coloksgPrivacy Policy

This page describes what we collect when you use coloksg and how we keep that data protected. We operate an online gaming platform in supported jurisdictions, and your data security underpins everything we do—from account verification through to withdrawal processing. Our policy is straightforward: we collect only what we need, we encrypt it, and we limit access to authorised staff and third-party processors bound by contractual confidentiality.

When you create a coloksg account, we request personal details to meet regulatory requirements in your jurisdiction. These include your legal name, address, date of birth, and identity document number. We use this information to verify your identity (KYC), confirm your account ownership, and process deposit and withdrawal requests through payment partners like DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and bank partners (mobile banking, local payment, online payment, e-wallet). Our servers may sit outside your jurisdiction; we encrypt all data in transit and at rest using industry-standard protocols.

We do not sell, rent, or share your personal data with marketing firms, advertisers, or brokers. Your data stays within coloksg and with authorised third parties only—payment processors, fraud-detection vendors, and legal advisors when required by law. This policy applies to all coloksg users, whether accessing via Android app, iOS browser, or desktop. If you have questions, contact our support team through your account dashboard.

Our Data Collection and Use

We collect your email, phone number, and password when you register a coloksg account. Your email serves as your login identifier and receives password-reset links and account notifications. Your phone number enables two-factor authentication (2FA)—a one-time code sent via SMS when you log in from a new device. You control 2FA in your account settings and can enable or disable it at any time. Both email and phone are encrypted in our database.

For account verification, we ask for your legal name, date of birth, national identity number, and residential address. This information fulfils KYC (Know Your Customer) requirements under Indonesian financial regulations. We verify identity documents (passport, national ID card, or driver's license) by uploading them through our mobile app or web browser. Our verification team does not retain your document images after approval; we store only the confirmation status and verification date. Once verified, your withdrawal requests proceed through our standard review window.

KYC verification

The process of confirming your legal identity before deposits and withdrawals are permitted. coloksg uses encrypted document upload and third-party verification vendors.

Two-factor authentication

A security layer requiring a one-time SMS code in addition to your password. We send this code to your registered phone number only.

Withdrawal review window

The period coloksg takes to process verified withdrawal requests. This window allows us to confirm funds transfer and detect fraud before release.

When you deposit via DANA, e-wallet, mobile banking, or local payment, we receive only a transaction confirmation and amount—not your wallet credentials. For bank deposits (online payment, e-wallet, mobile banking, local payment) using virtual accounts or direct transfer, we log the sender's name and reference number to reconcile the deposit. Payment processors retain their own transaction logs; coloksg accesses these records only to confirm deposit status in your account. We do not store your banking credentials, card numbers, or e-wallet passwords.

We log your account activity—login timestamps, game selections, bet amounts, withdrawals—to detect fraud and help resolve disputes. These logs are retained for 12 months and then deleted. Your transaction history is visible in your coloksg account dashboard and may be exported for tax or personal record-keeping purposes. IP address and device type are also logged for security and fraud prevention.

Your Rights on coloksg

You have the right to access your personal data held by coloksg at any time. Log into your account and request a data export from the Settings menu, or contact our support team via the in-app help form. We will provide a copy of your data within 30 days. You also have the right to correct inaccurate information—update your phone number, address, or email directly in your account settings, or request assistance from support.

You may request deletion of your coloksg account and all associated data (with exceptions). We retain transaction records where required by financial regulators, but can delete personal details like phone number and address upon request. Account deletion is permanent and cannot be reversed. Any pending withdrawals must be processed or cancelled before you request deletion. Contact our support team to initiate this process.

Password reset on coloksg requires email verification. You receive a reset link valid for 2 hours; no one else can access this link. After reset, all other active sessions on your account are logged out automatically, securing your account if you suspect unauthorised access. We recommend resetting your password if you share a device, use public Wi-Fi, or suspect your account has been compromised. Never share your password with anyone, including coloksg staff—we never ask for passwords via email or chat.

Our coloksg support team is available via the in-app help menu and responds within the stated timeframe for your region. For data privacy concerns, data-deletion requests, or to report a suspected breach, use the priority support channel in your account settings. Responses to formal data requests comply with local data-protection law and include timelines you will receive in writing. We undertake to process all requests transparently and provide written confirmation of actions taken.