gemilang Privacy Policy

This page describes what we collect when you use gemilang and how we keep that data protected. We at gemilang take your privacy seriously. When you register, deposit, or play on our platform, you share personal information with us. We explain here exactly what we collect, why we collect it, who has access to it, and what rights you have over your data.

Our commitment is straightforward: we collect only what we need to operate gemilang, verify your account, process your payments via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts, and comply with regulations. We encrypt your data in transit, store it securely on protected servers, and never sell it to third parties. Your privacy is not negotiable.

If you have questions about how we handle your data, or if you wish to access, update, or delete your personal information, contact our support team through the Help Centre in your gemilang account. We respond to data requests within 30 business days.

What Data We Collect When You Use gemilang

We collect data at several points in your gemilang journey. During registration, we ask for your email address, a password you create, and your phone number. We verify your phone via SMS to confirm you own that number.

When you fund your gemilang account for the first time—or when you withdraw—we collect additional information for account verification (KYC). This includes:

  • Your full legal name and date of birth.
  • Your national ID number (KTP, passport, or driver's license).
  • A photo of your ID document.
  • Your residential address (we may request a utility bill or bank statement as proof).
  • Your payment method details (e-wallet or bank account information).

We also log your activity on gemilang. Every deposit, withdrawal, game played, bet placed, and spin result is recorded with a timestamp and your IP address. This activity log is stored securely and used to detect fraud, audit account history, and resolve disputes.

Data we collect on gemilang

  • Account data: email, password (encrypted), phone number, name, date of birth.
  • Identity data: national ID number, ID photo, proof of address.
  • Payment data: e-wallet or bank account details used for deposit and withdrawal.
  • Activity data: deposits, withdrawals, game sessions, bets, game outcomes, IP addresses.
  • Device data: browser type, device type, operating system (Android, iOS, Windows, macOS), app version.
  • Communication data: any emails or support messages you send us.

How We Use Your Data on gemilang

We use your data for specific, stated purposes on gemilang:

  1. Account management: We use your email and phone to log you in, send you account notifications, and help you reset your password if you forget it.
  2. Payment processing: We share your payment details with our e-wallet partners (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet providers) and banks (mobile banking, local payment, online payment, e-wallet) only to process your deposits and withdrawals.
  3. Account verification (KYC): We use your ID photo and personal details to verify you are who you claim to be and to comply with anti-money-laundering regulations.
  4. Fraud detection: We analyze your activity—login patterns, deposit amounts, game choices, withdrawal requests—to detect suspicious behaviour and protect your account.
  5. Legal compliance: We retain your data to comply with regulations in jurisdictions where gemilang operates and to assist law enforcement if required.
  6. Customer support: If you contact us with a question or dispute, we use your account data to investigate and resolve the issue.

We do not use your data for marketing purposes on gemilang unless you explicitly opt in. We do not sell your data to third parties. We do not share your identity information with game developers or other platform operators.

Third-Party Access and Data Sharing on gemilang

Our payment partners have access to your data only to the extent necessary to process your transaction. When you deposit via mobile banking, local payment, or online payment on gemilang, those companies see your payment authorization; they do not see your full identity or game history. Similarly, when we issue you a e-wallet, mobile banking, local payment, or online payment virtual account on gemilang, only those banks see your transfer details.

At gemilang, your identity and game history are kept confidential. Payment processors see only what they need to complete transactions; no third party sees your full profile.

gemilang privacy team

We may be required to share your data with regulators, law-enforcement agencies, or courts if we receive a legal demand. In such cases, we will comply with applicable law. We do not have a choice in these situations; legal obligations override our privacy commitments on gemilang.

Our servers are hosted on secure cloud infrastructure. The data centre operator has physical and technical access to our servers but cannot see the contents of your account without our explicit authorization. We use encryption so that even our own staff cannot read your sensitive data without your involvement.

Data Security and Encryption on gemilang

We at gemilang use industry-standard encryption (TLS 1.2 or higher) to protect your data in transit. When you log in, deposit, or withdraw on gemilang, your connection to our servers is encrypted end-to-end. Third parties cannot intercept your credentials or payment information.

Your password is hashed and salted on our servers. We do not store your password in plain text. Our support staff cannot see your password; if you forget it, we send you a secure reset link via email, and you set a new password yourself.

We store your data on encrypted servers behind firewalls. Access to these servers is restricted to authorized gemilang staff. We conduct regular security audits and penetration tests to identify vulnerabilities. If we discover a data breach, we notify affected users within 72 hours as required by data-protection regulations.

Your Rights Regarding Your Data on gemilang

You have rights over your personal data on gemilang:

  • Access: You can request a copy of all data we hold about you. Contact our support team; we provide this within 30 business days.
  • Correction: If any of your data is inaccurate, you can request correction through your gemilang account settings or by contacting support.
  • Deletion: You can request deletion of your gemilang account and associated data, subject to legal retention requirements (e.g., we may retain transaction records for seven years for regulatory compliance).
  • Portability: If you wish to move your data to another service, we can export your account history and personal details in a standard format.

To exercise any of these rights, log into your gemilang account, navigate to Settings > Privacy, and submit a data request. Alternatively, contact our support team via the Help Centre. We will verify your identity before processing any data request.

Cookies and Tracking on gemilang

Our gemilang platform uses cookies to improve your experience. Cookies are small files stored on your device that help us remember your login status, your language preference, and your account settings. Without cookies, you would need to log in every time you visit gemilang.

We use two types of cookies:

  • Essential cookies: Required for gemilang to function (login, security, payment processing).
  • Analytics cookies: Help us understand how you use gemilang so we can improve our platform. These do not identify you personally.

You can disable non-essential cookies through your browser settings. However, disabling essential cookies may break gemilang functionality. We do not use third-party tracking pixels or advertising cookies on gemilang.

International Data Transfer and Server Location

Our gemilang servers are located in data centres that may be outside Indonesia. When you use gemilang from Jakarta, Surabaya, Bandung, Medan, Semarang, or Yogyakarta, your data may be transferred to and stored in these international locations. By using gemilang, you consent to this international transfer.

We ensure that international data transfers comply with applicable data-protection laws. Our data-processing agreements with cloud providers include privacy commitments equivalent to our own.

Data Retention Policy on gemilang

We keep your gemilang data only as long as necessary. Personal information (name, ID, address) is retained for seven years after account closure to comply with anti-money-laundering regulations. Account activity logs (deposits, withdrawals, game history) are retained for five years. Cookies are deleted after one year of inactivity.

If you request deletion of your gemilang account before this retention period expires, we will delete your data to the extent permitted by law. Some data may need to remain for regulatory compliance.

Changes to Our gemilang Privacy Policy

We may update this privacy policy from time to time. Material changes will be announced via email to all active gemilang users, and we will post an update notification in your account dashboard. Continued use of gemilang after a policy change constitutes acceptance of the new policy. If you disagree with any change, you can close your account and request deletion of your data.

Summary and Contact Information

We at gemilang collect only the data necessary to operate our platform, verify your identity, and comply with regulations. We encrypt your data, store it securely, and never sell it to third parties. Your payment information is shared only with our processing partners (e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking) to process transactions. You have rights to access, correct, and delete your data.

If you have questions about our privacy practices, contact our support team via the Help Centre in your gemilang account. We respond to privacy inquiries within 30 business days. For formal privacy complaints or data-subject requests, mark your message as "Privacy Request" in the subject line; we will route it to our data-protection officer.

Our gemilang Data Processing Standards

We process your data on the basis of legitimate interest (operating gemilang), contractual obligation (your account agreement with us), legal obligation (anti-money-laundering compliance), and your consent (for non-essential features). You can withdraw your consent for non-essential processing at any time through your gemilang account settings.

Our data processors—including our cloud-hosting provider, payment partners, and customer-support tools—are contractually bound to follow our privacy standards. We conduct due diligence on all processors before engaging them and require them to implement appropriate security measures.

Child Safety on gemilang

We at gemilang do not knowingly collect data from users under the legal age of gaming in their jurisdiction. If we discover that a user is underage, we will close their account immediately and forfeit any balance. Parents or guardians who believe a child has created a gemilang account should contact our support team immediately with proof of the child's age.

Contact Our Data Protection Team

If you have privacy concerns or wish to exercise your rights regarding your data on gemilang, contact us through the Help Centre in your account. Our support team is available 09:00–21:00 Jakarta time, seven days a week. For formal data-protection inquiries, our data-protection officer reviews all such requests within 30 business days.

You can also submit a data-protection complaint to the applicable regulator in your jurisdiction if you believe we have violated your privacy rights. We cooperate fully with regulatory investigations.

Legal & Jurisdiction Information

Expand full details

Service availability

We at gemilang offer our services only in jurisdictions where local law permits online gaming and sportsbook operations. We do not maintain a public list of permitted or prohibited regions; instead, we rely on users to verify the legal status of gemilang in their own jurisdiction before accessing our platform. If you reside in a location where we believe our services are restricted, you may encounter a geo-block or access restriction when you attempt to register or log in on gemilang. If you have doubt about whether our platform is available in your location, we recommend consulting a local legal professional or contacting our support team for clarification. Our compliance approach is to respect the principle that access should be available only where applicable law permits gaming activity. However, the ultimate responsibility for determining whether access is legal in your jurisdiction rests with you, the user. We take reasonable steps to limit gemilang availability in regions with strict prohibitions on online gaming, but these measures are not foolproof, and users bear responsibility for verifying their own jurisdiction's rules before accessing our platform.

Account eligibility

To create and maintain an account on gemilang, you must be of legal age to enter into binding contracts and participate in gaming activities under the laws of your jurisdiction. In most regions, this requirement means you must be 18 years or older; however, the specific age threshold varies by location. At account creation on gemilang, we request your date of birth and rely on your accurate self-reporting of eligibility. By registering, you confirm that you meet the legal age and eligibility requirements under applicable law in your jurisdiction. If we later discover that you created your gemilang account while under the applicable legal age, or if you are otherwise ineligible under your local laws, we reserve the right to close your account immediately and forfeit any balance without further notice. We also do not knowingly onboard users from jurisdictions where online gaming is prohibited by law, nor do we accept accounts from individuals who are restricted from gaming under their local regulations. If you are uncertain whether you meet eligibility requirements to access gemilang in your location, we strongly recommend consulting local regulations or speaking with a qualified legal advisor before registering on our platform.

Local-law responsibility

Users of gemilang are entirely responsible for ensuring that their access to and use of our platform complies with applicable law in their own jurisdiction. We offer services on an "as available" basis in supported regions, but we cannot guarantee that every user's local laws permit our platform. It is your obligation—not ours—to determine whether gaming activity on gemilang is legal in your area before you access or play. We strongly recommend that you review the gaming and gambling laws applicable to your country, state, or province. If you have any doubt about the legal status of gemilang in your location, consult a qualified legal advisor. By creating an account and using gemilang, you acknowledge that you have either verified the legal status of our services in your jurisdiction or assume full responsibility for any legal consequences of your use. We shall not be liable for any penalties, fines, or legal action resulting from your access or use of our platform in a jurisdiction where it is prohibited by law.

Data and privacy scope

When you register on gemilang and use our services, we collect personal data for account creation, payment processing, and anti-money-laundering (KYC) compliance. This includes your name, email address, phone number, date of birth, official ID number, and proof of address. We also log your account activity—deposits, withdrawals, game sessions, bets, and IP addresses—to detect fraud and ensure fair play across gemilang. Our detailed data handling practices are outlined in our Privacy Policy (this document), which we encourage you to review before registration on gemilang. We use industry-standard encryption to protect your login credentials and financial information in transit. Your data is stored on secure servers and accessed only by gemilang staff who require it for account verification, customer support, fraud prevention, or regulatory compliance. We do not sell your personal data to third parties; however, we may share aggregated, non-personally identifiable statistics with our payment partners and regulators as required by law. If you wish to request a copy of your data, verify what information we hold about your gemilang account, or request account deletion, contact our support team through the Help Centre. Such requests are processed within 30 business days, subject to legal retention requirements.

Contact for legal inquiries

If you have legal questions, compliance concerns, or require official documentation regarding gemilang, please contact our support team via the Help Centre in your gemilang account dashboard. Our support team can forward your enquiry to our legal and compliance department. Response times for legal inquiries typically range from five to ten business days, as these matters require careful review and may involve consultation with external counsel. For urgent legal matters—such as regulatory inquiries, cease-and-desist notices, or subpoena requests—please mark your message as "Urgent Legal Matter" in the subject line; we will prioritise your case within gemilang's escalation system. You may also contact us via registered mail sent to the address listed on our About Us page. Please include your full name, gemilang account number (if applicable), and a detailed description of your legal enquiry. We will acknowledge receipt within three business days and provide a substantive response within ten business days. Note that we may require you to sign a non-disclosure agreement before discussing certain sensitive legal or operational matters related to gemilang. If you are an attorney or regulatory official seeking information about gemilang operations or policies, please specify your role and jurisdiction in your initial enquiry to ensure your matter is routed appropriately and receives prompt attention from our legal team.