Your Privacy Matters Here
We collect and safeguard your data only to run your account, process your DANA, OVO, GoPay and QRIS payments, and keep our platform secure. This policy explains exactly...
Privacy Policy Summary & Scope
wdboy operates in supported regions where local law permits. We collect your name, email, phone number, address and payment details to create and manage your account. Your data is encrypted in transit and at rest. We never sell your personal information to third parties. Payment processors (DANA, OVO, GoPay, QRIS partners) handle transaction data under their own terms. We retain account data
for the duration of your membership plus a compliance period thereafter. If you request deletion, we remove personal data except where law requires retention.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Questions About Your Privacy
Email Support
Reach our privacy team at [email protected] with any data concerns, deletion requests or policy clarifications. We respond within 48 hours.
Account Settings
Review and update your personal information anytime in your account dashboard. Control communication preferences and linked payment methods directly.
Data Access Request
Ask for a full copy of your personal data held on our servers. Submit requests via your account dashboard or email us for manual export within 7 days.
Privacy Governance & Security Standards
Encryption Protocol
All data moving between your device and our servers uses TLS 1.2+ encryption. Stored payment and account data is encrypted...
Third-Party Audits
We commission annual security audits from independent firms. Results inform our data handling updates and are available upon request to...
Compliance Framework
Our privacy practices align with Indonesian data protection standards and international best practices. We update this policy when regulations or...
Access Controls
Only authorised staff can access your account data, and only to resolve support issues or comply with law. All access...
Breach Response
If a data breach occurs, we notify affected account holders within 72 hours and detail what happened, what we're doing...
Policy Reviews
We review this privacy policy quarterly and publish updates on this page. Material changes are flagged in your account dashboard...
What We Do vs What We Don't
| We Collect | Name, email, phone, address, payment method and account activity history — only what's needed to run your account and process transactions safely. |
|---|---|
| We Don't Sell | We never sell or lease your personal data to marketers, data brokers or third parties for profit. Your information stays with us or our trusted payment partners. |
| We Share With | DANA, OVO, GoPay and QRIS processors receive only the data necessary to process your deposit or withdrawal. They operate under their own privacy policies. |
| We Retain | Account data for as long as your membership is active, plus 7 years for tax and compliance records. You can request deletion after account closure. |
| We Disclose | Data only when required by law, court order or regulatory authority in supported regions. We'll notify you of legal requests unless legally prohibited. |
| We Protect | Your data with encryption, access controls, regular audits and incident response protocols. Breaches are reported to you within 72 hours of discovery. |
| We Allow | You to access, correct, download and delete your personal data anytime from account settings. Exercise these rights without penalty or account suspension. |
Core Privacy Promises
Transparent Data Use
We tell you upfront what data we collect and why. No hidden data harvesting. Your personal information fuels account management, fraud prevention and legal compliance only.
Payment Data Isolation
DANA, OVO, GoPay and QRIS transactions are tokenised. We never store your full card or wallet credentials on our servers, reducing breach risk significantly.
No Spam or Selling
We don't flood your email with ads or sell your contact details to third parties. Marketing emails reflect your dashboard preferences and go out rarely.
Your Right to Leave
Close your account anytime. Request full data deletion afterward. We'll remove personal information within 30 days except legally-mandated compliance records.
Cookies & Tracking
We use session cookies to keep you logged in and analytics cookies to improve our platform. Reject non-essential cookies in your browser settings anytime.
Legal Compliance
Our privacy practices meet Indonesian data protection standards and regional banking regulations. We update this policy when rules change or we launch new features.