sgt138 Privacy Policy

This page describes what we collect when you use sgt138 and how we keep that data protected. We collect personal information to verify your identity, process your deposits and withdrawals, and improve your experience on our platform. We do not sell your data to third parties, and we encrypt all sensitive information using industry-standard security protocols.

Our privacy practices cover all activities on sgt138 — creating your account, funding it via DANA, e-wallet, mobile banking, local payment, online payment, or direct bank transfer, playing our sportsbook markets (Liga 1, Piala AFF, Champions League, badminton, MotoGP), accessing our live-dealer tables (blackjack, roulette, baccarat, Dragon Tiger), spinning our slot games (Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways), and engaging with esports markets (Mobile Legends, Free Fire, PUBG Mobile). We treat your data the same way across all these activities.

We operate our servers in multiple jurisdictions, which means your data may be stored or processed outside Indonesia. We apply the same data protection standards to data processing wherever it occurs. If you have specific questions about how we handle your information, our support team can clarify our practices. Please read this policy carefully before you create an account on sgt138.

What Data We Collect and Why

We collect your name, date of birth, email address, and mobile phone number when you register for sgt138. We use this information for account creation, identity verification, and contacting you about account updates or support issues. We require a valid government-issued ID — national identity card, passport, or driving licence — to confirm your identity before you can stake funds.

We also collect your payment information when you deposit. If you use DANA, e-wallet, mobile banking, local payment, or online payment, we receive only confirmation that your payment was processed; we do not store your wallet credentials. If you use a bank transfer (e-wallet, mobile banking, local payment, or online payment), your payment provider shares only confirmation data with us, not your full banking credentials.

We log your gameplay activity — every bet you place, game outcome, and cash-out — to maintain your account history and settlement records. This information is stored in your Transaction History, which you can review anytime from your account dashboard. We use this data to calculate your account balance, process withdrawals, and investigate disputes if they arise.

We collect limited technical data — your IP address, device type, browser version, and login timestamps — for security purposes. We use this information to detect unauthorized access attempts, prevent fraud, and improve our platform's performance. We do not use this data for marketing or third-party advertising.

We do not collect behavioral data for profiling

We do not track your browsing history, game preferences, or betting patterns for the purpose of building a user profile or targeting you with personalized promotions. We use your gameplay data only to maintain your account and settle game outcomes.

How We Use Your Data

We use your identity data to comply with Know Your Customer (KYC) regulations that apply in the jurisdictions where we operate. We verify your identity before allowing you to stake funds, and we may ask for additional documentation if our initial verification cannot confirm your details. This process protects both you and our platform from fraud and regulatory non-compliance.

We use your contact information — email and phone number — to send you account notifications (deposit confirmations, withdrawal approvals, password reset links, login alerts). We do not send marketing emails or promotional messages unless you explicitly opt in via your account settings. Push notifications to your mobile device can be controlled in your sgt138 app settings; you can disable all notifications or choose which types to receive.

We use your transaction data to calculate your account balance, process withdrawals, prevent duplicate claims or chargebacks, and respond to disputes. If you request a withdrawal, we review your transaction history to verify that your balance is sufficient and that your account has no security flags. We also use transaction data to comply with anti-money-laundering (AML) regulations in supported jurisdictions.

We use your technical data (IP address, device info, login patterns) to identify suspicious activity. If we detect unusual login attempts from new devices or locations, we may ask you to confirm the activity via two-factor authentication (2FA) before allowing the action. This protects your account from unauthorized access.

Data Retention and Deletion

We retain your identity data and transaction history for the duration of your account and for a minimum of seven years after account closure. This retention period is required by regulatory and anti-money-laundering rules in the jurisdictions where we operate. We cannot delete historical transaction data even if you request it, because we must preserve records for regulatory compliance.

If you close your account voluntarily, we move your data to an archived state. We do not use archived data for any purpose other than regulatory compliance and dispute investigation. We do not sell or share archived data with third parties.

If you request deletion of your account and associated personal details, we comply with your request to the extent permitted by law. However, we retain anonymized transaction data and historical records where required by regulation. You can request deletion by contacting our support team — we will process your request within thirty days where legally possible.

Identity data retention: We retain your ID, name, and contact information for seven years minimum after account closure, as required by KYC regulations.
Transaction data retention: We retain your complete transaction history (deposits, withdrawals, game activity) for seven years minimum, required for AML compliance.
Technical data retention: We retain login logs and IP data for up to one year unless longer retention is required for security investigation.
Voluntary deletion request: You can request deletion of your account via support. We comply where legal; regulatory-required data remains archived.

Third-Party Data Processors

We use third-party payment processors to handle deposits and withdrawals. When you deposit via e-wallet, mobile banking, local payment, online payment, or e-wallet, your transaction is processed by those companies' systems. We do not have direct access to your wallet credentials; those companies retain full responsibility for your payment data. Similarly, when you use mobile banking, local payment, online payment, or e-wallet for bank transfers, those banks handle your banking information under their own privacy policies.

We use a hosting provider to store our servers. Our servers may be located in multiple jurisdictions, including outside Indonesia. We have a data processing agreement with our hosting provider requiring them to maintain the same security standards we use and to never use our data for their own purposes.

We do not share your personal data with marketing companies, analytics firms, or advertising networks. We do not use your data to build profiles for targeted advertising. If we become aware of a data breach or security incident that may affect you, we will notify you within forty-eight hours of discovery where legally required to do so.

Your Data Rights and Account Security

You have the right to access your data anytime by logging into your sgt138 account and reviewing your profile and transaction history. You have the right to request correction of inaccurate data — if your registered name or email is wrong, contact our support team and we will correct it within five business days. You have the right to request deletion, though we must retain data where regulation requires it.

We protect your password using industry-standard encryption. Your password is never stored in plain text; we store only an encrypted hash. If you forget your password, we send a secure reset link to your registered email. You can reset your password anytime from the login screen. If you suspect your account has been accessed without permission, reset your password immediately and contact our support team.

We use two-factor authentication (2FA) to protect sensitive actions. When you reset your password, request a withdrawal, or change your payment method, we send a one-time password (OTP) via SMS to your registered phone number. This adds an extra security layer that prevents someone from accessing your account even if they know your password.

We use HTTPS encryption for all connections to sgt138. This means data transmitted between your device and our servers is encrypted and cannot be intercepted. All stored data — including your identity details, payment information, and transaction history — is encrypted at rest on our servers.

Cookies and Tracking

We use session cookies to keep you logged in while you use sgt138. A session cookie expires when you close your browser or log out manually. We do not use persistent tracking cookies that follow you across the internet.

We use analytics cookies only to measure how users interact with our platform — for example, which games are most popular, how many users access sgt138 from Jakarta versus Surabaya versus Bandung versus Medan, or which payment methods users prefer. This data helps us improve our platform. We do not use these analytics to identify individual users or to target you with advertisements.

You can disable cookies in your browser settings. However, disabling session cookies will log you out of sgt138 and may prevent you from using the platform. You can choose to disable analytics cookies without affecting core functionality.

Cross-Border Data Transfers

Our servers may be located in jurisdictions outside Indonesia. When we transfer your data to servers in other countries, we apply the same encryption and security standards we use domestically. We have contractual guarantees with our hosting providers requiring them to maintain these standards.

Different countries have different data protection laws. By using sgt138, you acknowledge that your data may be processed in jurisdictions with privacy laws different from Indonesia's. However, we apply a consistent standard of protection regardless of where your data is processed or stored.

If you have questions about how your data is handled on sgt138, or if you wish to exercise your data rights, contact our support team. We are available to clarify our practices and assist you in managing your account information and privacy preferences.

Contact Us About Privacy

Our privacy practices are designed to be transparent and respectful of your data. We do not use pressure tactics, hidden fees, or deceptive practices — the same principle applies to how we handle your information. We collect only what we need to run our platform, verify your identity, and process your payments. We do not sell your data, and we do not share it with third parties except where necessary for payment processing or regulatory compliance.

If you have privacy concerns, questions about how we use your data, or requests to access, correct, or delete your information, contact our support team through your sgt138 account dashboard. We aim to respond to privacy inquiries within fourteen days. If you believe we have mishandled your data in violation of this policy, you may escalate your concern to our senior management for review.

This privacy policy is subject to change. We may update it at any time by posting a revised version on this page. We will notify you of material changes via email if they significantly alter how we handle your data. Your continued use of sgt138 after such changes indicates your acceptance of the revised policy. Thank you for trusting us with your information on sgt138.