kenzotoPrivacy Policy

This page describes what we collect when you use kenzoto and how we keep that data protected. We handle personal information according to standard data protection practices and local law. When you create an account, deposit funds, or request a withdrawal, we record information necessary for account operation, payment confirmation, and regulatory compliance.

Our approach is direct: we explain what data we collect, how long we keep it, who has access to it, and what rights you have over your information. We do not sell your data to advertisers or unrelated third parties. We do not use your account activity for purposes unrelated to the kenzoto platform. This policy applies to our website, mobile app on Android and iOS, and all account services we provide.

If you have questions about how we handle your data, you can contact our support team through the kenzoto app or send a request through the account settings area.

What we collect on kenzoto

We collect your name, date of birth, email address, and phone number when you register an account on kenzoto. We verify your phone by sending a one-time code. We use this information to create your account, confirm your identity, and send important notices such as password resets or payment confirmations.

When you deposit or withdraw funds, we collect payment details. For DANAe-wallet, mobile banking, local payment, and online payment, we record that you used these e-wallets and we keep a transaction reference. For e-wallet, mobile banking, local payment, and online payment Virtual Account transfers, we record the Virtual Account number we generated for you, the amount transferred, and the confirmation from the bank. We do not store your e-wallet PIN, bank password, or card number. Those credentials stay with your payment provider.

We also collect technical information: your device type (Android or iOS), browser type, IP address, and the pages you visit on our site. We use this to detect unusual account access, prevent fraud, and improve our platform performance. If you access kenzoto from Jakarta, Surabaya, Bandung, Medan, or any other city, we may log your general location to flag suspicious patterns, but we do not track your precise location.

We keep a record of your account activity: which games you view, which categories you browse, and when you log in. We use this to understand how our platform is used and to resolve disputes if you contact support about a transaction. We do not publish this activity publicly or share it with other users.

How long we keep your data on kenzoto

We keep your account information for as long as your account is active. If you request account deletion, we erase personal data after a set retention period, usually several months, to allow for dispute resolution and regulatory compliance. Transaction records—deposits, withdrawals, and game activity—are kept for longer periods in case we need to review account history with you or verify compliance with local law.

Payment confirmations from e-wallet, mobile banking, local payment, and bank Virtual Accounts are stored for at least one year so we can handle refund requests and confirm payment history if needed. Identity documents provided for KYC verification are deleted after verification is complete, unless law requires us to keep them.

Technical logs (IP addresses, device information, session tokens) are kept for weeks to months. We use these to detect fraud and resolve account access issues. After that period, we delete or anonymize them.

Our kenzoto data deletion request

You can request a copy of your personal data or ask for account deletion through the account settings inside the kenzoto app. We will respond to such requests within a reasonable timeframe, subject to law and operational necessity.

Who we share your data with on kenzoto

We do not sell or share your personal data with advertisers, marketing companies, or unrelated businesses. We do share data with partners who help us operate kenzoto:

  • Payment providers. We share transaction details with online payment, e-wallet, mobile banking, local payment, online payment, and banks so they can process your deposits and withdrawals.
  • Hosting and infrastructure providers. We use third-party servers for storage and processing. Our servers may be located outside Indonesia. These providers sign data protection agreements and have restricted access.
  • Support and analytics tools. We may use third-party customer support systems to handle your requests. These tools process only information you provide in support conversations.
  • Legal compliance. We may disclose data if required by law, court order, or government request.

We do not give payment processors access to your password, nor do we give analytics tools access to your full account balance or withdrawal history. Data shared is limited to what is necessary for each partner to do their job.

Cookies and device storage on kenzoto

We use cookies and local storage to keep you logged in on kenzoto. A session token stored in your browser or app allows you to stay logged in without re-entering your password every time. We also use cookies to remember settings like language preference and notification choices. These cookies expire when you log out or after a period of inactivity.

We do not use cookies to track you across other websites. We do not sell cookie data to advertisers. You can clear cookies from your phone or browser settings, and you will be asked to log in again next time you use kenzoto.

On mobile, the Android app and iOS browser use standard app storage to cache account information and improve load speed. This data stays on your device and is encrypted. If you uninstall the app or clear app data from your phone, this cached information is deleted.

Your rights regarding your data on kenzoto

You have the right to access your personal data, correct information that is inaccurate, and request deletion of your account and associated data. You also have the right to object to certain uses of your data, though some uses (like payment confirmation and fraud prevention) are necessary for kenzoto to operate.

To exercise these rights, contact our support team through the kenzoto app or account settings. You can request a copy of your data in a standard format, or ask us to delete your account. We will respond to such requests within a reasonable timeframe, usually within weeks, subject to any legal holds or operational requirements.

You also have the right to lodge a complaint with the data protection authority in your jurisdiction if you believe we have mishandled your data. We encourage you to contact us first so we can address your concern.

Our kenzoto security and data protection commitments

We use encrypted connections (HTTPS) for all communication between your device and our servers. We encrypt sensitive data at rest, including passwords, payment references, and identity documents. We restrict database access to authorized team members and log all access attempts.

We conduct regular security reviews and address vulnerabilities when found. We do not claim absolute security—no system is perfectly secure—but we undertake standard security practices and industry standards. If we discover a significant data breach affecting your account, we will notify you through email or in-app message within a reasonable timeframe.

We ask you to keep your password secure and not to share it. If you suspect unauthorized access, reset your password immediately through the kenzoto app. Our password reset process verifies your identity through your registered phone or email before allowing a new password.

Updates to this privacy policy

We may update this policy to reflect changes in our practices or law. We will notify you of material changes through email or an in-app notice. Your continued use of kenzoto after a policy update means you accept the new terms. We encourage you to review this policy periodically to stay informed about how we protect your data.

If you have questions about this policy or our data practices, contact our support team through the kenzoto app account settings or send a message through the support portal. We aim to respond to data privacy inquiries within business hours.