api228 Platform Privacy Notice

This page describes what we collect when you use api228 and how we keep that data protected. Our privacy commitments centre on transparency: we explain what personal information we gather during account registration and payment processing, how we use it, and who has access to it.

We at api228 collect data only as necessary to operate our platform, verify your identity under KYC regulation, process your deposits and withdrawals, and provide customer support. We do not sell your data to third parties. We do share information with payment processors (e-wallet and bank partners), identity-verification vendors, and customer-support platforms—all bound by confidentiality agreements.

Your data is encrypted in transit and at rest. We use industry-standard security measures including SSL/TLS for communications, secure authentication, and access controls. This notice applies to all users accessing api228 from supported jurisdictions, regardless of whether you use Android, iOS, or browser access.

What We Collect on api228

During account registration on api228, we collect your email address, phone number, and password. We then require identity verification: you upload a clear photograph of your national ID (KTP, BPJS, or passport) and confirm your phone number. This information is stored securely and used solely to verify your identity and comply with anti-money-laundering regulations.

When you make deposits or withdrawals, we collect transaction data: the payment method used (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet), the amount, and the timestamp. We do not store full payment-card details; e-wallet and bank partners handle that securely. We collect IP addresses, device identifiers, and browser information to detect fraud and enforce our terms.

When you contact our support team, we retain your inquiry, our response, and any documents you provide (such as screenshots or transaction receipts). This information helps us resolve disputes and improve our service. We also collect game-play data: which markets you view, which games you participate in, and your account balance history—this data is used for service improvement and fraud prevention, never for sale or marketing.

Personal data

Email, phone number, name, and ID information collected during KYC verification. Used only for identity confirmation and regulatory compliance.

Transaction data

Payment method, amounts, and timestamps. Shared securely with payment processors to complete deposits and withdrawals.

Device and network data

IP address, device type, browser version, and location. Used to detect fraud and enforce account security on api228.

Support records

Chat transcripts, emails, and documents you provide when contacting our team. Retained for dispute resolution and quality assurance.

How We Use Your Data

We use personal data to verify your identity, process deposits and withdrawals, and provide customer support. We use transaction and device data to detect fraud, prevent account takeover, and enforce our terms and conditions. We use gameplay data—anonymised—to understand usage patterns and improve game availability and platform performance.

We do not use your data for marketing or promotional purposes. We do not share your data with third-party advertisers or data brokers. We share data only with payment processors, identity-verification vendors (licensed by Indonesian authorities), and customer-support platforms—all of which are contractually bound to protect your information and use it only to provide services to api228.

Our servers may be located outside Indonesia; data transfers across borders are encrypted. We comply with data-retention regulations: we retain personal data only as long as necessary to serve your account or comply with legal requirements. When you close your api228 account, we retain transaction records for regulatory purposes (typically six years) but delete your ID photographs and personal contact details after one year unless required by law to retain them longer.

Our api228 Third-Party Partners

We work with several third-party providers to operate api228. Payment processors (e-wallet and bank partners including mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive transaction details necessary to process deposits and withdrawals. These partners operate under their own privacy policies; we recommend reviewing them.

We use identity-verification vendors to confirm your national ID. These vendors scan and verify documents but do not retain copies; they return a verification result to api228 only. We use customer-support platforms to manage live chat and email; these platforms store support transcripts securely and are contractually bound not to disclose your information to others.

We may use analytics services to understand platform usage, but we strip identifying information—we analyse anonymised gameplay trends, not individual user behaviour. We do not use advertising networks or social-media tracking pixels on api228.

Cookies and Browser Storage

We use cookies to maintain your login session and remember your preferences (such as language and theme). These are session cookies that expire when you log out, or persistent cookies (stored for up to 30 days) to recognise returning users. We do not use cookies to track you across other websites.

Your browser may also store local data (IndexedDB or localStorage) to cache game data for faster loading. This data remains on your device and is not transmitted to api228 servers unless you initiate an action (such as placing a bet or requesting a withdrawal).

You may disable cookies in your browser settings; however, this may prevent you from logging in or using certain features of api228. We do not store sensitive information (passwords, payment details) in cookies.

Data Security and Breach Notification

We protect your data using SSL/TLS encryption for all communications between your device and our servers. Stored data is encrypted at rest using industry-standard algorithms. Access to data is restricted to authorised api228 employees and contractors who need it to provide services; all have signed confidentiality agreements.

In the unlikely event of a data breach, we will notify affected users within a reasonable timeframe and inform authorities as required by applicable law. We maintain incident-response procedures and regularly test our security systems to identify and remediate vulnerabilities.

Your Rights and Contact Information

Depending on applicable law in your jurisdiction, you may have the right to: request access to your personal data; correct inaccuracies; delete data where permissible; or export your data in a machine-readable format. To exercise any of these rights, contact our support team via live chat or email; include "Privacy Request" in your subject line. We respond to verified requests within 30 days.

Our support team is available in Indonesian and English during extended operational hours. If you have privacy concerns that support cannot resolve, you may file a complaint with your jurisdiction's data-protection authority.

1. Your data is encrypted

   All communications to api228 use SSL/TLS encryption. Stored data is also encrypted at rest.

2. We do not sell your data

   We do not share personal information with advertisers, brokers, or any third party without your consent—except as required by law.

3. You can request access or deletion

   Contact support to access, correct, or request deletion of your data. Response times are typically 3–5 business days.

4. Jurisdiction-restricted service

   We are not responsible for data protection breaches caused by accessing api228 from jurisdictions where our service is prohibited.

Policy Updates

We may update this privacy notice to reflect changes in our practices or applicable law. We post updates here; continued use of api228 after any change constitutes your acceptance of the updated notice. If we make material changes (such as new data sharing or retention practices), we will notify you via email or in-app alert.

Related guides