megahok Casino & Sportsbook Data Care

This page describes what we collect when you use megahok and how we keep that data protected. When you register an account, deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or a bank virtual account (mobile banking, local payment, online payment, e-wallet), and place wagers on our sportsbook, live-dealer tables, slots, or esports markets, we collect personal, financial, and behavioural data. We store it securely and share it only with authorized staff or third parties necessary to deliver our service.

Our commitment is straightforward: we collect only what we need, we protect it with encryption and access controls, and we do not sell it to advertisers or data brokers. This policy explains what we collect, how we use it, where it may be stored, your rights, and how to contact us if you have concerns.

We serve users in Jakarta, Surabaya, Bandung, Medan, Semarang, Yogyakarta, and other supported jurisdictions. Our servers and data processors may be located outside your jurisdiction. By using megahok, you acknowledge this cross-border data transfer.

What Data We Collect at megahok

We collect the following categories of data when you use megahok:

  • Account registration data: email address, password hash, full legal name, date of birth, phone number, residential address.
  • Identity verification data: government-issued ID document, proof of residential address (utility bill, bank statement, rental contract). We upload these to a secure vault and retain them for compliance purposes.
  • Payment data: payment method type (e-wallet provider or bank name), transaction amounts, deposit and withdrawal dates, and transaction IDs. We do not store full credit card numbers or e-wallet credentials—those are tokenized and encrypted by our payment processors.
  • Behavioural data: games you play, wagers you place, your win/loss history, time spent on each game, and device information (browser type, operating system, IP address).
  • Communication data: emails you send to our support team, in-app chat messages, and support tickets.

We do not collect data from cookies alone

We use cookies to recognize your session, remember your preferences, and prevent fraud. You can disable cookies in your browser, but some megahok features may not work properly without them.

How We Use Your Data at megahok

We use the data we collect for the following purposes:

  • Account management: creating and verifying your account, storing your game history and balance, processing deposits and withdrawals.
  • Regulatory compliance: Know Your Customer (KYC) verification, anti-money-laundering screening, sanctions-list matching, and record retention for regulatory review.
  • Fraud prevention: detecting duplicate accounts, suspicious transactions, collusion, and unauthorized access.
  • Customer support: responding to your inquiries, resolving disputes, and improving our support processes.
  • Service improvement: analysing player behaviour to identify bugs, improve game performance, and refine our user interface.
  • Legal obligations: responding to court orders, government requests, or regulatory investigations where we are legally required to disclose data.

We do not use your data for marketing to third parties. We do not sell email addresses, phone numbers, or behavioural profiles to advertisers or data brokers. If we send you promotional messages, they come directly from megahok, not from external partners.

Third-Party Processors We Work With

We use the following categories of third parties to deliver our service:

  • Payment processors: DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet receive transaction data to process your deposits and withdrawals. They operate under their own privacy policies.
  • Game providers: Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways, and live-dealer studios (blackjack, roulette, baccarat, Dragon Tiger) may receive your account ID and stake information to settle game outcomes.
  • Cloud hosting: We may store backups and logs on third-party cloud servers to ensure data redundancy and disaster recovery.
  • Compliance vendors: We use Know Your Customer verification services and sanctions-screening tools to meet regulatory requirements.

We sign data-processing agreements with all third parties, requiring them to protect your data with the same standards we enforce. We do not permit them to use your data for their own purposes.

Your data at megahok flows only to the parties necessary to deliver our service. We do not broadcast it, sell it, or share it for marketing purposes.

megahok data governance team

How We Protect Your Data

We apply multiple security layers to protect your megahok data:

  • Encryption in transit: All communication between your device and our servers uses SSL (Secure Sockets Layer), a cryptographic protocol that scrambles data in transit.
  • Encryption at rest: Sensitive data (passwords, payment tokens, KYC documents) is encrypted using AES-256, a military-grade encryption standard, before storage.
  • Access controls: Only authorized staff can access your data, and access is logged and audited regularly.
  • Password hashing: Your password is hashed using bcrypt, a one-way function, so even our staff cannot read it.
  • Multi-factor authentication: Available on your account settings. We recommend enabling it for added security.

No security system is perfect. If you suspect your megahok account has been compromised, contact our support team immediately. We can reset your password, review your transaction history, and freeze your account if necessary.

Your Rights at megahok

We recognize your data rights. You have the right to:

  • Access: Request a copy of all data we hold about you at megahok. We will provide it within thirty days.
  • Correction: If data is inaccurate, ask us to correct it. We will update it promptly.
  • Deletion: Request deletion of your account and associated data (except where we are legally required to retain it for compliance or dispute resolution).
  • Portability: Request that we transfer your data to another service in a machine-readable format.
  • Opt-out: Unsubscribe from promotional messages at any time via your account settings or by contacting our support team.

To exercise any of these rights, contact our support team with your request and account email address. We will verify your identity and respond within thirty days.

Our Use of Cookies & Tracking

We use cookies to enhance your megahok experience. Session cookies remember you as you move between pages. Persistent cookies store your login preference and game settings. We use no tracking pixels or cross-site tracking.

Your browser stores cookies locally on your device. You can delete them at any time or disable cookies entirely in your browser settings. Some megahok features may not function without cookies—for example, you may need to log in more frequently.

We do not use third-party cookies for advertising or analytics tracking. Any analytics we perform use aggregated, anonymized data only.

How Long We Retain Your Data

We retain your megahok data as follows:

  • Account data: Active accounts retain all data while the account is open. After account closure, we retain anonymized game history and transaction records for seven years for regulatory compliance.
  • KYC documents: We retain identity and address documents for the duration of your account plus three years afterward, then securely delete them.
  • Payment data: Transaction records are retained for at least seven years per banking regulations.
  • Support communications: We retain support tickets and emails for two years unless they are related to an ongoing dispute, in which case we retain them until resolved.

How to Contact Us About Your Data

If you have questions about how we handle your data at megahok, or if you wish to exercise your data rights, contact our support team via email or in-app messaging. Provide your account email address and a clear description of your request.

We respond to all data requests within thirty days. If we cannot comply with your request, we will explain why in writing. You have the right to escalate any data concern to your local data-protection authority.

Our privacy practices comply with applicable data-protection regulations in supported jurisdictions. This policy may be updated as we evolve our service or as regulations change. We will notify you of material changes via email.