bola010Privacy Policy

This page describes what we collect when you use bola010 and how we keep that data protected. We operate across supported regions—Jakarta, Surabaya, Bandung, Medan—and handle account data, payment information, and usage logs according to the jurisdiction where your account sits.

We collect information necessary to verify your identity, process deposits and withdrawals through our payment partners (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and banks mobile banking, local payment, online payment, e-wallet), and provide customer support. Our policy is straightforward: we do not sell personal data, we encrypt sensitive fields, and we make your rights clear.

Each section below outlines what we collect, how we use it, and how you can request access or deletion where applicable law permits.

What we collect on bola010

We collect your email address, national identity number (from your ID card or passport), full name, date of birth, and phone number during account setup. These fields are required for KYC verification and are checked against government registries where permitted.

When you fund your account, we record your chosen payment method, deposit amount, transaction ID, and timestamp. We do not store complete card numbers or bank account details—payment processors (our third-party partners) retain those fields on encrypted servers outside your jurisdiction.

We log your IP address, device type, browser, and access times to detect fraud and enforce our terms. We also record your betting activity, live-dealer session history, and slot-game play for settlement and dispute resolution.

Note: We do not collect location data or use device cameras. We do not track your behaviour outside bola010.

How we use your data

We use your identity information to verify you are an eligible account holder and prevent money laundering or underage access. Your payment details are used only to process deposits, withdrawals, and refunds. We may share your national ID number with compliance authorities if required by law.

We use your activity logs to calculate payouts, detect unusual betting patterns (e.g., identical bets from multiple accounts), and respond to support requests. We do not use your data for marketing unless you explicitly consent in your account settings.

Your withdrawal history and payment method are retained for at least 5 years to comply with financial record-keeping obligations in supported jurisdictions.

Third-party processors and data transfers

Our payment partners—DANA, e-wallet, mobile banking, and the partner banks—receive your name, ID number, and account details to authorize transactions. We use a separate email provider to send account confirmations and password-reset links. Live-dealer tables are hosted by licensed gaming studios; they receive your username and session duration but not your banking details.

We may store encrypted backups on cloud servers outside Indonesia. These backups are encrypted end-to-end and are only decrypted by bola010's backend systems. We do not permit third parties to access backups without a court order.

Your rights on bola010

You may request a copy of the data we hold on your account by emailing our support team. We will provide an export of your personal information, betting history, and payment records within 30 days. You may also request deletion of non-essential fields (e.g., phone number) if they are no longer needed for account operation.

You cannot request deletion of identity documents, payment records, or betting history—these are retained for legal compliance. If your account is closed, we archive your data and delete it after the retention period expires (typically 5 years).

Info: To submit a data-access or deletion request, email [email protected] with your account email and a copy of your ID card.

Cookies and tracking

We use session cookies to keep you logged in and to remember your language preference. We do not use tracking pixels, analytics scripts, or third-party ad networks. When you visit bola010, your browser stores a session token; when you log out, the token expires.

We use one first-party analytics tool to count page views and detect bot traffic. This tool does not identify you personally and does not link to external websites.

Our data protection practice

All connections to bola010 use TLS 1.2 encryption. We hash passwords using bcrypt and do not store them in plain text. Identity documents are encrypted at rest and are accessible only to KYC staff during verification.

We conduct quarterly security audits and maintain an incident-response plan. If we detect unauthorized access to user data, we notify affected account holders within 72 hours and provide guidance on account recovery.

Contact and updates

If you have questions about this policy or wish to exercise your rights, contact us at [email protected] or via in-app support. We will respond within 14 business days.

We may update this policy to reflect changes in law or our practices. We will notify you of material changes by email and will ask for your consent before new processing begins. Your continued use of bola010 after a policy update means you accept the new terms.

This privacy policy was last updated in January 2025 and applies to all account holders in supported jurisdictions.