demi Privacy Policy
This page describes what we collect when you use demi and how we keep that data protected. We collect personal information to operate our platform, process payments, verify your identity, and comply with anti-money-laundering regulations. We do not sell your data to third parties, and we do not use it for marketing purposes beyond account-related communications.
Our data handling practices follow standard industry security protocols. We encrypt sensitive information in transit and at rest. Our servers may sit outside your jurisdiction, but we apply the same data protection standards regardless of server location. We retain data only as long as necessary to fulfill the purposes outlined here or as required by law.
If you have questions about how we handle your data, contact our support team. We can explain our practices in plain language and help you exercise your rights under applicable data protection law.
What Data We Collect on demi
We collect information in three categories: account information, payment information, and gameplay data. Account information includes your name, email address, date of birth, phone number, and residential address. We require this to create your demi account and verify your identity.
Payment information includes your payment method details—bank account numbers, mobile wallet identifiers, or card information. We do not store full card numbers on our servers. Payment processing is handled by our trusted payment partners (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet). We store only a reference token that allows us to process future transactions without retaining the full payment details.
Gameplay data includes your betting history, game selections, tournament participation, and account balance. We collect this automatically as you use demi. This data helps us calculate tournament leaderboards, process payouts, and detect fraudulent activity.
We also collect technical data: your IP address, device type, browser information, and access timestamps. This helps us maintain platform security and troubleshoot technical issues.
How We Use Your Data on demi
We use account information to create and manage your demi account, process your deposits and withdrawals, and verify your identity for compliance purposes. We use payment information solely to process transactions. We use gameplay data to calculate tournament standings, settle payouts, and detect fraud or rule violations.
We use technical data to maintain platform security, prevent unauthorized access, and improve our systems. We do not use your data for marketing, profiling, or any purpose beyond operating demi and complying with law.
We may contact you via email or SMS to confirm account activity, notify you of tournament results, or alert you to security issues. These communications are transactional—they relate directly to your account and are not marketing messages.
Third-Party Processors and Data Sharing
We share your data with third parties only when necessary to operate demi. Payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive payment information to process transactions. These processors have their own privacy policies and security standards. We do not control their practices, but we select partners that meet industry security requirements.
We may share data with law enforcement or regulatory authorities if required by law. We do not voluntarily share data with government agencies, but we comply with valid legal requests. We do not share data with marketing firms, data brokers, or any third party for commercial purposes.
If demi is acquired or merged with another company, your data may be transferred as part of that transaction. We would notify you of any such change and provide an opportunity to opt out if applicable.
We do not sell your data. We do not share it with advertisers. We use it only to operate demi and comply with law.
Your Rights and Our Data Practices
Your Rights Under Data Protection Law
You have the right to access your personal data. You can request a copy of all data we hold about you by contacting our support team. We will provide this information within 30 days in a readable format.
You have the right to correct inaccurate data. If your name, address, or other information is wrong, contact us and we will update it. You have the right to request deletion of your data, subject to legal retention requirements. If you close your demi account, we retain your data for seven years to comply with anti-money-laundering regulations. After that period, we delete it.
You have the right to object to certain uses of your data. If you do not want to receive transactional emails, you can opt out through your account settings. However, we will continue to send critical security alerts and account notifications.
Cookies and Tracking on demi
We use cookies to maintain your login session and remember your preferences. These are essential cookies—without them, demi would not function. We do not use cookies for tracking or advertising purposes.
You can disable cookies in your browser settings, but this will prevent you from using demi. We do not use third-party tracking pixels, analytics cookies, or any tracking technology beyond what is necessary to operate the platform.
How Long We Keep Your Data
We retain account information for the duration of your membership plus seven years after account closure. This seven-year window is required by anti-money-laundering regulations. Payment information is retained only as long as necessary to process transactions and resolve disputes—typically 90 days after your final transaction.
Gameplay data is retained for the duration of your membership. Tournament records are kept indefinitely for historical reference. Technical logs (IP addresses, access timestamps) are retained for 90 days and then deleted.
If you request account deletion, we delete all non-essential data immediately. We retain only what is required by law for the seven-year compliance window.
How We Protect Your Data
We encrypt all data in transit using TLS (Transport Layer Security). Data at rest is encrypted using AES-256 encryption. Our servers are protected by firewalls, intrusion detection systems, and regular security audits. We do not store passwords in plain text—we hash them using industry-standard algorithms.
Our team undergoes security training and follows strict access controls. Only authorized personnel can access sensitive data, and access is logged and monitored. We conduct regular penetration testing and vulnerability assessments to identify and fix security gaps.
If we discover a data breach, we notify affected users within 72 hours and provide guidance on protective steps. We also notify relevant authorities as required by law.
Contact Us About Your Data
If you have questions about our privacy practices, want to exercise your rights, or suspect a data breach, contact our support team. We offer English-language assistance via live chat, email, and in-app messaging during business hours.
You can also submit a formal data request or complaint in writing. We will respond within 30 days. If you are not satisfied with our response, you may file a complaint with your local data protection authority.
Our privacy practices apply to all members of demi, regardless of location. Members in Jakarta, Surabaya, Bandung, Medan, and Semarang receive the same data protection standards.
Changes to This Privacy Policy
We may update this policy from time to time. When we make material changes, we will notify you via email and display a notice on our platform. Your continued use of demi after the notice period constitutes acceptance of the updated policy.
This privacy policy is effective as of the date shown at the bottom of this page. For questions about our data practices or to exercise your rights, contact our support team or visit our FAQ page for additional guidance.
↑