rp8 Privacy Policy

This page describes what we collect when you use rp8 and how we keep that data protected. Whether you access our platform via Android APK, iOS browser, or desktop, we encrypt your personal information in transit and at rest. We collect only the data necessary to verify your identity, process your deposits and withdrawals, and comply with applicable law.

We at rp8 do not sell your personal information to third parties. We may share your data with payment processors (for DANA, e-wallet, mobile banking, local payment, online payment, and bank transfers), compliance partners, and law enforcement when legally required. Our servers may be located outside your jurisdiction, though we maintain security standards consistent with international best practices.

Your data rights include access to your account information anytime, the ability to update your personal details, and the right to request account deletion. This policy explains how we handle your data and your options for controlling it.

What Data We Collect

When you create an account on rp8, we collect your full legal name, email address, date of birth, and residential address. We require a government-issued photo ID and proof of address (such as a utility bill or official letter) to complete our KYC verification. We use this information to confirm your identity and comply with anti-money-laundering regulations in supported jurisdictions.

We also collect data about your account activity—every deposit, wager, settlement, and withdrawal is logged with a timestamp and transaction ID. We track your login history, including the date, time, and device type (Android, iOS, desktop) when you access your rp8 account. We collect information about your device, including its operating system, browser type, and IP address, to detect fraud and maintain account security.

Data we collect on rp8

  • Identity information: legal name, date of birth, address, photo ID, proof of residence.
  • Account activity: all deposits, wagers, settlements, withdrawals, and transaction timestamps.
  • Login history: dates, times, devices, and IP addresses of your account access.
  • Payment data: the payment method you use (DANA, e-wallet, mobile banking, local payment, online payment, or bank account), but not the full card number or bank account number (encrypted at payment processor).
  • Device information: operating system, browser type, and network details to detect fraud.

How We Use Your Data

We at rp8 use your personal information primarily to verify your identity, process your deposits and withdrawals, and settle your wagers. We use your email address to send you account notifications, password-reset links, and withdrawal confirmations. We use your activity history to detect fraud, investigate disputes, and comply with gambling regulations in jurisdictions where we operate.

We may share your data with our payment processors to complete your e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfers. These processors are bound by strict confidentiality agreements and process your data only to execute your payment instructions. We may also share your data with compliance partners and law-enforcement agencies when we are legally required to do so—for example, if we receive a court order or government request.

We use your login and device information to protect your account from unauthorised access. If we detect suspicious login attempts or unusual account activity, we may suspend your account temporarily and contact you to verify your identity. We do not use your data for marketing purposes, and we do not sell your information to third parties.

KYC Verification
Know-Your-Customer process that we undertake to confirm your identity and comply with anti-money-laundering law.
Encryption
All your personal information is encrypted during transmission and at rest on our servers using industry-standard protocols.
Data Retention
We retain your account data while your account is active and for at least five years after account closure to comply with regulatory requirements.
Third-Party Processors
We share your data with payment processors and compliance partners who are bound by strict confidentiality agreements.

Your Data Rights and Account Control

You have the right to access all data we hold about you anytime. You can view your account information, transaction history, and login record by logging into your rp8 account dashboard. You have the right to update your personal information (email address, residential address, phone number) at any time through your account settings. You have the right to request account deletion—we will permanently remove your data from our active systems, though we may retain anonymised records for compliance purposes.

If you believe your account has been accessed without authorisation, you can reset your password immediately through the login page. We support optional two-factor authentication (2FA) via SMS, which adds an extra security layer. If you enable 2FA, we will send you a unique code via SMS each time you log in from a new device. You can disable 2FA anytime through your account security settings.

We at rp8 respond to data access and deletion requests within thirty days. If you wish to exercise any of these rights, please contact our support team through the in-app help centre. We may request additional identity verification to ensure that we comply with your request securely.

Cookies and Tracking

Our rp8 platform uses cookies to maintain your login session and remember your preferences (such as language and notification settings). These cookies do not track your activity outside our platform. When you log in, we set a session cookie that expires after a period of inactivity; you can clear this cookie anytime by logging out or clearing your browser cache.

We do not use tracking pixels or third-party analytics cookies that would identify you across the web. We may use non-identifying analytics data to understand which features of rp8 are most popular and to improve our platform's performance.

Data Security and Cross-Border Transfer

We at rp8 encrypt all your personal information using TLS 1.2 or later during transmission to and from our servers. We store encrypted data on secure servers with restricted access and multi-factor authentication for our staff. Our servers may be located in jurisdictions outside Indonesia, including Southeast Asia, Europe, or North America. By using rp8, you acknowledge that your data may be processed and stored outside your home country, though we maintain security standards consistent with international best practices.

If our security is breached and your personal information is compromised, we will notify you by email within thirty days and will advise you of steps to protect your account. We maintain cyber-liability insurance and conduct regular security audits to prevent unauthorised access.

Our Data Protection Commitments

We commit to collecting only the data necessary to verify your identity, process your transactions, and comply with law. We commit to encrypting all your personal information and restricting access to our staff members who have a legitimate business need. We commit to processing your data-access and deletion requests within thirty days and to responding to your inquiries about how we handle your information.

We commit to not selling your personal information to third parties and to not using your data for marketing purposes you have not explicitly agreed to. We commit to maintaining data security standards consistent with international best practices and to notifying you promptly if any breach occurs. We commit to complying with applicable data-protection law in all jurisdictions where we operate, including regulations that grant you the right to access, correct, or delete your personal information.

Related guides

Legal
Terms & Conditions
10-min read
Company
About Us
5-min read
Help
Frequently Asked Questions
5-min read