samosir Platform Privacy Notice
This page describes what we collect when you use samosir and how we keep that data protected. We collect information you provide directly—such as your email, phone number, name, and address during account registration—as well as information generated when you use our platform, including your activity history, device details, and IP address.
We process your data to deliver samosir services: account verification, payment processing via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, and e-wallet; fraud prevention; and customer support. Our servers may sit outside your jurisdiction. We do not sell personal data to third parties. We share information only with payment processors and legal authorities where required by law.
Our services on samosir are available only where local law permits. If you have questions about how we handle your information, contact us via in-app help or email.
What data we collect on samosir
We collect information in two ways. First, information you provide: email address, phone number, full name, date of birth, residential address, and payment method details. You submit this during samosir account registration and identity verification (KYC). Second, information we gather automatically: your IP address, device type (Android, iOS, or web browser), operating system version, browsing activity within samosir, selections you make, deposit and withdrawal history, and timestamps of your actions.
When you use samosir sportsbook (Liga 1, Piala AFF, Champions League markets), live-dealer tables (blackjack, roulette, baccarat, Dragon Tiger), or slot games (Aviator, Sweet Bonanza, Gates of Olympus), we log your activity for account reconciliation and fraud detection. When you deposit or withdraw via your chosen payment method, payment processors pass transaction confirmations to our samosir servers.
- Account registration data: email, phone, name, date of birth, address
- Payment information: virtual account numbers, e-wallet linked accounts, transaction IDs
- Activity logs: selections placed, games played, balance updates, login timestamps
- Device and network data: IP address, device model, browser version, operating system
- Communication data: support tickets, messages sent via in-app help
How we use your data on samosir
We use your personal information to operate samosir. Your email and phone enable account recovery and notifications. Your name, date of birth, and address are required for identity verification before your first withdrawal, as part of anti-money-laundering (AML) compliance. Your payment method details are encrypted and shared with our payment partners (DANA, e-wallet, mobile banking processors, and bank partners) to process deposits and payouts.
We analyze your activity on samosir to detect fraud, prevent account takeovers, and enforce our terms. We may contact you via email or SMS if we detect suspicious activity or if you request password reset. We retain your data for the duration of your samosir account plus a retention window for regulatory compliance and dispute resolution.
- Account operations
- We use your data to register, verify, and maintain your samosir account; process payments; and send account notifications.
- Fraud prevention
- We analyze IP addresses, login patterns, and transaction history to detect and block unauthorized access to samosir.
- Legal compliance
- We retain KYC data and transaction records for AML and tax compliance as required by Indonesian financial regulations.
Third-party processors and data sharing on samosir
We do not sell your personal data to third parties. We share information only with processors necessary to operate samosir: payment gateways (local payment, online payment, e-wallet, mobile banking, local payment, online payment networks, and bank acquirers for e-wallet, mobile banking, local payment, online payment), email and SMS providers for notifications, and legal authorities when required by court order or law enforcement request.
Our samosir servers are hosted on cloud infrastructure; some servers may be located outside Indonesia. Data transferred across borders is encrypted in transit. We do not permit third-party processors to use your data for their own marketing or analytics. If a processor is compromised, we undertake to notify you and the relevant regulatory authority within a reasonable timeframe.
We encrypt your samosir data in transit and at rest. Your payment information never leaves our encrypted vaults except to authorized payment processors.
Your rights regarding samosir account data
You have the right to request access to your personal information held on samosir. You may ask us to correct inaccurate data in your profile (name, address, phone). You have the right to request deletion of your samosir account and associated data, subject to our retention obligations for fraud prevention and legal compliance. To exercise these rights, contact our support team via in-app help or email with "Data Subject Request" in the subject line.
We will respond to your request within thirty days. If your request requires us to delete data needed for ongoing fraud investigation or regulatory reporting, we may retain that data until the investigation closes or the legal hold expires. We will not deny your request without explanation.
Cookies and tracking on samosir
Our samosir platform uses cookies to maintain your login session, remember your preferences, and track usage patterns for security and performance optimization. Cookies are small text files stored on your device. You can disable cookies in your browser settings, but doing so may limit samosir functionality (e.g., you will be logged out after each session).
We do not use cookies to track you across third-party websites. We do not share cookie data with advertisers. Analytics cookies on samosir are first-party only and used to measure page load times and feature usage.
Our samosir privacy commitments
We undertake to keep your personal information secure. We use industry-standard encryption (TLS 1.2 or higher) for data in transit and AES-256 encryption for data at rest. Our samosir infrastructure undergoes regular security audits. If you suspect a data breach, contact us immediately via in-app support or email.
We will not use your data for purposes other than those listed in this privacy notice without your explicit consent. If we change our privacy practices, we will update this notice and notify you via email. Your continued use of samosir after a policy update constitutes your acceptance of the new terms.
Our services on samosir are available only where local law permits. If your jurisdiction has specific data-protection laws (e.g., personal data notification requirements), you are responsible for verifying that our privacy practices comply with your local regulations. We recommend reviewing our terms and this privacy notice before opening a samosir account.