api228 Privacy Policy

This page describes what data we collect when you use api228 and how we keep that data protected. We at api228 are committed to safeguarding your personal information across all our services—slot tournaments (Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways), live-dealer tables (blackjack, roulette, baccarat, Dragon Tiger), poker cash games, and sportsbook markets (Liga 1, Piala AFF, Champions League, Premier League, MotoGP, badminton). Our privacy practices comply with applicable data-protection laws in the jurisdictions where we operate.

We collect minimal personal data and use it only for account verification, payment processing, fraud prevention, and legal compliance. We do not sell or share your data with third parties for marketing purposes. Your account information remains encrypted on our servers, and payment details are processed by certified third-party payment processors (not stored by us). This policy explains what we collect, how we use it, and your rights regarding that data.

Our privacy commitments apply whenever you access api228 via web browser or mobile device from any supported jurisdiction. If you have questions about our privacy practices, contact our support team via live chat or email during business hours (9 AM–6 PM, Monday–Friday, Jakarta timezone). We respond to data-access requests within 14 business days.

What data we collect on api228

We collect the following categories of data when you use api228:

  • Account registration: Email address, full name, date of birth, phone number, residential address, and password (hashed, not stored in plain text)
  • Identity verification: Government ID number, photo ID image, address-proof document image (stored securely for KYC compliance)
  • Payment information: Bank account or e-wallet details (processed by third-party providers; we do not store full card numbers or account credentials)
  • Account activity: Login timestamps, game play history, tournament participation, deposit and withdrawal records
  • Device and network: IP address, device type, browser type, operating system (for fraud detection and security)
  • Communication: Support chat logs, emails, and any feedback you send us

We do not collect data beyond what is necessary for account verification, payment processing, and legal compliance. We do not use cookies to track you across other websites. Our website uses session cookies only (deleted when you close your browser) to maintain your login state on api228. You can disable cookies in your browser settings, though this may limit functionality on our platform.

How we use your data on api228

We use the data we collect for the following purposes:

  • Account management: Creating and maintaining your account, verifying your identity, and processing password resets
  • Payment processing: Facilitating deposits and withdrawals via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet
  • Fraud and security: Detecting suspicious activity, preventing money laundering, and protecting against unauthorized access
  • Legal compliance: Meeting anti-money-laundering (AML) and Know Your Customer (KYC) requirements in our operating jurisdictions
  • Customer support: Responding to your questions and resolving disputes or account issues
  • Platform improvement: Analyzing aggregate usage patterns to improve game performance and user experience (anonymized, no personal identification)

We do not use your data for marketing emails or promotional communications unless you explicitly opt in. You can unsubscribe from promotional emails anytime via your account settings or by clicking the unsubscribe link in any email.

Encryption
We use industry-standard SSL/TLS encryption for all data in transit and AES-256 encryption for data at rest.
Access controls
Only authorized staff with a business need may access your personal data. All access is logged.
Data retention
We retain account data for as long as your account is active, plus 5 years for legal compliance. Upon account closure, non-essential data is deleted within 30 days.
Third-party processors
We share data only with payment processors and identity-verification vendors. All are bound by strict confidentiality agreements.

We at api228 protect your data with the same security standards you would expect from banking institutions. Your privacy is not negotiable.

api228 privacy team

Your rights and data requests on api228

Under applicable data-protection laws, you have the right to:

  • Access your data: Request a copy of all personal data we hold about you. We provide this within 14 business days of your request.
  • Correct your data: Update or correct inaccurate information in your account (name, address, phone) via Account Settings or by contacting support.
  • Delete your data: Request deletion of your account and associated personal data. We delete non-essential data within 30 days; legal-compliance data is retained for 5 years as required by law.
  • Restrict processing: Request that we limit how we use your data (e.g., for fraud detection only, not for platform improvement).
  • Data portability: Request your data in a portable format (CSV or JSON) for transfer to another service.

To exercise these rights, email our support team at the address provided in your Account Settings with "Data Request" in the subject line. Include your account email and the specific right you wish to exercise. We will verify your identity (via your account credentials or ID verification) before processing your request. Verification typically takes 2–3 business days.

Servers, international transfer, and your api228 account

Our servers may sit outside your jurisdiction (typically in Southeast Asia or Europe). By using api228, you consent to the transfer of your data to these locations. We apply the same data-protection standards regardless of server location. If you do not consent to international data transfer, do not use our platform.

We do not deliberately collect data from minors (users below the legal age of majority in their jurisdiction, typically 18 or 21). If we become aware that a minor has created an account, we terminate it immediately and delete their personal data within 30 days, except where retention is required by law.

Updates to our api228 privacy policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, or legal requirements. Material changes (e.g., new data collection, new sharing arrangements) are communicated via email to your registered account address at least 14 days before taking effect. Non-material updates (e.g., clarifications, corrections) take effect immediately. Continued use of api228 after changes constitutes your acceptance of the updated policy.

We last updated this policy on the date shown at the bottom of this page. If you have questions or concerns about our privacy practices, contact us via live chat or email. We take privacy seriously and welcome feedback that helps us improve our protections. Your data security and confidentiality are our top priorities as we serve users across Jakarta, Surabaya, Bandung, Medan, Semarang, and other supported regions.