id8 Platform Privacy Notice
This page describes what we collect when you use id8 and how we keep that data protected under applicable jurisdiction-restricted access terms. We undertake to handle your information with care, subject to verification and compliance review.
We at id8 operate an online entertainment service available where local law permits. Your account, wallet, and transaction history sit at the centre of our platform. We collect personal data to verify your identity, process deposits via DANA, e-wallet, mobile banking, and other Indonesian payment methods, and maintain the security of your session.
Our privacy commitment is straightforward: we collect only what we need, we share only with processors who help us deliver the service, and we keep your data encrypted at rest and in transit. This notice explains the detail.
What We Collect on id8
When you create an account on id8, we collect your name, email address, phone number, and date of birth. We also collect your residential address and a form of government-issued identification (e.g. national ID card or passport) as part of our Know Your Customer (KYC) process. This verification is mandatory for all account holders and applies equally regardless of location.
During account use, we log your session activity: which games you browse, which live-dealer tables you join, which sportsbook markets (Liga 1, MotoGP, Piala AFF, etc.) you view, and the timing and nature of your transactions. We also collect device type, IP address, and browser user-agent to detect fraud and ensure account security.
Payment data is collected only at point-of-deposit. We record the method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer via mobile banking, local payment, online payment, e-wallet), the amount, and the timestamp. We do not store your full card number or bank credentials; those are held by our third-party payment processors.
How We Use Your Data on id8
We use your name, email, and phone to keep your account secure and to send you service notifications—password resets, two-factor authentication codes, withdrawal confirmations, and policy updates. We do not send marketing emails unless you explicitly opt in via your id8 account settings.
Your KYC documents (ID scan, address proof) are used to verify that you are of legal age and that you are not on any regulatory exclusion list. This process is required by anti-money-laundering (AML) legislation in most jurisdictions where our service operates.
Session logs and device data help us prevent account takeover, detect duplicate accounts, and block fraudulent deposits. We also use aggregated, anonymised usage data to improve our platform—for example, identifying which live-dealer tables are most popular or which payment method has the highest success rate in Surabaya or Bandung.
Withdrawal requests are reviewed for compliance; your transaction history and account age are assessed before funds are released. This review window is part of our standard anti-fraud protocol and may take a few business days depending on the payment method and any verification flags.
Third-Party Processors and Data Sharing
We share your data only with processors who help us operate id8. These include payment gateways (e.g. mobile banking, local payment, online payment integrators), identity-verification vendors, and our hosting provider. Each processor is contractually bound to keep your data confidential and to use it only for the purpose we specify.
Our servers may be located outside your jurisdiction (e.g. in Southeast Asia or further afield). By using id8, you consent to your data being transferred to, stored in, and processed in these locations, subject to the same security and privacy standards we apply domestically.
We do not sell your data to third parties for marketing purposes. We do not share your name or contact details with unrelated businesses. If we are required by law to disclose your information (e.g. to a court order or regulatory authority), we will do so only to the extent legally mandated, and we will notify you where permitted.
Cookies and Tracking
Our platform uses cookies to keep you logged in and to remember your account preferences (e.g. language, table limits, notification settings). These are functional cookies and are necessary for the service to work. They expire when you log out or after a set inactivity period.
We also use analytics cookies (via a third-party analytics vendor) to count page views and measure feature usage in aggregate. You can disable these in your browser settings, though doing so may limit your ability to use certain features.
Your Rights on id8
You have the right to request a copy of all personal data we hold about you. You may also request correction of inaccurate data or deletion of your account (subject to retention requirements for anti-fraud and compliance purposes).
To exercise these rights, contact our support team via the id8 platform help centre. Requests are typically processed within 15 business days. Note that we may retain certain data longer if required by law or if there is an open investigation or dispute on your account.
Data Security and Encryption
We protect your data using industry-standard encryption (TLS 1.2 or higher for transit, AES-256 for storage). Our platform enforces two-factor authentication on all accounts; we strongly recommend enabling this feature in your account settings.
Our data centres are monitored 24/7, and access to customer information is restricted to authorised staff only. We conduct regular security audits and penetration testing to identify and fix vulnerabilities.
If we discover a breach or unauthorised access to your account, we will notify you by email and phone as soon as practicable. You should immediately change your password and contact our support team if you suspect fraudulent activity.
Data Retention Policy
We retain your account data (name, email, KYC documents) for as long as your account is active, plus 5 years after closure for anti-fraud and regulatory purposes. Transaction records are kept for 7 years to comply with accounting and tax legislation.
Session logs and device analytics are retained for 12 months. You can request deletion of your account at any time; however, we cannot delete transaction records that are subject to legal retention mandates.
Contact and Changes
If you have questions about this privacy notice, or if you wish to exercise your rights, please contact our support team via the id8 platform. We will respond to your inquiry within 10 business days.
We may update this notice from time to time to reflect changes in our practices or legal requirements. Material changes will be announced via email to your registered address, and continued use of id8 constitutes acceptance of the updated notice.
Our services are available only where applicable law permits. Users are responsible for verifying that access and use of id8 comply with their own jurisdiction's regulations.