LEGAL REFERENCE

How We Handle Your Account Data

This is the pasticuan privacy policy — the page that spells out what we collect when you open an account, what we keep on file while you use...

Plain-English PolicyIndonesia-FocusedAccount Data OnlyUpdated RegularlyReader-First Wording
Browse the Lobby Read FAQ
pasticuan How We Handle Your Account Data

Our Privacy Posture and Your Rights

We collect only what your account genuinely needs: the email or phone you sign in with, the wallet handle you use for top-ups, and the session logs that keep your lobby secure. Where local law permits, we keep this data inside encrypted storage tied to your account ID, never sold to third parties. You can ask us to export or erase your

record at any time, and we'll action that request within the windows Indonesian data rules expect. Marketing contact stays opt-in, and any change to this policy is dated at the foot of the page so you always see the version that applies to your account today.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy Contact Paths

If anything in this policy needs clarifying for your account, reach us through the channels below. Our privacy desk is separate from general support so your request lands with the right team the first time.

Team online

Privacy Inbox

Email our data desk directly with your account handle and we'll confirm receipt the same business day. Use this route for export, correction or erasure requests tied to your pasticuan account.

In-App Chat

Open the chat bubble from your signed-in dashboard and choose the privacy topic. The thread is logged against your account, so you don't need to re-verify identity when our reviewer picks it up.

Policy Updates Feed

Subscribe inside account settings to get a note whenever this policy changes. We keep the wording short and flag exactly which clause moved so you can scan the diff in seconds.

WHY VISITORS TRUST US

Editorial Trust Signals for This Policy

This policy is reviewed by humans on our brand side, not auto-generated. Below is how we keep it honest for everyone holding a pasticuan account.

Named Reviewer

Each revision is signed off by a named member of our compliance side before it goes live. That sign-off date is printed at the foot of the policy so you can match wording to versions.

Indonesian Counsel

We run material changes past Indonesia-based counsel familiar with local data handling expectations. Their input shapes how we phrase consent, storage windows and the export workflow you can trigger yourself.

Plain-Language Pledge

We avoid legalese where regular English does the job. If a clause feels dense, our editor rewrites it until a first-time reader can summarise it back to us in one sentence.

Versioned History

Older versions stay accessible from the footer link. You can compare the policy you agreed to at sign-up with the current one and see exactly what shifted between them.

No Hidden Trackers

We list every analytics tag this domain loads. If a vendor isn't on the list, it isn't on the page, and removing consent stops the tag from firing on your next visit.

Real Reply Times

Privacy queries are answered by a human within one business day. We publish our average response window each quarter so you can hold us to a measurable standard, not a promise.

Consistency Across Our Policy Pages

Our terms, cookie notice and this privacy policy are written by the same editor so the wording lines up. Here's how this page sits next to its siblings.

Privacy vs Terms
Terms cover the rules of using your account; this page covers the data behind it. Where they touch — like account closure — both pages link to each other so nothing reads in isolation.
Privacy vs Cookies
Cookies notice handles browser-side storage and consent toggles. This privacy page handles the server-side record. Together they describe the full data picture from your device through to our storage.
Privacy vs AML Notes
AML checks are referenced here but detailed on the dedicated compliance page. We keep the split clean so identity-verification wording doesn't crowd out the everyday data points you came here to read.
Privacy vs Promo Rules
Promo terms describe eligibility; this policy describes what data we use to confirm it. Neither page repeats the other, but each links across when a clause depends on both.
Privacy vs Payments
Payments page lists DANA, OVO, GoPay and QRIS flows. This policy explains the data those flows hand us and how long we hold it after a top-up clears your account.
Privacy vs Account Help
Account help walks you through settings; this policy explains the legal basis behind each toggle. Use them side by side when adjusting consent, marketing or export preferences.
Privacy vs Contact
The contact page lists every channel; this policy names the privacy-specific route. Same brand voice across both, so you won't get conflicting instructions when raising a data request.
AT A GLANCE

What's Visible on This Policy Page

This page is laid out so you can scan it as easily as our lobby. Below are the six elements that frame how the privacy content is presented...

Dated Header The top of the page shows the live revision date...
Clause Anchors Each section has an anchor link in the side rail...
Reader Summary Every major section opens with a one-line summary in bold...
Glossary Tooltips Terms like processor, controller and retention window have hover tooltips...
Request Buttons Inline buttons next to the export, correction and erasure clauses...
Change Log Footer The foot of the page carries a short change log...

Privacy Policy Questions We Hear Often

We collect the contact handle you sign in with, the wallet identifier behind your top-ups, and the session metadata that keeps your account secure. Nothing beyond that is required to use the lobby on day one.

Active account data stays with us while you're signed up. After closure we hold a reduced record for the window Indonesian law expects, then purge it. The exact months are listed in the retention clause above.

Yes. Use the export button next to the data-rights clause or email our privacy desk. You'll receive a packaged file containing your profile, transaction summary and consent history within the published response window.

We don't sell your data. We share only what's necessary with the payment processors behind DANA, OVO, GoPay and QRIS, and with verification partners where local law requires it. Every processor is named in our vendor list.

Flip the marketing toggle inside account settings and the change applies instantly. Existing messages already queued may take a short window to clear, but no new marketing contact will be sent from us after the toggle moves.

Material changes trigger an in-app notice and an email to the address on your account. The change-log footer names the clause that moved, and the previous version stays linked so you can compare wording side by side.

Use the privacy inbox or the in-app chat with the privacy topic selected. Both routes land with the same reviewer, who replies within one business day on average across our published quarterly window.