wither Privacy Policy
This page describes what we collect when you use wither and how we keep that data protected. We collect personal information — your name, email, phone number, date of birth, and identity documents — to verify your account and comply with anti-money-laundering (AML) regulations. We also collect gameplay data, payment history, and IP addresses. Our commitment is to store this information securely, limit access to authorised staff, and never sell your data to third parties.
We operate wither across multiple jurisdictions. Our servers may sit outside your region, which means your data may be stored or processed in different countries. We maintain encryption and access controls wherever your information resides. You have the right to request what data we hold about you, correct inaccuracies, and request deletion where applicable. We respond to data-access requests within the timeframes required by law.
This policy outlines what we collect, how we use it, who we share it with, how long we keep it, and your rights. If you have questions about wither's data practices or how we handle your information, our support team can assist.
What data we collect and why
We collect personal data during account creation and gameplay on wither. Your name, email address, phone number, and date of birth are required to set up your account. We also request your residential address and a photo of your identity document (SIM, KTP, or passport). This information is collected to verify your identity, comply with anti-money-laundering (AML) and know-your-customer (KYC) regulations, and prevent fraud.
During gameplay on wither, we log your transactions — deposits, withdrawals, bets, and game outcomes. We record your IP address, device type, browser information, and login history. This data helps us detect fraud, investigate disputes, and understand how you use our platform. We also store your payment method information (encrypted) so you can deposit and withdraw without re-entering details each time. We track your gameplay across live-dealer tables, slot games, sportsbook betting, and esports markets on wither to maintain your session state and calculate your balance.
How we use your data on wither
We use the data we collect on wither for several purposes. First, we verify your identity and check you against fraud and sanctions databases to comply with AML/KYC regulations. Second, we process your payments — when you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, we share relevant payment information with the payment processor to complete the transaction. We do not store your full payment card details; we encrypt and tokenize sensitive payment data.
Third, we use your data to detect and prevent fraud. We monitor for unusual login patterns, duplicate accounts, and suspicious transactions. If we detect potential fraud on your wither account, we may freeze it temporarily and contact you. Fourth, we use your information to respond to customer-support requests — if you contact our team with a question about your account or a dispute, we use your data to investigate and resolve the issue. Fifth, we may send you account notifications (login alerts, withdrawal confirmations, payment failures) and, with your permission, promotional updates about new games or features on wither.
Third parties and data processors on wither
We share your data with third parties only when necessary. Payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and banks) receive transaction data to process your deposits and withdrawals. Fraud-detection vendors receive your login and gameplay data to identify suspicious activity. Regulatory authorities may receive your information if required by law — for example, if we are served a legal order or if we suspect money-laundering activity. We do not sell your data to marketers, data brokers, or third-party advertisers.
Some of our service providers (hosting, email delivery, analytics) may access wither data to maintain our infrastructure. We require all vendors to sign data-protection agreements and limit their access to what they need for their specific role. If a vendor is compromised or breaches our agreement, we take immediate action to protect your information and notify you if required by law.
How long we keep your data on wither
We retain your personal and transaction data while your wither account is active. After you close your account, we keep your data for a period required by law — typically three to five years for AML/KYC and tax compliance. We may retain certain information (such as transaction records and account history) even after deletion to comply with regulatory obligations. We delete your data in secure ways — encrypted deletion, secure wiping, or destruction — to prevent recovery.
Data related to disputes, fraud investigations, or legal claims may be retained longer. If you request account deletion before the legal retention period expires, we archive your data rather than permanently delete it. We cannot delete data that is essential to resolving disputes or meeting regulatory obligations.
Cookies and tracking on wither
Our wither platform uses cookies to maintain your session, remember your preferences, and analyse how you use the site. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain for a set period). Session cookies allow you to stay logged in while browsing wither without re-entering your password. Persistent cookies remember your language preference and gameplay settings.
We also use analytics tools to track how players navigate wither — which games they open, how long they play, where they deposit from (region, not payment card details). This helps us improve our platform and identify issues. We do not use cookies to track you across third-party websites. Your browser settings allow you to disable cookies, but doing so may affect your ability to log in or enjoy wither features.
How we protect your data on wither
We employ industry-standard security measures to protect your information on wither. All data in transit is encrypted using HTTPS. Data at rest (stored on our servers) is encrypted using AES-256. We use multi-factor authentication (MFA) on administrative accounts to prevent unauthorised access. Our servers are housed in secure data centres with restricted physical access, 24/7 monitoring, and regular security audits.
We restrict access to your data to authorised staff members who need it to do their job — for example, support staff may access your account history to resolve disputes, but they cannot view your password or full payment details. We maintain detailed access logs so we can track who accessed your information and when. If we discover a data breach affecting wither accounts, we notify affected users and relevant authorities as required by law within the required timeframe.
Your rights regarding your data on wither
You have several rights under data-protection laws. You can request a copy of all data we hold about you on wither — we provide this in a machine-readable format within 30 days of your request. You can request corrections if your data is inaccurate — we update your information promptly. You can request deletion of your data, though we may retain it if required by law or for legal dispute resolution. You can restrict how we use your data — for example, you can opt out of promotional emails while keeping your account active.
To exercise any of these rights, contact our support team with your account details and specify what you request. We verify your identity before providing access to ensure we do not share your data with an imposter. Some requests may take longer than others — data-export requests typically take 7 to 30 days, while deletion requests may take longer if we need to retain data for legal or regulatory reasons.
Cross-border data transfers from wither
Our servers may be located in countries outside Indonesia. This means your data may be transferred to and processed in different jurisdictions. We ensure that wherever your data travels, it remains protected by encryption and access controls equivalent to those in your home country. We do not transfer your data to countries with inadequate data-protection standards without additional safeguards such as binding contractual clauses or your explicit consent.
If you are in a jurisdiction with specific data-protection laws (such as the European Union's GDPR), we comply with those laws even if your data is processed outside your country. This may mean slower processing times or additional documentation, but we prioritise your rights.
Contacting us about wither's privacy practices
If you have questions about how wither handles your data, wish to exercise your data rights, or suspect a privacy breach, contact our support team. Provide your account details and describe your request clearly. We respond within the timeframes required by law — typically within 30 days. If you are unsatisfied with our response, you may lodge a complaint with your local data-protection authority.
Changes to this privacy policy on wither
We may update this privacy policy from time to time. Changes reflect updates to our practices, new features on wither, or changes in law. When we make material changes, we notify you via email and request your consent if required. We post the updated policy on wither with a clear "last updated" date. Your continued use of wither after we post changes indicates your acceptance of the updated policy.
This privacy policy is governed by the laws of the jurisdictions where we operate wither. If there is a conflict between this policy and local law, the local law prevails. Services on wither are available only where applicable law permits. Users are responsible for verifying that their use of wither complies with their own jurisdiction's regulations.