LEGAL REFERENCE

How baharbet Handles Your Account Data

This is the baharbet privacy policy — the page that tells you exactly what we collect when you open an account, why we hold it, and how long...

Account dataCookies explainedData retentionIndonesia-friendlyPlain English
Browse the Lobby Read FAQ
baharbet How baharbet Handles Your Account Data

Privacy Posture and Jurisdiction Notes

We collect what we need to run your account: name, contact details, device fingerprints, deposit references and lobby activity. Where local law permits in supported regions, we keep these records under encrypted storage and only share them with payment processors and licensed auditors handling your transactions. You can ask us to export or erase your profile by writing to our privacy desk,

and we will respond within the windows our regulator requires. Cookies on baharbet are split into strictly-needed and analytics buckets — you control the second group from your browser. Indonesia visitors using DANA, OVO, GoPay or QRIS see processor names listed below as data context.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Privacy Contact Paths You Can Use

If something in this policy is unclear, or you want a copy of the data tied to your account, reach our privacy...

Privacy Email Write to our data protection inbox with your...
Live Chat Desk Open the chat bubble on any baharbet page...
Account Settings Inside your account dashboard, the privacy panel lets...
TRUST MARKERS

Editorial Trust Signals Behind This Policy

This policy is reviewed by named people, not auto-generated. Below are the checkpoints we run before any wording on this page changes, so you know who reviewed what and when the next...

Compliance Review

Our in-house compliance lead signs off every revision against Indonesia data norms and our processor agreements. Sign-off dates are logged internally and surfaced on request through the privacy desk.

Legal Counsel

External counsel re-reads the policy each quarter, focusing on cross-border transfer clauses and the consent language around DANA, OVO, GoPay and QRIS payment metadata we receive.

Security Audit

Independent auditors test our storage, access logs and encryption keys twice a year. Findings that affect what we collect from you are reflected in this document within thirty days.

Versioned History

Every change to this policy is versioned with a date stamp at the foot of the page. Older versions stay accessible so you can compare what was in force when you joined.

Plain-English Pass

A copy editor rewrites legal phrases into readable English before publication. The aim is that any account holder, not only lawyers, can understand what we hold and why.

Reader Feedback

Questions sent to our privacy desk feed directly into the next review. If a clause confuses readers more than once, we rewrite it rather than leaving the wording as it is.

SIDE BY SIDE

Consistency With Our Other Policy Pages

This privacy policy sits alongside our terms, cookie notice and account rules. We keep the language consistent across all four so you do not see contradictions between them.

01

Terms of Service

Defines the contract for using baharbet. The privacy policy here covers data only — account suspension rules and dispute handling live in the terms document instead.

02

Cookie Notice

Explains the specific cookies we drop and the third parties involved. This privacy policy references it but keeps the technical IDs in the cookie notice itself.

03

Account Rules

Covers conduct inside the lobby. Where account rules require us to log behaviour, this policy explains what those logs contain and how long we hold them.

04

KYC Statement

Lists the documents we ask for during verification. This policy explains storage, retention windows and who inside our team can read those uploaded files.

05

AML Notice

Anti-money-laundering monitoring is described separately. We mention it here only to confirm transaction data is screened under the lawful-basis grounds set out below.

06

Marketing Consent

Opt-in choices for email and push messages live in your account settings. This policy clarifies that withdrawal of consent does not affect data we must keep for regulators.

07

Complaints Path

If a privacy answer does not satisfy you, the complaints page shows the escalation route to our regulator. Wording on both pages is kept aligned at each review.

QUICK SIGNAL

Brand Elements Visible on This Policy Page

To make the policy easy to use, we have shaped the page around six recurring elements. Each one helps you find the clause you need without scrolling through...

Section Anchors Jump links at the top of the page take you...
Plain-English Glossary Legal terms like controller, processor and lawful basis are explained...
Last-Updated Stamp The footer shows when this policy last changed, who approved...
Rights Checklist A compact list summarises your access, correction, deletion and portability...
Data Map Diagram A simple diagram shows where your details travel — from...
Consent Switches The page surfaces the same toggles you find in account...

Privacy Questions baharbet Readers Ask

We collect your name, date of birth, contact details, the device you sign in from and the lobby actions tied to your session. Verification documents are added later when our compliance team needs to confirm your identity.

Active account data stays with us while the profile is open. After closure we hold transactional and verification records for the period our regulator requires, then erase them under a documented schedule run by the compliance team.

Yes. Open the privacy panel inside account settings and request an export, or email our privacy desk. We package the file in a readable format and deliver it inside the response window the regulator sets.

We share only what is needed with payment processors handling DANA, OVO, GoPay and QRIS, with our identity verification vendor, and with auditors. Each receives the minimum data set, under contract, and cannot reuse it elsewhere.

Strictly-needed cookies keep you logged in and remember your lobby preferences. Analytics cookies measure how sections perform and only run when you accept them. You can withdraw consent at any time from the settings panel.

Marketing fields are erased immediately. Transaction history, KYC scans and dispute records are retained for the regulator-mandated window, then permanently deleted. We confirm closure by email and log the date inside our compliance system.

Email the privacy desk listed in the contact section, or open live chat and ask for the privacy queue. If our reply does not resolve the issue, the complaints page shows how to escalate to the regulator.