zelda Casino & Sportsbook Data Care

This page describes what we collect when you use zelda and how we keep that data protected. We at zelda take privacy seriously because your account holds payment details, personal identification, and gaming history. Our commitment is to handle your information transparently, encrypt it in transit and at rest, and never share it with third parties outside the scope necessary to run our platform.

When you open an account, log in via Android APK or iOS browser, deposit via DANA or a bank virtual account, or withdraw your winnings, we collect data at each step. We also use cookies and analytics to understand how you navigate our platform and improve our service. You have rights over your data—you can request a copy, ask for deletion, or change your password anytime—and we explain how to exercise those rights below.

This privacy policy applies to all users of zelda, regardless of whether you access our platform on mobile or desktop. It explains our data practices for account creation, payment processing, gameplay, customer support, and analytics. By using zelda, you agree to our data practices as set out here.

What Data We Collect at zelda

We at zelda collect data in several categories. Account registration data includes your email address, full name, date of birth, phone number, and chosen password. Identity verification data includes photographs of your government ID (national ID, passport, or driver's license) and proof of address (utility bill or bank statement). Payment data includes your preferred payment method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual account), transaction amounts, timestamps, and confirmation numbers.

Gameplay data includes your bets placed on football matches (Liga 1, Piala Indonesia, Piala AFF, Champions League), live-dealer tables (blackjack, roulette, Dragon Tiger), slot games (Aviator, Sweet Bonanza), and esports markets (Mobile Legends, Free Fire). We record stake amounts, game titles, timestamps, and outcomes. Device and access data includes your phone model (Android or iOS), app version, IP address, browser type, and login times. Support data includes any messages you send to our help team—questions about KYC verification, deposit clarifications, or account recovery requests.

We also collect analytics data via cookies and pixel tracking. This includes which sections of zelda you visit, how long you spend on each page, and which games you click into. We do not track your real-time location, but we may infer your general region (city-level) from your IP address to verify that you are accessing zelda from a jurisdiction where our services are permitted.

Account data

Email, name, birth date, phone, password hash (never stored in plain text).

Identity verification

ID photo, address proof, collected during KYC and stored securely for compliance.

Payment and transaction

Payment method, deposit/withdrawal amounts, timestamps, confirmation reference numbers.

Gameplay and analytics

Bets placed, game selection, device type, login times, page visits, inferred region (IP-based).

How We Use Your Data at zelda

We use your account data to create and maintain your account, verify your identity during KYC review, process your deposits and withdrawals, and provide customer support. Your email and phone are used to send account notifications (password resets, deposit confirmations, promotion alerts) and allow you to recover your account if you forget your password.

We use your payment data to settle transactions with our payment processors, issue refunds if needed, and comply with financial regulations in the regions where we operate. We retain transaction records for a minimum period required by law—typically several years—to support fraud investigations and audit trails.

We use your gameplay data to calculate your account balance, determine if you qualify for promotions, and monitor for irregular betting patterns that might indicate fraud or account compromise. We also use aggregated, anonymized gameplay data (never linked to your name) to understand game popularity and improve our platform features.

Third Parties and Data Processors

We do not sell your data to advertisers or brokers. However, we work with trusted third-party processors who help us run zelda. Payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, and our bank partners local payment, online payment, e-wallet, mobile banking) receive your payment method and transaction details to execute deposits and withdrawals. They have their own privacy policies; we recommend reviewing them.

KYC verification vendors securely analyze your ID photos and address documents to confirm your identity matches our database. These vendors are contractually bound to delete your documents after verification completes or within a fixed period (typically 30 days). Cloud infrastructure providers host our servers, databases, and backups. Our servers may be located outside your country (typically Southeast Asia or international cloud regions). We encrypt all data before it leaves our systems, so cloud providers cannot read your information.

Email and SMS providers send your account notifications on our behalf (password resets, promotion alerts). Analytics platforms receive aggregated, anonymized visitor data to help us optimize zelda's performance. None of these third parties can contact you directly about marketing or promotions on our behalf—only our official zelda support channels do that.

We at zelda encrypt your password, hash your payment details, and compartmentalize access so no single employee can view your full account. Our commitment is to handle your privacy with the same care we expect for our own.

Your Rights and Our Commitments

You have several rights regarding your data on zelda. Right to access: You can request a full export of all your personal information—account details, transaction history, gameplay records, and support messages. We deliver this export as a downloadable file within 15 business days of your request.

Right to deletion: You can request we delete your account and associated data. We retain transaction records as required by law (typically 3–5 years for financial compliance), but we remove your identifying information, gameplay data, and KYC documents. Deleted accounts cannot be reopened under the same email.

Right to correction: You can update your name, phone number, email, and address anytime in your account settings. If you notice an error in your transaction history, contact our support team and we will investigate.

Right to withdraw consent: If we relied on your consent to process data (e.g., for marketing emails), you can withdraw that consent anytime. Withdrawing consent does not affect the lawfulness of processing before withdrawal.

Cookies, Security, and Data Retention

We use cookies and similar technologies on zelda to keep you logged in, remember your language preference, and track which sections you visit. Most cookies expire after your session ends (session cookies); some remain longer to improve your experience on repeat visits (persistent cookies). You can manage cookie preferences in your browser settings, but disabling cookies may limit functionality on our platform.

We encrypt all data in transit using industry-standard TLS/SSL protocols. When you log in, deposit via DANA or a bank account, or request a withdrawal, the connection between your phone and our servers is encrypted—no third party can intercept your credentials or payment details. Data at rest (stored on our servers) is encrypted using AES-256 or equivalent. Your password is hashed with a strong algorithm; we never store it in plain text and cannot read it even internally.

We retain your account data as long as your account is active. After you delete your account, we retain transaction records for the minimum period required by law (typically 3–7 years depending on jurisdiction). We retain KYC documents for 30 days post-verification, then securely delete them. Support chat records may be retained for up to 2 years to handle disputes or compliance audits. Analytics data is retained for 24 months, then aggregated and anonymized.

Data Jurisdiction and Compliance

Our servers and infrastructure are located across Southeast Asia and may be located in jurisdictions outside Indonesia, such as Singapore, Thailand, or international cloud regions. We are not formally regulated by GDPR (European regulations), but we apply privacy-protective principles similar to GDPR standards to all users regardless of location. Our data practices comply with Indonesian privacy expectations and the privacy laws of jurisdictions where we operate.

If your account is accessed from Jakarta, Surabaya, Bandung, or Medan, we apply the strongest available data protections. We do not share data across borders without encryption, and we ensure any data transfer to cloud providers overseas is encrypted end-to-end.

We honor requests to delete data or export personal information within the timelines set out above. If you have concerns about how we handle your privacy, contact [email protected]. Our data protection officer reviews complaints and responds within 30 days. We also cooperate with legal authorities when required by law—for example, if a court orders us to disclose your account data as part of a fraud investigation.

Changes to This Policy

We may update this privacy policy to reflect changes in our data practices, new features on zelda, or changes in law. If we make material changes (e.g., we begin sharing data with new third parties), we notify you via email and ask for your consent before the change takes effect. Minor clarifications (fixing typos, reorganizing sections) do not require notification.

Your continued use of zelda after we post changes indicates you accept the updated policy. If you disagree with any change, you can delete your account at any time. Questions about this policy or our data practices? Contact [email protected] in English during business hours.