Your Data Stays Yours
We built top189 around Indonesia's payment ecosystem — QRIS, DANA, OVO and GoPay — which means your account details, transaction history and personal information move through encrypted channels...
Policy Scope & Jurisdiction
top189 operates this privacy policy in compliance with Indonesian data protection frameworks and the payment regulations governing QRIS, DANA, OVO and GoPay operators in supported regions. When you open an account, fund deposits or withdraw winnings, your personal data — name, contact details, payment method and transaction records — is processed according to this policy. We do not sell your information to
third parties. Your data is retained only as long as your account remains active or as required by local law. If you close your account, we securely delete personal records within the timeframe specified by Indonesian regulations.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Privacy Questions & Support
Email Support
Contact our privacy team at [email protected] with any questions about how we handle your data, account information or payment details. We respond within 24 hours.
Account Settings
Manage your personal information, communication preferences and data-sharing choices directly in your account dashboard. Update your details anytime without contacting support.
Data Access Requests
Request a copy of all personal data we hold about you, including transaction history and account activity. Submit requests via your account or email; we deliver within 14 days.
Privacy & Security Standards
SSL Encryption
All data transmitted between your device and top189 servers uses 256-bit SSL encryption. Your login credentials, payment details and account activity are protected in transit and at rest.
Payment Partner Compliance
QRIS, DANA, OVO and GoPay transactions are processed through certified payment gateways that meet Indonesian banking security standards. We never store full payment card numbers.
Regular Security Audits
Our infrastructure undergoes quarterly security reviews by independent auditors. Vulnerability assessments and penetration testing ensure your account data remains protected against emerging threats.
Staff Access Controls
Only authorized personnel with verified roles can access customer data. All staff sign confidentiality agreements. Access logs are monitored and reviewed monthly for unauthorized activity.
Incident Response Plan
If a data breach occurs, we notify affected users within 48 hours and provide guidance on account protection. We maintain cyber insurance and work with Indonesian authorities as required.
Data Retention Policy
We retain account data only while your account is active. After closure, personal information is deleted within 90 days unless Indonesian law requires longer retention for compliance.
How Our Policy Stands
| No Third-Party Sales | Unlike many platforms, we do not sell your personal data to advertisers, brokers or marketing firms. Your information stays within top189. |
|---|---|
| Indonesia-First Design | Our privacy framework is built around QRIS, DANA, OVO and GoPay — the payment methods Indonesia players actually use — not generic global templates. |
| Transparent Logging | You can view your account activity, login history and transaction records anytime. We log what we collect and why; no hidden data gathering. |
| Easy Data Deletion | Close your account and request full data deletion in one step. We process deletion requests within 14 days; no waiting periods or hidden holds. |
| Local Compliance First | Our policy aligns with Indonesian data protection rules and payment regulations. We do not default to international frameworks that may not reflect local law. |
| No Cookie Tracking | We use essential cookies only for account security and session management. No third-party tracking cookies, no behavioral profiling, no ad retargeting. |
| Dispute Resolution Local | Privacy disputes are resolved through Indonesian channels first. We work with local regulators and ombudsman offices before escalating to international arbitration. |
What This Policy Covers
Account Registration
When you open an account, we collect your name, email, phone number and date of birth. This data is used only to verify your identity and send account notifications.
Payment Processing
QRIS, DANA, OVO and GoPay transactions are processed through encrypted channels. We record transaction amounts and timestamps but never store your full payment credentials.
Lobby Activity
Your game history, table selections and slot room visits are logged to personalize your lobby experience and detect unusual account activity that might indicate fraud.
Communication Preferences
We send account updates, promo notifications and security alerts via email or SMS. You control which messages you receive through your account settings anytime.
Device & Location Data
We record your device type, browser and approximate location (country/region level) to prevent unauthorized access and comply with regional gaming regulations.
Withdrawal & Verification
When you request a payout, we may ask for additional identity verification documents. These are stored securely and deleted after verification is complete.