rekt Privacy Policy
This page describes what we collect when you use rekt and how we keep that data protected. We take your privacy seriously because your account credentials, payment details, and transaction history are sensitive. Our policy explains which data we collect, who can access it, and how long we retain it.
We at rekt collect personal information only when necessary to operate our platform, process deposits and withdrawals, verify your identity, and comply with law. We do not sell your data. We do not share your information with marketers or advertisers. We share data only with payment processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet), regulatory authorities, and law enforcement when legally required.
If you have questions about how we handle your data, contact our support team via in-app chat or email. We respond within 3 business days.
What data we collect on rekt
When you create a rekt account, we collect your email address, phone number, full legal name, date of birth, and national ID number. We also collect proof of address (utility bill, rental agreement, or government document dated within 3 months). These details form your Know Your Customer (KYC) profile and are required by law to prevent money laundering and fraud.
We collect payment information: your chosen funding method (e.g., OVO account, e-wallet account, mobile banking credentials) and transaction history. We record every deposit and withdrawal, including the amount, timestamp, and destination. We track your account activity: login times, devices used, IP addresses, and browser fingerprints. This activity log helps us detect unauthorized access and fraud.
On our rekt platform, we collect your betting and playing behavior: which games you access, wager amounts, settlement outcomes, and session duration. We do not sell this data to third parties, but we use it internally to improve our service, identify technical issues, and comply with regulatory requests.
We do not collect unnecessary personal data
rekt never asks for your bank password, your payment provider login, or your credit card number in full. All sensitive credentials are handled directly by your payment provider, never passed through our servers.
How we use and store your rekt data
We use your data to verify your identity, process deposits and withdrawals, settle wagers, and communicate service updates. We use activity logs to detect fraud and prevent account takeovers. We may share your verified identity with law enforcement or regulatory bodies in Jakarta, Surabaya, Bandung, Medan, or Semarang if legally required.
Our rekt servers store your encrypted data on secure cloud infrastructure. Encryption keys are managed separately from the data itself. Your password is hashed using a one-way algorithm; even our staff cannot read it. Your payment details are tokenized: we store a unique reference to your account (e.g., "local payment_user_12345") rather than your actual online payment username or credentials.
Our servers may be located outside your jurisdiction. Data transfers between you and rekt use HTTPS encryption, which protects your information in transit. We comply with data protection standards equivalent to or exceeding Indonesia's regulations.
On rekt, your data is encrypted, tokenized, and kept separate from public systems. We encrypt in transit and at rest. We do not store passwords in readable form.
Third-party processors and data sharing on rekt
We share your data with payment processors to complete your deposits and withdrawals. For example, when you deposit via e-wallet, we send your mobile banking account reference to local payment's infrastructure so they can initiate the transfer. online payment's privacy policy governs how they handle that data. We do not control their systems.
We may share anonymized betting data (e.g., "many active users placed Liga 1 wagers yesterday") with game providers and market analysts to improve our offerings. This data cannot identify you individually. We do not share your name, ID number, or account balance with these partners.
We share your information with law enforcement, tax authorities, and financial regulators when they present a legal order or court mandate. We do not volunteer information; we respond only to lawful requests. We comply with orders from Indonesian authorities and international agencies cooperating with Indonesian law enforcement.
Your rights regarding data on our rekt platform
You have the right to access your personal data. Log into your rekt account and navigate to "Account Settings" → "Personal Data" to view your stored information. You can request corrections if data is inaccurate. You can request deletion of your account and associated data; we process deletion requests within 30 days, except where law requires us to retain records (e.g., transaction history for tax audits).
You have the right to object to marketing communications. We do not send unsolicited promotional emails; all communications from rekt relate to your account, security alerts, or service updates. You can disable non-critical notifications in your settings.
If you believe we have mishandled your data, contact our support team first. If we do not resolve your concern, you may escalate to your local data protection authority or submit a complaint to regulatory bodies overseeing online gaming in your jurisdiction.
Cookies and tracking on rekt
We use cookies to remember your login session and store your preferences (e.g., language, theme). These cookies are "session cookies"—they expire when you close your browser—and "persistent cookies"—they remain until you log out manually. Cookies do not contain sensitive data like your password; they contain a session token.
Our rekt mobile app does not use traditional browser cookies but stores similar data locally on your device. Your app may also capture device identifiers (like Android Advertising ID) to detect fraud and prevent account takeovers.
We do not use third-party tracking pixels or analytics that follow you across the internet. We do not participate in retargeting campaigns. rekt's analytics are internal only: we measure page load times, game performance, and crash rates to improve our service.
Data retention policy for rekt accounts
We retain your KYC data (name, ID, proof of address) for as long as your account is active plus 5 years after closure or final withdrawal. This retention period meets Indonesian regulatory requirements for financial records. We retain transaction history for 7 years to support audits and dispute resolution.
If you request account deletion before 5 years have passed, we anonymize your personal data (remove your name and ID) but keep transaction records tied to an anonymous account ID. This allows us to comply with legal investigations without revealing your identity.
We delete inactive accounts after 5 years of no login activity. We notify you via email before deletion and provide a grace period to reactivate. Once deleted, your balance is forfeited.
Changes to our rekt privacy policy
We may update this policy to reflect changes in our practices or legal requirements. We notify all active rekt users of material changes via email at least 30 days before the change takes effect. Continued use of rekt after the notification date constitutes acceptance of the updated policy.
Our services are available only where local law permits. Users are responsible for verifying that access and use comply with their own jurisdiction's law. For questions about how rekt handles your data, contact our support team. We respond in English and Indonesian.