mudahPrivacy Policy

This page describes what we collect when you use mudah and how we keep that data protected. When you open an account, deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, or play games on our platform, we gather certain information. We encrypt it, store it securely, and share it only where necessary for your account, our legal compliance, or to prevent fraud.

We do not sell your data to advertisers. We do not use your information to profile you for marketing outside mudah. Your privacy matters, and we take the responsibility seriously. This policy outlines every type of data we collect, why we collect it, how long we keep it, and your rights regarding that data.

If you have questions about how mudah handles your information, contact our support team. We respond to data-access requests, deletion requests, and privacy concerns within standard timelines. Read through each section below to understand our full practice.

What Data We Collect on mudah

When you sign up for mudah, we collect your email address and phone number. These are used for account recovery and transaction confirmations. We verify both by sending verification codes you enter — this prevents unauthorized account creation.

On your first deposit, we collect your full name, ID number (KTP, passport, or driver's license), date of birth, and address. We request a clear photo of your ID and a selfie holding it. These details verify your identity and prevent fraud and money laundering. We keep your ID photo and personal details securely for compliance purposes.

When you deposit or withdraw, we collect payment details: your e-wallet username (for DANA, e-wallet, mobile banking, local payment, online payment), your e-wallet code (if applicable), or your bank account number (for mobile banking, local payment, online payment, e-wallet transfers). We do not store full card numbers. We store only enough information to process returns to your original source.

As you play on mudah, we log your game activity: which games you enter, your stakes, your outcomes, and settlement amounts. We track your login times, IP addresses, and device information (Android, iOS, web browser, device type). We use this data to detect fraud, prevent collusion, and ensure fair play. We also store communication records if you contact our support team — emails, chat logs, and any documents you provide.

Automatic data collection on mudah

We use cookies and session tokens to keep you logged in and to track your activity. You can disable cookies in your browser settings, but this may affect your ability to use mudah smoothly.

How We Use Your Data on mudah

We use your email and phone for account management: password resets, deposit/withdrawal notifications, and support communications. We use your payment information to process your deposits and returns. We use your ID and address to verify your identity and comply with anti-money-laundering (AML) regulations.

We analyze your game activity and login patterns to detect fraud. If we see unusual behavior — deposits from multiple countries in one hour, withdrawals from unusual IP addresses, collusion with other players — we flag the account for investigation. We may ask for additional documentation or suspend the account pending review.

We use your data to settle game outcomes accurately. We keep records to audit fair play and to resolve disputes if you claim a game settlement was incorrect. We retain this data for compliance with local law — typically three to seven years depending on jurisdiction.

We do not use your data for marketing outside mudah without your explicit permission. We do not share your email with third parties to sell you products. We do not profile you based on your game preferences to target you with advertisements. We do use your data internally to improve mudah's systems and to identify common player support issues.

Third-Party Data Processors on mudah

We use third-party service providers to operate mudah. Our payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive your payment details to confirm transactions. We do not control how those providers use your data — see their privacy policies for details. We use cloud hosting providers to store your data and handle our servers. These providers operate under strict data-protection agreements with us.

Our fraud-detection system uses third-party tools to identify suspicious patterns. These tools see your transaction history and login IP addresses but do not see your ID number or payment account details. We also work with auditors and regulators (where required by local law) who may request your account records for investigation.

If we are required by law — for example, a court order or request from tax authorities — we may disclose your data to government agencies. We notify you of such requests when permitted by law. Our servers may be located outside your jurisdiction (outside Indonesia, for example), which means your data may be stored in other countries subject to different legal standards. By using mudah, you consent to this cross-border data transfer.

Your Rights Regarding Data on mudah

You have the right to access your personal data. Log into mudah and view your account settings, transaction history, and personal details. You can also email our support team and request a full data export — we will provide it within 30 days.

You have the right to correct inaccurate data. If your name, address, or other details are wrong, contact support and we will update them. You have the right to delete your data, with certain exceptions. We must retain your transaction records and ID information for compliance purposes (typically three to seven years). After that period, we can delete personal data upon request.

You have the right to withdraw consent if we are processing your data based on consent (as opposed to legal requirement). For example, if you opted into marketing emails, you can opt out anytime. To exercise any of these rights, email our support team with your request. We will respond within 30 days and explain any restrictions — for example, why we cannot delete recent transaction records.

Data retention note: We keep your login and game-activity logs for one year. We keep your transaction records and ID verification for three to seven years depending on local law. After this period, we delete personal data unless we are required to retain it by law.

How We Protect Your Data on mudah

We use encryption (TLS/SSL) for all data in transit between your device and mudah servers. Your password is hashed and salted — we do not store it in plain text. We use multi-factor authentication (email and phone verification) to prevent unauthorized login. Our servers are firewalled and monitored 24/7 for intrusions.

We restrict access to your data: only employees who need it (support staff, compliance officers, fraud investigators) can view your records. We audit access logs regularly. If a data breach occurs, we notify affected players within a reasonable timeframe and inform them of remedial steps.

We conduct annual security assessments and penetration testing. We maintain backups of all data to protect against loss. However, no system is non-specific info secure — we cannot guarantee that data breaches will never occur. If you are concerned about a specific security issue, contact our support team immediately.

Cookies and Tracking on mudah

We use cookies to keep you logged in on mudah and to remember your preferences (e.g., dark mode, language). These are essential cookies — you cannot disable them without breaking your account. We also use optional cookies to track your behavior within mudah: which games you click, how long you spend on each page, what devices you use. These help us improve the platform.

You can disable optional cookies in your browser settings. Your browser's do-not-track signal is respected — if you enable it, we reduce tracking. We do not use third-party tracking pixels or Google Analytics on mudah. We do not share your behavior data with advertisers outside mudah.

Session cookies expire when you close your browser. Persistent cookies (used for "remember me" login) expire after 90 days of inactivity. You can clear cookies anytime in your browser settings.

Contact Us About Privacy on mudah

If you have questions about our privacy practices, want to access your data, or wish to file a complaint, contact our support team. We respond to data-access requests, deletion requests, and privacy concerns within 30 days. Email us or use the live chat on mudah.

If you believe mudah has violated your privacy rights and we do not resolve your concern, you may file a complaint with your local data-protection authority. In Indonesia, this is the Otoritas Jasa Keuangan (OJK) or equivalent consumer-protection office in your region. You also have the right to pursue legal action under your jurisdiction's data-protection law.

We update this privacy policy from time to time to reflect changes in our practices or local law. We notify you of material changes via email or in-app message. Continued use of mudah after a change takes effect means you accept the updated policy. Check back regularly to stay informed of updates.