mgw138 Casino & Sportsbook Data Care

This page describes what we collect when you use mgw138 and how we keep that data protected. Our privacy practices cover your personal information (name, email, phone, identity documents), your account activity (bets placed, games played, deposits and withdrawals), and technical data (device type, IP address, session logs). We collect only the information necessary to operate our platform, comply with Know Your Customer (KYC) regulations, process your payments, and prevent fraud.

We recognize that your trust depends on transparent handling of your data. We encrypt all sensitive information using industry-standard protocols, we store your identity documents separately from your payment credentials, and we never sell your personal information to marketers or data brokers. We do share your data only with licensed payment processors (for deposits and withdrawals), compliance partners (for regulatory verification), and our own technical support team (for account help). Your data may be stored on servers located outside your jurisdiction; we protect it regardless of location using the same encryption and access controls.

For questions about how we handle your data or to request access to your information, contact our support team via the in-app Help section or visit our Terms of Use for account-related policies.

What We Collect on mgw138

We collect personal data you provide during registration and account verification. This includes your full name, date of birth, email address, and phone number. During KYC verification, we collect a photo of your national ID (KTP, passport, or driver's license) and a live selfie to confirm your identity. We also collect your payment information—but only the reference data needed to process transactions, not your full bank account or wallet credentials (those stay with your payment provider).

We collect account activity data automatically as you use mgw138. This includes every bet you place, every game you play, your deposits and withdrawals, your login history, and your session timestamps. We log this data to settle your bets fairly, generate your account statement, track suspicious patterns for fraud prevention, and comply with gaming regulations. We also collect technical data: your device type (Android phone, iOS browser, desktop), your IP address, your approximate location (derived from IP), your browser or app version, and your network type (WiFi or mobile data).

Personal data

Name, email, phone, date of birth, national ID photo, selfie. Collected at registration and KYC verification.

Account activity

Every bet, game play, deposit, withdrawal, login, and session. Logged continuously during your use of mgw138.

Payment data

Transaction reference, amount, method (QRIS, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer), timestamp. Your payment provider holds full credentials.

Technical data

Device type, IP address, browser version, location (approximate), network type, session duration.

How We Use Your Data on mgw138

We use your personal data to create and manage your account, verify your identity, and comply with KYC and anti-money-laundering regulations. We use your payment data to process deposits and withdrawals, confirm transactions, and detect fraudulent activity. We use your account activity data to settle your bets fairly, calculate your game outcomes using certified random number generators, generate your transaction history, and investigate disputes. We use your technical data to maintain platform security, prevent unauthorized access, detect suspicious login patterns, and troubleshoot technical issues.

We also use your data to communicate with you about account updates, payment confirmations, withdrawal reviews, and support responses. We may send you push notifications (if you enable them) about Liga 1 kickoffs, Piala AFF results, and new game releases. You can disable notifications at any time in Settings → Notifications on your phone or browser. We do not use your data for marketing profiling, behavioral advertising, or personalized price manipulation. We do not sell your data to third parties for their own marketing purposes.

Third-Party Data Processors and mgw138

We share your data with licensed payment processors (your chosen payment method provider) to process your deposits and withdrawals. When you deposit via mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, or a bank (online payment, e-wallet, mobile banking, local payment), we transmit only your transaction reference, amount, and account ID to that provider—not your full credentials or sensitive personal information. Your credentials remain encrypted and stored on our servers; the payment provider never accesses your identity documents.

We share your data with compliance and regulatory partners (licensed by the jurisdiction in which mgw138 operates) to verify your identity, detect money-laundering patterns, and satisfy legal obligations. We share technical support data (account history, session logs, game results) with our internal support team to help resolve your account questions, process disputes, and investigate technical issues. We do not share your data with advertising networks, data brokers, or social media platforms for their own purposes. If local law requires us to disclose your data (for example, in response to a court order), we comply and notify you of the disclosure unless legally prohibited.

We at mgw138 encrypt your identity documents separately from your payment data—a separation that protects you even if one data stream were compromised.

How Long We Keep Your Data

We retain your personal data (name, email, ID documents) for the lifetime of your account plus seven years after account closure. This duration covers regulatory requirements for gaming operators, dispute resolution windows, and fraud investigation. We retain your account activity data (bets, games, deposits, withdrawals) for the lifetime of your account plus three years after closure. This allows you to access your historical records, settle any disputes, and comply with tax reporting requirements. We retain your technical data (IP logs, session records) for 90 days, after which we delete or anonymize it.

If you close your account and request permanent deletion of your data, we delete your personal information within 30 days unless legal obligations require us to retain it longer. Your transaction history may be retained for regulatory purposes even after deletion, but we anonymize it (remove your name and contact details). You can request a copy of your data at any time by contacting our support team; we provide it within 10 business days in a machine-readable format.

Data Security and Encryption on mgw138

We protect your data using AES-256 encryption for all information transmitted between your device and our servers. Your identity documents are encrypted and stored in a separate database from your account credentials and payment data. Your password is hashed using bcrypt, a one-way encryption algorithm—we cannot retrieve it, which means if you forget it, we send you a secure reset link instead of recovering it. Your two-factor authentication (2FA) codes are generated on your device or phone and never transmitted to our servers; we only verify that the code you enter matches the expected value.

Our servers are located in secure data centers with physical access controls, surveillance, and redundant power supplies. We perform regular security audits and penetration testing to identify vulnerabilities. We maintain an incident response plan in case of data breach; if we detect unauthorized access, we notify affected users within 24 hours and work with relevant authorities. Despite these protections, no system is non-specific info secure—we encourage you to enable 2FA, use a strong password, and log out after each session on shared devices.

Your Rights on mgw138

You have the right to access, correct, or delete your personal data held by mgw138. You can update your email, phone, and address directly in your account settings. If you need to correct your name or date of birth, contact our support team; we may require new identity verification. You can request a complete copy of your data at any time; we provide it within 10 business days. You can request deletion of your data subject to legal retention requirements; we comply within 30 days unless regulations require us to retain it longer.

You have the right to opt out of non-essential communications. You can disable push notifications in Settings → Notifications. You can unsubscribe from promotional emails by clicking the unsubscribe link in any email we send. You cannot opt out of transactional communications (deposit confirmations, withdrawal alerts, account security notices) as these are necessary for your account to function. You have the right to lodge a complaint with your local data protection authority if you believe we have mishandled your data; contact our support team first to give us a chance to resolve your concern.

Cookies and Tracking on mgw138

We use cookies to remember your login session, remember your language preference, and track your navigation within the app or website. Session cookies expire when you log out; persistent cookies remain for up to 12 months. We do not use cookies for behavioral advertising or third-party tracking. Our app (Android and iOS) does not store cookies—it uses encrypted tokens that serve the same purpose. You can delete these tokens by logging out or by clearing your app data in your device settings.

We do not use third-party analytics tools (Google Analytics, Facebook Pixel) that track you across the web. We track only our own platform activity—how you navigate mgw138, which games you play, how long you stay in each section. This helps us understand which features are popular and where technical issues occur. You cannot opt out of this first-party tracking without disabling cookies entirely, which may break some features of the app.

International Data Transfers and mgw138

Our servers and data centers may be located outside your country of residence. When you use mgw138 from Jakarta, Surabaya, Bandung, or Medan, your data may be transmitted to and stored in other jurisdictions. We protect your data during these transfers using the same AES-256 encryption and access controls regardless of server location. We do not store your data in jurisdictions with weaker data-protection laws than your own without your consent. If local law in your jurisdiction restricts data transfers, we comply by storing your data locally or by using approved transfer mechanisms.

Contact Us About Your Data

If you have questions about how we handle your data, want to request a copy of your information, or want to exercise any of your data rights, contact our support team via the in-app Help section on mgw138. Provide your account email, a brief description of your request, and any supporting details. We respond within 10 business days. For urgent privacy concerns, escalate your request by including "Privacy Escalation" in the subject line; our data protection officer will prioritize your case and respond within 5 business days.

If you believe we have violated your privacy rights and wish to lodge a formal complaint, you may contact your local data protection authority or privacy commissioner. We cooperate with regulatory inquiries and data-protection investigations as required by law. We review every privacy complaint and investigate thoroughly; we provide our findings and any corrective actions within 15 business days.

Summary – Your Data on mgw138

We at mgw138 collect only the personal, account, payment, and technical data necessary to operate our platform, comply with regulations, and prevent fraud. We encrypt all sensitive information, store identity documents separately from payment credentials, and never sell your data to marketers. We share your data only with licensed payment processors, compliance partners, and our own support team. We retain your data for the minimum time required by law and regulation. You have the right to access, correct, or delete your data; to opt out of non-essential communications; and to lodge complaints if you believe we have mishandled your information.

Our privacy practices apply across all devices and access methods—Android app, iOS browser, desktop—and across all payment methods (e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking). We update this policy when our practices change; material updates are communicated via email and in-app notification. Your continued use of mgw138 after such notification constitutes acceptance of the updated policy.