joko Privacy Policy
This page describes what we collect when you use joko and how we keep that data protected. We collect personal information — your email, phone, identity documents, and payment details — to verify your account, process deposits and withdrawals, and comply with anti-money-laundering requirements. We do not sell your data to third parties, and we encrypt sensitive information on our servers.
Our privacy practices are designed around account security and regulatory compliance. When you open a joko account, we require KYC (Know Your Customer) verification using your government ID and proof of address. Your payment methods — DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet — are stored securely and never displayed in full on-screen. We log your account activity (login times, game sessions, withdrawals) for fraud detection and audit purposes.
We are transparent about how we use your data. This policy covers what we collect, how we process it, who has access, your rights, and how to contact us if you have concerns. Our services are available only where local law permits, and your data handling is subject to the jurisdiction where you access joko.
What we collect at joko
We collect information in several categories. Account registration: We collect your email address, phone number, full legal name, date of birth, and residential address. Identity verification: We collect a photo of your government ID (KTP, passport, or driving licence) and proof of address (utility bill, rental agreement, or bank statement). Payment information: We collect your payment method details — e-wallet account identifiers, QRIS codes, or bank account numbers — to process deposits and withdrawals.
Activity logs: We record your login times, IP addresses, device types, game sessions (which tables you join, which predictions you place), settlement outcomes, and withdrawal requests. Communication: If you contact our support team, we retain your messages and our responses. Cookies and tracking: Our website and app use cookies to remember your login state and preferences. We do not use cookies to track you across other websites.
We do not collect data you do not provide. We do not ask for your password twice, your mother's maiden name, or security questions. We do not track your location unless you explicitly enable location services on your device. We do not access your contacts, calendar, or other apps on your phone.
How we use your data at joko
We use your data for specific, necessary purposes. Account verification: We verify your identity using your ID and proof of address to comply with anti-money-laundering (AML) and Know Your Customer (KYC) regulations. This step is mandatory and protects both you and our platform. Payment processing: We use your payment details to process deposits and withdrawals. Your e-wallet or bank account is never stored in plain text; we encrypt it and store only a reference token.
Fraud detection: We analyse your login patterns, withdrawal requests, and game activity to detect unusual behaviour. If we flag a withdrawal as potentially fraudulent, we may delay it pending verification. Regulatory compliance: We retain your KYC documents and transaction history to comply with Indonesian financial regulations and to respond to lawful government requests. Customer support: We use your account history to assist you with disputes, settlement questions, or account recovery.
We do not use your data for marketing emails, SMS campaigns, or third-party advertising. We do not sell your email or phone number to other companies. We do not use your game activity to profile you or make automated decisions about your account (e.g., we do not ban you based solely on algorithmic analysis).
Third-party processors and data sharing
We use third-party service providers to operate joko. Payment processors: We share your payment details with e-wallet, mobile banking, local payment, online payment, e-wallet, and your bank (mobile banking, local payment, online payment, e-wallet) to process deposits and withdrawals. These companies are bound by their own privacy policies and data-protection agreements with us. Cloud hosting: Our servers may be located outside Indonesia. We use encrypted connections to protect data in transit.
Live-dealer studios: When you join a live blackjack, roulette, or baccarat table, your session is streamed from a third-party studio. The studio operator may log your session for quality assurance and fraud prevention. Support tools: We use third-party customer-support software to manage your help requests. Your messages are stored on encrypted servers.
We do not share your data with advertisers, data brokers, or social-media platforms. We do not sell your data. We share data with government agencies only in response to lawful requests (court orders, subpoenas, or regulatory investigations). If we receive such a request, we will notify you unless legally prohibited from doing so.
Your rights regarding your joko data
You have rights over your data. Access: You can request a copy of all personal data we hold about you. Log into your joko account and visit Settings > Data Export, or contact our support team. Correction: If your name, address, or phone number is incorrect, you can update it in your account settings. If your KYC documents are outdated, contact support to resubmit them.
Deletion: You can request deletion of your account and associated data. We will delete your account after you withdraw any remaining balance. We retain KYC documents and transaction history as required by law, but we will not use them for new purposes. Portability: You can request your data in a portable format (e.g., CSV) suitable for transfer to another service.
To exercise any of these rights, contact our support team via the Help section in your joko account or email us directly. We will respond within 30 days. If you believe we have mishandled your data, you have the right to lodge a complaint with your local data-protection authority.
Cookies and tracking at joko
Our website and app use cookies to improve your experience. Session cookies: We use cookies to keep you logged in and to remember your preferences (e.g., language, theme). These cookies expire when you close your browser. Persistent cookies: We use cookies to remember your login across sessions, so you do not have to re-enter your credentials every time.
We do not use cookies to track you across other websites or to build a profile of your browsing habits. We do not use third-party analytics cookies that would identify you personally. You can disable cookies in your browser settings, but this may affect your ability to use joko. We do not respond to "Do Not Track" signals because we do not track you across the web.
Security of your data at joko
We protect your data using industry-standard encryption and access controls. Encryption: All data transmitted between your device and our servers is encrypted using TLS (Transport Layer Security). Your password is hashed using a one-way algorithm; we cannot see your password, and neither can our staff. Access controls: Only authorised joko staff can access your personal data, and only for legitimate business purposes (account verification, support, fraud detection).
Server security: Our servers are protected by firewalls, intrusion detection, and regular security audits. We do not store full payment card numbers; we store only a token that our payment processor provides. Data breach response: If we discover a data breach affecting your information, we will notify you within 72 hours and describe the breach, the data affected, and steps we are taking to remediate it.
No security system is perfect. If you suspect your joko account has been compromised, change your password immediately and contact our support team. We recommend enabling two-factor authentication (2FA) in your account settings for additional protection.
We at joko encrypt your data, limit access to authorised staff, and retain it only as long as necessary for legitimate purposes.
Jurisdiction and data transfers
Our servers are located in multiple regions, including outside Indonesia. When you use joko from Jakarta, Surabaya, Bandung, Medan, or Semarang, your data may be transferred to and processed on servers in other countries. We use encryption and contractual safeguards to protect data in transit and at rest. By using joko, you consent to this international data transfer.
Our privacy practices comply with Indonesian data-protection regulations and the frameworks applicable to the jurisdictions where we operate. If you are in a jurisdiction with stricter data-protection laws (e.g., the European Union), we will comply with those laws as well. If you have questions about how your data is handled across borders, contact our support team.
Contact us about privacy
If you have questions about our privacy practices, want to exercise your data rights, or believe we have mishandled your information, contact us via the Help section in your joko account. You can also reach our data-protection team by email through the contact form on our website.
We will respond to privacy inquiries within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with your local data-protection authority or regulatory body. Our commitment is to handle your data transparently, securely, and in compliance with applicable law. For more information about your account, visit our Terms page or FAQ