puzzles Platform Privacy Notice

This page describes what we collect when you use puzzles and how we keep that data protected. Our privacy practices are built around one principle: your personal information belongs to you, and we handle it with care, transparency, and respect for your rights.

When you open the puzzles app on Android, log in via iOS browser, or access our desktop site, we collect certain data—your email, phone number, identity documents for verification, and payment details. We explain below exactly what we collect, why we need it, who has access, and how long we keep it.

We do not sell your data to marketers or data brokers. We share information only with necessary partners (payment processors, compliance authorities) and our own teams. If you have questions about your privacy on puzzles, our support team can clarify any part of this notice.

What Data We Collect on puzzles

Account Registration and Login

When you open an account on puzzles, we collect your email address, mobile phone number, full name, and date of birth. These are mandatory fields—without them, we cannot create your account. We use email for login verification and password resets; we use your phone for optional two-factor authentication and support contact.

We also collect your country and city of residence. This helps us comply with jurisdiction rules and route your support requests to the right team. If you're based in Jakarta, Surabaya, Bandung, or Medan, this information helps us ensure our service is lawfully available to you.

Identity Verification and KYC

To withdraw funds from puzzles, we ask for identity verification: a government-issued ID (passport, national ID card), a proof of residential address (utility bill, bank statement), and sometimes a selfie holding your ID. These documents are encrypted and stored securely on our servers. We use them only to verify your identity and comply with anti-money-laundering regulations—we do not share them with third parties except where legally required.

Our verification process typically completes within 24 hours. If documents are unclear or inconsistent, we ask you to resubmit. During review, your account remains active for deposits and play; only withdrawals are temporarily held pending clearance.

Payment Information

We collect payment details when you deposit or withdraw. For DANA, e-wallet, mobile banking, and local payment, we store only your registered phone number and a reference to your wallet. We do not store your wallet password or PIN. For bank transfers (online payment, e-wallet, mobile banking, local payment), we store your account name and account number. For online payment, we store a transaction reference, not card data.

Payment data is encrypted in transit (using TLS 1.2 or higher) and encrypted at rest on our servers. Our payment processor handles actual transaction processing; puzzles never sees your full card details or complete bank credentials. This separation protects your financial security.

Gaming and Betting Activity

We log every bet you place on puzzles: the game type (sportsbook, live dealer, slots, esports), the amount wagered, the outcome, and the settlement time. We keep this data to generate your account history, settle disputes, and detect fraud. You can view your complete betting history in your account under "Transaction History"—every entry is timestamped and includes the game, wager, and result.

This logging is essential for fair play. If you dispute a settled bet, we investigate your transaction log against our source operator's records (Liga 1 match data, Evolution Gaming studio logs, or RNG certificates). Without this data, we could not prove the legitimacy of any outcome.

We collect your data to serve you securely, not to monitor you beyond what's necessary to operate puzzles fairly and compliantly.

puzzles Privacy Team

Device and Access Information

We collect information about the device you use: your phone model (Android or iOS), operating system version, IP address, and browser type. We use this to diagnose app crashes, optimize performance, and detect unauthorized access attempts. If we see login attempts from an unusual location or device, we may ask you to re-verify or lock your account as a precaution.

We also log your app installation and update history—this helps us support old app versions and notify you when updates are available. Push notification preferences are stored on our servers so you receive only the alerts you want (match results during Liga 1 season, settlement confirmations, promotional updates).

Third-Party Data Sharing

We share your data only when necessary and always under strict confidentiality agreements. Our payment partners (e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, and banks) receive your transaction details to process deposits and withdrawals. Our fraud-prevention partners receive limited data (login IP, device info, betting patterns) to detect suspicious activity. Our compliance officers may receive account details to investigate potential violations of our terms.

We do not share your email, phone, or personal data with marketing vendors or data brokers. If you opt into promotional emails, those are sent only by puzzles, not by partner companies. You can disable promotional emails anytime in your account settings.

Note: We may disclose your data if required by law (a court order, regulatory authority, or law enforcement request). When this happens, we attempt to notify you unless we are legally prohibited from doing so.

Your Rights and Our Commitments

Data Retention

We retain your personal data for the duration of your account and for a minimum of seven years after closure, to comply with anti-money-laundering and tax regulations. This means your account history, identity documents, and payment records remain on file even after you delete your account. We do not delete data early except in exceptional circumstances (a verified error in collection, for instance).

After seven years, we delete or anonymize your data, retaining only aggregated statistics (total bets placed, total payouts) that cannot be traced to you. Anonymized data may be used for platform analytics and improvement.

Your Privacy Rights on puzzles

You have the right to access your data: contact us and we'll provide a copy of all personal information we hold on you within 10 business days. You have the right to correct inaccurate data—if your address or phone number is wrong, update it in your account settings immediately, or contact support.

You have the right to request deletion of your data, subject to legal limits. We cannot delete identity documents or transaction records within the seven-year legal retention period, but we can delete other optional information (profile photo, security questions, saved addresses). Request deletion via your account settings or by contacting us.

You have the right to object to our processing of your data for marketing or analytics purposes. You can disable promotional emails and push notifications in your account settings. You have the right to data portability: we can provide your account data in a standard format (CSV or JSON) so you can move it to another service if needed.

Cookies and Tracking

We use cookies on our website and local storage on our mobile app to remember your login, language preference, and settings. These are session cookies (deleted when you log out) or persistent cookies (lasting up to one year). We do not use cookies for tracking across third-party websites. We do not plant tracking pixels or use cross-site analytics without your consent.

On your Android app, push notifications are controlled by your device settings—you can enable or disable them via your phone's notification manager. On iOS browser, we request permission to send alerts; you can deny or revoke permission anytime. We do not track your location or microphone without explicit permission.

Data Security and Encryption

We encrypt all data in transit using TLS 1.2 and all data at rest using AES-256. Our servers are hosted in secure data centres with physical access controls, fire suppression, and redundant power. We perform regular security audits and penetration testing. If we detect a breach, we notify affected users within 72 hours and provide guidance on securing their accounts.

We limit employee access to personal data—only our support, compliance, and fraud-prevention teams can view it, and only when necessary. All employees sign confidentiality agreements and are trained on privacy protocols. We do not store passwords in plain text; they are hashed using bcrypt with a random salt.

International Data Transfers

Our servers may sit outside your jurisdiction. When you use puzzles from Indonesia, your data may be processed in data centres in other countries. By using puzzles, you consent to these transfers. We apply the same security and privacy protections regardless of server location. If you object to international transfers, you should not use puzzles.

Contact and Complaints

If you have questions about our privacy practices, contact our support team via email or live chat. We respond to privacy inquiries within 5 business days. If you believe we've violated your privacy rights, you can file a formal complaint with your national data protection authority or through our support team. We take all complaints seriously and investigate within 15 business days.

This privacy notice was last updated recently and applies to all users of puzzles, whether accessing via Android app, iOS browser, or desktop. We may update it to reflect changes in our practices or legal requirements. Material changes will be announced in-app and via email. Continued use of puzzles after an update constitutes acceptance of the new privacy notice.