truwelu Privacy Policy
This page describes what we collect when you use truwelu and how we keep that data protected. We take privacy seriously and handle your information in accordance with applicable data protection laws in the jurisdictions where we operate.
When you register a truwelu account, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or your bank (mobile banking, local payment, online payment, e-wallet), or play our sportsbook, live-dealer tables, slots, or esports markets, you share certain personal details with us. We use that information to verify your identity, process your payments, deliver your account experience, and comply with legal obligations.
Our privacy practices on truwelu are designed to be transparent. We do not sell your data to marketers or advertisers. We share information only with payment processors, fraud-prevention vendors, and legal authorities when required by law. This policy explains exactly what data we collect, how long we keep it, and your rights regarding that information.
What data we collect on truwelu
We collect information in three categories. First, account data: when you register on truwelu, we capture your email address, password, full name, date of birth, phone number, and home address. We use this to create your account, verify your identity (KYC), and contact you about your account.
Second, payment data: when you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or your bank, we record the amount, date, and method. We do not store your full payment card number or bank account number—our payment processors handle that securely. We retain payment records for accounting and anti-fraud purposes.
Third, activity data: we log your gameplay—which games you play on truwelu, how long you play, your wins and losses, your withdrawals. We collect this to personalise your experience, detect fraud, and comply with gaming regulations in supported jurisdictions. We also track your IP address and device type when you access truwelu on mobile or desktop.
We do not track cookies for marketing on truwelu
Our truwelu platform uses cookies only for login sessions and fraud prevention. We do not use third-party tracking cookies to build marketing profiles or sell your behaviour to advertisers.
How we store your data on truwelu
We store all truwelu account data and payment records on encrypted servers located in supported jurisdictions. Our servers may sit outside your jurisdiction (for example, data servers may be in Singapore or Malaysia), but we apply the same encryption and access controls regardless of location. Only authorised truwelu staff—support agents, fraud analysts, account managers—can view your information, and only when necessary to serve you or comply with law.
We keep your data as long as your truwelu account is active, plus seven years after you close it (to meet tax and anti-money-laundering requirements). Payment records are retained for accounting purposes. Once the retention period expires, we delete or anonymise your personal information. Your account can be closed at any time by contacting our support team.
Third-party processors and your data on truwelu
We share your data only with vendors who help us operate truwelu. Payment processors (the companies handling mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and bank transfers) receive your name, address, and transaction amount to process deposits and withdrawals. Fraud-detection services receive your IP address and device information to spot suspicious login attempts or unusual account activity.
We may disclose your information to government authorities, law enforcement, or financial regulators in supported jurisdictions if required by law or if we believe disclosure is necessary to prevent fraud or protect the security of our truwelu platform. We do not disclose information voluntarily; legal process (a court order or regulatory demand) triggers disclosure.
- Data retention
- Active account data stays with us as long as you use truwelu. After account closure, we retain records for seven years for legal compliance.
- Encryption
- All data in transit between your device and truwelu servers uses SSL encryption. Data at rest is encrypted on our servers.
- Access controls
- Only truwelu employees with a business need can access your personal information. We log all data access for audit purposes.
- Data breach
- If we discover unauthorised access to truwelu account data, we notify affected users and cooperate with authorities as required by law.
Your rights regarding your truwelu data
You have the right to access your personal data on truwelu. You can log into your account and view your profile, payment history, and activity log. If you want a complete export of your data, contact our support team and we'll provide it in a standard format.
You can update your account information—email, phone, address—directly in your truwelu account settings. If you want to correct information we have on file, reach out to support and we'll verify the change.
You have the right to request deletion of your truwelu account and associated data, subject to legal retention requirements. If you request account closure, we will delete personal information after the seven-year legal retention period expires. You can also opt out of promotional communications (emails about Liga 1 tournaments, Piala AFF matches, special Idul Fitri or Idul Adha offers) by adjusting notification settings in your account or replying "unsubscribe" to marketing emails.
Mobile privacy on truwelu
Our truwelu Android app and iOS browser experience handle your data with the same protections as our desktop version. When you log into truwelu on your phone, your session is encrypted end-to-end. We cache minimal data locally on your device—only your login token and device preferences—and you can clear this cache at any time by logging out.
Push notifications on truwelu (alerts about Liga 1 matches, Piala AFF tournaments, or withdrawal confirmations) do not include sensitive information. The notification service is delivered via Google Firebase (Android) or Apple Push Notification service (iOS), and we do not store notification content on your device beyond the notification centre.
If you use a shared phone, we recommend logging out of truwelu after each session. Your account data remains encrypted on our servers even if someone reinstalls the app or clears the app cache.
Changes to our truwelu privacy policy
We may update this privacy policy from time to time to reflect changes in our practices or applicable law. If we make material changes—for example, if we begin sharing data with new third parties—we will notify you via email and display a prominent notice on truwelu when you next log in.
Your continued use of truwelu after such notice constitutes your acceptance of the updated policy. If you disagree with any changes, you can close your account and request deletion of your data subject to our legal retention obligations.
Contact us about truwelu privacy
If you have questions about our privacy practices on truwelu, concerns about your data, or requests to access, correct, or delete your information, contact our support team. We respond to privacy inquiries during business hours.
Our privacy policy applies to truwelu and our website truwelu.com. It does not cover third-party sites linked from our platform—if you click through to external sportsbook data, esports coverage, or payment processor websites, those sites have their own privacy policies.
We are committed to transparent data handling and your privacy. Our services are available only where local law permits. If you use truwelu from Jakarta, Surabaya, Bandung, Medan, or another supported jurisdiction, we protect your information according to this policy and applicable regulations.