Reference

How rajavegas Handles Your Personal Data

At rajavegas, your personal data — from account registration details to payment records via DANA, OVO, GoPay and QRIS — is collected, stored and processed under a clear…

Data encrypted at rest and in transitDANA, OVO, GoPay & QRIS payment data protectedYour data never sold to third partiesAccount deletion requests honoured within 30 days24-hour support for data queries
rajavegas How rajavegas Handles Your Personal Data
PRIVACY CONTACT CHANNELS

Reach Us About Your Privacy Rights

If you have questions about how we store or use your data, or if you want to exercise any of your rights under this policy, our…

Live Chat Our live chat window is open 24 hours a day, seven days a week.
Email Support Send your written data request or privacy concern to our support email address.
Account Help Centre Log into your rajavegas account, navigate to Settings, then select Privacy and Data.
DATA HANDLING PRACTICES

Six Ways We Protect Your Account Data

Our data-handling practices are designed to give you visibility and control over everything we hold.

End-to-End Encryption

All data transmitted between your device and our servers — including GoPay and QRIS payment confirmations — is encrypted using TLS 1.3. Stored records use AES-256 encryption so your information is unreadable if intercepted.

Cookie Transparency

We use session cookies to keep you logged in and analytics cookies to understand how the lobby is used. You can manage cookie preferences from the footer of any page without needing to contact support.

Payment Data Isolation

Your DANA, OVO, GoPay and QRIS account details are handled by our payment processor in an isolated environment. We store only a masked reference — never your full wallet credentials or bank PIN.

Data Retention Schedule

Active account data is held for the duration of your relationship with us. After account closure, transaction records are retained for the period required by applicable financial regulations, then securely deleted on a fixed monthly schedule.

Third-Party Processor Oversight

Any third-party service that touches your data — such as our payment gateway or fraud-detection provider — is bound by a data-processing agreement. We review these agreements annually and terminate access that no longer meets our standards.

Account Security Controls

You can activate two-factor authentication from your account security settings in under a minute. Login attempts from unrecognised devices trigger an automatic email alert so you are informed of any access your account receives.

Your Privacy Questions Answered

Below we have gathered the questions we receive most often about how rajavegas manages personal data in Indonesia. Each answer is specific to how our systems and processes actually work — not generic boilerplate — so you can make an informed decision about your account.

We collect your full name, email address, mobile number and the payment method you register — such as DANA or OVO. We also log your device type, IP address and session timestamps to verify your identity and keep your account secure from unauthorised access.

We share data only with licensed service partners who operate directly on our platform — for example, our payment processor who handles QRIS and GoPay transactions. We do not sell your personal data or share it with advertisers, and all partner access depends on local law.

Log into your account, go to Settings, then select Privacy and Data, and choose Download My Data. We will prepare your file within 24 hours. Alternatively, contact our live chat team at any time and an agent will initiate the request for you.

Yes. Submit a deletion request through Settings or via our support email. We will remove your personal data within 30 days, retaining only the transaction records we are legally required to keep under applicable financial regulations, where local law permits.

Transaction records linked to DANA, OVO, GoPay and QRIS payments are kept for the retention period set by applicable financial regulations. After that period expires, records are deleted on our fixed monthly purge schedule and cannot be recovered.

We use session cookies to maintain your login state and analytics cookies to understand lobby usage patterns. You can adjust your cookie preferences at any time via the cookie settings link in the footer — no account login required to make that change.

Contact our live chat immediately — we are available 24 hours a day. We will freeze suspicious activity, review your login history and, where local law permits, escalate the matter to our security team. Activating two-factor authentication in your security settings also prevents repeat incidents.