LEGAL REFERENCE

Your Privacy Matters to Us

We've built galaxy138 around your account security and data protection. Every transaction you make through DANA, OVO, GoPay or QRIS stays encrypted and private. This policy explains exactly...

Data EncryptedPayment SecurePrivacy FirstQRIS ProtectedYour Control
See the Lobby Read FAQ
galaxy138 Your Privacy Matters to Us

How We Protect Your Information

galaxy138 collects only the information needed to verify your account, process your DANA, OVO, GoPay and QRIS transactions, and keep your lobby experience smooth. We use industry-standard encryption for all payment data. Your personal details are never shared with third parties without your consent, except where local law in supported regions requires it. We store your account history securely and delete inactive

data according to our retention schedule. Your privacy choices are always yours to set.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy Questions? Reach Out

Email Support Send privacy concerns to our data protection team...
Account Settings Manage your data preferences directly in your account...
Legal Team For formal data requests or jurisdiction-specific questions, our...
TRUST MARKERS

Why Your Data Is Safe Here

SSL Encryption

Every payment through QRIS, DANA, OVO and GoPay travels through 256-bit SSL encryption. Your card and wallet details never touch our servers unencrypted.

PCI Compliance

We meet Payment Card Industry standards for handling sensitive payment information. Regular audits confirm our security posture stays current.

Data Minimization

We collect only what's necessary to run your account and process transactions. No unnecessary tracking or data hoarding happens on galaxy138.

Access Controls

Your account is protected by two-factor authentication and session timeouts. Only you and authorized staff can view your personal information.

Regular Audits

Third-party security firms test our systems quarterly. We fix vulnerabilities immediately and publish transparency reports to our community.

Incident Response

If a breach occurs, we notify affected users within 24 hours and provide clear guidance. Our incident team works around the clock to contain and resolve issues.

Consistency Across Our Policies

Terms of Service
Our terms outline your rights and responsibilities. Privacy rules are embedded there; this policy expands on data handling specifically.
Cookie Policy
We use cookies to remember your lobby preferences and login state. You can disable non-essential cookies in your browser settings anytime.
Payment Terms
DANA, OVO, GoPay and QRIS transactions follow their own provider terms. We comply with all local payment regulations in supported regions.
Account Closure
When you close your account, we delete personal data within 30 days. Transaction records stay for tax and compliance purposes only.
Third-Party Links
Our lobby links to game providers and payment partners. Their privacy policies apply to their services; we're not responsible for their practices.
Policy Updates
We update this policy when our practices change. You'll see a notification in your account; continued use means you accept the new terms.
Jurisdiction
This policy applies where local law permits. Supported regions in Indonesia follow our standard terms; other areas may have specific addendums.
AT A GLANCE

What Defines Our Privacy Approach

01
Transparent Logging Every login, transaction and data access is logged. You can review your account activity history anytime to spot unauthorized access.
02
No Data Selling We never sell your personal information to advertisers or brokers. Your data stays yours; we use it only to run your account and improve our service.
03
Secure Backups Your account data is backed up daily to encrypted servers. If disaster strikes, we restore your information without exposing it to the internet.
04
Payment Tokenization DANA, OVO, GoPay and QRIS details are tokenized, not stored. We keep a secure reference; the actual payment info stays with your provider.
05
Staff Training Our team undergoes quarterly privacy and security training. Only staff who need access to your data can see it, and all access is audited.
06
Breach Insurance We carry cyber liability insurance to cover costs if a breach occurs. This ensures we can notify you and provide support without delay.

Privacy Questions Answered

We keep your account data as long as your account is active. After closure, we retain transaction records for 7 years for tax compliance, then delete everything else within 30 days.

Yes. Open your account settings and request a data export. We'll send you a complete copy of your personal information, transaction history and preferences within 10 business days.

Completely. We tokenize all payment details so we never store your actual card or wallet number. Transactions are encrypted end-to-end and processed through secure payment gateways.

Use the password reset link on the login page. We'll send a secure reset link to your registered email. Never share this link; it expires after one hour for security.

We share only the minimum data needed for game providers to run your session. Your full account details stay with us. Providers have their own privacy policies you can review.

Click the unsubscribe link in any email we send. You can also manage communication preferences in your account settings. We'll stop promotional emails within 24 hours.

Change your password immediately and enable two-factor authentication. Contact our support team right away with details. We'll review your account activity and secure it within hours.