LEGAL REFERENCE

How We Handle Your Account Data

This is the yes77 login privacy policy. We wrote it so you know exactly what we collect when you open an account, what we do with it, and...

Data minimisationEncrypted storageIndonesia-awareYour controlPlain-English
yes77 login How We Handle Your Account Data

Privacy Posture & Your Rights

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Privacy Contact Paths

If you have a question about your data, reach our privacy desk through any of the channels below. We answer in the...

Privacy Inbox Email our data team directly with your registered...
Live Chat Desk Open the chat bubble inside your account area...
Account Settings Most consent toggles, marketing preferences and session controls...
PLATFORM TRUST SIGNALS

How We Keep This Policy Honest

Our policy is reviewed by people, not just published and forgotten. Here's how we keep it aligned with what the platform actually does.

Quarterly Review

We re-read this page every quarter against the live product. If a lobby feature changes how data flows, the wording here changes in the same release cycle, not months later.

Named Owner

A single privacy lead signs off every revision. That keeps the policy consistent instead of drifting each time a new section gets added by a different writer on the team.

Encryption Standard

Account credentials and payment references sit behind current encryption practice. We rotate keys on a schedule and log every administrative access for later audit.

Vendor Vetting

Third parties touching your data — payment processors, fraud screens, chat tooling — are reviewed before onboarding and re-checked yearly against our Indonesia handling rules.

Breach Protocol

If something goes wrong we tell you. Our notification path is written down, rehearsed, and faster than the minimum window regulators expect for Indonesia-based account holders.

Plain Wording

We refuse to hide behind legalese. Every clause on this page is written so you can read it once and know what we're doing with your information.

Consistency Across Our Policy Pages

Our privacy page lines up with the rest of our legal set. Here's how the pieces relate so you can find what you need without circling.

Privacy vs TermsTerms cover the rules of using your account. Privacy covers what we know about you. Read both — they reference each other but answer different questions.
Privacy vs CookiesThis page is the umbrella. Our cookies notice drills into the specific tracking technologies and is updated whenever we add or remove a tag.
Privacy vs KYCKYC explains the documents we ask for at verification. Privacy explains how those documents are stored, who sees them, and when they're deleted.
Privacy vs PaymentsThe payments page lists DANA, OVO, GoPay and QRIS flows. This page covers the data those flows generate and how long we keep the references.
Privacy vs MarketingMarketing consent is separate from account consent. You can turn off promotional contact and keep your lobby access untouched — they don't share a switch.
Privacy vs SecuritySecurity explains the controls protecting your account. Privacy explains the data those controls are protecting. Same goal, different angles, both kept current.
Privacy vs ComplaintsIf a privacy request isn't handled to your satisfaction, the complaints page tells you how to escalate, including external Indonesia avenues where local law permits.
QUICK SIGNAL

What This Policy Page Actually Shows

The layout of this page is built to make the policy easy to scan, not to bury it. Here's what you'll see as you read down.

Posture Block Up top, a short statement of where we stand on...
Rights Summary A clear list of what you can ask us to...
Retention Notes How long we hold each category of data, written next...
Contact Block A direct line to the privacy desk, separate from general...
Update Stamp Every revision is dated. If something on the page changes...
Cross-Links Inline links to terms, cookies and KYC so you don't...

Privacy Questions We Hear Often

Your name, contact details, the device you signed up on and the payment reference you choose. We don't ask for anything we won't use, and verification documents come later only when the account requires them.

Only with partners that make your account work — payment processors for DANA, OVO, GoPay and QRIS, plus fraud and identity checks. We don't sell data to advertisers and we don't pass it on for unrelated marketing.

For as long as your account is active, plus the retention window Indonesian financial rules require for transaction records. After that, we purge or anonymise. Marketing data is dropped sooner if you withdraw consent.

Yes. Email the privacy desk from your registered address and we'll verify the account, then send you a structured copy of your data within the standard response window for Indonesia requests.

Open your account settings and switch the marketing toggles off. The change applies immediately and won't affect your lobby access, your payment options or any service messages tied to live transactions.

Active records are removed from day-to-day systems. Anything we're required to retain — chiefly financial logs — is moved to restricted storage for the legally required period, then deleted on schedule.

The update date at the top of the page moves and we post a short note describing what changed. Material changes also trigger an email to your registered address before they take effect.