LEGAL REFERENCE

Your Privacy at bola union Indonesia

bola union is built for Indonesia, and protecting your personal data is part of how we operate every account, transaction and session on this platform. This Privacy Policy...

Data You ControlSecure StorageTransparent CollectionNo Hidden Sharing
Tour the Lobby Read FAQ
bola union Your Privacy at bola union Indonesia

Privacy information

When you open an account with bola union and complete transactions via DANA, OVO, GoPay or QRIS, we collect the minimum data required to verify your identity and process your activity. This includes your registered name, contact details, device identifiers and transactional records. We do not sell your data to third parties. All data is stored on encrypted servers and accessed only

by authorised personnel with a legitimate operational need. Retention periods align with applicable Indonesian data-protection obligations and are reviewed periodically. Access is available where local law permits, and we restrict processing in unsupported regions automatically. You may request a copy or deletion of your data at any time through the contact channels listed in this policy.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Policy contact paths

Team online

Privacy Request Email

Send a formal data-access or deletion request to our privacy team. We acknowledge all emails within one business day and resolve requests within 14 calendar days under our standard privacy workflow.

Live Chat Support

Start a live chat session directly from your account dashboard to ask privacy-related questions. Our agents can locate your data record and guide you through the correction or removal process in real time.

Postal Address

For formal written correspondence regarding this Privacy Policy, you may contact our registered data-processing office in Indonesia. Include your account reference number so we can match your request accurately and promptly.

TRUST MARKERS

Why You Can Trust Our Privacy Practice

Our privacy approach is shaped by Indonesian data-protection standards, reviewed by our compliance team on a regular cycle, and updated whenever applicable regulation changes. We document every revision so you always know...

Regular Policy Audits

Our compliance team reviews the full Privacy Policy at least twice per year and immediately after any regulatory update in Indonesia, ensuring every clause reflects current data-handling practice accurately.

Encrypted Data Storage

Personal data you share — including payment-method references for DANA, OVO, GoPay and QRIS — is stored using industry-standard encryption protocols. Access logs are retained and reviewed for anomalies continuously.

Minimal Data Collection

We collect only what is necessary to operate your account and process your sessions. No behavioural profiling for third-party advertising takes place, and we do not monetise your personal data in any form.

Documented Revision History

Every version of this Privacy Policy carries a publication date. You can request previous versions via email so you can compare what changed, when it changed, and why — full transparency into our editorial process.

Indonesian Jurisdiction Alignment

Our data-processing obligations align with Indonesian law. Where cross-border data transfers are required for infrastructure reasons, we apply contractual safeguards consistent with local regulatory expectations.

Clear Opt-Out Rights

You retain the right to withdraw consent for non-essential data processing at any time. Opt-out requests are handled within seven business days, with written confirmation sent to your registered email address.

Privacy Policy Consistency Across Our Pages

Our Privacy Policy is written to the same standard across every section of bolaunion.id. The seven points below show how this document stays consistent with the policies referenced...

Cookie Policy Alignment
Cookies described on our Cookie page are governed by the same consent and opt-out rules stated here, with no separate or conflicting data-retention terms applied at the cookie layer.
Account Terms Consistency
Data-collection clauses in our Account Terms mirror what this Privacy Policy states. No term in either document grants us broader data rights than what you have already read here.
Transaction Data Scope
When our Terms of Use mention transaction records for DANA, OVO, GoPay or QRIS payments, the retention period and access rights described are identical to the figures quoted in this Privacy Policy.
Contact Form Data
Personal details you submit through any contact form on bolaunion.id are handled under this Privacy Policy, not a separate document, ensuring one consistent standard regardless of which form you use.
Marketing Consent
Our promotional pages reference email and notification consent in line with the opt-out process described here. Withdrawing consent in one place withdraws it across the entire bolaunion.id platform simultaneously.
Third-Party Links Disclosure
Where our pages link to external providers, this Privacy Policy is the governing document for the disclosure notice. We apply the same third-party transparency standard across every outbound reference on the site.
Policy Update Notification
When this Privacy Policy changes materially, the notification method described here — email to your registered address — applies equally to related policy pages, so you receive one clear, consolidated update.
PLATFORM SNAPSHOT

Key Elements Shaping This Privacy Document

Six structural elements define how this Privacy Policy is organised and presented across bolaunion.id. Understanding these elements helps you locate the clauses most relevant to your account and exercise your rights without needing to...

01
Layered Disclosure Format We use a two-layer structure: a short summary at the top of each section, followed by full legal detail beneath. You can read the summary layer alone to get a working understanding of each clause quickly.
02
Plain-Language Summaries Every section opens with a one-sentence plain-language summary before the formal clause begins. This is intentional — we want you to understand what you are agreeing to without needing a legal background to interpret it.
03
Version Control Stamps Each published version of this Privacy Policy carries a clear version number and publication date at the top of the document. You can always confirm whether the version you are reading is current or archived.
04
Inline Rights Reminders At each point where we describe data collection, we include a brief inline reminder of the right you hold in relation to that data — access, correction, deletion or portability — so your rights stay visible throughout.
05
Linked Contact Paths Rather than asking you to search for contact information, every section that discusses a right or a concern links directly to the relevant support channel described in the Support section of this policy page.
06
Jurisdiction Scope Tags Where a clause applies only to supported regions or where local law permits, we tag that clause clearly so you know immediately whether it affects your account based on your location within Indonesia.

Privacy Policy Questions Answered

We collect your registered name, email address, phone number and device identifiers. If you transact via DANA, OVO, GoPay or QRIS, we also record the transaction reference and timestamp to maintain accurate account records.

We do not sell your data. We share data only with operational partners — such as payment processors for DANA, OVO, GoPay and QRIS — under contractual privacy obligations, and only to the extent required to deliver your account services.

Retention periods depend on the data type. Account data is kept for as long as your account is active. Transaction records are retained for the period required under applicable Indonesian law, after which they are securely deleted from our systems.

Yes. Submit a data-access request via the email address in our Support section. We will compile and deliver a structured copy of your personal data within 14 calendar days of receiving your verified request, free of charge.

Send a deletion request to our privacy email with your account reference. We will remove your data from active systems within 14 days, retaining only what Indonesian law requires us to keep for a defined statutory period.

We apply encryption at rest and in transit, enforce role-based access controls, and maintain access logs. Our security team reviews anomalies regularly and updates our data-protection measures in line with current Indonesian regulatory expectations.

Yes. If we make a material change to this Privacy Policy, we will send a notification to your registered email address before the change takes effect, giving you time to review the update and, if needed, contact us with questions.