mashokiPrivacy Policy

This page describes what we collect when you use mashoki and how we keep that data protected. Our privacy practice covers your personal information, payment details, account activity, and cookies. We operate with transparency: we explain why we collect each data type, how long we retain it, and who may access it.

When you download the mashoki Android app or access our platform via iOS browser, you share information with us. This includes your email, phone number, government ID, address proof (for account verification), and payment method details (for deposits and withdrawals via QRIS, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet). We explain below how we use, store, and protect each category of data.

Our privacy commitments reflect our jurisdiction-restricted operating model. Your data may reside on servers outside your country; we apply encryption and industry-standard security practices to protect it regardless of location. If you have questions, our support team can clarify our data handling.

What Data We Collect and How We Use It

Account and identity information on mashoki

We collect your email, phone number, and password when you create a mashoki account. This information allows us to verify your identity, send you account notifications, and reset your password if needed. We also collect your government-issued ID (passport, national identity card, or driving licence) and address proof (utility bill, bank statement, or lease agreement) as part of our KYC (Know Your Customer) verification. This data confirms your identity and jurisdiction eligibility before we permit deposits, wagering, or withdrawals.

We retain your account information for as long as your mashoki account is active, plus a period after closure to comply with anti-money-laundering regulations. We do not share your identity data with third parties except as required by law or regulatory bodies in supported jurisdictions.

Payment and financial data

When you deposit funds on mashoki via QRIS, e-wallets (e-wallet, mobile banking, local payment, online payment, e-wallet), or bank virtual accounts (mobile banking, local payment, online payment, e-wallet), we collect transaction details: your payment method, amount, timestamp, and transaction ID. We use this information to process deposits, verify fund receipt, and reconcile your account balance. We do not store full payment card numbers; instead, we receive tokenised references from our payment processors.

Withdrawal requests on mashoki require similar data collection: we record your requested amount, selected payment method, timestamp, and the destination account details you provide. We use this information to process withdrawals and maintain a transaction history. Our payment processors—the companies handling mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, and local payment transactions—may retain transaction logs per their own privacy policies.

Account Data

Email, phone, password, government ID, address proof — retained for account lifecycle plus regulatory holding periods.

Transaction Data

Deposit and withdrawal amounts, timestamps, payment method, transaction IDs — retained for financial reconciliation and compliance.

Activity Data

Sportsbook wagers, live-dealer game logs, slot-game sessions, esports bets — retained for settlement and dispute resolution.

Device Data

IP address, browser type, operating system, device identifiers — retained to detect fraud and ensure account security.

Gameplay activity and account monitoring

We collect data about your activity on mashoki: your sportsbook wagers (matches wagered on, bet types, amounts, outcomes), live-dealer game sessions (tables accessed, duration, results), slot-game plays (games launched, spin records, winnings), and esports market participation. We use this data to settle bets, calculate withdrawals, detect unusual account behaviour, and comply with anti-fraud and anti-money-laundering obligations.

We also collect technical data: your IP address, device type, browser version, operating system, and network characteristics. This information helps us identify fraudulent access attempts, prevent account takeover, and optimise our platform for different devices. During periods of high traffic—such as Liga 1 finals, Piala Indonesia knockout stages, or esports tournament peaks—we may log more intensive activity data to ensure system stability.

Cookies and tracking on mashoki

We use cookies and similar tracking technologies to remember your login status, language preference, and betting history. Session cookies (deleted when you close your browser) help us keep you logged in. Persistent cookies (retained across sessions) remember your preferences and allow us to personalise your mashoki experience. We do not use cookies to track you across unrelated websites; our cookies function only on the mashoki domain.

We also use analytics tools to understand how users interact with our platform: which game categories are accessed most, how long sessions last, and where users experience difficulty. This data is aggregated and anonymised; it does not identify you personally. We use these insights to improve our sportsbook, live-dealer offerings, slots, and esports markets.

Your Rights, Data Storage, and Contact Information

Your rights and data access on mashoki

We keep your data secure through HTTPS encryption, two-factor authentication, and restricted staff access. However, we note that our servers may reside outside your jurisdiction (outside Jakarta, Surabaya, Bandung, Medan, Semarang, or Yogyakarta), subject to applicable data-protection laws. You have the right to request access to your personal data held by mashoki, correct inaccurate information, or request deletion—subject to our legal obligations to retain data for anti-money-laundering and regulatory compliance.

To exercise these rights, contact our support team via the Help section on mashoki. We will respond to your request within a reasonable timeframe. Some data (such as transaction records required by law) may not be deleted, but we will explain any restrictions when you submit your request.

Third-party processors and data sharing

We work with third-party service providers—payment processors, hosting providers, analytics vendors, and customer-support platforms—who access limited data to perform their functions. QRIS, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, and e-wallet processors receive only the information necessary to process your deposits and withdrawals. Hosting providers store encrypted versions of your account and activity data. Customer-support platforms may access your account history to assist with queries or disputes.

We do not sell your personal data to marketers or data brokers. We share data with third parties only where necessary for service delivery or to comply with legal obligations (such as responding to regulatory requests from authorities in supported jurisdictions). Our payment processors operate under their own privacy policies; we recommend reviewing those policies if you wish to understand their data handling in detail.

We at mashoki protect your data through encryption, access controls, and transparent disclosure. Your information enables account verification, payment processing, fraud prevention, and platform improvement.

Data retention and deletion

We retain account data for as long as your mashoki account exists, plus additional periods required by anti-money-laundering regulations (typically 5-7 years after account closure). Transaction records are retained for settlement disputes and regulatory compliance. Activity logs (sportsbook wagers, game sessions) are retained for at least 12 months to support outcome verification and player disputes.

Device and cookie data are retained mobile bankingefly: session cookies are deleted when you log out, and persistent cookies expire within a few months. Analytics data is aggregated and anonymised; individual user identifiers are removed after 90 days. If you request account deletion, we remove personal data subject to legal-hold obligations; we will confirm what data we must retain and why.

Policy updates and contact

We may update this privacy policy to reflect changes in our operations, legal requirements, or security practices. We notify users of material changes via email and by updating the policy on mashoki. Continued use of our platform after policy updates constitutes acceptance of the revised terms.

• Questions about this policy? Contact our support team via the Help section on mashoki; responses are provided in English.
• If you believe we have mishandled your data, you may lodge a complaint with your local data-protection authority.
• Our privacy commitments apply to all mashoki users in supported jurisdictions worldwide.

We at mashoki operate with the principle that your data is held in trust. Your identity information enables account security and regulatory compliance. Your payment details support deposits and withdrawals via local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, or online payment. Your activity data ensures fair outcome settlement and fraud detection. Your device data protects your account from unauthorised access. We encrypt all sensitive data, restrict staff access, and apply industry-standard security controls. We do not sell or share your information except where required by law. If you have concerns about how we handle your privacy, our support team is available to discuss them.