dredge Privacy Policy
This page describes what we collect when you use dredge and how we keep that data protected. We collect your email, phone number, national ID information, banking details, and account activity logs. We use this data to verify your identity, process deposits and withdrawals via QRIS, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, and e-wallet, settle your gaming outcomes, and detect fraud.
Our servers may sit outside your jurisdiction. We encrypt sensitive data (passwords, banking details) using industry-standard encryption. We do not sell your data to third parties. We share information only with our payment processors, identity-verification vendors, and law enforcement if legally required. This policy covers what we collect, how we use it, your rights, and how to contact us with privacy questions.
Our privacy commitments are enforceable; if you believe we have mishandled your data, you can contact us directly. We respond to data-access requests within a reasonable timeframe. This policy is effective immediately and applies to all dredge account holders.
What we collect on dredge
We collect data in several categories. First, account registration: your email address, phone number, username, and password (hashed, never stored in plaintext). Second, identity verification: a scan of your national ID (KTP), a selfie holding that ID, your full name as it appears on the ID, your date of birth, and your home address. Third, payment information: your banking details (account holder name, account number, bank name) or e-wallet identifiers (DANA user ID, e-wallet number, mobile banking account). Fourth, game activity: every bet placed, every outcome, every wager amount, timestamp, and result.
We also collect device and browser data: your IP address, browser type, operating system, and device model (used for fraud detection and session security). We collect cookies and session tokens to keep you logged in and to remember your preferences. We do not use third-party analytics trackers (Google Analytics, Facebook Pixel, etc.) on dredge. We do not track your browsing outside our platform.
How we use your data on dredge
We use your email and phone to send account notifications: login alerts, withdrawal confirmations, bonus announcements, and payment status updates. We use your ID information to verify your identity before your first withdrawal. We use your banking details to process deposits (inbound) and withdrawals (outbound). We use your game activity logs to settle outcomes, detect cheating, and comply with audit requirements. We use your IP address and device data to detect fraudulent logins, prevent account takeover, and block multi-accounting from a single device.
We also use aggregated (anonymized) data to understand platform usage patterns, optimize game performance, and improve our payment infrastructure. We do not use your data for marketing to external parties. We do not sell mailing lists, user counts, or behavioral profiles. We do not use your data to train machine-learning models without your explicit consent.
Third-party processors and data sharing on dredge
We share data with specific third parties only when necessary. Our payment processors (local payment networks, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment) receive your banking or e-wallet details to execute transfers. Our identity-verification vendor receives your ID scan, selfie, and address proof to cross-check against government records. We may share aggregated transaction data with our compliance auditors (annually) to verify responsible operations.
We do not share your data with advertising networks, data brokers, or social media platforms. We do not permit our payment processors to use your data for their own marketing. If we are legally compelled to share your data (court order, police request), we will comply and notify you unless legally prohibited from doing so. We do not host your data in a single location; identity information sits in a segregated database in Jakarta; payment records sit in Surabaya; game logs are distributed across Bandung and Medan for redundancy.
Your rights on dredge
You have the right to access your personal data. Contact our support team with your account email, and we will provide a copy of all data we hold on you within 14 days. You have the right to correct inaccurate data: if your registered address is outdated, you can update it from your account settings. You have the right to request deletion of your account and associated data; we will comply within 30 days, except where we are legally required to retain records (e.g., anti-money-laundering data, which we retain for seven years).
You have the right to export your game history and transaction logs in standard CSV format. You have the right to opt out of marketing emails—every email we send includes an unsubscribe link. You have the right to object to our use of your data for fraud detection; however, we cannot disable this without compromising platform security, so we will discuss alternatives with you.
Cookies and tracking on dredge
We use cookies for three purposes. Session cookies keep you logged in during your active session; these expire when you close your browser. Persistent cookies remember your language preference and login history; these expire after 90 days. Security cookies track your login patterns to detect unauthorized access. We do not use tracking cookies to follow your activity across other websites. We do not use cookies to infer your interests or build advertising profiles.
You can disable cookies in your browser settings; however, dredge requires cookies to function (you will not be able to stay logged in without them). We do not use Do Not Track (DNT) headers to infer your preferences; we simply ignore them and follow our own policy. Third-party cookies are blocked; we do not load external ad networks or analytics.
We keep your data encrypted, segregated by type, and accessible only to staff who need it to process your account or detect fraud. We do not sell it. We do not broker it. We protect it.
Data retention and deletion on dredge
We retain your account data (email, phone, ID information) for as long as your account is active. If you request account deletion, we delete your account and associated personal data within 30 days, except for transaction records and anti-money-laundering documentation, which we retain for seven years per regulatory requirements. We retain game logs (bet history, outcomes) for one year after the bet settles to allow dispute resolution; after one year, logs are archived and then deleted after seven years.
We retain payment records (deposit and withdrawal details) indefinitely to comply with financial auditing requirements and anti-fraud obligations. We retain IP addresses and device data for 90 days for security purposes; older logs are deleted automatically. We do not retain copies of your ID scans or selfies beyond what is necessary for identity verification and regulatory filing; these are typically deleted after 30 days of successful verification.
Security practices on dredge
We encrypt all sensitive data (passwords, banking details, ID information) using AES-256 encryption at rest and TLS 1.2+ encryption in transit. We hash passwords using bcrypt; we never store plaintext passwords. We do not use outdated encryption (MD5, SHA-1); all cryptographic functions are industry-standard. We perform penetration testing annually to identify vulnerabilities. We do not claim "military-grade security" or "unhackable systems"; security is an ongoing practice, not a guarantee.
We limit staff access to sensitive data on a need-to-know basis. We do not allow staff to download, export, or share customer data outside our internal systems. We use IP whitelisting, two-factor authentication, and activity logging for staff access to production databases. We do not store API keys, database passwords, or encryption keys in code repositories; we use secure vaults. We comply with PCI DSS (Payment Card Industry Data Security Standard) for payment data handling.
Policy summary and contact on dredge
This privacy policy is our commitment to you. We collect only necessary data, encrypt it, limit staff access, and delete it when no longer needed. We do not sell your data, track you across the web, or build advertising profiles. We share data only with payment processors and identity vendors required to operate your account. You can request access, correction, or deletion of your data at any time by contacting our support team.
If you have privacy concerns or wish to exercise your rights, email us at [email protected] with your account email address. We respond to all inquiries within 14 days. If you believe we have violated this policy, you can file a complaint with your local data-protection authority (if one exists in your jurisdiction). We do not take legal action against users who raise good-faith privacy concerns.
This policy may be updated if our data practices change or if legal requirements shift. We will notify all account holders of material changes at least 30 days before they take effect. Continued use of dredge after an update indicates your acceptance of the revised policy. Your privacy is essential to maintaining trust; we take that obligation seriously.
-
1
We collect only necessary dataPrinciple
Email, phone, ID, banking details, game logs, device info—nothing extraneous.
-
2
We encrypt and segregate sensitive dataPrinciple
AES-256 at rest, TLS 1.2+ in transit, access restricted by role.
-
3
We do not sell or broker your dataPrinciple
We share only with payment processors and identity vendors as needed for your account.
-
4
You control your data rightsPrinciple
Access, correct, delete, export your data on request. Contact [email protected].