cr777 Privacy Policy
This page describes what we collect when you use cr777 and how we keep that data protected. We collect personal information only when you create an account, verify your identity, or make a transaction. We do not sell member data to third parties; we share information only with payment processors, compliance teams, and service providers necessary to operate the platform.
Our cr777 privacy practices apply to all users accessing our platform from supported jurisdictions. We encrypt all sensitive data; we use secure servers; and we comply with applicable data-protection laws. If you have questions about how we handle your information, contact our support team at [email protected] during business hours (Monday–Friday, 09:00–18:00 Jakarta time).
We review this policy annually and update it if our practices change. If we make material changes, we will notify members via email or a banner on the platform. Continued use of cr777 after any update constitutes acceptance of the revised policy.
What data we collect on cr777
When you create a cr777 account, we collect your email address, password (stored as an encrypted hash), full name, date of birth, and phone number. We use this information to verify your identity, send account notifications, and contact you if there are issues with your account or transactions.
When you deposit or withdraw, we collect payment details (bank name, account number for bank transfers, or payment-app identifiers for DANA, e-wallet, mobile banking, local payment, online payment, and e-wallet). We do not store full payment card details; we send this information directly to our payment processors, who maintain their own security standards. We retain a record of all transactions for accounting and compliance purposes.
When you verify your identity (KYC), we collect a photo of your national ID or passport and proof of address (utility bill, bank statement, or rental agreement). We store these documents in an encrypted vault accessible only to our compliance team. Documents are retained for the duration of your account plus any legally mandated retention period, then securely deleted.
We collect minimal personal data
We do not ask for social media profiles, employment history, or family information. We collect only what is necessary to verify your identity, process payments, and comply with anti-money-laundering regulations.
We collect usage data: which games you play, how long you play, your betting history, and your login times. We use this data to maintain the platform, detect fraud, and understand feature usage. We do not use this data for marketing or advertising outside cr777.
We collect technical data: your IP address, browser type, device model, and operating system. We use this to detect unauthorized access, prevent distributed-denial-of-service (DDoS) attacks, and troubleshoot technical issues.
Our cr777 data practices are driven by the principle of minimal collection — we take only the information necessary to serve you securely.
How we use your data on cr777
We use your data to:
- Verify your identity and prevent fraud
- Process deposits, withdrawals, and transactions
- Maintain account security and detect unauthorized access
- Comply with anti-money-laundering and know-your-customer (KYC) regulations
- Provide customer support and respond to your inquiries
- Improve our platform performance and fix technical issues
- Send account notifications (login alerts, payment confirmations, policy updates)
We do not use your data to create marketing profiles, sell to advertisers, or track you across other websites. We do not use your name, email, or ID document for any purpose outside of our platform operations.
Third parties who access your data
We share your information with third-party service providers only when necessary:
- Payment processors: mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and banks (online payment, e-wallet, mobile banking, local payment) receive transaction details to process your deposits and withdrawals. These partners maintain their own privacy policies.
- Compliance teams: Our legal and compliance advisors access KYC documents and transaction records to ensure we comply with applicable regulations.
- Data centers: Our servers may sit outside your jurisdiction (e.g., in Singapore or Australia). We require all data center operators to sign data-protection agreements.
- Anti-fraud services: We use third-party fraud-detection tools to identify suspicious account activity. These tools may process your IP address and login patterns.
We do not sell, rent, or trade member data. We do not share your information with marketing companies, research firms, or data brokers. If we receive a legal request (subpoena, court order, law-enforcement inquiry), we may disclose information as required by law.
Cookies and tracking on cr777
We use cookies (small files stored on your device) to remember your login session and your preferred language and settings. Session cookies are deleted when you close your browser. We do not use persistent cookies to track you over time or across other websites.
You can disable cookies in your browser settings; however, this may prevent cr777 from working properly. We do not use third-party tracking pixels, web beacons, or analytics scripts that report to external companies.
Your rights regarding your data
You have the right to:
- Access: Request a copy of all data we hold about you. Email [email protected] with "Data Access Request" in the subject line.
- Correct: Update your name, email, or phone number via your account settings. For KYC documents, contact support to request a correction.
- Delete: Request deletion of your account and associated data. Note: we may retain transaction records for compliance purposes.
- Restrict: Ask us to limit how we use your data (e.g., stop sending notifications). We will honour reasonable requests.
To exercise any of these rights, contact our support team at [email protected]. We will respond within 10 business days. If you believe we have mishandled your data, you may lodge a complaint with your local data-protection authority.
Data security and retention
We protect your data using industry-standard encryption (SSL/TLS for data in transit; AES-256 for data at rest). We use two-factor authentication to prevent unauthorized access to your account. Our servers are located in secure data centres with physical access controls and 24/7 monitoring.
We retain your account data for as long as your account is active. If you close your account, we retain transaction records and KYC documents for the period required by law (typically 5–7 years in most jurisdictions), then securely delete them. We cannot guarantee perfect security; if we discover a data breach, we will notify affected members via email and post a notice on our website.
Jurisdiction and data transfers
Our cr777 servers operate in multiple jurisdictions, including Southeast Asia, Australia, and Europe. By using cr777, you consent to your data being transferred to and stored in these locations, subject to the data-protection agreements in place.
Specific considerations for members across Indonesia
Members from Jakarta, Surabaya, Bandung, Medan, and Semarang may have specific legal protections under Indonesian law. We comply with Indonesian data-protection regulations to the extent applicable to our services. If you believe your rights under Indonesian law have been violated, contact our compliance team at [email protected].
Contact us about privacy
If you have questions about our cr777 privacy practices, data handling, or your personal information, contact us:
- Email: [email protected]
- Hours: Monday–Friday, 09:00–18:00 Jakarta time
- Response time: typically 2–4 business hours
This policy is effective as of the last update date and applies to all users of cr777 where our services are legally available. We may update this policy from time to time; changes will be noted with an updated effective date. Your continued use of cr777 after any update means you accept the revised policy.