gempoki Platform Privacy Notice

This page describes what we collect when you use gempoki and how we keep that data protected. When you open an account on our platform, fund it via DANA, e-wallet, mobile banking, or other payment methods, and place wagers on football markets (Liga 1, Piala AFF, Champions League) or our live-dealer and slot offerings, you share personal information with us. We take data security seriously and follow standard encryption and storage practices to ensure your information remains private.

Our privacy policy explains what data we gather, why we need it, who may access it, and your rights over it. We do not sell your information to marketing firms or data brokers. We share data only with payment processors, compliance teams, and law enforcement where legally required. Your account belongs to you, and your personal details are yours to control.

Read this notice carefully. By using gempoki, you accept these privacy practices. If you have questions or concerns about how we handle your data, contact our support team via the help portal or email.

What data we collect on gempoki

We collect several categories of information when you sign up and use gempoki. First, identity information: your full legal name, date of birth, national ID number (KTP, passport, or equivalent), and residential address. We require these details during account verification to comply with Know-Your-Customer (KYC) regulations and prevent fraud and money laundering.

Second, contact information: your email address and phone number. We use these to send you account confirmations, password-reset links, and notifications about your account status (e.g., withdrawal approvals). We do not send unsolicited marketing emails unless you opt in to our newsletter.

Third, payment information: when you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer (mobile banking, local payment, online payment, e-wallet), we record the transaction amount, date, and payment method. We also store your bank account number or e-wallet identifier so we can process withdrawals back to the same account. We do not store your full credit card or bank password — only the information necessary to execute transactions.

Fourth, betting and activity data: every wager you place, every game you play, every deposit and withdrawal. This information is logged to your account dashboard so you can review your complete history. We use this data to detect fraud, validate settlements, and audit our platform for fairness.

Fifth, technical data: your IP address, browser type, device model, and approximate geographic location (derived from IP). We collect this to prevent account takeover, detect bot activity, and enforce jurisdiction restrictions. Users accessing gempoki from prohibited jurisdictions are blocked automatically based on IP geolocation.

We do not collect cookies for tracking

Our platform uses session cookies only to keep you logged in. We do not use third-party tracking cookies or analytics cookies that follow you across other websites.

How we use your data on gempoki

Account verification: We use your identity details to confirm you are who you claim to be and prevent duplicate accounts.
Payment processing: Your payment information is shared with mobile banking, local payment, online payment, and banks only to facilitate deposits and withdrawals.
Fraud detection: We analyze your IP, device, and transaction patterns to detect unusual activity and protect your account.
Legal compliance: We retain records to comply with anti-money-laundering (AML) regulations and respond to law-enforcement requests.
Customer support: Our support team accesses your account data to resolve disputes, process withdrawals, and answer questions.

We use your email and phone number to send important account messages: confirmation of registration, password-reset instructions, withdrawal approvals, and notifications about account security events (e.g., login from a new device). We do not send promotional emails unless you explicitly subscribe to our newsletter. You can unsubscribe from promotional messages at any time via your account settings.

We analyze betting patterns and gameplay data internally to improve our platform, detect bugs, and ensure fair game mechanics. We do not sell this data to third parties. We may aggregate anonymized data (e.g., "average player account balance", "most popular betting market") for internal reporting, but this is never linked back to individual players.

We share your personal data only when necessary to operate gempoki or comply with law. Our payment processors (e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking) receive your transaction details and account identifier so they can process your deposits and withdrawals. These companies are bound by their own privacy policies and are not permitted to use your data for their own marketing.

Our hosting provider and database vendor store our servers (which may sit outside your jurisdiction). Your data is encrypted in transit and at rest, so the hosting company cannot read it. We select vendors that comply with international data-protection standards.

We share data with law enforcement, tax authorities, and financial regulators only when legally required — for example, if a court orders us to produce records, or if we detect suspicious activity that we are obligated to report under anti-money-laundering law. We notify you of such requests when possible, unless law prohibits disclosure.

We do not sell, rent, or share your data with marketing companies, data brokers, or affiliate advertisers. We do not use your data to train artificial intelligence models or sell it to third-party analytics services.

How long we retain your data on gempoki

We retain account data for as long as your account exists. If you close your account, we may continue to hold your data for up to seven years to comply with anti-money-laundering regulations and tax law. After that retention period, we delete or anonymize your records. However, if you request deletion before that period ends, we will honor your request except where law requires us to keep the data (e.g., for an ongoing dispute or legal investigation).

Betting records and transaction histories are retained for the same period. You can download a copy of your complete betting history and account statement at any time via your account dashboard.

Your rights over your data on gempoki

You have the right to access your personal data. You can review and download your account information, betting history, and transaction records anytime via your gempoki dashboard. If you need a copy in a specific format, contact our support team and we will provide it within ten business days.

You have the right to correct inaccurate data. If your name, address, or contact details are wrong, log into your account and update them directly. If you cannot make the change yourself, contact support.

You have the right to request deletion of your account and associated data, subject to legal retention requirements. Contact our support team to request account closure. We will close your account within five business days and delete non-essential data, retaining only records required by law.

You have the right to object to certain uses of your data — for example, if you do not want us to send promotional emails, you can opt out via your account settings or by contacting support. You cannot object to essential uses like fraud detection or payment processing, as those are necessary to operate gempoki.

How we protect your data on gempoki

We encrypt all data in transit using industry-standard TLS/SSL protocols. When you log into gempoki or make a deposit, the connection is encrypted so no third party can intercept your credentials or payment details. We also encrypt data at rest — your account information on our servers is encrypted so that even if a server is physically stolen, the data remains unreadable.

We enforce strict access controls. Only authorized employees with a legitimate business reason can access your personal data. All access is logged and audited. We do not share passwords or credentials with third parties. If you suspect your account has been compromised, reset your password immediately or contact support.

We maintain regular security assessments and penetration testing to identify and fix vulnerabilities. If we discover a data breach or security incident, we notify affected users and relevant authorities as required by law. We maintain cyber-liability insurance to cover potential damages from a breach.

Data protections we offer

End-to-end encryption for transactions
Encrypted data storage at rest
No sharing with marketing companies
Right to access, correct, and delete your data

Data sharing we avoid

No sale to data brokers or advertisers
No use for AI training models
No tracking cookies across websites
No unauthorized third-party analytics

Contact us about privacy on gempoki

If you have questions about how we handle your data, want to request a copy of your information, or wish to exercise your data rights, contact our privacy team via the help portal or email. We respond to privacy requests within ten business days. If you are based in Jakarta, Surabaya, Bandung, Medan, or other supported regions and have privacy concerns, we are here to help.

We may update this privacy policy from time to time. Material changes are notified via email or a prominent notice on gempoki. Your continued use of the platform after such notification constitutes acceptance of the updated policy. We encourage you to review this page periodically to stay informed of any privacy practice updates.

Your data is yours. We hold it in trust to operate gempoki securely and fairly. We do not monetize your personal information, we do not share it with advertisers, and we keep it safe with industry-standard encryption and access controls. If you have any concerns or requests related to your privacy on gempoki, reach out to our support team anytime.