clan Privacy Policy

This page describes what we collect when you use clan and how we keep that data protected. We collect personal information to verify your identity, process your deposits and withdrawals, and investigate potential fraud. Your data is encrypted on our servers and shared only with payment processors (DANA, e-wallet, mobile banking, local payment, online payment, or your bank for e-wallet transfers) or when required by law.

We at clan understand that privacy is critical. Your account credentials, Know Your Customer (KYC) documents, and transaction history are sensitive. We do not sell your personal data to third parties. We do not use your data for marketing unless you explicitly opt in. Our servers may be located outside your jurisdiction, but all data transfers between your device and clan are encrypted.

Read this policy to understand what data we collect, how long we retain it, your rights to access or delete it, and how to contact us with privacy concerns.

What data we collect on clan

When you register on clan, we collect your email address, full name, date of birth, phone number, and government-issued ID number. We ask for this information to verify your identity and comply with anti-fraud and anti-money-laundering regulations. During registration, you also create a password—we hash it using industry-standard encryption so we never see your actual password, only a mathematical version of it.

When you deposit funds, we collect information from your payment provider. If you use DANA, e-wallet, mobile banking, local payment, or online payment, the payment processor sends us your transaction ID, the amount transferred, and a timestamp. If you use a e-wallet bank virtual account (mobile banking, local payment, online payment, e-wallet), we receive your bank account reference and the transfer confirmation. We do not store your full bank account number or card number—only the reference provided by your bank or e-wallet provider.

We also collect your game activity, account balance history, and withdrawal requests. Each time you play a slot game, join a live-dealer table, or place a selection on a sports market, we log that activity in your account history. We track your balance changes so we can detect unusual patterns and protect your account from unauthorized access. This data helps us investigate disputes—if you report a missing win or an incorrect balance, we review your activity logs.

On your mobile device, we may collect your device type, operating system version, IP address, and internet connection type. We use this information to troubleshoot technical issues—for example, if your Android app crashes, we check whether the crash is tied to a specific device model or Android version so we can fix it. We do not track your location, contacts, or photos.

Key takeaways

  • We collect email, identity info, and payment details to verify your account and process transfers
  • Your password is hashed; we never store it in plain text
  • We log your game activity and balance changes to detect fraud and resolve disputes
  • We collect device and network info only to troubleshoot technical issues
  • We do not sell your data or track your location

How we use your data and who we share it with

We use your personal data for four main purposes: account verification, payment processing, fraud prevention, and customer support. When you deposit, we verify your identity against your KYC documents and check for links to known fraud networks. When you withdraw, we review your account for suspicious activity—for example, a sudden surge in bets followed by a large withdrawal might trigger a manual review. If everything checks out, we process your withdrawal to your payment method.

We share your data with payment processors only to complete transactions. When you deposit via mobile banking, we send local payment your transaction ID and amount so they can confirm the transfer. When you withdraw to online payment, we send e-wallet your withdrawal amount and account reference so they can credit your wallet. These processors access only the data they need to complete the specific transaction—they do not receive your full transaction history or your KYC documents.

We may also share your data with law enforcement, regulators, or tax authorities if required by applicable law. If a court order or government request requires us to disclose your account information, we comply. We will notify you of such requests unless legally prohibited from doing so.

KYC (Know Your Customer)
Identity verification documents we collect during registration to comply with anti-fraud regulations.
Encryption
Mathematical encoding of data so it cannot be read without a decryption key; we use industry-standard encryption for all transfers.
Hash (for passwords)
One-way mathematical transformation of your password; we never store or see your actual password.
Data retention
Period for which we keep your data after account closure; typically 5-7 years for regulatory compliance.

Cookies and tracking on clan

We use cookies to keep you logged in on clan and to remember your preferences (e.g., your game history filter or preferred payment method). Cookies are small text files stored on your device. When you visit clan in your mobile browser or on desktop, our server sends you a session cookie so you don't have to re-enter your password every time you navigate to a new page. This cookie expires after subject to verification of inactivity for security.

We also use analytics cookies to count how many users visit clan and which pages or games they use most often. These cookies do not identify you personally—they aggregate usage patterns across all clan users. We use this information to improve clan's performance and user experience. You can disable non-essential cookies in your browser settings; however, disabling session cookies will log you out.

We do not use third-party tracking pixels or allow external advertisers to track your activity on clan. We do not retarget you with ads based on your clan browsing. Any emails we send you contain only transaction confirmations or account notifications—no marketing material unless you explicitly subscribe.

Your rights regarding your clan data

You have the right to access, correct, and request deletion of your personal data. To access your data, log into clan and view your account details and transaction history. To correct information (e.g., if your phone number changed), use your account settings or contact our Customer Support teamTo request deletion, email our support team with your account email and request details; we will delete your data within 30 days unless we are legally required to retain it.

We may retain your account data for up to 5-7 years after account closure for regulatory compliance, fraud investigation, and dispute resolution. We cannot delete data if an active dispute or legal proceeding involves your account. During major holidays like Idul Fitri or Idul Adha, data deletion requests may take longer due to reduced staffing.

You also have the right to opt out of non-essential communications. If we send you notifications about new games or promotions, you can disable them in your account settings. You will continue to receive critical notifications (e.g., withdrawal confirmations, security alerts, account changes) because these are necessary for account security.

What we protect
  • All data transfers encrypted with industry-standard protocols
  • Passwords hashed so we never see them in plain text
  • Payment details shared only with processors for specific transactions
  • Data access restricted to clan staff who need it for their role
What we do not do
  • Sell personal data to third-party advertisers or marketers
  • Track your location or access your device contacts
  • Use third-party retargeting pixels or external tracking
  • Send unsolicited marketing without your explicit consent

Data security and server location

We maintain security practices including firewalls, intrusion detection, and regular security audits. All data transfers between your mobile device (Android or iOS) and clan are encrypted using TLS (Transport Layer Security). Our servers may be located outside Indonesia—for example, in data centers in Singapore or Malaysia. By using clan, you acknowledge that your data may be transferred to and stored outside your jurisdiction.

While we take data security seriously, no online system is non-specific info secure. If a breach occurs, we will notify you via email and provide details on steps to secure your account. During such an event, contact our support team immediately if you suspect unauthorized access.

Contacting us about privacy and policy changes

If you have questions about your data, privacy concerns, or data deletion requests, contact our support team via email or live chat in your clan account. We respond to privacy inquiries within 5 business days. For users in Jakarta, Surabaya, Bandung, or Medan, our support team can discuss jurisdiction-specific data-protection laws.

We update this privacy policy periodically to reflect changes in our practices or data-protection laws. When we make material changes, we notify you via email and ask you to accept the updated policy. Your continued use of clan after a policy update constitutes acceptance. Check this page regularly for the most current policy.

Our services are available only where local law permits. If you are in a jurisdiction where we are restricted from operating, you should not use clan. We are not responsible for your compliance with local data-protection or gaming laws—that is your responsibility.

clan data protection team
Privacy & compliance officer

This policy reflects our current data practices as of publication. We update it when our practices change or when required by law. Your questions about privacy should be directed to our support team. For advanced concerns involving international data transfer, contact our compliance officer through clan support.