astro38 Privacy Policy
This page describes what we collect when you use astro38 and how we keep that data protected. We collect personal information to verify your identity, process your deposits and withdrawals, and comply with local anti-money-laundering regulations. All data is encrypted at rest and in transit, stored on secure servers, and accessible only to authorized astro38 staff and compliance personnel.
We do not sell your data to advertisers or third-party marketers. We do not use your gaming history to target you with unsolicited offers. We do share certain information with payment processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment) to confirm deposits and process withdrawals—this is necessary to complete your transactions. We also retain records as required by law and may disclose information to regulators or law enforcement if legally obligated.
Our privacy practices apply to astro38 users globally wherever our services are legally permitted. If you have questions about how we handle your data, reach out to our support team through the in-app chat or email. You have rights regarding your data—this policy explains what those rights are and how to exercise them.
What Data We Collect on astro38
We collect data in three categories: account setup, transaction, and behavioural. During account setup, we collect your email address, full legal name, date of birth, phone number, and national identification number. We also request a government-issued ID (national identity card or passport) and proof of address (utility bill or recent bank statement). You upload these documents through your astro38 app or browser—we store them encrypted and delete them after regulatory retention periods expire.
During transactions, we collect deposit amounts, payment method, withdrawal requests, and the destination account details you provide. We log the date, time, and IP address of each transaction. We also track your game activity—which tables you visit, how long you play, and your win/loss summary—to detect fraud and ensure fair gameplay. This data is retained for compliance purposes and to help you track your gaming history inside astro38.
We also collect device and usage data: your operating system (Android or iOS), app version, device type, browser information, and crash logs if our app encounters errors. This helps us fix bugs and optimize your experience. We collect cookies and similar tracking technologies to remember your login session and your account preferences (e.g., language, notification settings). You can disable non-essential cookies through your browser settings, though this may limit some astro38 features.
We collect data only what is necessary for astro38 operations
We do not collect your family name's origin, your political affiliation, your health records, or any other sensitive personal data beyond what's needed for account verification and legal compliance.
How We Use Your Data on astro38
We use your data to operate astro38: to verify your identity during KYC, to process your deposits and withdrawals, and to prevent fraud and money laundering. We cross-reference your submitted documents against sanctions lists and fraud databases to ensure you are not a politically exposed person (PEP) or on any restricted list. This verification typically completes within standard business hours; if we need clarification, we ask you to resubmit documents through your account.
We use your transaction data to generate your account statement, which you can export anytime from inside astro38. We use your gaming history to calculate your balance accurately and to detect unusual patterns (e.g., massive deposits followed by immediate large withdrawals) that may indicate money laundering or account compromise. If we detect suspicious activity, we may temporarily restrict your account pending review.
We use your device and usage data to improve our platform—to fix crashes, optimize our live-dealer streams, and ensure our app works smoothly on Android and iOS devices. We do not use your data to send you marketing emails or unsolicited promotions. We send only transactional emails: deposit confirmations, withdrawal updates, and password reset links. You can manage your notification preferences inside astro38 settings.
Third-Party Data Processors and Storage
We work with third-party service providers to operate astro38. Our payment processors (DANA, e-wallet, mobile banking, local payment, online payment, and our bank partners e-wallet, mobile banking, local payment, online payment) receive your payment details and transaction information necessary to complete deposits and withdrawals. These providers have their own privacy policies; we recommend you review them on their respective sites.
Our cloud infrastructure provider may store your data on servers located outside Indonesia—potentially in Singapore, Australia, or other regions. Your data is encrypted both in transit and at rest, so the physical location of the server does not expose your credentials or payment details. We ensure our providers comply with data protection standards equivalent to Indonesian law.
We may also use third-party analytics services to understand how players use astro38—which games are popular, which payment methods players prefer, and which features cause technical issues. These analytics are anonymized and aggregated; they do not contain your personal information or transaction amounts.
Your data is your asset. We protect it like we protect our own, with encryption, access controls, and regular security audits.
Your Rights Regarding Your Data on astro38
You have the right to access your personal data. Log in to astro38, navigate to Account Settings, and you can view your registered email, phone number, name, and complete transaction history. You can download this data as a file at any time. You also have the right to correct inaccurate data—if your address or phone number changes, update it in your astro38 settings, and we will verify the change before processing it.
You have the right to request deletion of your data, subject to legal and regulatory limits. We must retain your KYC documents, deposits, and withdrawals for at least five years to comply with anti-money-laundering law. Once that retention period expires, we securely delete your records unless you have an ongoing legal dispute with astro38. To request data deletion, contact our support team with specific details of what data you want removed.
You have the right to object to certain data uses. For example, if you do not want us to use cookies for analytics, you can disable non-essential cookies in your browser. If you do not want to receive transactional emails, you cannot use astro38 (these emails are essential for account security). If you have other objections to our data practices, reach out to our support team and we will discuss alternatives where possible.
Data Retention and Deletion on astro38
We retain your KYC documents (ID, address proof) for five years after your last account activity, as required by Indonesian law. We retain your transaction history indefinitely so you can access your account statements at any time. We retain device logs and crash reports for up to 90 days; after that, we delete them. We retain cookies for as long as your session is active; persistent cookies (for login memory) expire after 30 days of inactivity.
If you close your astro38 account, we retain your encrypted data for the five-year regulatory retention period, then securely delete it. Your account closure is irreversible—once closed, you cannot recover your transaction history or gaming records. If you want to preserve your data before closing, export your statements first.
Data Security and International Transfers
We use industry-standard encryption to protect your data. All communication between your phone (Android or iOS) and our servers uses TLS (Transport Layer Security). Your passwords are hashed using strong algorithms; we never store them in plain text. Your payment details are encrypted and never stored on our servers—when you deposit via DANA, e-wallet, mobile banking, local payment, or online payment, your banking credentials remain with your payment provider.
Your data may be transferred to and stored in countries outside Indonesia to operate our platform. These transfers are subject to our data transfer agreements, which ensure data protection equivalent to Indonesian standards. We do not transfer your data to countries with weak privacy laws. If you object to international data transfers, you cannot use astro38, as our infrastructure necessarily spans multiple regions.
Changes to This Policy
We may update our privacy policy to reflect changes in our operations or to comply with new laws. We will notify you of material changes by posting the updated policy here and sending a notice inside your astro38 account. Your continued use of astro38 after such notice constitutes your acceptance of the updated policy. If you disagree with changes, you can close your account and request data deletion (subject to retention limits).
Contact Us About Privacy on astro38
If you have questions about our privacy practices, your data rights, or how we handle your information, contact our support team. We operate support channels in English and Indonesian. You can reach us through the in-app live chat, email, or by visiting our FAQ page. If you are in Jakarta, Surabaya, Bandung, or Medan and prefer a specific contact method, our support team can guide you through available options.
We aim to respond to privacy requests within 14 days. If your request requires document verification or involves large amounts of data, we may request additional time. We will not charge you for accessing, correcting, or deleting your data—except in cases where requests are manifestly unfounded or excessive, in which case we may charge a reasonable administrative fee.
Summary: Your Privacy on astro38
We at astro38 protect your privacy by collecting only necessary data, encrypting it securely, and using it only for account operations and legal compliance. We do not sell your data, do not use it for marketing without consent, and do not share it with third parties except payment processors who need it to complete your transactions. You have rights to access, correct, and delete your data—exercise these rights anytime through your astro38 account or by contacting our support team.
Our privacy practices comply with applicable Indonesian law and international data protection standards. If you disagree with our policies, you can close your account and request data deletion (subject to regulatory retention limits). For specific questions about how we handle your information, reach out to our support team through the in-app chat. We are here to answer your concerns and help you understand exactly how astro38 protects your privacy.