kilat Privacy Policy
This page describes what we collect when you use kilat and how we keep that data protected. We at kilat operate a live-dealer gaming and sportsbook platform available where local law permits. When you create an account, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, or place a bet on Liga 1 or Piala AFF, you share certain information with us. We handle that information with care.
Our privacy approach is straightforward: we collect only what we need, we protect it with encryption, and we do not sell it to third parties. We may share data with payment processors, compliance authorities, or fraud prevention partners — but only as necessary to run kilat or to comply with regional regulations.
We are transparent about what we collect and why. This policy explains our full data practice. If you have questions, our support team can clarify in English or Indonesian.
What We Collect on kilat
We collect different types of data depending on what you do on kilat. When you create an account, we collect your email address, phone number, and a password. When you verify your identity before depositing, we collect your full legal name, date of birth, and identity document number (national ID, passport, or driver's license). We use this information to prevent fraud and comply with regional Know Your Customer (KYC) requirements.
When you deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or a bank account, we collect the payment details you provide — phone number for e-wallets, bank account information for transfers. We do not store your bank credentials or payment card numbers locally; our payment processors handle that securely.
When you place a bet on Liga 1, Piala AFF, Champions League, Premier League, or any other market on kilat, we record the bet details — amount, odds, market, time. When you play a live-dealer game like blackjack, roulette, or Dragon Tiger, we record your session activity — bets placed, results, time played. This data helps us detect fraud, settle disputes, and improve our service.
We also collect technical data: your IP address, browser type, device type, operating system, and pages you visit on kilat. We use this to troubleshoot technical issues, prevent abuse, and understand how users navigate kilat.
We do not collect data you do not share
We never access your contacts, location, photos, or other personal files on your device. We do not track you across other websites. When you close kilat, we do not follow you elsewhere online.
How We Use Your Data on kilat
We use your data for specific purposes. Your email and phone number let us send you account notifications, password resets, and support responses. Your identity data lets us verify your account, process deposits and withdrawals, and comply with regional regulations that require identity verification for gaming platforms.
Your betting and gameplay data let us settle bets fairly, detect fraud, and respond to disputes. For example, if you query a roulette result, we review your session recording and our records to verify what happened. We keep this data for at least seven years to support dispute resolution and regulatory compliance.
Your payment details are used solely to process deposits and withdrawals. We do not use your payment information for marketing or secondary purposes. We do not share your bank account number or e-wallet credentials with third parties except the payment processor required to complete the transaction.
Your technical data helps us run kilat securely. We use it to detect suspicious login attempts, identify bots, prevent account sharing, and troubleshoot service outages. We analyze aggregated technical data to understand traffic patterns and improve performance across Jakarta, Surabaya, Bandung, Medan, and Semarang.
Data Processors and Third Parties
We work with third-party processors to run kilat. Our payment partners — the networks behind mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, and local payment — receive the payment information necessary to process your deposits and withdrawals. We do not control these partners' privacy practices, but we contractually require them to protect your data and use it only for payment processing.
Our servers may sit outside your jurisdiction. When you use kilat from Jakarta, Surabaya, or elsewhere in Indonesia, your data may be processed on servers in other countries. These servers are protected with encryption, firewalls, and access controls. We comply with data protection standards in each jurisdiction where we operate.
We may share data with compliance authorities if required by law — for example, if a regional gaming regulator requests account information or if law enforcement investigates fraud. We do not voluntarily disclose user data to governments without a legal mandate.
We use fraud prevention services to detect and block fraudulent activity. These services may receive your account information, device data, and transaction history. They use this data solely to identify suspicious patterns and protect kilat.
kilat data sharing essentials
- We share data only with processors necessary to run kilat or to comply with law
- Payment partners receive payment information only; we do not share betting data
- Compliance authorities receive data only under legal mandate
- We do not sell data to marketers, brokers, or third-party advertisers
- We do not share data between your kilat account and any other service
Security and Encryption on kilat
We protect your data with encryption and access controls. All data in transit — between your device and kilat's servers — uses SSL/TLS encryption. This means snoopers cannot intercept your email, password, or payment details as they travel across the internet.
Your data at rest — stored on our servers — is encrypted using industry-standard algorithms. Your password is hashed, never stored in plain text. Your identity document is encrypted. Your payment information is never stored locally; we use secure tokenization so only payment processors have access to full payment details.
We restrict access to data internally. Only kilat employees with a legitimate business need can view account information. Our data center has physical access controls — security guards, surveillance, biometric locks. We conduct security audits regularly to identify and fix vulnerabilities.
We also maintain backups of your data to restore your account if our primary servers fail. These backups are encrypted and stored in secure locations.
Your Rights on kilat
You have rights over your data on kilat. You can request access to all data we hold about you — we provide this in a standard format within a reasonable timeframe. You can request correction if your data is inaccurate. You can request deletion of your account and associated data, subject to legal retention requirements (for example, we must retain transaction records for dispute resolution and compliance).
You can manage your communication preferences in your kilat account settings. You can opt out of marketing emails while remaining subscribed to account notifications, payment confirmations, and support messages.
To exercise these rights, contact our support team. We respond to data access and deletion requests in English and Indonesian within 30 days.
Cookies and Tracking on kilat
kilat uses cookies — small files stored on your device that remember login sessions and preferences. These cookies let us keep you logged in across browser sessions, remember your language preference, and load your account faster. We do not use cookies for tracking or profiling.
You can disable cookies in your browser settings, but doing so may limit kilat's functionality — for example, you may be logged out automatically after each session.
We do not use third-party analytics services that track you across the web. We do not place tracking pixels or beacons on kilat. We analyze aggregate usage data (total logins, average session length, popular games) but never track individual user behavior across sessions or across websites.
Data Retention on kilat
We keep account data as long as your kilat account is active. After you close your account, we retain certain data for legal and operational reasons. We keep transaction records for at least seven years to support dispute resolution, fraud investigation, and regulatory compliance. We keep identity verification data for the same duration.
We delete technical data (IP addresses, device information) after six months if the data is not linked to active fraud investigation or regulatory inquiry. We delete marketing preferences and communication history after 12 months.
If a regional authority requests we retain specific data for longer — for example, a law enforcement investigation — we comply. We notify you of any legal holds on your data where we are permitted to do so.
Contact and Policy Updates
If you have questions about this privacy policy or how we handle your data, contact our support team via in-app chat, email, or phone. We respond in English and Indonesian. Our team can explain what data we hold about you, why we hold it, or how to request access or deletion.
We may update this policy as we improve kilat or as regulations change. We notify you of material changes by email. Your continued use of kilat after a change means you accept the updated policy. If you do not accept a change, you may close your account and request a data export before deletion.
Our services are available only where local law permits. By using kilat, you confirm that you have verified that your access complies with your own jurisdiction's data protection and gaming laws. We are not liable if you access kilat from a jurisdiction where it is prohibited or where this privacy policy does not comply with local data protection requirements.