lobby303Privacy Policy

This page describes what we collect when you use lobby303 and how we keep that data protected. We take data security seriously: your account information, payment details, and gameplay history are encrypted in transit and at rest. We do not sell your personal data to third parties, and we only share information with external processors (payment gateways, identity-verification services, hosting providers) when necessary to operate our platform.

Our privacy practices comply with applicable data-protection laws in the jurisdictions where we operate. We collect only the minimum information needed to verify your identity, process deposits and withdrawals, prevent fraud, and comply with anti-money-laundering (AML) regulations. If you have questions about how we handle your data, contact our support team during business hours.

This policy applies to all users of lobby303 on Android, iOS, and web. By registering an account, you consent to the data practices described below. We may update this policy from time to time; material changes will be notified to you by email. Continued use of lobby303 after notification means you accept the updated policy.

What data we collect on lobby303

We collect data in several categories. Account information: when you register, we ask for email address, password, full name, date of birth, and phone number. Identity documents: to comply with KYC (Know Your Customer) requirements, we collect a photo of your national ID card, passport, or driving licence, a selfie of you holding that ID, and proof of address (utility bill, rental agreement, or government document). Payment information: we do not store credit card numbers or bank account details directly. Instead, we receive a secure token from your payment provider (e.g. DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) confirming that payment was successful. Your bank or wallet provider holds your actual financial details.

Gameplay data: we log every bet you place, every game outcome, your win/loss record, and your account balance at each transaction. We retain this data indefinitely for regulatory compliance and dispute resolution. Device and connection data: we collect information about your device type, operating system, app version, IP address, and connection type (WiFi, 4G, etc.). We use this to detect fraud, diagnose technical issues, and optimise streaming quality. Cookie and analytics data: our website uses cookies to remember your login session, track page navigation, and measure site performance. We do not use cookies to track you across other websites.

How we use your data on lobby303

We use your data for the following purposes. Account administration: we verify your identity, manage your login credentials, and process deposits and withdrawals. Fraud prevention: we monitor for suspicious activity (multiple accounts from the same IP, rapid deposits and withdrawals, unusual betting patterns) and flag accounts for manual review if needed. Anti-money-laundering: we cross-check your name against international sanctions lists and report suspicious transactions to financial authorities where required by law. Customer support: we use your email and phone to respond to questions and resolve disputes. Platform improvement: we analyse gameplay data in aggregate (e.g. which games are most popular, which payment methods are preferred) to enhance our service, but we do not identify individuals in this analysis.

We do not use your data for marketing emails, push notifications, or third-party advertising unless you explicitly opt in. You can manage your notification preferences in "My Account" → "Settings" at any time. We do not share your personal data with advertisers, data brokers, or any external party except where required by law or to process your transactions (e.g. passing your name and amount to your bank for a withdrawal).

Your data may be stored outside your home jurisdiction

Our servers are located in multiple regions globally. When you use lobby303, your data is transmitted to and stored on servers that may sit outside your country. By using our platform, you consent to this international data transfer, subject to encryption and security protections in transit.

Third-party processors and data sharing on lobby303

We engage external service providers to help operate lobby303. Payment processors: mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and the major Indonesian banks (online payment, e-wallet, mobile banking, local payment) receive transaction details necessary to process your deposits and withdrawals. Identity verification: we use third-party KYC service providers to verify your ID photo, compare it to your selfie, and cross-check against fraud databases. These providers follow strict data-protection standards and do not retain your documents after verification is complete. Hosting and analytics: we use cloud hosting providers to store our database and app servers. We use analytics services to measure site traffic and user behaviour in aggregate. Customer support: our support team may use ticketing software to track and respond to your enquiries.

All third-party processors are contractually bound to protect your data and use it only for the purposes we specify. We do not permit them to sell your data or use it for their own marketing. We conduct periodic audits to ensure compliance. If a processor suffers a data breach, we notify you and take corrective action as required by law.

Your rights and data retention on lobby303

You have the right to access, correct, and delete your personal data. To request a copy of all data we hold on you, contact our support team; we will provide a download within 30 days. To update incorrect information (e.g. your phone number has changed), use "My Account" → "Profile" in the app. To request deletion of your account and associated data, submit a deletion request through our support form; we will close your account and delete most data within 90 days, except where we are required by law to retain it (e.g. anti-money-laundering records, transaction logs for tax purposes).

We retain your data for as long as necessary to provide our service and comply with legal obligations. Gameplay records: retained indefinitely for dispute resolution and regulatory audit. Identity documents: retained for 6 years after account closure or last transaction for AML compliance. Payment records: retained for 7 years for tax and accounting purposes. Cookies: session cookies expire when you close the app; analytics cookies expire after 2 years. You can clear cookies manually from your device settings at any time.

Security practices on lobby303

We protect your data with industry-standard encryption. All data in transit (between your device and our servers) is encrypted using TLS 1.2 or higher. All data at rest (in our database) is encrypted using AES-256. Access to your data is restricted to authorised staff who need it to do their job; staff sign confidentiality agreements and are trained on data-protection principles. We monitor our systems for intrusion attempts and conduct regular security audits.

We implement two-factor authentication (2FA) to secure your login. After you enter your password, we send a code to your registered phone number and email; you must enter the code to complete login. This prevents unauthorised access even if someone obtains your password. We also enforce strong password requirements (minimum 8 characters, mixed case and numbers) and allow you to reset your password at any time from the login screen.

Despite these precautions, no system is non-specific info secure. If we discover a data breach, we notify affected users and authorities within the timeframe required by law, and we take corrective action (e.g. password reset, account monitoring). You are responsible for keeping your password and 2FA codes confidential. If you suspect unauthorised access, change your password immediately and contact our support team.

Jurisdiction and contact on lobby303

Access to lobby303 is available only in jurisdictions where online gaming is legal. We do not operate in regions where online wagering is prohibited by local law. Your data is processed in compliance with the regulations of the jurisdiction(s) where you access the platform and where we operate. If you are in the European Union or have questions about GDPR rights, contact our data-protection officer through our support team.

If you wish to exercise your rights under this privacy policy or have concerns about how we handle your data, contact us at our support email or through the in-app contact form. We respond to all requests within 30 days. If you are unsatisfied with our response, you may escalate to our compliance officer, who will review your complaint independently.