Reference

How captain 77 Protects Your Personal Data

At captain 77, every piece of account data you submit — from your registration details to your DANA or OVO deposit records — is handled under a clear…

Encrypted account storageDANA, OVO, GoPay & QRIS transaction privacyRight to access your dataData deletion on requestIndonesia-region data handling
captain 77 How captain 77 Protects Your Personal Data
PRIVACY CONTACT PATHS

How to Reach Us About Your Privacy

You have the right to ask us what data we hold about you, request a correction, or ask for deletion. Our privacy support team is available 24 hours a day, 7 days a week through the channels below. We aim to respond to all data-access requests within 3 business days and data-deletion requests within 7 business days of receipt.

Team online

Live Chat — Privacy Queue

Start a live chat session from your account dashboard and select 'Privacy Request' from the topic menu. Available 24/7; a privacy agent will pick up your case within 5 minutes during standard hours.

Email — Data Requests

Send your data-access or deletion request to our dedicated privacy email. Include your registered account email and the nature of your request. We confirm receipt within 24 hours and resolve within 7 business days.

In-Account Privacy Centre

Log in, go to Account Settings, then select 'Privacy & Data'. From there you can download a copy of your stored profile data or submit a deletion request directly, without needing to contact support.

DATA HANDLING STANDARDS

Six Ways We Secure and Respect Your Data

Knowing your account data is handled carefully matters as much as the games themselves. The six practices below describe the operational controls captain 77 applies across every account in Indonesia, from the…

AES-256 Encryption at Rest

All stored account records — including your DANA and OVO transaction history — are encrypted using AES-256. Decryption keys are rotated quarterly and are never stored alongside the data they protect.

TLS 1.3 Data in Transit

Every data transfer between your device and our servers uses TLS 1.3 protocol. This covers login sessions, GoPay deposit confirmations and any account-settings change you submit from a mobile or desktop browser.

Cookie Controls in Your Account

We use functional and analytics cookies only. You can review which cookies are active and withdraw consent for non-essential cookies at any time via the Cookie Preferences panel inside your account settings.

Minimum Data Retention Policy

We keep your data only as long as required to deliver our service or comply with applicable obligations. Once the retention period lapses — or upon your deletion request — records are permanently removed from active and backup systems.

No Third-Party Data Sales

captain 77 does not sell, rent or trade your personal data to marketing networks or data brokers. Payment-method identifiers like QRIS reference codes are used solely for transaction verification and dispute resolution.

Two-Factor Account Verification

To prevent unauthorised access to your account data, we apply two-factor verification on login and on any change to your registered email or phone number. You will receive an OTP to your registered device before any sensitive update is confirmed.

Your Privacy Questions, Answered Directly

These are the questions we hear most often from people in Indonesia about how their data is managed at captain 77. If your question is not covered here, reach us through the live chat Privacy Queue or email channel listed above.

We collect your name, email address, phone number, and the payment identifiers linked to your chosen method — DANA, OVO, GoPay or QRIS. We also log device type and IP address for security verification. No extra data is collected beyond what your account operation requires.

Transaction records linked to DANA, OVO, GoPay and QRIS deposits are kept for the minimum period required under applicable obligations. Once that period ends — or if you submit a verified deletion request — the records are purged from both active databases and backup storage.

Yes. Log in, go to Account Settings and select 'Privacy & Data', then choose 'Download My Data'. You will receive a structured file within 3 business days covering your profile, transaction history and any support interactions we have on record.

Submit a deletion request through the in-account Privacy Centre or email our privacy team with your registered account email. We confirm receipt within 24 hours and complete full deletion — including from backup systems — within 7 business days of verifying your identity.

We do not sell or rent your data to advertisers or data brokers. We share only what is strictly necessary — for example, passing a QRIS reference to the payment processor to confirm a deposit. Any data sharing depends on local law and is covered by a data-processing agreement.

We use functional cookies to keep your session active and analytics cookies to improve the account experience. Non-essential cookies require your consent, which you can withdraw at any time from the Cookie Preferences panel in your account settings without affecting core functionality.

Reach the privacy support team via 24/7 live chat — select 'Privacy Request' from the topic menu — or by email. We aim to acknowledge all privacy concerns within 24 hours and resolve them within 7 business days, where local law permits the requested action.