colowin Platform Privacy Notice

This page describes what we collect when you use colowin and how we keep that data protected. We take your privacy seriously. When you register, deposit, or play on our platform, you share personal information with us—your email, identity documents, and payment details. We store this data securely, do not sell it to third parties, and process it only for legitimate platform purposes: account verification, anti-fraud detection, payment settlement, and customer support.

Our privacy commitments apply across all colowin services: live-dealer tables (blackjack, roulette, baccarat, Dragon Tiger), sportsbook betting (Liga 1, Piala AFF, Champions League), slot games (Aviator, Sweet Bonanza, Gates of Olympus), and esports markets (Mobile Legends, Free Fire, PUBG Mobile). If you access colowin from Jakarta, Surabaya, Bandung, Medan, Semarang, or elsewhere, this policy governs how we handle your account data, payment information, and gaming history.

Read this policy in full before creating an account. If you have questions about how we process your data, contact our support team. By using colowin, you agree to the data practices outlined here.

Data We Collect

When you register on colowin, we collect your email address and password. Before you can withdraw from your account, we require identity verification: a government-issued ID (KTP or passport) and proof of address (utility bill, rental contract, or bank statement). We also collect your date of birth and basic contact details. These are mandatory for account creation and regulatory compliance; we cannot operate without this information.

When you deposit on colowin, payment information flows through licensed third-party processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet). We do not store your full card number, bank account number, or wallet credentials on our servers. Payment processors retain this data under their own privacy policies; we receive only transaction confirmations (amount, date, merchant reference, status). We do not access or store your payment credentials directly.

Your gaming history on colowin is logged server-side: every bet placed, game result, and payout is timestamped and stored in our database. We use this data to settle bets, resolve disputes, and detect fraudulent patterns. We also collect technical data: your IP address, device type, browser version, and session timestamps. This helps us diagnose technical issues and prevent account compromise.

How We Use Your Data

We use colowin account data for account verification, payment processing, and anti-money-laundering (AML) compliance. Identity documents and address proofs are checked against regulatory databases to prevent fraud and terrorist financing. This is a legal requirement in most jurisdictions and is not optional. We also use your email to send account notifications (login attempts, withdrawal confirmations, promotional offers if you opt in).

Gaming history is used to settle bets, calculate payouts, and handle disputes. If you dispute a sportsbook settlement or a live-dealer result, we review your account history and game records to investigate. Your data is also used for fraud detection: if we notice unusual betting patterns (e.g., rapid account creation, large deposits followed by immediate withdrawals), we may trigger additional verification checks or flag the account for manual review.

Data retention: We retain your account data for as long as your colowin account is active. After account closure, we keep records for seven years to comply with anti-money-laundering regulations. Historical betting data may be archived and is not deleted on request.

Third-Party Processors & Data Sharing

We share colowin account data with third parties only when necessary for platform operations. Payment processors (mobile banking, local payment, online payment, e-wallet) receive your email and transaction amount to complete deposits and withdrawals. They process this data under their own privacy policies, not ours. We do not control how they store or use your information beyond what is necessary for payment settlement.

Identity verification is handled by licensed third-party verification services. We send your ID and address proof to these services for validation; they return a yes/no confirmation, then delete your documents from their systems. We do not retain copies of your government ID on our servers—only a hash or verification token confirming your identity was confirmed.

We may share aggregated, non-identifying data with analytics partners to understand user trends (e.g., "sportsbook betting on Liga 1 increased non-specific info during Idul Fitri"). This data cannot identify you personally. We do not sell your personal data to advertisers, data brokers, or marketers. We disclose data to authorities only under court order or legal compulsion.

Your Rights on colowin

You have the right to access your colowin account data. Contact our support team with your account email, and we will provide a copy of your stored data within 30 days. You can also update your email, address, or contact details through your account settings. Your gaming history is not editable; it is a permanent record for dispute resolution and regulatory compliance.

You can request deletion of your personal data. However, we must retain certain records for anti-money-laundering compliance (typically seven years). We will delete data we are not legally required to keep, but your historical betting records may remain archived. Account closure is permanent; you cannot recover a deleted account or its associated data.

You can opt out of promotional emails by clicking the unsubscribe link in our emails or updating your account preferences. You cannot opt out of transaction confirmations or account security notifications—these are essential to your account's safe operation. If you believe we have processed your data unlawfully, you have the right to lodge a complaint with your local data protection authority.

Data location: colowin servers may be located outside your jurisdiction. Your data is transferred to, stored in, and processed on servers in multiple countries. By using colowin, you consent to this international data transfer. We apply the same security standards regardless of server location.

Cookies & Tracking

We use cookies and similar tracking technologies on colowin to remember your login state, store your preferences (language, volume settings), and analyze usage patterns. Essential cookies (session, security) are always active and cannot be disabled. They are necessary for the platform to function. Analytics cookies track how you navigate colowin, which games you play, and how long you spend on each table. These help us improve user experience but are not mandatory for core functionality.

You can disable non-essential cookies through your browser settings, though this may limit some colowin features (e.g., saved preferences may not persist). We do not honor "do-not-track" signals from browsers, as our cookies are functional, not behavioural.

Security Practices

We protect colowin data using industry-standard encryption (TLS 1.2+) for all connections between your device and our servers. Your password is hashed and salted; we do not store it in plain text. Payment data is processed via PCI-DSS compliant payment gateways. Our servers are protected by firewalls, intrusion detection systems, and regular security audits.

We cannot guarantee absolute security. Data breaches, hacking, and accidental disclosure are remote but possible risks. If we discover a breach affecting colowin user data, we will notify affected users within 30 days and provide guidance on protective steps (password reset, account monitoring). We maintain cyber-liability insurance and incident response procedures.

Children & Age Restrictions

colowin is not intended for users under the legal age in their jurisdiction. We do not knowingly collect data from minors. If we discover a minor has registered on colowin, we will delete the account and any associated data immediately. Parents or guardians who suspect a minor has accessed colowin should contact our support team urgently.

Updates to This Policy

We may update this privacy notice at any time by publishing a revised version on this page. We will notify registered users of material changes via email. Continued use of colowin after an update constitutes acceptance of the revised policy. If you disagree with changes, you may close your account and request a data deletion (subject to legal retention requirements).

Contact Us About Privacy

If you have questions about how we handle your data on colowin, or you wish to exercise your rights (access, deletion, correction), contact our English-language support team:

  • Live chat: Available in-app during business hours.
  • Email: Use the contact form on our FAQ page.
  • Mailing address: Available upon request via support contact.

We will acknowledge all privacy requests within one business day and provide a substantive response within 30 days. If you believe we have violated your privacy rights and our support team cannot resolve your concern, you may lodge a complaint with your local data protection authority or jurisdiction's gaming regulator.