LEGAL REFERENCE

How ulti88 Handles Your Account Data

This is our privacy policy page, written so you can read it once and know exactly what ulti88 keeps, why we keep it, and how long it stays...

Policy v3.2Indonesia scopePlain-English wordingUpdated quarterlyDPO contactable
Account access Read FAQ
ulti88 How ulti88 Handles Your Account Data

Our Privacy Posture and Data Scope

We collect only what's needed to run your ulti88 account: your name, contact handle, verified date of birth, the wallet ID you link for DANA, OVO, GoPay or QRIS, and the session logs our lobby produces. Where local law permits, we retain transaction references for the period Indonesian financial rules require, then purge them on schedule. We do not sell your data

to third parties. Marketing contact stays opt-in, and you can withdraw consent from your account panel at any time. Cross-border processing, when it happens for hosting or fraud screening, follows standard contractual safeguards and is limited to supported regions only.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy Contact Paths

Reach our privacy team directly through any of the channels below. We log every request, acknowledge within one business day, and respond...

Data Requests Email our data protection desk to ask for...
Live Chat Desk Open the chat bubble inside the lobby and...
Postal Channel For formal notices, a registered postal address is...
EDITORIAL CLARITY

Editorial Trust Signals for This Policy

This policy is reviewed by named people on a fixed cadence, not auto-generated. Here's how we keep it honest.

Quarterly Review

Our compliance lead re-reads this page every quarter, checks it against current Indonesian guidance, and stamps a version number at...

Named DPO

A data protection officer signs off changes. You can request their name and direct line through the privacy contact desk...

Plain Wording

We rewrite legalese into sentences a first-time account holder can follow. If a clause needs a defined term, the definition...

Change Log

Every revision is logged with date and short summary. Material changes trigger an in-lobby notice so you see them before...

Independent Audit

Our data handling is sampled by an external reviewer once a year. Findings that affect your rights are summarised on...

Regional Counsel

Indonesian counsel checks wording for local fit, especially around payment data, KYC retention and the supported-region clauses that govern who...

Consistency Across Our Policy Pages

Our terms, cookie notice and this privacy policy are written as one set. Here's how the pieces line up so you don't get conflicting answers across them.

Definitions
Account, session, wallet ID and payment reference mean the same thing on every policy page — no quiet redefinitions between the terms document and this one.
Retention Windows
Storage periods quoted here match the schedule on our terms page. If one moves, both move together in the same quarterly revision cycle.
Consent Model
Opt-in marketing, opt-out analytics — the same model appears in the cookie notice, the sign-up flow and the privacy controls inside your account panel.
Contact Routes
The privacy desk, complaints desk and general support inbox are listed identically across pages so you never chase the wrong queue for a data question.
Jurisdiction
Supported-region language is identical on legal pages. We don't widen scope in marketing copy and narrow it in the policy fine print.
Version Numbers
Each policy page carries a version tag. When this page is v3.2, the cookie notice and terms carry matching cycle numbers from the same review pass.
Language
All policy pages are written in en-ID so a single read-through gives you a consistent vocabulary, with Indonesian payment names kept in their familiar form.
AT A GLANCE

What This Policy Page Actually Shows You

These are the building blocks you'll see on this page itself — the layout choices that make a privacy document readable rather than a wall of text.

Version Stamp A visible version number and last-reviewed date sit at the...
Section Anchors Each clause has a stable anchor link. You can share...
Inline Definitions Defined terms are explained where they appear, not in a...
Change Summary A short summary box at the top lists what moved...
Contact Block The privacy desk contact block is repeated at the foot...
Download Option A timestamped copy can be saved to your device. Useful...

Privacy Policy Questions We Hear Often

Your name, date of birth, contact handle and the wallet ID you link for DANA, OVO, GoPay or QRIS. We collect verification documents only when local rules require them, and they're stored on the schedule those rules set.

Active account data stays while your account is open. Once you close it, we retain transaction references for the window Indonesian financial regulation requires, then purge the rest. Exact periods are listed in the retention clause above.

We share with payment processors to settle your DANA, OVO, GoPay or QRIS transactions, and with fraud-screening providers under contract. We do not sell account data to marketers, advertisers or data brokers under any arrangement.

Yes. Send a data request through the privacy desk and we'll compile your account record, session logs and payment references into a single export. You'll receive it within the window local data rules allow.

Open your account panel, head to communication preferences, and switch the channels you no longer want off. The change applies immediately. You can also email the privacy desk if you'd prefer a written record of the withdrawal.

Material changes trigger an in-lobby notice the next time you sign in, plus an entry in the change log at the top of this page. Minor wording fixes are noted in the quarterly version stamp without a separate alert.

Primary storage sits with hosting providers serving supported regions. When data crosses borders for fraud screening or backup, standard contractual safeguards apply and the scope is limited to what the processing task actually needs.