simbaPrivacy Policy

This page describes what we collect when you use simba and how we keep that data protected. We collect personal information during account registration, identity verification, and payment processing. Our commitment is to handle your data transparently, securely, and only for the purposes you authorise. We do not sell your information to third parties, and we comply with applicable data protection regulations in all jurisdictions where we operate.

When you join simba—whether to trade Liga 1, deposit via QRIS or e-wallet, or access our live-dealer tables—you provide us with information. We use this data solely to verify your identity, process your transactions, comply with anti-money-laundering law, and improve our service. This policy explains what we collect, how we use it, who has access to it, and what rights you have over your data.

Our services are available only where local law permits. Users are responsible for verifying that access and use comply with their own jurisdiction's law. We do not offer our services in territories where online wagering is prohibited by statute.

What Data We Collect on simba

We collect data in three categories. First, account information: your legal name, date of birth, email address, phone number, and residential address. Second, identity verification documents: a copy of your national ID, passport, or driver's license. Third, payment information: the payment method you register (e.g., DANA, e-wallet, mobile banking, local payment, or bank virtual account details). We do not store your full card number or bank password; payment processors handle that data separately.

We also collect behavioural data: your login history, IP address, device type, browser information, and transaction history (deposits, withdrawals, trades, and settlements). This data helps us detect fraud, improve our platform, and comply with regulatory requirements. We use cookies and similar tracking technologies to remember your preferences and session state. You can disable cookies in your browser settings, but some simba features may not work correctly without them.

How We Use Your Data on simba

We use your personal data for five main purposes. First, account management: we verify your identity, process your deposits and withdrawals, and manage your account settings. Second, regulatory compliance: we screen your information against sanctions lists, verify your eligibility under applicable law, and maintain records for anti-money-laundering (AML) and know-your-customer (KYC) requirements. Third, fraud prevention: we analyse transaction patterns to detect suspicious activity and protect your account from unauthorised access. Fourth, customer support: we use your contact information to respond to your inquiries and resolve disputes. Fifth, service improvement: we analyse usage patterns to improve simba's features, speed, and user experience.

We do not use your data for marketing without your explicit consent. If you opt in to marketing communications, we send you emails about new features, promotions, or service updates. You can unsubscribe from marketing emails at any time by clicking the unsubscribe link in the email or updating your preferences in your account settings.

Third-Party Processors and Data Sharing

We share your data with third parties only when necessary to provide our service or comply with law. Our payment processors (online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) receive your payment method information to process deposits and withdrawals. These processors have their own privacy policies; we recommend reviewing them. We also share data with our hosting provider, who stores our servers and databases. Our servers may sit outside your jurisdiction; data transferred internationally is protected by encryption and contractual safeguards.

We may disclose your data to government authorities, law enforcement, or regulators if required by law or court order. We do not disclose data voluntarily; we respond only to valid legal requests. If we receive a request for your data, we notify you unless we are legally prohibited from doing so.

Your Rights and Our Commitments on simba

You have the right to access, correct, and delete your personal data. To request access, contact our support team with your account details. We provide a copy of your data within ten business days. To request correction, update your information in your account settings or contact support. To request deletion, submit a formal request; we delete your data subject to legal retention requirements (e.g., AML records must be kept for five to seven years).

We undertake to keep your data secure through encryption, access controls, and regular security audits. We do not guarantee absolute security; no system is immune to breach. If a breach occurs, we notify affected users within the timeframe mandated by applicable law and provide guidance on protective measures. We do not charge fees for accessing, correcting, or deleting your data.

Cookies and Tracking Technologies

We use cookies to store your session information, remember your preferences, and track your activity on simba. Cookies are small text files stored on your device. We use two types: session cookies (deleted when you close your browser) and persistent cookies (stored for a set period). We also use web beacons and pixel tags to measure page views and user engagement. You can disable cookies in your browser settings, but some simba features may not function correctly without them.

Third-party analytics services (such as Google Analytics) may also place cookies on your device to measure traffic and user behaviour. These services have their own privacy policies. We do not control their data collection practices, but we ensure they comply with applicable data protection law.

Data Protection and International Transfer

Our servers are located in multiple regions, including outside Indonesia. When you use simba from Jakarta, Surabaya, Bandung, or Medan, your data may be transferred to and stored on servers in other countries. We protect international data transfers through encryption and contractual safeguards that comply with applicable law. You acknowledge that your data may be processed outside your jurisdiction and that different data protection standards may apply.

We comply with applicable data protection regulations, including Indonesian law and international standards. If you have a data protection concern or believe we have mishandled your information, contact our privacy team. We investigate complaints within ten business days and provide a response. If you are unsatisfied with our response, you may file a complaint with your local data protection authority.

Contact and Policy Updates

If you have questions about this privacy policy or how we handle your data, contact our privacy team via email or through our support portal. We respond to privacy inquiries within ten business days. For urgent data protection concerns, mark your message as urgent; we prioritise these within two business days.

We may update this privacy policy at any time to reflect changes in our practices, technology, or applicable law. We notify users of material changes via email or platform notice. Your continued use of simba after an update constitutes acceptance of the new policy. If you do not agree to updated terms, you may close your account and request deletion of your data subject to legal retention requirements.

This policy is effective as of the date listed at the top of this page. We maintain a version history of all policy updates. If you need a copy of a previous version, contact our privacy team.