affecting your ability to continue using caipiao (though account verification data is required to process withdrawals and maintain account security).

Data Location and International Transfer

Our servers may be located outside your jurisdiction. Specifically, we use cloud infrastructure that may store data across multiple geographic regions to ensure redundancy and disaster recovery. If you are based in Jakarta, Surabaya, Bandung, Medan, or Semarang and our servers are located outside Indonesia, that constitutes an international data transfer. By creating a caipiao account, you consent to this transfer. We apply appropriate safeguards—encryption in transit, restricted access controls, and data-processing agreements—to protect data transferred internationally.

Security Measures We Employ

We protect your data using industry-standard security practices. All communication between your device and our servers is encrypted using TLS 1.2 or higher. Your password is hashed using bcrypt or similar cryptographic functions; we do not store plaintext passwords. Your payment information is handled according to PCI DSS (Payment Card Industry Data Security Standard) compliance. Two-factor authentication is mandatory for all withdrawals and payment-method changes.

Our databases are encrypted at rest, access is restricted to authorized staff, and all data access is logged. We conduct regular security audits and penetration testing to identify vulnerabilities. If we discover a data breach, we notify affected users and relevant authorities as required by law, typically within 72 hours of discovery. However, no security system is perfect; if you notice suspicious activity on your account, change your password immediately and contact our support team.

Children and Age Restrictions

caipiao services are not intended for anyone under 18 years old. We do not knowingly collect data from minors. If we become aware that a user is under 18, we delete their account and associated data immediately. Parents or guardians who believe a child has created a caipiao account should contact our support team right away.

Contact Us About Privacy

If you have questions about this privacy policy, want to exercise your data-subject rights, or want to report a privacy concern, contact our support team. Provide your account email, a description of your request, and any relevant details. We aim to respond to privacy inquiries within 24 hours for urgent matters (suspected data breach, account takeover) and within 30 days for standard requests (data access, correction, deletion). You may also escalate unresolved concerns to your local data-protection authority or regulatory body.

Encryption

TLS 1.2+

Data Retention

As needed

Session + preferences

2FA

Mandatory for withdrawals

Policy Updates

We may update this privacy policy from time to time to reflect changes in our practices, technology, or applicable law. When we make material changes, we notify all account holders via email at least 30 days in advance. Your continued use of caipiao after a policy change constitutes acceptance of the updated policy. We encourage you to review this page regularly to stay informed of how we handle your data.

This privacy policy is effective as of the date stated at the bottom of this page. We at caipiao remain committed to protecting your personal information and operating transparently about how we collect, use, and safeguard your data. If you have any doubt about our practices or your rights, contact our support team—we are here to answer your questions and address your concerns.