glowby Privacy Policy

This page describes what we collect when you use glowby and how we keep that data protected. We collect personal information only to verify your identity, process your payments, and deliver our service. We do not sell your data to third parties, and we do not use your gaming history for marketing without your consent.

Our privacy practices comply with applicable data protection laws in jurisdictions where we operate. We store your information on encrypted servers and limit access to authorized staff only. This policy applies to all glowby users, whether you access our platform via web browser or mobile app.

If you have questions about how we handle your data, contact our support team via live chat or email. We respond to privacy inquiries within standard business hours.

What Data We Collect

Account registration and KYC

When you create a glowby account, we collect your email address, full name, date of birth, and phone number. Before you can withdraw funds or reach certain deposit thresholds, we ask for government-issued ID (KTP, passport, or regional equivalent) and proof of address (utility bill or bank statement). We store these documents in an encrypted vault separate from our main gaming database. After a set retention period (typically three years), we delete the stored documents, though we retain a record that verification was completed.

Payment and transaction data

We collect information about your deposits and withdrawals — the amount, date, payment method (DANA, e-wallet, mobile banking, local payment virtual account, etc.), and transaction status. We do not store raw payment card or bank account details. All transactions route through tokenized gateways; we retain only references issued by our payment processors. This architecture ensures that even if an unauthorized party accessed our database, they could not extract live banking information.

Payment tokens
We store encrypted references to your payment methods, not the raw card or account numbers. Your bank or e-wallet app handles the actual debit.
Transaction history
We retain records of all deposits and withdrawals for accounting and fraud-prevention purposes. This data is encrypted and access-controlled.
Retention period
We keep transaction records for at least seven years to comply with financial regulations in supported jurisdictions.

Gaming activity and account balance

We collect data about your gameplay — which games you play, your bet amounts, your winnings and losses, and your account balance. This data helps us detect fraud, resolve disputes, and provide customer support. We also track your login history, device information (browser type, operating system), and IP address. This information helps us identify unauthorized access attempts and protect your account.

Communication and support

When you contact our support team via live chat, email, or in-app messaging, we retain copies of your conversations. We use these records to resolve your issue, train our support staff, and improve our service. We do not share support conversations with third parties unless required by law.

Note: We do not collect or store your password in plain text. We hash your password using industry-standard algorithms; only the hash is stored in our database.

How We Use Your Data

Service delivery and account management

We use your data to deliver glowby's services — processing your deposits and withdrawals, settling your bets, and maintaining your account. We verify your identity to comply with KYC regulations and prevent fraud. We use your email and phone number to send account notifications (login alerts, withdrawal confirmations, password resets). You can opt out of non-essential notifications in your account settings.

Fraud prevention and security

We analyze your account activity to detect suspicious patterns — unusual login locations, rapid balance changes, or unfamiliar payment methods. If we detect anomalies, we may lock your account temporarily and ask you to confirm the activity. We share fraud signals with our payment processors and anti-fraud partners to protect the broader ecosystem. We do not share your personal information with these partners beyond what is necessary to prevent fraud.

Legal compliance and regulatory reporting

We may disclose your data to law enforcement, tax authorities, or financial regulators if required by law. We comply with anti-money-laundering (AML) regulations in jurisdictions where we operate. We do not voluntarily share your data with government agencies; we respond only to valid legal requests.

Third-party processors

We use third-party service providers to process payments, host our servers, and analyze data. These processors are contractually bound to keep your data confidential and use it only for the purposes we specify. Our payment processors (DANA, e-wallet, mobile banking operators, and Indonesian banks) receive only the information necessary to process your transaction. Our hosting provider stores encrypted backups of your account data in geographically separated locations. Our analytics provider receives aggregated, anonymized data about user behavior — never personal information.

Data location and cross-border transfer

Our servers may sit outside your jurisdiction. By using glowby, you consent to your data being transferred to and stored in countries outside Indonesia. We maintain the same security standards regardless of server location. If you do not consent to cross-border data transfer, you should not use our platform.

Cookies and tracking

We use cookies to remember your login session, store your preferences, and track your activity on our platform. Cookies are small text files stored on your device. You can disable cookies in your browser settings, but this may limit your ability to use glowby. We do not use cookies to track you across other websites. Our analytics tools may set cookies to measure traffic and user behavior; these are used only to improve our service.

Your rights and data access

You have the right to access, correct, or delete your personal data. Log into your glowby account to view and update your profile information. To request a copy of all data we hold about you, contact our support team. We will provide your data in a portable format within standard processing windows. To request deletion of your account and associated data, contact support; we will delete your account after a standard retention period (typically 30 days) to allow for dispute resolution.

Note: We retain transaction records for at least seven years to comply with financial regulations. Even after account deletion, we keep anonymized transaction data for regulatory reporting.

Policy updates

We may update this privacy policy from time to time. We will notify you of material changes via email or by posting a notice on the glowby site. Your continued use of our platform after changes take effect constitutes your acceptance of the updated policy. We encourage you to review this page periodically to stay informed about how we protect your data.

Related pages

Policy
Terms and Conditions
Full service terms
About
About glowby
Our platform and commitments
Help
FAQ
Common questions answered