Reference

How paito nevada Handles Your Personal Data

At paito nevada, your personal data — from account registration details to transaction records processed through DANA, OVO, GoPay, and QRIS — is handled under a clear, documented…

Data collected only as neededDANA, OVO, GoPay, QRIS transaction privacyYour right to access your dataAccount deletion available on requestRetention policy fully documented
paito nevada How paito nevada Handles Your Personal Data
PRIVACY CONTACT CHANNELS

How to Reach Us About Your Privacy

If you want to request a copy of your stored data, ask us to correct an inaccuracy, or submit a deletion request, our privacy support team is available seven days a week…

Live Chat Open the live chat widget inside your account dashboard any time between 08:00 and 24:00 WIB. Quote your account ID so the agent can locate your data record and process your privacy request without delay.
Email Privacy Team Send a detailed message to our privacy address listed in your account settings. Include your registered email and the specific data category you are asking about; we will confirm receipt within one business day.
Help Centre Ticket Log into your account, navigate to Help Centre, and open a ticket tagged 'Privacy Request'. This creates a traceable case number so you can follow the status of your data access or deletion request at any stage.
DATA HANDLING PRACTICES

Six Ways We Protect Your Account Data

Our data-handling practices are designed so your account information stays accurate, accessible only to you, and never kept longer than necessary.

Encryption at Rest and in Transit

All personal data — including your registered payment methods like DANA and OVO references — is encrypted using AES-256 at rest and TLS 1.3 in transit. No plain-text personal record is stored anywhere on our infrastructure.

Cookie Consent and Control

We use session cookies to keep you logged in and analytics cookies to understand page performance. You can review and withdraw consent for non-essential cookies at any time through the cookie settings panel in your account preferences.

Account Security Verification

Before we action any data request — access, correction, or deletion — we verify your identity against the email and phone number on your account. This step prevents unauthorised third parties from accessing or altering your stored data.

Data Retention Timeline

Active account data is retained while your account remains open. After account closure, transaction records are kept for the minimum period required by applicable law, then permanently deleted from our servers within 90 days of that period ending.

Third-Party Data Sharing Limits

We share data only with payment processors (DANA, OVO, GoPay, QRIS infrastructure) and fraud-prevention services strictly necessary to operate your account. We do not share data with advertisers or data brokers under any circumstances.

Your Right to Request Changes

You can request a full export of your stored personal data, ask us to correct any inaccuracy, or submit a deletion request at any time via live chat or a Help Centre ticket. We aim to complete verified requests within seven working days.

Frequently Asked Questions About Our Privacy Policy

The questions below reflect what our account holders in Indonesia most commonly ask about how their data is handled, stored, and accessed. If your question is not listed here, reach our privacy team via live chat between 08:00 and 24:00 WIB.

We collect your name, email address, phone number, and device information at registration. Once you transact, we also store payment-method references — for example your DANA or OVO account identifier — linked only to your internal account ID, not your full wallet details.

We store a transaction reference ID and the cleared amount for each QRIS or GoPay transaction. We do not store your full GoPay account number or the QR image itself. Payment processor data is encrypted and accessible only to our finance verification team.

Log into your account, open a Help Centre ticket tagged 'Data Access Request', and verify your identity using your registered email. We will compile and deliver a structured data export to your registered email address within seven working days of verification.

Yes. Submit a deletion request through live chat or a Help Centre ticket after verifying your identity. We will close your account and delete your personal data, retaining only what is required under applicable law, and confirm completion by email within 14 working days.

Access is limited to our account-verification team, payment-processing staff, and security analysts. Each team member operates under a role-based access control system — no employee can access your data outside their authorised function. Access logs are audited regularly.

We use essential session cookies (required for login) and optional analytics cookies (page performance). You can withdraw consent for analytics cookies at any time via the cookie settings panel in your account preferences; essential cookies cannot be disabled as they keep your session secure.

After account closure, your personal data is retained for the minimum period required by applicable law, which depends on local law in your jurisdiction. Once that period ends, all personal records are permanently deleted from our servers within 90 days.