99aset Privacy Policy

This page describes what we collect when you use 99aset and how we keep that data protected. We at 99aset collect personal information—such as your email, phone number, legal name, date of birth, and government ID—when you register an account and deposit funds. We use this information to verify your identity, process payments via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, and comply with anti-money-laundering regulations. All data is encrypted and stored on secure servers; we do not share your information with third parties except as legally required.

Our 99aset platform also collects usage data—such as game history, betting patterns, IP address, and device information—to improve service quality, detect fraud, and customize your experience. We use cookies and similar tracking technologies to remember your preferences and login status across sessions. You may disable non-essential cookies in your browser; however, some cookies are required for 99aset to function.

By using 99aset, you consent to the data practices described in this policy. If you do not agree, do not create an account. We update this policy periodically; the updated version takes effect when posted. Continued use of 99aset after an update constitutes your acceptance of the revised policy.

What data we collect on 99aset

We at 99aset collect several categories of information when you register and use our platform. Account information includes your email address, phone number, full legal name, date of birth, and username. Identity verification data—such as your government ID (KTP for Indonesian residents), proof of address, and selfie verification—is collected during account setup and stored in encrypted form on our servers. Payment information—including your registered bank account or e-wallet details—is collected when you make a deposit or request a withdrawal.

Transaction data includes details of every deposit, withdrawal, bet, and game outcome linked to your 99aset account. We record timestamps, game IDs, stake amounts, and results for audit and dispute resolution. Behavioral data—such as which games you play, how long you stay logged in, and which markets you view—is collected to understand user preferences and improve our 99aset service. Technical data includes your device type, operating system, IP address, browser type, and mobile carrier, collected to ensure compatibility and monitor for fraud.

We protect your data with encryption on 99aset

All personal and payment data transmitted to 99aset is encrypted using TLS 1.2 or higher. Stored data is hashed and salted. We employ firewalls, intrusion detection, and regular security audits to prevent unauthorized access.

How we use your data on 99aset

We at 99aset use your data for the following purposes: account verification and compliance with anti-money-laundering and know-your-customer (KYC) regulations; processing deposits and withdrawals through your chosen payment method; detecting and preventing fraud, money laundering, and account abuse; responding to your support requests and resolving disputes; improving our 99aset platform's performance, security, and user experience; and complying with legal obligations in jurisdictions where we operate (including Jakarta, Surabaya, Bandung, Medan, and Semarang).

We may also use your data to send you marketing communications about promotions, new games (such as Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, and Mahjong Ways), and sportsbook updates covering Liga 1, Piala AFF, and other events. You can opt out of marketing emails via the link in any message or by updating your account preferences on 99aset.

Third parties and data processors on 99aset

We at 99aset use third-party processors to provide essential services. Payment processors handle your DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and bank transfer requests—these processors see your payment details but are contractually bound to protect your data. Email and SMS providers send verification codes and account notifications on our behalf. Analytics providers (such as Google Analytics) track aggregate usage patterns but do not access personal identifiers. Cloud hosting providers store our 99aset server data in geographically distributed data centers, some located outside Indonesia.

We do not sell your personal data. We share data with third parties only as necessary to provide 99aset services, comply with law enforcement requests, or protect against fraud. All third-party processors are required to maintain data security standards equivalent to our own.

On 99aset, your data security is our responsibility. We encrypt, audit, and limit access to protect your information.

99aset data protection team

Cookies and tracking on 99aset

We at 99aset use cookies and similar tracking technologies to enhance your experience. Essential cookies store your login session and authentication tokens—these are required for 99aset to function and cannot be disabled. Performance cookies track page load times, feature usage, and technical errors to help us optimize our platform. Preference cookies remember your chosen language, theme, and volume settings across sessions.

You can manage cookies via your browser settings. Disabling non-essential cookies will not prevent you from accessing 99aset, but some features may work less smoothly. We do not use cookies to track you across other websites; we only use them within our 99aset platform.

Your rights regarding your data on 99aset

You have the right to request a copy of all personal data we hold about you on 99aset. Contact our support team with a data access request; we will compile and send your data within five business days. You also have the right to request correction of inaccurate data—such as your email or address—directly through your account settings or by contacting support.

You may request deletion of your 99aset account and associated data. Once deleted, your account cannot be reopened. We will retain your transaction records for one year after account closure for compliance and dispute resolution purposes. You cannot request deletion of transaction data as long as your account is active, as we must maintain these records for regulatory compliance.

Data retention and jurisdiction on 99aset

We at 99aset retain personal data for as long as your account is active and for one year thereafter to satisfy audit and regulatory obligations. Transaction data is retained indefinitely for settlement disputes and compliance. Identity verification documents are retained for five years under anti-money-laundering requirements. You may request deletion of non-transaction data at any time by contacting our support team.

Our 99aset servers are located in data centers outside Indonesia. By using 99aset, you acknowledge that your data may be transferred and processed in jurisdictions with different data protection laws. We apply equivalent security and privacy safeguards regardless of data location. If you have jurisdiction-specific privacy concerns, contact our compliance team.

Contact us regarding your privacy on 99aset

If you have questions about how we handle your data on 99aset, wish to exercise your rights, or want to report a data breach, contact our privacy team via in-app chat, email, or our support phone line. Our 99aset support team operates Monday–Friday, 09:00–18:00 WIB. We will acknowledge data access and deletion requests within one business day and provide a full response within five business days. For urgent privacy or security concerns, flag your message as "urgent" and we will prioritize your case.

Related documents

Our 99aset data security and incident response

We at 99aset maintain comprehensive security practices to protect your data from unauthorized access, alteration, disclosure, or destruction. All data in transit between your device and our 99aset servers is encrypted. Data at rest is stored on secure servers with restricted access, multi-factor authentication for staff, and continuous monitoring for intrusion attempts. We conduct regular security audits and penetration testing to identify and remediate vulnerabilities.

If we detect a data breach on 99aset, we will notify affected users within 72 hours via email and in-app alert. We will describe the nature of the breach, the data involved, and steps we are taking to prevent recurrence. We will also cooperate with authorities and regulatory bodies as required. We maintain cyber insurance to mitigate financial impact of incidents.

Policy updates and your consent on 99aset

We at 99aset may update this privacy policy to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated policy on this page with a revised "last updated" date. Material changes—such as new data uses or third-party sharing—will be communicated via email and in-app notification at least 30 days before taking effect. Your continued use of 99aset after the update date constitutes your consent to the revised policy. If you do not agree with changes, you have the right to close your 99aset account and request a final withdrawal before the effective date.