mega 138Privacy Policy

This page describes what we collect when you use mega 138 and how we keep that data protected. Older operators often relied on broad consent banners; we at mega 138 prefer to spell out each data category, each processor, and the rights you can exercise against our records. The text below is the working version our compliance desk maintains.

We wrote this policy in plain English so members in Jakarta, Surabaya, and Bandung can read it without a legal dictionary. Our services are available only where local law permits, and your use of mega 138 confirms that you have read this notice.

We update this document when our processing activities change — for example, when we add a new payment partner such as OVO or rotate our hosting region. Material changes are flagged at the top of the page on mega 138 before they take effect.

What we at mega 138 collect and why

We collect the minimum information needed to run your account on mega 138, settle deposits and withdrawals, and meet record-keeping duties. The categories below cover everything our systems handle.

Account data on mega 138

We collect your email, mobile number, chosen username, and password hash when you register. We collect your full legal name, date of birth, and identity-document image during verification. Our KYC reviewers compare the document against the selfie you submit and then archive both files in an access-controlled vault.

Transaction data on mega 138

We record each top-up and payout, the rail you used (OVOe-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet), the masked account reference returned by the payment gateway, and the timestamp. We do not store full card numbers; our acquirer tokenises that data on its side.

Device and session data

Our servers log your IP address, device model, browser fingerprint, and the pages you opened on mega 138. We use these logs for fraud screening, debugging the live-dealer stream, and tuning our mobile app for low-data networks during peak Liga 1 kick-off windows.

Our mega 138 data-minimisation rule

We collect your email only to send transactional notices and account alerts; we do not sell it, and we do not pass it to advertising networks.

How we at mega 138 use your data

Our processing purposes are narrow and listed here:

We run your account on mega 138 — login, balance, bet history, and live-dealer table seating.
We screen deposits and withdrawals for fraud and chargeback patterns.
We meet AML and tax record-keeping duties under the law of our operating entity.
We send service messages — verification outcomes, payout confirmations, and policy updates.
We fix bugs, measure stream quality, and improve our app's loading time on slower networks.

Third-party processors mega 138 relies on

We share data with a short list of vendors who act on our written instructions. These include our cloud host, our KYC vendor, our payment gateways for mobile banking, local payment, and online payment, our SMS sender, and our customer-support tooling. Each processor signs a data-processing agreement with us before they touch a single record.

Our servers may sit outside your jurisdiction. When that happens, we rely on standard contractual clauses to keep the protection level consistent. We do not transfer your data to advertising brokers or data resellers.

Cookies and similar tech on mega 138

We set a session cookie so you stay logged in while moving between the sportsbook, the live-dealer lobby, and the slots library. We use a small number of analytics cookies to count visits during big windows such as Piala AFF finals or the run-up to Idul Fitri. You can clear these cookies in your browser at any time; doing so will sign you out of mega 138.

Your rights and how to contact mega 138

You can ask us to show you the data we hold, correct an error, or delete records that are no longer required by law. We answer requests within a reasonable window once we have confirmed your identity, since releasing account data to the wrong person would itself be a breach.

We retain verification files for the period our regulator requires, then we erase them on a scheduled cycle. We retain transaction logs for the statutory accounting term. After that, we anonymise or destroy the records.

Note: Members in Medan and Semarang who change phone number should update their contact details before requesting a withdrawal, so our SMS challenge reaches the right device.

To reach our privacy desk, open a ticket through the FAQ help channel or write to the address listed on our About us page. Our team replies in English and Bahasa Indonesia. If you would like the broader terms that govern your account, please read our Terms alongside this notice.

This document is the current privacy policy of mega 138. We will post the next revision on this same URL whenever our processing activities change in a material way.