jayatop Privacy Policy

This page describes what we collect when you use jayatop and how we keep that data protected. We at jayatop take your privacy seriously. When you create an account, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts (mobile banking, local payment, online payment, e-wallet), or play games on our platform, we gather specific information to verify your identity, process transactions, and provide you with a secure experience.

Our jayatop privacy practices are transparent and comply with data-protection principles. We do not sell your personal information to third parties. We share data only with payment processors, regulatory bodies, and jayatop's internal teams when necessary for service delivery. This policy explains what information we collect, how we use it, how long we retain it, and what rights you have over your data.

If you have questions about our privacy practices or wish to exercise your data rights, contact our support team through the help section in the app or email the address provided at the end of this policy.

What Data We Collect on jayatop

When you register for jayatop, we collect your full legal name, email address, phone number, date of birth, and permanent address. We also request a government-issued identification document (such as a KTP, passport, or driver's license) and proof of address (utility bill, bank statement, or rental agreement) for Know-Your-Customer (KYC) verification. This is mandatory to comply with anti-money-laundering regulations and prevent fraud.

During gameplay, we record all transactions—deposits, withdrawals, and wagers—along with timestamps and amounts. We log your IP address, device type, operating system (Android or iOS), and browser information each time you access jayatop. We also track your account activity: which games you play, how long you play, and your game results. This data helps us detect suspicious behaviour, prevent collusion in multiplayer games, and personalise your experience where appropriate.

When you deposit, we receive payment information from our processors (DANA, e-wallet, mobile banking, etc.). We do not store your complete credit card or bank account numbers; payment gateways handle that securely. We retain only references to your transactions so we can link deposits and withdrawals to your account.

KYC Data: Identity documents, address, and phone number. We retain these for five years after account closure for regulatory compliance.
Transaction Data: All deposits, withdrawals, and game outcomes. We keep this throughout your account lifetime and five years thereafter.
Device and IP Data: Device model, operating system, IP address, and browser type. We use this to detect unauthorised access and fraud.

How We Use Your Data

We use your data for four primary purposes. First, we verify your identity and comply with legal obligations—KYC checks, anti-money-laundering rules, and tax reporting where required by your jurisdiction. Second, we process your payments: deposits to jayatop and withdrawals to your registered payment method. Third, we maintain account security by monitoring for unauthorised access, unusual activity patterns, and fraudulent behaviour. Finally, we improve jayatop by analysing aggregated gameplay data to enhance user experience and identify technical issues.

We do not use your data for marketing unless you explicitly consent. We do not sell your data to advertisers, data brokers, or third-party marketers. We do not build profiles based on your nationality, religion, or political affiliation.

Third-Party Access and Data Sharing

We share your data with payment processors (local payment, online payment, e-wallet, mobile banking, local payment, online payment, and banks) to process deposits and withdrawals. These partners are contractually required to protect your data and use it only for payment processing. We also share aggregated, anonymised data with game providers to monitor gameplay patterns and detect cheating. Game providers do not receive your name, ID number, or payment information—only game results and timestamps.

If required by law, court order, or regulatory investigation, we disclose data to government authorities and law-enforcement agencies. We do not disclose to them voluntarily; we only respond to legal demands. If we receive such a request, we notify you unless legally prohibited.

International transfers: jayatop may store your data on servers outside Indonesia. We encrypt all data in transit and at rest. By creating a jayatop account, you consent to such transfers. If you reside in a jurisdiction with strict data-localisation laws, verify compliance with your local authorities before opening an account.

Data Security and Encryption

We protect your data using industry-standard encryption. All communications between your device (Android, iOS, desktop) and jayatop servers use TLS (Transport Layer Security) protocol. Your password is hashed using secure algorithms and never stored in plain text. We conduct regular security audits and penetration testing to identify vulnerabilities. If we discover a data breach affecting your account, we notify you via email and provide guidance on protective steps.

However, we cannot guarantee absolute security. Transmission over the internet carries inherent risks. We recommend using a strong, unique password for jayatop and enabling two-factor authentication (2FA) on your account. If you suspect unauthorised access, change your password immediately and contact our support team.

Your Rights and Data Retention on jayatop

You have the right to access your data. You can download a copy of all your personal information, transaction history, and account activity through jayatop's account settings. We provide this data in a portable, readable format within 30 days of your request. You also have the right to correct inaccurate information—if your address or phone number changes, update it in account settings or contact our support team.

You have the right to request deletion of your account and associated data. We close your account immediately and erase most data within 30 days. However, we retain transaction records and KYC documents for five years after closure to comply with anti-money-laundering and tax regulations. We cannot delete data that is legally required to be retained.

We retain your data as follows: KYC information, transaction history, and account activity records are kept throughout your account lifetime plus five years post-closure. Device logs and IP data are retained for one year. If your account is inactive for two years, we may archive your data but retain it for regulatory purposes. If you close your account, we begin the five-year retention clock from the closure date.

Cookies and Local Storage

jayatop uses cookies on desktop browsers and local storage on mobile apps to enhance your experience. Cookies store your session token (so you stay logged in), your language preference, and non-personal gameplay settings. We do not use tracking cookies that identify you across other websites. Cookies expire after your session ends or when you log out. You can disable cookies in your browser settings, but doing so may prevent jayatop from functioning properly.

On Android and iOS apps, we use local storage to cache game lists, odds, and your saved preferences. This reduces data usage—typically under 50 MB—and improves performance on slower connections. You can clear this cache through your device's app settings without affecting your account data.

Policy Changes and Contact Information

We may update this privacy policy. Material changes are communicated via email or in-app notification. Continued use of jayatop after policy changes constitutes acceptance. If you disagree with changes, you may close your account and request a final withdrawal subject to our standard anti-fraud review.

If you have privacy concerns, questions about our data practices, or wish to exercise your rights (access, correction, deletion, portability), contact our support team through the help section in the jayatop app. You can also reach us via email at the address displayed in the support section. We respond to all data-rights requests within 30 days. For unresolved privacy disputes, you may lodge a complaint with your local data-protection authority if one exists in your jurisdiction.

Regional Privacy Considerations

jayatop services are available only where local law permits. If you access jayatop from a jurisdiction with specific data-protection laws (such as those in Jakarta, Surabaya, Bandung, or Medan), your rights may be defined by those jurisdictions' regulations in addition to this policy. We recommend reviewing your local data-protection framework before opening an account. jayatop does not provide legal adviceand you are responsible for verifying compliance with your jurisdiction's privacy requirements.

This privacy policy is effective as of the date jayatop first posted it. We undertake to protect your data with the same care we apply to all aspects of jayatop's operations. Your trust is essential to us, and we remain committed to transparent, responsible data stewardship.