LEGAL REFERENCE

Your Data. Our Responsibility.

We keep your account details, payment history and gaming preferences secure under strict encryption. Every deposit through DANA, OVO, GoPay or QRIS is logged in our protected system...

Account SecurityPayment PrivacyData ProtectionIndonesia CompliantTransparent Logging
See the Lobby Read FAQ
iconwin Your Data. Our Responsibility.

Privacy Policy Overview

iconwin collects your personal information — name, email, phone, payment details — only to create and run your account. We use encryption for all transactions and store payment records securely. Your gaming activity, bet history and account balance are visible only to you and our support team when you request help. We do not sell your data to third parties. In supported

regions where local law permits, we may share anonymized gameplay trends with licensed operators. Your privacy under Indonesian data protection frameworks is our baseline.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Privacy Questions – Reach Us

Live Chat Open a chat from your account dashboard. Our...
Email Support Send privacy requests to our support mailbox. We...
Account Settings Review your profile, connected payment methods, login history...
REVIEW SIGNALS

Why This Policy Matters

Encryption Standard

All payment data — DANA, OVO, GoPay, QRIS transactions — travels through 256-bit SSL encryption. Your chip transfers never sit unencrypted in transit or at rest.

Audit Trail

Every login, deposit, withdrawal and session change is timestamped and logged. You can download your full activity record from account settings whenever you need it.

Third-Party Limits

We share account data only with payment processors and licensed operators — never with marketing firms, data brokers or analytics companies without your explicit consent.

Retention Schedule

Account records stay with us for the duration of your membership. After you close your account, we retain transaction logs for 3 years to comply with regional regulations.

Policy Updates

We review this privacy framework quarterly. If we change how we handle your data, we notify you by email 30 days in advance and highlight changes in your account homepage.

Indonesia Alignment

This policy follows Indonesian data protection principles. If local law updates, we adjust our practices and inform you of the shift immediately.

Consistency Across Our Pages

Terms of Service
Covers account creation rules, bonus eligibility and dispute resolution. Privacy Policy focuses purely on how we collect, store and protect your personal data.
Player guidance
Addresses Account closure, Deposit references and support resources. Does not overlap with privacy — that page handles personal data only, not account controls.
Payment Methods Page
Explains DANA, OVO, GoPay and QRIS processing steps. Privacy Policy describes how we encrypt and log those transactions, not the UI flow or limits.
Account Settings Guide
Shows you how to update profile fields and manage notifications. Privacy Policy details what data we store from each field and how long we keep it.
Security FAQ
Answers questions about two-factor authentication and login recovery. Privacy Policy covers data protection scope, not account recovery procedures.
Bonus Terms
Lists promo conditions and withdrawal rules. Privacy Policy does not address bonuses — it focuses on how we handle your personal info during bonus claims.
Contact & Support
Provides chat, email and phone numbers for all queries. Privacy Policy lists specific privacy request channels — email, account dashboard, support portal.
PLATFORM SNAPSHOT

What We Protect Inside

01
Login & Session Data Your username, password hash, IP address and device fingerprint are encrypted. Session tokens expire after 30 minutes of inactivity to limit unauthorized access risks.
02
Payment Record Storage DANA, OVO, GoPay and QRIS transaction IDs, amounts and timestamps are logged separately from your personal name. Payment tokens never appear in plain text in our databases.
03
Betting History Your game selections, bet sizes, win outcomes and timestamps are stored in audit-ready format. You own this data and can export it anytime from your account download section.
04
Communication Records Live chat transcripts, support emails and account notifications are kept for 12 months. You can request deletion of older records, and we comply within 14 days.
05
Device & Location Info We log the approximate region and device type of each login. This helps us spot unusual access patterns and protect your account from takeover attempts.
06
Consent & Preferences Your email frequency, notification settings and data-sharing choices are stored with timestamps. Changes take effect immediately and are visible in your privacy control panel.

Privacy Policy – Common Questions

Each transaction is encrypted end-to-end and verified by the payment processor before we log it. We store only the transaction ID and timestamp, never your payment credentials. Your e-wallet details stay with the provider, not with us.

Yes. Log into your account, go to Account Settings → Privacy & Data, and select Download My Data. You'll receive a complete export within 24 hours. Alternatively, email our support team and we'll send it via secure link.

We retain your transaction records for 3 years to comply with Indonesian banking regulations. Your personal name, email and gaming history are deleted within 90 days of account closure, unless we're legally required to keep them.

No. We never sell your personal data. We share payment details only with processors and licensed operators in supported regions. Anonymized gameplay trends may be shared to improve our service — but never linked to your identity.

We notify you by email 30 days before any change takes effect. Significant updates appear as a banner in your account lobby. You can review the full updated policy and contact support if you have concerns before the change goes live.

Yes. All data between your phone and our servers — including bets, balance updates and payment requests — travels through the same 256-bit SSL encryption as desktop. Session tokens are refreshed every 30 minutes for extra safety.

Contact our support team via live chat or email with a deletion request. We'll confirm which fields you want removed (name, phone, address etc.), process it within 14 days, and send you a confirmation email once it's done.