hah303 Platform Privacy Notice

This page describes what we collect when you use hah303 and how we keep that data protected. We take your privacy seriously—we do not sell your information, we encrypt sensitive data, and we limit access to your personal details to only those team members who need it for legitimate service purposes.

When you register on hah303, deposit funds, or engage with our games and sportsbook, we collect information necessary to verify your identity, process your transactions, and comply with applicable law. Our servers may be located outside your jurisdiction, but your data rights remain the same. We store personal information only as long as needed and delete it according to a documented retention schedule.

Our privacy practices apply whether you access hah303 from Jakarta, Surabaya, Bandung, Medan, Semarang, or any other supported region. This notice explains your rights, our responsibilities, and how to contact us if you have questions about your data.

What Data We Collect on hah303

We collect information in three main categories. First, identification data: when you register, we ask for your full name, date of birth, national ID number (KTP for Indonesian residents), email address, and phone number. We collect this during account creation and verify it before you can fund or access games. Second, financial data: we record all deposits, withdrawals, game transactions, and account balances. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or traditional bank transfer (mobile banking, local payment, online payment, e-wallet), we store the transaction details including amount, timestamp, and payment method used. Third, behavioral data: we log your game activity (which games you play, when you play, session duration), your sportsbook activity (Liga 1, Piala Indonesia, Piala AFF matches you engage with), and your support interactions (chat transcripts, support tickets, phone calls).

We also collect technical data: your IP address, browser type, device identifier, and cookies. This helps us detect fraud, maintain platform security, and troubleshoot technical issues. We do not use this data for marketing purposes—we use it to keep your account safe and our infrastructure running.

We do not collect optional data unless you provide it. For example, if you use our live chat, we capture your message. If you submit a document to support, we store that document. But we do not require you to provide information beyond what is necessary for account verification, fund processing, and game settlement.

How We Use Your Data

We use your information for specific, legitimate purposes. We verify your identity to comply with Know-Your-Customer (KYC) regulations and prevent fraud. We process deposits and withdrawals using your payment details. We settle game outcomes based on your account balance and transaction history. We communicate with you about account updates, promotions, service disruptions, and support issues via email or phone. We investigate disputes and resolve complaints using your account data and transaction records.

We also use your data for security and legal compliance. We analyse patterns to detect fraud (unusual withdrawal amounts, rapid successive deposits, potential money laundering). We retain records to comply with anti-money-laundering (AML) regulations and data retention laws. We may disclose information to legal authorities if required by court order or applicable law.

We do not use your information to build marketing profiles, sell targeted ads, or track you across other websites. We do not combine your hah303 data with data from other sources to create enriched profiles. We do not use artificial intelligence to predict your behaviour or manipulate your gameplay.

Third-Party Processors and Your Data

Some third parties process your data on our behalf. Payment processors (the banks and e-wallet providers behind mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive transaction details necessary to execute your deposits and withdrawals. We do not control these processors' privacy practices—they have their own policies. Our support ticketing system may be hosted by a third-party platform, so support transcripts may be stored on external servers. Identity verification providers may store your KYC documents to confirm authenticity.

We require all third-party processors to sign data-processing agreements ensuring they follow privacy standards equal to ours. We audit third-party access annually. We do not permit third parties to use your data for their own marketing or commercial purposes. If you have concerns about a specific third-party processor, contact our support team and we can provide details about their data practices.

Your privacy is not transactional. We protect it because it is your right, not because we are forced to.

Your Rights and Data Access on hah303

You have the right to know what data we hold about you. Contact our support team and we provide a copy of your information within standard business timeframes. You have the right to correct inaccurate data—if your phone number changes or your name is misspelled, we update it. You have the right to request deletion of your data, subject to legal obligations (we may need to retain transaction records for AML compliance). You have the right to object to specific uses of your data, such as security analytics.

To exercise these rights, email our privacy team during business hours or use our account settings to review and update your personal information. We respond to data-access requests within 30 days where legally feasible. If we cannot comply with a request (for example, if legal obligation requires us to retain data), we explain why and offer alternatives.

Data Storage, Retention, and International Transfer

Our servers are located in multiple jurisdictions, some outside Southeast Asia. This means your personal data may be transferred internationally as part of normal platform operations. We apply the same encryption and access controls regardless of server location. We maintain backups across geographically distributed data centres for disaster recovery. Your data is encrypted in transit and at rest using standard protocols.

We retain your data according to a documented schedule: account information is kept as long as your account exists; transaction records are retained for seven years to comply with financial regulations; support transcripts are kept for two years; device identifiers and IP logs are purged after 90 days unless a security investigation requires longer retention. If you close your account, we flag it as inactive and delete non-essential personal information after one year, retaining only transaction records required by law.

Cookies and Tracking Technologies

We use cookies to keep you logged in, remember your preferences, and detect fraud. Session cookies expire when you log out. Persistent cookies remain for 30 days to remember your language preference or account settings. We do not use cookies to track you across other websites or build external marketing profiles. Third-party analytics services (if used) also place cookies—consult their privacy policies for details.

You can disable cookies in your browser settings, but doing so may limit your ability to access hah303. We do not respond differently to "do not track" signals because we do not track behaviour externally anyway.

Contact Us About Privacy

If you have questions about how we handle your data, wish to exercise a privacy right, or want to report a privacy concern, contact our support team during business hours via email, live chat, or phone. We maintain a dedicated privacy inquiry channel and respond within standard timeframes. If you are unsatisfied with our response, you have the right to lodge a complaint with your local data protection authority or pursue legal remedies under your jurisdiction's privacy law.

Our privacy practices may be updated from time to time. We notify you of material changes via email and display the updated notice on our platform. Your continued use of hah303 after an update constitutes acceptance of the new privacy practices. We do not retroactively apply new policies to data collected before the update took effect.