How batu128 Handles Your Account Data
This is the batu128 privacy policy in plain language. We wrote it so you can see, before you open an account, exactly what we collect, why we keep...
Our Privacy Posture and Scope
This policy applies where local law permits and across supported regions in Indonesia. We collect account identifiers, device data, session logs and payment references you submit during deposits or withdrawals. That data is processed to verify your account, prevent fraud, and meet record-keeping duties tied to financial transactions. We don't sell your details to third parties. Where wallet providers route a transaction,
only the minimum identifiers needed for settlement are shared. You can request access, correction or erasure of your records by contacting our privacy desk, subject to retention rules that apply to gaming operators in your jurisdiction.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Privacy Contact Paths
If you have a question about your data, reach us through any of the channels below. Our privacy desk handles access requests, deletion requests and consent changes separately from general account support.
Privacy Inbox
Email our data team directly for access requests, corrections or deletion. We acknowledge within one business day and resolve within the window set by Indonesian data rules where they apply.
In-Account Form
Once you're signed in, the privacy form sits inside your account settings. Submit consent changes, opt out of marketing messages, or download a copy of your stored records straight from there.
Live Chat Escalation
Live chat agents can route privacy questions to the dedicated reviewer on shift. Ask for the data officer and your ticket is flagged for a written response from our compliance team.
How This Policy Is Maintained
We review this document on a fixed cadence so the wording matches what actually happens behind your account.
Quarterly Review
Our legal and product teams sit down every quarter to walk through this policy line by line, checking that each clause still matches the data flows running in our live environment.
Version History
Every change to this policy is logged with a date and a short note describing what shifted. You can ask the privacy desk for the previous version if you want to compare wording.
Named Reviewer
A named data protection lead signs off on each revision. That person, not an anonymous committee, is accountable for the language you read on this page right now.
External Counsel
We brief outside Indonesian counsel before publishing material changes. Their notes shape how we describe retention, consent and cross-border processing in the sections above.
Plain Language Pass
After legal sign-off, an editor rewrites dense clauses into language you can read on a phone. Nothing is removed — the meaning stays, the sentences get shorter.
Reader Feedback
If you flag a passage that reads ambiguous, we log it. Repeated questions on the same clause trigger a rewrite in the next review cycle rather than waiting a full year.
Consistent Across Our Policy Pages
This privacy policy lines up with our other legal pages so you don't have to chase contradictions across the site.
| Terms of Service | Definitions of account, session and transaction used here match the Terms exactly, so a word means the same thing whichever legal page you opened first. |
|---|---|
| Cookie Notice | The cookie categories named below mirror the toggles in our cookie banner. If you change a setting there, the description here stays accurate. |
| KYC Statement | Identity documents collected for verification are described identically on the KYC page and in the data categories listed within this policy. |
| Retention Schedule | Time windows for keeping logs, financial records and closed-account data are written the same way across the retention schedule and this document. |
| Marketing Consent | Opt-in and opt-out wording for promotional messages matches the consent panel in your account settings, with no extra clauses hidden here. |
| Complaints Page | The escalation path for a privacy complaint is the same path described on our complaints page, ending at the same named reviewer. |
| Regional Notices | Where Indonesian rules add a clause, that clause appears verbatim on both the regional notice page and inside the relevant section of this policy. |
What This Policy Page Shows You
The layout here is built around clarity, not marketing. Each block below points to a fixed element you'll find on this page every time you visit.
Data Categories
A labelled list of every category we collect: identifiers, device data, session logs, transaction references. Each category has a one-line purpose attached so you read intent next to data.
Retention Windows
Plain numbers for how long each category stays on file. No vague phrases like 'as needed' — actual months and years, tied to the legal duty that requires them.
Your Rights Panel
A panel listing the rights you can exercise: access, correction, erasure, portability, objection. Each right links to the form or contact that triggers it inside your account.
Third-Party Processors
A short, named list of processors we share data with for payment routing, fraud checks and hosting. You see who, for what, and the country they operate from.
Change Log
A dated change log sits near the bottom so you can scan what moved since your last visit. New clauses are marked, removed clauses are noted in strikethrough.
Last Reviewed Stamp
A timestamp at the top tells you when a human last walked this document. If that date is older than a quarter, you're looking at a draft waiting for the next review.