command Platform Privacy Notice

This page describes what we collect when you use command and how we keep that data protected. We at command handle personal information carefully. Your account details, payment records, and gaming history are encrypted and stored securely. We do not sell your data to advertisers or third parties unrelated to operating our platform.

Our privacy practices reflect the needs of an online gaming platform serving members across Indonesia and supported jurisdictions. We collect identity information to verify eligibility under local law. We process payment data to manage deposits and withdrawals through DANA, e-wallet, mobile banking, and bank virtual accounts. We store game records to settle bets fairly and handle disputes.

This notice explains what we collect, why, how long we keep it, and what rights you have over your own data. We also describe how command handles data breaches, third-party processors, and changes to this policy. If you have questions after reading this, reach out to our support team in English.

What Data We Collect on command

We collect information in several categories. First, identity data: your legal name, date of birth, phone number, email address, and home address. This is required during registration and KYC (know-your-customer) verification. We use your identity data to confirm you are eligible to access our services from your jurisdiction and to comply with anti-money-laundering (AML) rules.

Second, payment data: we record your deposits, withdrawals, payment method details, and transaction history. When you fund your command account via DANA or a e-wallet virtual account, we store the transaction ID, timestamp, and amount. This data allows us to settle withdrawals accurately and dispute payment issues if they arise.

Fourth, device and connection data: we log your IP address, device type, operating system, and browser or app version when you access command. This helps us detect unauthorized access, prevent account takeover, and optimize our platform for different devices.

Identity data

Name, date of birth, phone, email, address. Required for KYC and jurisdiction verification.

Payment data

Transaction history, payment method, amounts, timestamps. Used for settlement and dispute resolution.

Gaming data

Bets placed, games joined, outcomes, balance changes. Essential for accurate bet settlement.

Device data

IP address, device type, browser/app version. Used for security and fraud detection.

How We Use Your Data on command

We use your data primarily to operate the command platform. Identity data confirms you are eligible to access our services. Payment data processes your deposits and withdrawals. Gaming data settles your bets accurately and instantly. Without this data, we cannot provide the service.

We also use your data for compliance and security. We check your identity against AML watchlists to prevent money laundering. We monitor your account for unusual activity that might signal fraud or account compromise. We analyze betting patterns to identify potential problem gaming and assess whether a member might benefit from account restrictions.

If local law requires us to disclose your data — for example, if a court orders us to provide your account information in connection with an investigation — we will comply. We will notify you of any such disclosure unless prohibited by law.

Data Retention and Your Rights on command

We keep your data only as long as necessary. Identity and KYC documents are retained for the duration of your account and for at least two years after closure (to comply with regulatory record-keeping rules). Gaming and payment records are kept for seven years for audit and dispute purposes. After that period, we delete or anonymize your records.

You have rights over your data. You can request a copy of all personal information we hold about you on command. You can request correction if your data is inaccurate. You can request deletion (though some data may be retained for legal or regulatory reasons). You can withdraw consent for optional data collection (such as analytics or product-improvement surveys, if you've opted in).

To exercise these rights, contact our support team in English. Include your account number and a description of your request. We will respond within a reasonable timeframe, typically within 14 days. If your request is complex or requires verification, the timeline may extend.

Third-Party Processors and Data Locations

We at command work with third-party service providers to operate our platform. Our payment processors (online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment) receive your payment data to initiate transactions. Our fraud-prevention vendor receives your device data and betting patterns to detect unauthorized access. Our hosting provider stores our servers in data centers outside Indonesia — possibly in Singapore, Australia, or other regions — to ensure redundancy and uptime.

All third-party processors are bound by confidentiality agreements. They may only use your data for the specific purpose we've instructed (payment processing, fraud detection, etc.). They cannot resell or repurpose your information. We regularly audit these vendors to ensure they maintain security standards aligned with ours.

Because our servers may sit outside your jurisdiction, your data may be transferred across borders. This is necessary to operate a platform serving multiple countries. We ensure all such transfers comply with applicable data-protection laws.

Cookies and Tracking on command

command uses cookies and similar tracking technologies to keep you logged in, remember your preferences, and analyze how you use our platform. Session cookies expire when you close your browser. Persistent cookies remain until you clear your browser cache or we delete them. We don't use third-party cookies for advertising or external tracking; all our tracking serves to improve the command user experience.

When you visit command on a mobile browser, we store a session identifier so you don't need to log in repeatedly during a single day. On our desktop site, we use cookies to remember your preferred game categories and any interface settings. These are convenience features; you can disable cookies in your browser settings, though some features may not function properly without them.

Data Breach and Security Incidents

We at command take security seriously. We encrypt your data in transit (using HTTPS) and at rest (on our servers). We conduct regular security audits and penetration testing. We restrict access to your data to essential staff only, authenticated through multi-factor authentication.

If a data breach occurs — for example, if an attacker gains unauthorized access to our servers — we will investigate immediately. We will notify affected members within 72 hours, as required by law. We will provide guidance on protective steps (password reset, account monitoring, etc.) and will monitor your account for fraudulent activity at no charge.

If you suspect your command account has been compromised, contact our support team immediately in English. We can reset your password, review your recent activity, and restore account security. There is no penalty for reporting suspected breaches.

Changes to This Privacy Notice

We may update this notice from time to time as our practices evolve or as law changes. When we make material changes, we will notify you by email or by posting a prominent notice on command. We will give you at least 30 days to review changes before they take effect. If you don't agree with changes, you can close your account and request deletion of your data (subject to retention rules).

This notice is current as of the date shown at the top of the page. If you have any questions about our privacy practices, contact our English-language support team. We aim to respond within 14 days.