Can I delete my account and all my data?

Yes. Request account deletion from your settings or email privacy@luxhoki.app. We remove all personal data within 30 days, except payment records required by Indonesian law for 12 months.

Can I download all my data in one file?

Yes. Request a data export from your account settings or email privacy@luxhoki.app. We'll provide your information in standard CSV and JSON formats within 7 business days.

LEGAL REFERENCE

Your Data. Your Control. Our Commitment.

We built luxhoki around your privacy. Every account detail, payment transaction and gaming session stays encrypted and protected. This policy explains exactly how we handle your information —...

Data EncryptedQRIS ProtectedYour ControlTransparent PolicyIndonesia Compliant

Browse the Lobby Read FAQ

Privacy Policy Overview

luxhoki collects and processes personal information to deliver your account, process payments through DANA, OVO, GoPay and QRIS, and maintain platform security. We comply with Indonesian data protection standards and regional privacy frameworks. Your information is never sold to third parties. We use encryption for all transactions and limit staff access to what's necessary for account support. You retain the right to

request, update or delete your data where local law permits. Our privacy practices are reviewed quarterly to stay current with Indonesia's regulatory environment.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Privacy Questions? We're Here.

Have concerns about how we handle your data? Reach out directly. Our privacy team responds within 24 hours to any request about your account information, data deletion or payment history.

Team online

Email Support

Send privacy requests to [email protected]. Include your account email and the specific data you're asking about. We'll respond with full details and next steps.

In-Account Help

Open your account settings and navigate to Privacy & Data. You'll find options to download your information, update preferences or request deletion directly from your dashboard.

Live Chat

Chat with our support team during business hours. They can walk you through your privacy rights, explain how your DANA, OVO, GoPay or QRIS data is stored, and process requests on the spot.

TRUST MARKERS

Privacy Built Into Every Layer

Our approach to your data isn't an afterthought — it's woven into how we design every feature, from account creation to payment processing.

Encryption Standard

All account data and payment transactions use TLS 1.3 encryption. Your DANA, OVO, GoPay and QRIS details are tokenized and...

Regular Audits

We conduct quarterly security reviews and annual third-party privacy audits. Results are shared with our compliance team and inform policy...

Staff Training

Every team member handling account data completes privacy training annually. Access is role-based and logged. We track who views what...

Data Minimization

We collect only what's needed to run your account and process payments. No unnecessary fields, no hidden tracking. Your profile...

Retention Limits

Account data is retained for the duration of your membership plus 12 months after closure, unless local law requires longer...

Breach Response

If a security incident occurs, we notify affected users within 48 hours with clear details and recommended actions. We maintain...

How Our Privacy Stacks Up

We've aligned our privacy practices with leading platforms in the region while staying true to Indonesia's regulatory framework.

Data Portability	You can request a full export of your account data, gaming history and payment records in a standard format within 7 business days.
Third-Party Sharing	We share data only with payment processors (DANA, OVO, GoPay, QRIS partners) and compliance authorities where required by law. No marketing partners.
Cookie Transparency	Our cookie policy is plain-language and opt-in for non-essential tracking. You control what analytics we collect about your browsing behaviour.
Right to Deletion	Request account deletion anytime. We remove your personal data within 30 days, except where legal holds or payment disputes require retention.
Policy Updates	Changes to this policy are announced 30 days in advance via email and in-account notification. You can review the full changelog on this page.
Dispute Resolution	Privacy disputes are handled through our support team first, then escalated to an independent mediator if needed. No arbitration clauses.
Compliance Certifications	We maintain compliance with Indonesian data protection standards and undergo annual reviews by external auditors. Certificates are available on request.

SERVICE CONTEXT

What Privacy Means at luxhoki

Privacy isn't a checkbox for us — it shapes how we build features, handle payments and support your account every single day.

Account Security Two-factor authentication is available for every account. Your login credentials are hashed with bcrypt. Session tokens expire after 30 minutes of inactivity.

Payment Privacy DANA, OVO, GoPay and QRIS transactions are processed through tokenized gateways. We never see your full payment details — only confirmation codes.

Gaming History Your betting history, game sessions and winnings are stored securely and visible only to you and our compliance team when required by law.

Location Data We collect your IP address for fraud prevention and regional compliance. You can opt out of location-based features in your account settings anytime.

Communication Preferences Control exactly what emails and notifications you receive. Unsubscribe from promotions with one click. We never sell your contact details to third parties.

Data Requests Submit a formal data access request and we'll compile everything we hold about you — account info, transactions, support tickets — within 14 days.

Privacy Questions Answered

Payment details are tokenized immediately upon entry and never stored on our servers. DANA, OVO, GoPay and QRIS transactions are processed through encrypted gateways. We comply with PCI DSS standards for all payment handling.

Yes. Request account deletion from your settings or email [email protected]. We remove all personal data within 30 days, except payment records required by Indonesian law for 12 months.

No. We never sell your personal information. We share data only with payment processors and compliance authorities where Indonesian law requires it. Marketing is handled in-house only.

Personal data is retained for 12 months after account closure. Payment records are kept for 5 years per Indonesian regulatory requirements. You can request earlier deletion where permitted.

We notify all affected users within 48 hours with details and recommended actions. We maintain a public incident log and conduct a full audit. Affected users receive complimentary credit monitoring.

Yes. Request a data export from your account settings or email [email protected]. We'll provide your information in standard CSV and JSON formats within 7 business days.