ulti700 Casino & Sportsbook Data Care

This page describes what we collect when you use ulti700 and how we keep that data protected. Our approach to your privacy is straightforward: we gather only the information necessary to verify your account, process your transactions, and comply with anti-money-laundering regulations. We do not sell your personal data to third parties, and we do not use your account activity for marketing purposes without your consent.

We at ulti700 operate in jurisdictions where online gaming and sportsbook services are permitted by local law. Our data handling practices reflect our commitment to transparency and security. When you open an account, deposit via DANA, e-wallet, mobile banking, or any of our other supported payment methods, or place a wager on Liga 1 football, live-dealer tables, or slot games, we collect and process information at each step. This policy explains what happens to that information, how long we keep it, and what rights you have over your own data.

Our servers and payment processors may be located outside your jurisdiction, which means your data may cross international borders. We undertake to apply the same security standards regardless of server location, and we make clear below where your data physically resides and who has access to it.

What We Collect on ulti700

When you register for an ulti700 account, we collect your full name, date of birth, email address, phone number, and residential address. These details are required by Indonesian anti-money-laundering law and are verified during our KYC (Know Your Customer) process. You must provide a government-issued ID—such as a passport, national identity card, or driver's licence—and a utility bill or bank statement showing your current address. We photograph or scan these documents and store them securely on our servers.

When you deposit money into your ulti700 account, we record the amount, the payment method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer via mobile banking, local payment, online payment, or e-wallet), the date and time, and your destination bank account number. We do not store your full banking credentials or passwords; our payment processors handle that encryption. We also record your IP address, device type, and browser fingerprint to detect unauthorized access and prevent fraud.

Your communication with our customer support team is also logged. When you email us or use live chat to ask about a withdrawal delay, reset your password, or report a technical issue, we keep a record of the conversation. This record helps us respond to follow-up questions and improves our service quality. We also collect and store your two-factor authentication settings and password-reset tokens for account security.

How We Use Your Data

We use your name, date of birth, and address to verify your identity and comply with Indonesian gambling and financial regulations. This verification is mandatory and cannot be waived. We use your email and phone number to send you account notifications—such as login alerts, withdrawal confirmations, and password-reset instructions. We may also contact you if we detect suspicious activity on your account, such as a login from an unfamiliar location or a withdrawal to a new bank account.

Your payment information is used to process deposits and withdrawals. We forward your banking details to our payment processors, who are contractually bound to keep your data confidential. We retain transaction records for seven years to satisfy audit and anti-money-laundering requirements. Your IP address and device fingerprint are used to prevent account fraud, detect multi-accounting, and block access from jurisdictions where our service is not permitted by law.

Your betting and gaming history helps us calculate payouts, settle disputes about results, and audit our random-number generators. We do not use this data to profile you, predict your future behaviour, or sell insights to third parties. If you contact our support team, we use your communication history to resolve your issue and train our staff—we may review support conversations to measure response quality and identify service improvements.

Third-Party Processors and Data Sharing

We share your name and banking details with our payment processors—companies that handle mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and bank-transfer processing. These processors are certified by their respective financial regulators and are bound by data-processing agreements that require them to use your information only to process your transactions and detect fraud.

We also share your IP address and device fingerprint with third-party fraud-detection services. These services operate globally and maintain servers in multiple countries; your data may be stored on servers outside Indonesia. We do not share your betting history, personal messages, or financial data with these fraud services—only technical identifiers such as IP address and device ID.

We do not share, sell, or license your personal data to marketing companies, data brokers, or advertisers. We may disclose your data if required by law—for example, if a court orders us to provide information in connection with a criminal investigation or if a regulatory authority requests data during an audit. In such cases, we will comply with the legal order and attempt to notify you unless the law forbids us to do so.

Cookies and Tracking

Our ulti700 platform uses cookies to keep you logged in, remember your language preference, and track your session duration. These are "essential" cookies that are necessary for the platform to function. We also use cookies to measure page views, click-through rates, and user flow—this helps us understand which features are popular and where users encounter problems. This tracking data is aggregated and anonymized; we do not use it to build personal profiles of individual users.

You can disable cookies in your browser settings, but this will prevent you from logging into your ulti700 account and using most of our service features. We do not use third-party tracking pixels or allow social-media platforms to track your activity on ulti700.

Your Rights and Data Access

You have the right to request a copy of your personal data that we hold. Send an email to our support team requesting a "data subject access request" (DSAR), and we will provide a complete record of your name, address, email, phone number, payment history, and communication logs within 30 days. You also have the right to correct inaccurate information—for example, if your address has changed, you can update it in your account settings or ask our support team to make the change.

You have the right to request deletion of your account and associated data. If you close your ulti700 account, we will delete your personal information within 90 days, except for data we are required to retain by law (such as transaction records for anti-money-laundering compliance). You can also request that we stop using your data for non-essential purposes, such as service-improvement analytics, by opting out in your account settings.

Data Security and Retention

We encrypt your personal data in transit using HTTPS (TLS 1.2 or higher) and at rest using AES-256 encryption. Our servers are protected by firewalls, intrusion-detection systems, and regular security audits. We do not store passwords in plain text; instead, we hash them using a salted algorithm so that even if our database is compromised, your password cannot be recovered. Access to your account data is restricted to ulti700 staff members who need it to perform their job—for example, our support team can view your contact details and transaction history, but our engineering team cannot access your password or banking information.

We retain transaction records and KYC documents for seven years to comply with anti-money-laundering regulations and support audit trails. We retain your account settings and communication logs for as long as your ulti700 account is active. If you close your account, we delete personal identifiers (name, address, email) within 90 days but retain anonymized transaction records and payment information required by law. We delete cookies from your browser after 12 months of inactivity unless you log in again.

We conduct annual security audits of our systems and hire external penetration-testing firms to identify vulnerabilities. If we discover a data breach that affects your personal information, we will notify you by email within 30 days of discovering the breach and explain what data was exposed, what steps we have taken to contain the incident, and what actions you should take to protect yourself.

Our privacy policy is reviewed and updated annually. If we make material changes—such as sharing your data with a new third party or changing how long we retain your information—we will notify you by email at least 30 days before the change takes effect. Your continued use of ulti700 after the notification period constitutes your acceptance of the updated policy. If you do not agree with the change, you can close your account and request deletion of your data.

Contact ulti700

If you have questions about how we use your data, wish to request access to your information, or believe we have mishandled your personal information, contact our support team. You can reach us by email during extended business hours. We will acknowledge your request within two business days and respond substantively within 14 days. If you are not satisfied with our response, you may lodge a complaint with the Indonesian data-protection authority (Otoritas Jaminan Informasi Pribadi), though this authority's role is still being established under recent legislation.