sba99 Privacy Policy

What Data We Collect on sba99

We collect personal information in three categories: identity verification, payment processing, and account activity. For identity verification, we require your full name, date of birth, valid government-issued ID number, and proof of residential address (utility bill, rental agreement, or government correspondence). We capture this information during account registration and store it in encrypted form for the duration of your membership and seven years thereafter, in compliance with anti-money-laundering regulations.

For payment processing, we collect your banking details or e-wallet credentials. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, we receive transaction confirmation data from your payment provider, including amount, timestamp, and reference number. We do not store your full banking credentials; payment processors retain that information on their own secure servers. We retain transaction records for seven years for regulatory compliance.

For account activity, we collect gameplay records, bet histories, deposits, withdrawals, bonus claims, and tier progression. We track your IP address, device type, and browser information when you log in. We store this information to prevent fraud, track promotions eligibility, and investigate disputes. Account activity data is retained for three years after your account closure, then deleted.

How We Use Your Data on sba99

We use identity data primarily for account verification and compliance with anti-money-laundering (AML) regulations. When you submit documents, we verify they match your registration details and confirm they are genuine. We do not share verified identity data with external parties except when required by law or court order. Our compliance team accesses this data only to fulfill regulatory obligations.

We use payment data to process deposits and withdrawals. When you request a withdrawal, we match your withdrawal account details to your verified identity information. Our payment-processing systems transmit encrypted payment instructions to your chosen provider. We retain this data to reconcile transactions and investigate payment disputes.

We use gameplay and account-activity data to administer promotions, track tier progression, calculate weekly cashback, and detect fraud. We analyze patterns to identify bonus abuse, account takeover, and money-laundering risk. We do not use gameplay data to profile you for targeted marketing or to predict your behavior in future games. We do not sell your gameplay records to third parties.

Third-Party Processors and Data Sharing

We engage third parties to help us operate sba99. Our payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive your transaction data directly when you initiate deposits or withdrawals. Our cloud-hosting provider stores our database, including encrypted copies of your personal data, on geographically distributed servers. Our email service provider delivers account notifications and promotional messages you have opted into.

At sba99, we share your data with third parties only to the extent necessary to deliver our services or fulfill legal obligations—never for profit, never for external marketing campaigns.

We do not permit these third parties to use your data for their own marketing purposes. They are contractually bound to process data only as we instruct and to maintain confidentiality. If any third party experiences a data breach, we require them to notify us immediately so we can assess impact and notify you.

Your Rights on sba99

You have the right to request a copy of all personal data we hold about you. Contact our support team via live chat or email with your request; we will provide a complete data export within 14 business days at no charge. You have the right to request corrections to inaccurate or incomplete data. You have the right to request deletion of your personal data, subject to legal retention obligations—specifically, we must retain identity and transaction records for seven years under AML law.

• 1
  Right to accessData request

  Request all personal data we hold about you in a portable, machine-readable format (typically CSV or JSON).

• 2
  Right to correctUpdate request

  Request corrections to any inaccurate personal data in your sba99 account (name, address, contact details).

• 3
  Right to deleteDeletion request

  Request deletion of your account and non-retained personal data, subject to seven-year legal holds on identity and transaction records.

• 4
  Right to objectMarketing consent

  Opt out of promotional emails and marketing communications. We will honor requests within 48 hours.

Our Use of Cookies and Tracking

Our sba99 platform uses cookies to maintain your login session, remember your preferences, and track basic usage statistics. Session cookies expire when you log out; persistent cookies remain for up to 12 months to streamline future logins. We use analytics cookies to count unique visitors, track page views, and measure feature usage—this helps us improve our platform. We do not use third-party tracking pixels or retargeting services.

You can disable cookies in your browser settings, though some sba99 features may not function correctly without them. Our site does not respond to "Do Not Track" browser signals because we do not engage in cross-site tracking. We do not place our cookies on third-party sites; our cookies are used only on sba99.app.

Data Retention and Account Closure

We retain different categories of data for different durations. Identity verification documents (ID, proof of address) are retained for seven years after account closure, as required by AML law. Transaction records (deposits, withdrawals, gameplay history) are retained for seven years. Account activity logs (logins, tier progression, promotional claims) are retained for three years. After these periods, we securely delete the data.

When you close your account on sba99, your account balance is returned to you (via withdrawal to your registered payment method). Your personal data remains encrypted and archived for the retention periods above. You may request early deletion of non-retained data by contacting support, though we will retain legally mandated records.

Security Measures We Undertake

We at sba99 encrypt all data in transit using TLS 1.2 or higher. All personal and financial data is encrypted at rest using AES-256 encryption. Our database servers are physically secured in data centers with 24/7 monitoring. Access to personal data is restricted to authorized sba99 staff on a need-to-know basis. We conduct annual security audits and penetration testing to identify and remediate vulnerabilities.

We implement multi-factor authentication for account access; you can enable optional two-factor authentication via your account settings. If we detect unauthorized access attempts, we automatically lock your account and notify you via email. We maintain an incident-response plan; if a data breach occurs, we will notify affected users within 72 hours and cooperate with relevant regulators.

Contact Us About Your Privacy

If you have questions about our privacy practices, wish to exercise your data rights, or believe we have mishandled your information, contact our support team via live chat or email. We respond to privacy inquiries within 14 business days. You may also lodge a complaint with your local data-protection authority if you believe we have violated applicable privacy law. Our commitment to protecting your data remains central to how we operate sba99 across all supported jurisdictions, from Jakarta through Semarang and beyond.