flexiPrivacy Policy

This page describes what we collect when you use flexi and how we keep that data protected. We at flexi take your privacy seriously. When you create an account, deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or a bank transfer, or place a bet on Liga 1, Piala AFF, esports, or live-dealer games, you share personal information with us. We explain exactly what we collect, why we collect it, and who has access to it.

Our flexi privacy practices comply with applicable data-protection laws in the jurisdictions where we operate. We do not sell your data to advertisers or marketing firms. We do share certain information with payment processors, fraud-detection services, and regulatory authorities when required by law.

If you have questions about how we handle your data, contact our live-chat team or email us directly. We respond within one business day.

What Data We Collect on flexi

We collect information in three categories. First, account registration data: your full name, date of birth, phone number, email address, and identity document number. We require this to verify your age, prevent fraud, and comply with anti-money-laundering regulations. Second, payment data: when you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, we record the payment method, amount, timestamp, and transaction ID. We do not store your full card number or wallet password — payment processors handle that encryption.

Third, behavioural data: we track which games you play, how often you log in, which markets you wager on (Liga 1, Piala Indonesia, Mobile Legends, live blackjack, Aviator slots, etc.), your bet amounts, and your win/loss outcomes. We use this data to calculate your account tier, determine your weekly cashback, detect fraud, and improve our platform. We also collect technical data: your IP address, browser type, device model, and operating system. This helps us troubleshoot technical issues and prevent unauthorized access.

Data retention: We retain your account data for as long as your account is active, plus 7 years after closure for regulatory compliance. Betting records are retained for 10 years.

How We Use Your Data on flexi

We use your data for five main purposes. First, account management: we verify your identity, process your deposits and withdrawals, and manage your account tier and loyalty rewards. Second, fraud prevention: we analyse your betting patterns, IP address, and payment history to detect suspicious activity. If we flag your account, our compliance team contacts you via live chat to confirm your identity before releasing funds.

Third, legal compliance: we share your data with anti-money-laundering authorities and tax regulators when required by law. Fourth, platform improvement: we analyse aggregate betting trends (for example, which esports markets are most popular in Jakarta, Surabaya, or Bandung) to improve our odds, add new markets, and enhance user experience. Fifth, marketing: we send you promotional emails about new games, seasonal offers (Idul Fitri, Idul Adha, Imlek, Nyepi promotions), and tier-progression milestones. You can opt out of marketing emails in your account settings.

Third-Party Data Processors and Sharing

We do not sell your data. We do share it with trusted third parties who help us operate flexi. Our payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and Indonesian banks) receive your payment details to process deposits and withdrawals. Our fraud-detection vendor receives your IP address, device fingerprint, and betting patterns to flag suspicious accounts. Our live-chat platform provider stores your support conversations. Our analytics vendor receives anonymized betting data to help us understand user behaviour.

All third-party processors sign data-protection agreements with us. They are prohibited from using your data for their own marketing or selling it to other parties. Our servers may sit outside your jurisdiction (for example, in Singapore or Malaysia); your data is encrypted in transit and at rest, regardless of server location.

Note: We may disclose your data if required by law, court order, or regulatory authority. We will notify you of such disclosure unless legally prohibited from doing so.

Cookies and Tracking on flexi

We use cookies to remember your login session, store your language preference, and track your activity on our site. Essential cookies (login, security) are necessary for flexi to function. Analytics cookies help us understand how you navigate our platform — which pages you visit, how long you stay, which games you click on. You can disable cookies in your browser settings, but some flexi features (like staying logged in) may not work properly.

We do not use third-party tracking pixels or retargeting ads. We do not share your browsing data with social media platforms or ad networks. Our analytics are internal only — we use them to improve flexi, not to build a profile of you for external sale.

Your Rights and Data Access on flexi

You have the right to access, correct, and delete your personal data. To request a copy of all data we hold about you, contact our live-chat team or email us. We provide a complete data export within 14 business days. If you find inaccurate information (for example, a wrong phone number or address), you can update it directly in your account settings or ask our team to correct it.

You can request account closure at any time. When you close your account, we retain your data for 7 years for regulatory compliance, but we do not use it for marketing or analytics. If you have a data-protection complaint, you can escalate it to the appropriate regulatory authority in your jurisdiction. We cooperate fully with regulatory investigations.

Data Security and Breach Notification

We protect your data using industry-standard encryption (TLS 1.2+), secure server architecture, and regular security audits. Our staff access your data only when necessary to support your account or comply with law. We do not store passwords in plain text — we hash them using bcrypt or similar algorithms. If you forget your password, we send you a reset link; we never email your password.

If we experience a data breach, we notify affected users within 72 hours via email and in-app message. We also notify relevant regulatory authorities. We do not pay ransom to attackers; instead, we work with cybersecurity experts to contain the breach, restore systems, and prevent recurrence.

Policy Updates and Contact

We may update this privacy policy at any time. We notify you of material changes via email and in-app message. Continued use of flexi after the change effective date means you accept the updated policy. If you do not agree with updated terms, you can close your account and request a data deletion (subject to regulatory retention requirements).

For privacy questions, contact our live-chat team (available in English and Indonesian during business hours) or email us directly. We operate support offices in Jakarta, Surabaya, Bandung, Medan, and Semarang. Response time is typically within one business day.