digimon Privacy Policy

This page describes what we collect when you use digimon and how we keep that data protected. We take your privacy seriously and are transparent about every piece of information we gather, why we gather it, and how we use it to serve you better across our platform.

We at digimon collect personal data from account holders in supported jurisdictions to verify identity, process payments, detect fraud, and comply with local regulations. Your data is stored on secure servers, encrypted in transit, and kept only as long as necessary for the purposes described below. We do not sell your information to third parties, and we restrict access to your data to digimon staff and trusted partners who help us run our service.

If you have questions about how we handle your data, our support team is available through in-app chat and email during business hours, and we respond to privacy inquiries within two business days.

What We Collect on digimon

We collect different categories of data depending on how you interact with digimon. When you open an account, we ask for your email address, full name, date of birth, and residential address. This allows us to create your account and set up login credentials. We also collect your phone number so our support team can reach you if needed.

To fund your digimon account, we require you to provide payment method details — whether you deposit via DANAe-wallet, mobile banking, local payment, online paymente-wallet, or bank transfer (mobile banking, local payment, online payment, e-wallet). We do not store your full card or account numbers; instead, our payment processor securely tokenizes your payment method, and we store only the token and the last four digits for your records.

Before you withdraw funds from digimon, we ask you to verify your identity by uploading a government-issued ID and proof of address (utility bill, lease, or bank statement). We scan these documents using automated verification software to confirm that your identity matches your account profile. Once approved, your identity documents are archived and accessed only by our compliance team if a dispute arises.

Every time you use digimon, we automatically collect technical data: your device type (Android, iOS, web browser), IP address, network type, app version, and the features you access. This helps us diagnose technical issues, detect unusual account activity, and optimize digimon for the networks and devices our users rely on.

Data Security: We encrypt all data in transit using TLS 1.2+ and store sensitive information (passwords, payment tokens, ID documents) in isolated encrypted vaults with restricted staff access.

How We Use Your Data on digimon

We use your personal data for several essential purposes. First, we verify your identity and address before allowing withdrawals — this is a legal requirement in all jurisdictions where we operate digimon. Second, we use your payment information to process deposits and withdrawals securely and reconcile transactions. Third, we monitor your account for fraud signals: unusual login locations, rapid deposit-and-withdrawal patterns, or suspicious game activity. If we detect fraud, we may temporarily hold your account pending verification.

We also use your email and phone number to send you account notifications: login alerts, withdrawal confirmations, and important policy updates. You can adjust notification preferences in your digimon account settings. We do not send unsolicited marketing — any promotional message from us relates only to digimon services you currently use or have previously shown interest in.

Our compliance team uses your data to generate reports required by local regulators in jurisdictions where digimon operates, such as Jakarta Surabayaand other major cities. These reports are anonymized and aggregated; we never share your personal details with regulators unless compelled by court order or legal process.

Who We Share Your Data With on digimon

We work with trusted third-party partners to run digimon. Our payment processor (a PCI-compliant service) handles all deposits and withdrawals; they see only tokenized payment data, never your card details. Our identity verification partner (an automated KYC service) processes your documents and returns a pass/fail result; they do not retain your documents once verification is complete. Our hosting provider stores our servers and databases; they have contractual obligations to keep your data confidential and use it only to maintain our infrastructure.

We may disclose your data if legally required — for example, if a court orders us to provide account information as part of a legal proceeding, or if a regulator requests data to investigate suspected illegal activity. We will notify you of any legal demand unless prohibited by law from doing so.

We do not sell your personal data, and we do not share your data with advertisers, data brokers, or any third party for marketing purposes.

Your Rights and Data Access on digimon

You have the right to request a copy of all personal data we hold about you on digimon. Contact our support team and we will compile your data within five business days. You also have the right to request corrections if any information is inaccurate — for example, if your address has changed or your phone number is wrong. We update your profile immediately upon request.

You may request deletion of your digimon account and associated data, subject to our legal retention obligations. We retain account records, transaction logs, and game history for a minimum of five years to comply with anti-money-laundering regulations and support dispute resolution. After that retention window, we securely delete your personal information unless you have an active digimon account.

Data Access Request: Submit via in-app chat or email; we respond within five business days with a copy of your data.
Correction Request: Update your profile directly in Account Settings, or contact support to request a change to your name, address, or payment method.
Deletion Request: We delete personal data after your five-year legal retention window expires, unless you request earlier deletion (account records remain for compliance).

Cookies and Tracking on digimon

We use cookies to keep you logged into your digimon account and to remember your preferences (language, notification settings, dashboard layout). Session cookies expire when you close your browser; persistent cookies remain for up to 12 months so you don't have to re-enter your login details each time you visit digimon. We do not use cookies to track you across other websites, and we do not sell cookie data to third parties.

Our digimon mobile app does not use cookies but does store a session token on your device to keep you logged in. You can revoke this token at any time by logging out or by uninstalling the app.

Data Retention and Deletion on digimon

We keep your account data as long as your digimon account is active. If you close your account, we retain transaction records, game history, and identity documents for five years to meet regulatory requirements. After five years, we permanently delete your personal data unless legal proceedings or a government investigation is ongoing. If an investigation is active, we retain your data until the matter is resolved.

You can download a copy of your complete digimon data history at any time through your account settings, including all deposits, withdrawals, games played, and support interactions. This helps you keep your own records independent of digimon.

How We Protect Your Data on digimon

We encrypt all data in transit between your device and our digimon servers using TLS 1.2 or higher. Our servers are located in secure data centres with 24/7 monitoring and physical access controls. Sensitive data — such as payment tokens, passwords, and identity documents — is stored in encrypted vaults separate from our main database. Only digimon employees with specific job functions can access these vaults, and all access is logged and audited.

We conduct regular security audits and penetration testing to identify vulnerabilities before attackers can exploit them. If we discover a security breach affecting your digimon data, we notify you within 48 hours and provide guidance on steps you can take to protect your account.

Contact and Support for Privacy Questions on digimon

If you have questions about our privacy practices, how we use your data, or how to request your data, contact our support team through the in-app chat or email. We respond to privacy inquiries within two business days. For formal complaints or if you believe your rights have been violated, you can escalate your concern to our privacy officer, who investigates and responds within five business days.

We also accept privacy requests during extended hours around major events like Liga 1 and Piala Indonesia seasons, when account activity is high. Our support team works around the clock during these periods to ensure all inquiries receive timely attention.

This privacy policy applies to all digimon services and accounts. We may update this policy to reflect changes in our practices or legal requirements. We will notify you of material changes through in-app message or email, and continued use of digimon after an update constitutes acceptance of the revised policy.