nagason Privacy Policy
This page describes what we collect when you use nagason and how we keep that data protected. We take your privacy seriously and handle your personal information according to applicable data protection regulations. When you open an account, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts (mobile banking, local payment, online payment, e-wallet), or engage with our support team, we collect specific data to provide our service securely and comply with anti-fraud requirements.
We at nagason do not sell your personal data to third parties. We share it only with payment processors, legal authorities where required by law, and internal teams who need access to support your account. This policy explains each category of data we collect, the lawful basis for collecting it, how long we retain it, and the rights you have over your information.
Our servers and data storage may be located outside your jurisdiction. By using nagason, you acknowledge that your data may be transferred to, stored in, and processed in countries with data protection laws different from your own. We apply equivalent security standards regardless of server location.
What Data We Collect on nagason
We collect information in several categories. During account registration on nagason, we collect your full name, date of birth, email address, and mobile phone number. This information is required to establish your account and enable two-way communication. We use your email for account notifications, payment confirmations, and support responses; your phone number is used for SMS alerts and account recovery if your email is compromised.
When you complete Know Your Customer (KYC) verification on nagason, we collect copies of your government-issued identity document and a selfie with your ID. We store these images securely and compare them against our verification database to confirm your age and identity. We retain KYC documents for a minimum of seven years to comply with anti-money-laundering regulations, even if your account is closed.
When you deposit or withdraw on nagason, we collect transaction details: the amount, the payment method used, the date and time, and your resulting balance. We retain these records indefinitely to detect fraud and settle disputes. We do not retain your full banking credentials — your QRIS code, wallet app tokens, or virtual account details are processed by our payment partners and not stored in their entirety on our servers.
Data collected by nagason
- Identity information: name, date of birth, government ID, selfie
- Contact details: email address, mobile phone number
- Account activity: logins, deposits, withdrawals, game sessions, support tickets
- Payment records: transaction amounts, methods, settlement status, refunds
- Device information: IP address, browser type, device model (for fraud prevention)
- Cookies and tracking pixels: to understand platform usage and improve performance
How We Use Your Data on nagason
We use your personal data on nagason for six primary purposes. First, we use it to establish and maintain your account — without your name, email, and phone number, we cannot create a nagason login or send you account notifications. Second, we process payments — your deposit and withdrawal requests require us to hold your banking details temporarily while our payment partners execute the transfer. Third, we comply with legal and regulatory obligations — anti-money-laundering laws in Indonesia and globally require us to collect and retain KYC documents and transaction records.
Fourth, we prevent fraud and abuse on nagason. We analyse your IP address, login patterns, and game behaviour to detect suspicious activity such as account takeover, bonus abuse, or use of automated tools. Fifth, we respond to your support requests — when you contact nagason support, our team accesses your account history to help resolve your issue. Sixth, we improve our platform. We use aggregated, anonymised data to understand how nagason users interact with different games, payment methods, and features so we can optimise the service.
Third-Party Processors and Data Sharing
We share your data with external processors to operate nagason. Our payment partners — the entities behind e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, and mobile banking — receive your transaction details to settle your deposits and withdrawals. These partners operate under their own privacy policies and data protection obligations; we are not responsible for their handling of your data beyond ensuring they meet industry security standards.
We may share your data with legal authorities, tax agencies, or law-enforcement bodies if required by law or in response to a valid legal request. We do not voluntarily disclose personal information to governments or regulators unless compelled. We do not share data with marketing partners, advertisers, or analytics platforms beyond what is necessary to operate nagason securely.
- Payment processors
- We share transaction details with your chosen payment method's provider to settle deposits and withdrawals.
- Fraud detection
- We may share account information with third-party fraud-prevention services to identify suspicious patterns across multiple platforms.
- Legal compliance
- We share customer data with authorities when required by law or in response to a valid court order or regulatory request.
- Internal teams
- Our support, compliance, and operations teams have access to customer account data to serve your requests and manage risk.
Your Rights and Data Retention on nagason
We at nagason provide you with the following rights over your data. You may request access to all information we hold about you by contacting our support team — we will provide a copy within a reasonable timeframe. You may request correction of inaccurate data; we will update your profile if you notify us of errors. You may request deletion of your account and associated data; however, we will retain transaction records and KYC documents for a minimum of seven years to comply with regulatory requirements.
We retain your data for as long as your nagason account is active and for a period thereafter depending on the data type. Transaction records are retained indefinitely. KYC documents are retained for a minimum of seven years. Account login history and support tickets are typically retained for three years. If you request account deletion on nagason, we anonymise your personal details but retain transaction records to prevent fraud and support dispute resolution.
Cookies and Tracking on nagason
When you visit nagason via web browser, we use cookies and similar tracking technologies to enhance your experience. Session cookies keep you logged in while you browse. Persistent cookies remember your preferences so you do not re-enter them on each visit. Analytics cookies help us understand how users interact with different sections of the platform. We do not use cookies to track you across unrelated websites, and we do not permit third-party ad networks to place tracking pixels on nagason.
You may disable cookies in your browser settings, though this may impair some nagason features. Our mobile app does not rely on browser cookies; instead, it stores a login token on your device to keep you authenticated. You can clear this token by logging out or uninstalling the app.
Data Security and Contact
We at nagason protect your data through encryption in transit and at rest, secure firewalls, regular security audits, and access controls limiting employee visibility to your information. We do not guarantee absolute security — no system is perfectly secure — but we implement industry-standard protections. If a data breach occurs that affects nagason users, we will notify you via email as soon as reasonably practicable and explain what data was compromised and what steps we are taking.
If you have questions about our privacy practices on nagason, contact our support team via live chat, email, or in-app help. We respond to privacy-related enquiries within a few business days. If you believe we have mishandled your data, you may lodge a complaint with your local data protection authority.
Regional Considerations
We operate nagason across supported regions including Jakarta, Surabaya, Bandung, Medan, Semarang, and Yogyakarta. Our data handling practices comply with Indonesian data protection principles and, where applicable, international standards. During regional holidays such as Idul Fitri, Idul Adha, Imlek, and Nyepi, our support team may experience delayed response times for data-access requests; we will respond as soon as possible once normal operations resume. Your rights under this privacy policy apply consistently across all regions where nagason is available.